Ruby on Rails apps vulnerable to data theft through Ransack search

Poor implementation of the Ransack library into some Ruby on Rails applications could expose them to an elevated cyber attack risk, warned security firm Positive Security. The inadequate integration has enabled cyber attackers to exploit backed databases and steal information, with hundreds of more applications potentially being at risk.