Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
radiant >=0.0.0 RubyGems 21 Jul, 2019
  • M
Information Disclosure
foreman-tasks >=0.0.0 RubyGems 15 Jul, 2019
  • H
Remote Code Execution
slanger <0.6.1 RubyGems 15 Jul, 2019
  • H
Malicious Package
paranoid2 =1.1.6 RubyGems 15 Jul, 2019
  • H
Remote Code Execution
mini_magick <4.9.4 RubyGems 12 Jul, 2019
  • H
Improper Input Validation
field_test >=0.3.0, <0.3.1 RubyGems 10 Jul, 2019
  • H
Insecure Initialization Vector
openssl <2.0.0 RubyGems 08 Jul, 2019
  • H
Access Restriction Bypass
chloride <0.3.0 RubyGems 08 Jul, 2019
  • M
Cross-site Scripting (XSS)
radiant >=0.0.0 RubyGems 06 Jul, 2019
  • M
Cross-site Scripting (XSS)
fat_free_crm <0.14.2,>=0.15.0, <0.15.2,>=0.16.0, <0.16.4,>=0.17.0, <0.17.3,>=0.18.0, <0.18.1 RubyGems 06 Jul, 2019
  • H
Malicious Package
strong_password =0.0.7 RubyGems 06 Jul, 2019
  • H
Improper Access Control
jekyll <3.6.3,>=3.7.0, <3.7.4,>=3.8.0, <3.8.4 RubyGems 03 Jul, 2019
  • H
Arbitrary Code Execution
mcollective-client >=2.7.0, <2.8.9 RubyGems 26 Jun, 2019
  • H
Remote Code Execution (RCE)
mcollective-client >=2.7.0, <2.8.9 RubyGems 11 Jun, 2019
  • H
Cross-site Scripting (XSS)
chartkick <3.2.0 RubyGems 05 Jun, 2019
  • H
Cross-site Request Forgery (CSRF)
omniauth >=0.0.0 RubyGems 30 May, 2019
  • H
Cross-site Request Forgery (CSRF)
omniauth-rails >=0.0.0 RubyGems 30 May, 2019
  • M
Cross-site Scripting (XSS)
jquery_mobile_rails >=0.0.0 RubyGems 07 May, 2019
  • M
Privilege Escalation
passenger <5.3.2 RubyGems 30 Apr, 2019
  • H
Malicious Package
bootstrap-sass >=3.2.0.3, <3.2.0.4 RubyGems 03 Apr, 2019
  • M
Prototype Pollution
jquery-rails <4.3.4 RubyGems 27 Mar, 2019
  • M
Open Redirect
doorkeeper-openid_connect <1.5.4 RubyGems 18 Mar, 2019
  • M
Time of Check Time of Use (TOCTOU)
devise <4.6.0 RubyGems 17 Mar, 2019
  • M
Arbitrary File Read
actionview >=4.2.11, <4.2.11.1,>=5.0.7, <5.0.7.2,>=5.1.6, <5.1.6.2,>=5.2.2, <5.2.2.1 RubyGems 13 Mar, 2019
  • M
Denial of Service (DoS)
actionview >=4.2.11, <4.2.11.1,>=5.0.7, <5.0.7.2,>=5.1.6, <5.1.6.2,>=5.2.2, <5.2.2.1 RubyGems 13 Mar, 2019
  • H
Remote Code Execution
railties >=5.2.2, <5.2.2.1 RubyGems 13 Mar, 2019
  • M
Cross-site Scripting (XSS)
bootstrap <3.4.1,>=4.0.0, <4.3.1 RubyGems 15 Feb, 2019
  • M
Cross-site Scripting (XSS)
bootstrap-sass <3.4.0 RubyGems 10 Jan, 2019
  • M
Cross-site Scripting (XSS)
bootstrap-sass <3.4.0 RubyGems 10 Jan, 2019
  • M
Cross-site Scripting (XSS)
easymon <1.4.1 RubyGems 24 Dec, 2018