activeresource is a library to wrap your RESTful web app with Ruby classes and work with them like Active Record models.
Affected versions of this package are vulnerable to Information Exposure. There is an issue with the way Active Resource encodes data before querying the back end server. This encoding mechanism can allow specially crafted requests to possibly access data that may not be expected.
activeresource to version 5.1.1 or higher.