Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • L
HTTP Request Smuggling
puma <4.3.9,>=5.0.0, <5.5.1 RubyGems 13 Oct, 2021
  • M
HTTP Request Smuggling
llhttp >=0.0.0 RubyGems 13 Oct, 2021
  • M
HTTP Request Smuggling
llhttp >=0.0.0 RubyGems 13 Oct, 2021
  • M
Cross-site Scripting (XSS)
sidekiq <5.2.0,>=6.0.0, <6.2.1 RubyGems 08 Oct, 2021
  • H
Arbitrary Code Execution
ruby-jss <1.6.0 RubyGems 08 Oct, 2021
  • H
XML External Entity (XXE) Injection
nokogiri <1.12.5 RubyGems 28 Sep, 2021
  • M
Denial of Service (DoS)
nokogiri <1.8.2 RubyGems 08 Sep, 2021
  • M
Cross-site Request Forgery (CSRF)
better_errors <2.8.0 RubyGems 08 Sep, 2021
  • H
Open Redirect
clearance <2.5.0 RubyGems 31 Aug, 2021
  • H
Open Redirect
rails >=6.1.0, <6.1.4.1,>=6.0.0, <6.0.4.1 RubyGems 20 Aug, 2021
  • H
Command Injection
rdoc <6.3.1 RubyGems 08 Jul, 2021
  • H
Regular Expression Denial of Service (ReDoS)
addressable >=2.3.0, <2.8.0 RubyGems 07 Jul, 2021
  • M
Cross-site Scripting (XSS)
smashing <1.3.5 RubyGems 07 Jul, 2021
  • C
SQL Injection
activerecord-jdbc-adapter >=1.2.6, <1.2.8 RubyGems 02 Jul, 2021
  • M
Directory Traversal
webrick <1.4.0.beta1 RubyGems 01 Jul, 2021
  • C
Improper Input Validation
webrick <1.4.0.beta1 RubyGems 01 Jul, 2021
  • H
Arbitrary Code Injection
narou <3.8.0 RubyGems 28 Jun, 2021
  • H
Data Injection
activerecord >=2.3.2, <4.0.0.beta1 RubyGems 25 Jun, 2021
  • L
Denial of Service (DoS)
bindata <2.4.10 RubyGems 24 Jun, 2021
  • M
Cross-site Scripting (XSS)
qiita-markdown <0.34.0 RubyGems 21 Jun, 2021
  • M
Improper Authorization
foreman_ansible <2.0.0 RubyGems 10 Jun, 2021
  • M
Information Exposure
foreman_fog_proxmox <0.13.1 RubyGems 08 Jun, 2021
  • H
Arbitrary Code Execution
dragonfly <1.4.0 RubyGems 30 May, 2021
  • M
Information Exposure
foreman_ansible <4.0.3.4 RubyGems 28 May, 2021
  • C
Arbitrary Code Execution
ruby-jss <1.6.0 RubyGems 26 May, 2021
  • H
Denial of Service (DoS)
nokogiri <1.11.4 RubyGems 18 May, 2021
  • M
Improper Authorization
smart_proxy_shellhooks <0.9.2 RubyGems 13 May, 2021
  • H
Denial of Service (DoS)
puma >=5.0.0.beta1, <5.3.1,<4.3.8 RubyGems 12 May, 2021
  • H
Arbitrary Code Execution
bundler >=1.14.0, <2.1.0 RubyGems 11 May, 2021
  • H
Regular Expression Denial of Service (ReDoS)
actionpack >=6.1.0, <6.1.3.2,>=6.0.0, <6.0.3.7 RubyGems 06 May, 2021