Is this a code/script injection attack? /script><script type=

Some tried to access this URL in my rails app

http://domain.com/apply/share/script%3E%3C开发者_开发知识库script%20type=

Is this an attack?

This looks like someone is trying to find out if your application is vulnerable to Cross-Site Scripting. It is not an actual attack with a real payload, as far as you can tell from the URL. But if your application lacks validation and/or output encoding, and the supplied string in the URL is written in the HTML-output of your website, the attacker can tell that you are vulnerable to Cross-Site Scripting from the results.

You should look at your log files to find out if this was a GET or POST request. If it was a POST request, there might be a real payload in the POST-content. Unfortunately POST-content does not get logged usually, but you might be lucky if your log-level is high.

It is also a good idea to monitor future requests coming from this IP address. If you see similar requests in the future, it is quite likely, that someone is trying to find and exploit a vulnerability.