lang:

Ruby

regex:

=~\s?\/\^.*\$\/

description:

Possible validation bypass if regular expression used for input validation. Use \A and \z to anchor regular expressions. See https://code.google.com/p/ruby-security/wiki/Guide
tags:
regex input validation bypass
results