Description
actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that leads to excessive caching.
Remediation
References
Related Vulnerabilities
WordPress Plugin Post Pay Counter PHP Object Injection (2.730)
WordPress 4.8.x Multiple Vulnerabilities (4.8 - 4.8.20)
Dolibarr Improper Privilege Management Vulnerability (CVE-2020-14201)
Drupal Core 8.9.x Cross-Site Request Forgery (8.9.0 - 8.9.18)
WordPress Plugin Simple Job Board Directory Traversal (2.9.3)