actionview vulnerabilities

Simple, battle-tested conventions and helpers for building web pages.

Latest version: 6.0.3.2

Licenses detected

  • license: MIT >= 0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the actionview package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Cross-site Request Forgery (CSRF)
<5.2.4.3,>=6.0.0, <6.0.3.1 Not available 19 May, 2020
  • H
Remote Code Execution (RCE)
<4.2.11.3,>=5.0.0, <5.0.1 Not available 17 May, 2020
  • M
Cross-site Scripting (XSS)
<5.2.4.2,>=6.0.0, <6.0.2.2 Not available 20 Mar, 2020
  • M
Denial of Service (DoS)
>=4.2.11, <4.2.11.1,>=5.0.7, <5.0.7.2,>=5.1.6, <5.1.6.2,>=5.2.2, <5.2.2.1 Not available 13 Mar, 2019
  • M
Arbitrary File Read
>=4.2.11, <4.2.11.1,>=5.0.7, <5.0.7.2,>=5.1.6, <5.1.6.2,>=5.2.2, <5.2.2.1 Not available 13 Mar, 2019
  • M
Cross-site Scripting (XSS)
>=5.0.0.0, <5.0.0.1,>=3.2.23, <4.2.7.1,>=3.0.0, <3.2.22.3 Not available 10 Aug, 2016
  • M
Information Exposure
>=3.2.23, <4.1.14.2,<3.2.22.2 Not available 28 Feb, 2016
  • H
Information Exposure
>=4.3.0, <5.0.0,>=4.2.0, <4.2.5.1,>=3.2.23, <4.1.14.1,<3.2.22.1 Not available 24 Jan, 2016