Secunia Security Advisory – Gentoo has issued an update for rails. This fixes multiple vulnerabilities and security issues, which can be exploited by malicious people to bypass certain security restrictions and to conduct cross-site scripting, cross-site request forgery, potentially script insertion, potentially session fixation, and SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/84156/sa37876.txt
Source: https://packetstormsecurity.com/files/84156/Secunia-Security-Advisory-37876.html