Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
zendframework/zendframework1 >=1, <1.11.4 Composer 13 Jun, 2012
  • M
Sensitive Information Exposure
nokogiri < 1.5.4 RubyGems 07 Jun, 2012
  • M
XML Parsing Infinite Loop
xerces:xercesimpl (,2.3.0] Maven 06 Jun, 2012
  • H
HTTP Header Caching Weakness
rack-cache < 1.2 RubyGems 05 Jun, 2012
  • M
Unsafe Query Generation
activerecord < 3.2.4, >= 3.2,< 3.1.5, >= 3.1,< 3.0.13 RubyGems 30 May, 2012
  • H
SQL Injection
activerecord < 3.2.4, >= 3.2,< 3.1.5, >= 3.1,< 3.0.13, >= 2.4,< 2.3.14 RubyGems 30 May, 2012
  • M
Denial of Service (DoS)
feedparser [,5.1.2] pip 21 May, 2012
  • M
Regular Expression Denial of Service (DoS)
rack < 1.4.2, >= 1.4,< 1.3.7, >= 1.3,< 1.2.6, >= 1.2,< 1.1.4 RubyGems 03 May, 2012
  • H
Denial of Service (DoS)
requests [,1.2.3] pip 07 Apr, 2012
  • H
Deserialization of Untrusted Data
typo3/flow >=1, <1.0.4 Composer 28 Mar, 2012
  • M
Cross-site Scripting (XSS)
dateable.chronos [,0.8) pip 21 Mar, 2012
  • M
Path Disclosure
symfony/http-foundation >=2, <2.0.19 Composer 19 Mar, 2012
  • M
Path Disclosure
symfony/symfony >=2, <2.0.19 Composer 19 Mar, 2012
  • M
Path Disclosure
symfony/security >=2, <2.0.19 Composer 19 Mar, 2012
  • M
Path Disclosure
symfony/routing >=2, <2.0.19 Composer 19 Mar, 2012
  • M
Arbitrary File Manipulation
mail < 2.4.4 RubyGems 13 Mar, 2012
  • H
Remote Shell Command Execution
mail < 2.4.4 RubyGems 13 Mar, 2012
  • H
HTTP Header Spoofing
premotion.aspnet.appharbor.integration [,0.3.0) NuGet 13 Mar, 2012
  • M
Denial of Service (DoS)
pyfribidi [,0.11.0) pip 08 Mar, 2012
  • M
Privilege Escalation
trytond [,2.4.0) pip 03 Mar, 2012
  • M
Cross-site Scripting (XSS)
actionpack < 3.2.2, >= 3.2,< 3.1.4, >= 3.1,< 3.0.12 RubyGems 29 Feb, 2012
  • M
Cross-site Scripting (XSS)
activesupport < 3.2.2, >= 3.2,< 3.1.4, >= 3.1,< 3.0.12, >= 3.0.0 RubyGems 29 Feb, 2012
  • M
Denial of Service (DoS)
mwlib [,0.13.5) pip 29 Feb, 2012
  • M
Cross-site Scripting (XSS)
redcloth < 4.3.0 RubyGems 28 Feb, 2012
  • H
XML External Entity (XXE) Injection
symfony/symfony >=2, <2.0.11 Composer 24 Feb, 2012
  • H
XML External Entity (XXE) Injection
symfony/serializer >=2, <2.0.11 Composer 24 Feb, 2012
  • M
Directory Traversal
org.apache.myfaces.core:myfaces-impl [2.0,2.0.11], [2.1,2.1.5] Maven 09 Feb, 2012
  • M
Privileges Escalation
pastescript [,1.7.5) pip 08 Feb, 2012
  • M
Cross-site Scripting (XSS)
werkzeug [,0.8.3) pip 05 Feb, 2012
  • L
Symlink File Overwrite
passenger < 4.0.0.rc1, >= 4.0.0.a RubyGems 31 Jan, 2012