Rafael Mendonça França

**Name of the Vulnerable Software and Affected Versions** Active Storage versions 5.2.0 through 5.2.1.0 **Description** A bypass issue in Active Storage for Google Cloud Storage and Disk services allows an attacker to modify the `content-disposition` and `content-type` parameters, potentially executing HTML files inline. This can be combined with techniques like cookie bombing and specially crafted AppCache manifests to access private signed URLs within a specific storage path. Vulnerable applications are those using either GCS or the Disk service in production. **Recommendations** For Active Storage versions 5.2.0 through 5.2.1.0, update to version 5.2.1.1 to resolve the issue. As a temporary workaround, consider restricting access to the `content-disposition` and `content-type` parameters until a patch is available.

Name of the Vulnerable Software and Affected Versions: Active Job versions 4.2.0 through 4.2.10 Active Job versions 5.0.0 through 5.0.7 Active Job versions 5.1.0 through 5.1.6 Active Job versions 5.2.0 through 5.2.1 Description: A Broken Access Control issue allows an attacker to craft user input that can cause Active Job to deserialize it using GlobalId, giving them access to information they should not have. This issue is related to the deserialization of untrusted data, which can lead to unauthorized access to confidential data. Recommendations: For versions 4.2.0 through 4.2.10, update to version 4.2.11. For versions 5.0.0 through 5.0.7, update to version 5.0.7.1. For versions 5.1.0 through 5.1.6, update to version 5.1.6.1. For versions 5.2.0 through 5.2.1, update to version 5.2.1.1.