Secunia Security Advisory – A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to conduct cross-site scripting and potentially script insertion attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/80990/sa36600.txt
Source: https://packetstormsecurity.com/files/80990/Secunia-Security-Advisory-36600.html