redirect_to(["string"]) remote code execution https://hackerone.com/reports/1106652 Severity: Low Reported To: Ruby on Rails Reported By: #gmcgibbon State: Resolved Disclosed: May 7, 2021, 11:01pm (UTC) 77 views23:04