Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Command Injection
nokogiri <1.10.4 RubyGems 13 Aug, 2019
  • H
Remote Code Execution (RCE)
rails >=1.1.0, <1.1.6 RubyGems 31 Jul, 2019
  • H
Denial of Service (DOS)
rails >=1.1.0, <1.1.6 RubyGems 31 Jul, 2019
  • M
Cross-site Scripting (XSS)
rails <1.2.5 RubyGems 31 Jul, 2019
  • M
Information Exposure
rails <1.2.4 RubyGems 31 Jul, 2019
  • M
Session Fixation
rails <1.2.4 RubyGems 31 Jul, 2019
  • M
Session Fixation
rails <1.2.6 RubyGems 31 Jul, 2019
  • M
Cross-Site Request Forgery (CSRF)
rails <2.0.5 RubyGems 31 Jul, 2019
  • M
Improper Input Validation
rails >=2.1.0, <2.1.3,>=2.2.0, <2.2.2 RubyGems 31 Jul, 2019
  • H
Improper Authentication
rails <2.3.3 RubyGems 31 Jul, 2019
  • M
Cross-site Scripting (XSS)
rails >=2.0.0, <2.2.3,>=2.3.0, <2.3.4 RubyGems 31 Jul, 2019
  • M
Information Exposure
rails >=2.1.0, <2.2.3,>=2.3.0, <2.3.4 RubyGems 31 Jul, 2019
  • H
Improper Input Validation
thin <1.2.4 RubyGems 31 Jul, 2019
  • M
Cross-site Scripting (XSS)
rails <2.2.2,>=2.3.0, <2.3.5 RubyGems 31 Jul, 2019
  • H
Encryption Protection Bypass
openssl <2.0.0 RubyGems 30 Jul, 2019
  • H
Path Traversal
yard <0.9.20 RubyGems 29 Jul, 2019
  • H
Malicious Package
datagrid =1.0.6 RubyGems 26 Jul, 2019
  • H
Malicious Package
simple_captcha2 =0.2.3 RubyGems 26 Jul, 2019
  • M
Cross-site Scripting (XSS)
radiant >=0.0.0 RubyGems 21 Jul, 2019
  • M
Information Disclosure
foreman-tasks >=0.0.0 RubyGems 15 Jul, 2019
  • H
Remote Code Execution
slanger <0.6.1 RubyGems 15 Jul, 2019
  • H
Malicious Package
paranoid2 =1.1.6 RubyGems 15 Jul, 2019
  • H
Remote Code Execution
mini_magick <4.9.4 RubyGems 12 Jul, 2019
  • H
Improper Input Validation
field_test >=0.3.0, <0.3.1 RubyGems 10 Jul, 2019
  • H
Insecure Initialization Vector
openssl <2.0.0 RubyGems 08 Jul, 2019
  • H
Access Restriction Bypass
chloride <0.3.0 RubyGems 08 Jul, 2019
  • M
Cross-site Scripting (XSS)
radiant >=0.0.0 RubyGems 06 Jul, 2019
  • M
Cross-site Scripting (XSS)
fat_free_crm <0.14.2,>=0.15.0, <0.15.2,>=0.16.0, <0.16.4,>=0.17.0, <0.17.3,>=0.18.0, <0.18.1 RubyGems 06 Jul, 2019
  • H
Malicious Package
strong_password =0.0.7 RubyGems 06 Jul, 2019
  • H
Improper Access Control
jekyll <3.6.3,>=3.7.0, <3.7.4,>=3.8.0, <3.8.4 RubyGems 03 Jul, 2019