Summary: The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.Published: Tuesday, November 12, 2019 - 21:15cvss: 5.0