Workaround for CVE-2010-3933


First look this vulnerability issue:

My application models:

On my departments form, when user selects a health unit, I copy all
unit attributes including address and street.

The parameters hash looks like this:

But this was considered a vunerability issue, the CVE-2010-3933.

How I can do that on newer versions of rails? I need to set the address
the new department but I should be able to edit this attributes (nested


On Thu, Mar 24, 2011 at 1:18 PM, Gabriel Sobrinho <

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs