2022-05-26 00:00:00
hackerone
PUBLISHED
A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.