rubygems
965 tracked vulnerabilities.
CVE-2008-7310
Spree 0.2.0 - Unauthenticated Order State Manipulation via Mass Assignment
Apr 05, 2012
EPSS 0.01
CVE-2008-7248
Ruby on Rails <2.1.3 & <2.2.2 - CSRF
Dec 16, 2009
EPSS 0.08
CVE-2008-4310
Ruby 1.8.1 and 1.8.5 - Denial of Service via Crafted HTTP Request
Dec 09, 2008
EPSS 0.14
CVE-2008-5189
Ruby on Rails < 2.0.5 - CRLF Injection via redirect_to Function
Nov 21, 2008
EPSS 0.02
CVE-2008-4094
Ruby on Rails < 2.1.1 - SQL Injection via :limit and :offset Parameters
Sep 30, 2008
EPSS 0.03
CVE-2007-6612
Mongrel 1.0.4 and 1.1.x < 1.1.3 - Directory Traversal via Double-Encoded Sequences
Jan 03, 2008
EPSS 0.03
CVE-2007-6183
Ruby-GNOME2 < 0.17.0 - Use-After-Free in mdiag_initialize
Nov 30, 2007
EPSS 0.03
CVE-2007-6077
Rails 1.2.4 - Session Fixation via Incomplete Cookie Protection
Nov 21, 2007
EPSS 0.03
CVE-2007-5379
Ruby on Rails < 1.2.4 - Unauthenticated Arbitrary File Existence Disclosure and XML File Read via Hash.from_xml
Oct 19, 2007
EPSS 0.04
CVE-2007-5380
Ruby on Rails < 1.2.4 - Session Fixation via URL-based Sessions
Oct 19, 2007
EPSS 0.04
CVE-2007-3227
Ruby on Rails - Cross-Site Scripting via ActiveRecord::Base#to_json Input Values
Jun 14, 2007
EPSS 0.04
CVE-2007-0469
RubyGems < 0.9.1 - Arbitrary File Overwrite via Crafted GEM Package
Jan 24, 2007
EPSS 0.05
CVE-2006-4111
Ruby on Rails < 1.1.5 - Remote Code Execution via HTTP Header LOAD_PATH Manipulation
Aug 14, 2006
EPSS 0.02
CVE-2006-4112
Ruby on Rails 1.1.0-1.1.5 - Remote Code Execution via Dependency Resolution Mechanism
Aug 14, 2006
EPSS 0.03
CVE-2006-2582
RWiki 2.1.0pre1-2.1.0 - Remote Code Execution
May 25, 2006
EPSS 0.02
Products
actionpack 63
rack 50
nokogiri 34
rubygems 25
rubygems-update 25
activerecord 23
puppet 23
activesupport 17
publify_core 15
passenger 14
rails-html-sanitizer 14
actionview 13
decidim 12
puma 12
camaleon_cms 11
fat_free_crm 11
rails 11
activestorage 10
net-imap 10
ruby-saml 10
jquery-rails 9
katello 8
openc3 8
rexml 8
bootstrap 7
bootstrap-sass 7
jquery-ui-rails 7
lodash-rails 7
spree 7
avo 6
Quick Filters