{"id":7410,"date":"2009-09-05T11:12:22","date_gmt":"2009-09-05T03:12:22","guid":{"rendered":"https:\/\/aqzt.com\/7410.html"},"modified":"2009-09-05T11:12:22","modified_gmt":"2009-09-05T03:12:22","slug":"%e5%ae%89%e5%85%a8%e8%a1%a5%e4%b8%81-ruby-on-rails-2-3-4","status":"publish","type":"post","link":"https:\/\/aqzt.com\/7410.html","title":{"rendered":"\u5b89\u5168\u8865\u4e01 Ruby on Rails 2.3.4"},"content":{"rendered":"<p><a href=\"https:\/\/www.oschina.net\/\" target=\"_blank\" rel=\"noopener noreferrer\">\u6587\u7ae0\u8f6c\u8f7d\u5f00\u6e90\u4e2d\u56fd<\/a><\/p>\n<p>Ruby on Rails \u521a\u521a\u53d1\u5e03 2.3.4 \u7248\u672c\uff0c\u8be5\u7248\u672c\u4e3b\u8981\u662f\u4fee\u6b63\u4e86\u4e00\u4e9b\u5b89\u5168\u95ee\u9898\u548cbug\uff0c\u540c\u65f6\u5f15\u5165\u4e00\u70b9\u5c0f\u7684\u529f\u80fd\uff0c\u56e0\u4e3a\u662f\u5b89\u5168\u8865\u4e01\uff0c\u6240\u4ee5\u5efa\u8bae\u5347\u7ea7\u5230\u8be5\u7248\u672c\u3002<\/p>\n<h4>\u5b89\u5168\u8865\u4e01<\/h4>\n<ul>\n<li><a href=\"http:\/\/weblog.rubyonrails.org\/2009\/9\/4\/xss-vulnerability-in-ruby-on-rails\"><span class=\"caps\">CVE<\/span>-2009-3009 &ndash; <span class=\"caps\">XSS<\/span> vulnerability<\/a><\/li>\n<li><a href=\"http:\/\/weblog.rubyonrails.org\/2009\/9\/4\/timing-weakness-in-ruby-on-rails\">Timing Weakness in MessageVerifier and the Cookie Store<\/a><\/li>\n<\/ul>\n<h4>\u65b0\u7684\u7279\u6027<\/h4>\n<ul>\n<li>\u652f\u6301\u7ed1\u5b9a I18n \u7684\u7ffb\u8bd1\u63d2\u4ef6\uff0cRails \u53ef\u4ee5\u6839\u636e I18n.load_path \u81ea\u52a8\u52a0\u8f7dlocale\u6587\u4ef6<\/li>\n<li>\u589e\u52a0 db\/seeds.rb \u4f5c\u4e3a\u9ed8\u8ba4\u7684\u6587\u4ef6\u6765\u5b58\u50a8\u6570\u636e\u5e93\u7684\u79cd\u5b50\u6570\u636e\u3002<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>\u6587\u7ae0\u8f6c\u8f7d\u5f00\u6e90\u4e2d\u56fd Ruby on Rails \u521a\u521a\u53d1\u5e03 2.3.4 \u7248\u672c\uff0c\u8be5\u7248\u672c\u4e3b\u8981\u662f\u4fee\u6b63\u4e86\u4e00\u4e9b\u5b89\u5168\u95ee\u9898\u548cbug\uff0c\u540c\u65f6\u5f15\u5165\u4e00\u70b9\u5c0f\u7684\u529f\u80fd\uff0c\u56e0\u4e3a\u662f\u5b89\u5168\u8865\u4e01\uff0c\u6240\u4ee5\u5efa\u8bae\u5347\u7ea7\u5230\u8be5\u7248\u672c\u3002 \u5b89\u5168\u8865\u4e01 CVE-2009-3009 &ndash; XSS vulnerability Timing Weakness in MessageVerifier and the Cookie Store \u65b0\u7684\u7279\u6027 \u652f\u6301\u7ed1\u5b9a I18n \u7684\u7ffb\u8bd1\u63d2\u4ef6\uff0cRails \u53ef\u4ee5\u6839\u636e I18n.load_path \u81ea\u52a8\u52a0\u8f7dlocale\u6587\u4ef6 \u589e\u52a0 db\/seeds<\/p>\n","protected":false},"author":1,"featured_media":6522,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"footnotes":""},"categories":[2],"tags":[292,9,226,21],"collection":[],"_links":{"self":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/7410"}],"collection":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/comments?post=7410"}],"version-history":[{"count":0,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/7410\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media\/6522"}],"wp:attachment":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media?parent=7410"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/categories?post=7410"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/tags?post=7410"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/collection?post=7410"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}