rails vulnerabilities

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the rails package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • L
CVE-2019-5420
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 14 Mar, 2019
  • L
CVE-2019-5419
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 14 Mar, 2019
  • L
CVE-2019-5418
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 14 Mar, 2019
  • L
CVE-2018-16476
debian:10: <2:5.2.2+dfsg-1,debian:9: *,debian:unstable: <2:5.2.2+dfsg-1,ubuntu:16.04: *,ubuntu:18.04: *,ubuntu:18.10: * Not available 02 Dec, 2018
  • L
CVE-2018-16477
debian:10: <2:5.2.2+dfsg-1,debian:unstable: <2:5.2.2+dfsg-1 Not available 30 Nov, 2018
  • L
CVE-2010-3299
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 27 Jun, 2018
  • L
SQL Injection
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 29 Dec, 2017
  • L
SQL Injection
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 29 Dec, 2017
  • L
SQL Injection
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 29 Dec, 2017
  • L
SQL Injection
debian:10: *,debian:8: *,debian:9: *,debian:unstable: * Not available 29 Dec, 2017
  • M
Cross-site Scripting (XSS)
debian:10: <2:4.2.7.1-1,debian:8: <2:4.1.8-1+deb8u4,debian:9: <2:4.2.7.1-1,debian:unstable: <2:4.2.7.1-1 Not available 07 Sep, 2016
  • M
Improper Access Control
debian:10: <2:4.2.7.1-1,debian:9: <2:4.2.7.1-1,debian:unstable: <2:4.2.7.1-1 Not available 07 Sep, 2016
  • M
Directory Traversal
debian:10: <2:4.2.5.2-1,debian:8: <2:4.1.8-1+deb8u2,debian:9: <2:4.2.5.2-1,debian:unstable: <2:4.2.5.2-1 Not available 07 Apr, 2016
  • H
Improper Input Validation
debian:10: <2:4.2.5.2-1,debian:8: <2:4.1.8-1+deb8u2,debian:9: <2:4.2.5.2-1,debian:unstable: <2:4.2.5.2-1 Not available 07 Apr, 2016
  • M
Security Features
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Improper Input Validation
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Directory Traversal
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Improper Access Control
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Denial of Service (DoS)
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Denial of Service (DoS)
debian:10: <2:4.2.5.1-1,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.5.1-1,debian:unstable: <2:4.2.5.1-1,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 16 Feb, 2016
  • M
Cross-site Scripting (XSS)
debian:10: <2:4.2.4-2,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.4-2,debian:unstable: <2:4.2.4-2,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 26 Jul, 2015
  • L
Denial of Service (DoS)
debian:10: <2:4.2.4-2,debian:8: <2:4.1.8-1+deb8u1,debian:9: <2:4.2.4-2,debian:unstable: <2:4.2.4-2,ubuntu:15.04: <2:4.1.8-1+deb8u1build0.15.04.1 Not available 26 Jul, 2015
  • L
Directory Traversal
debian:10: <2:4.1.8-1,debian:8: <2:4.1.8-1,debian:9: <2:4.1.8-1,debian:unstable: <2:4.1.8-1 Not available 18 Nov, 2014
  • L
Directory Traversal
debian:10: <2:4.1.8-1,debian:8: <2:4.1.8-1,debian:9: <2:4.1.8-1,debian:unstable: <2:4.1.8-1 Not available 08 Nov, 2014
  • H
Permissions
debian:10: <2:4.1.5-1,debian:8: <2:4.1.5-1,debian:9: <2:4.1.5-1,debian:unstable: <2:4.1.5-1 Not available 20 Aug, 2014
  • M
SQL Injection
debian:10: <2:4.1.4-1,debian:8: <2:4.1.4-1,debian:9: <2:4.1.4-1,debian:unstable: <2:4.1.4-1 Not available 07 Jul, 2014
  • M
SQL Injection
debian:10: <2:4.1.4-1,debian:8: <2:4.1.4-1,debian:9: <2:4.1.4-1,debian:unstable: <2:4.1.4-1 Not available 07 Jul, 2014
  • M
Directory Traversal
ubuntu:14.04: * Not available 07 May, 2014
  • M
Cross-site Scripting (XSS)
debian:10: <2.3.14.1,debian:8: <2.3.14.1,debian:9: <2.3.14.1,debian:unstable: <2.3.14.1 Not available 20 Feb, 2014
  • M
Denial of Service (DoS)
debian:10: <2.3.14.1,debian:8: <2.3.14.1,debian:9: <2.3.14.1,debian:unstable: <2.3.14.1 Not available 20 Feb, 2014