Running a Ruby on Rails site, you may want to know about the Multiple vulnerabilities in parameter parsing in Action Pack (CVE-2013-0156). The link includes links to patches if you can't upgrade ASAP.