Forum: Ruby on Rails Security Flaw With acts_as_xapian

Announcement (2017-05-07): www.ruby-forum.com is now read-only since I unfortunately do not have the time to support and maintain the forum any more. Please see rubyonrails.org/community and ruby-lang.org/en/community for other Rails- und Ruby-related community platforms.
PeteSalty (Guest)
on 2009-06-02 23:16
(Received via mailing list)
I've found a secuirty issue with the proxy implementation of
find_with_xapian in the acts_as_xapian plugin. I've documented it over
at the acts_as_xapian Google Group (http://groups.google.com/group/
acts_as_xapian/browse_thread/thread/8bc8da3275985383) but since that
group is pretty low traffic I thought it would be a good idea to let
people know about it here too just in case they're using aax but don't
know about it yet.

Dale
This topic is locked and can not be replied to.