Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Information Exposure
foreman_fog_proxmox <0.13.1 RubyGems 08 Jun, 2021
  • H
Arbitrary Code Execution
dragonfly <1.4.0 RubyGems 30 May, 2021
  • M
Information Exposure
foreman_ansible <4.0.3.4 RubyGems 28 May, 2021
  • C
Arbitrary Code Execution
ruby-jss <1.6.0 RubyGems 26 May, 2021
  • H
Denial of Service (DoS)
nokogiri <1.11.4 RubyGems 18 May, 2021
  • M
Improper Authorization
smart_proxy_shellhooks <0.9.2 RubyGems 13 May, 2021
  • H
Denial of Service (DoS)
puma >=5.0.0.beta1, <5.3.1,<4.3.8 RubyGems 12 May, 2021
  • H
Arbitrary Code Execution
bundler >=1.14.0, <2.1.0 RubyGems 11 May, 2021
  • H
Regular Expression Denial of Service (ReDoS)
actionpack >=6.1.0, <6.1.3.2,>=6.0.0, <6.0.3.7 RubyGems 06 May, 2021
  • M
Regular Expression Denial of Service (ReDoS)
actionpack >=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • H
Denial of Service (DoS)
actionpack >=2.0.0, <5.2.4.6,>=5.2.5, <5.2.6,>=6.0.0, <6.0.3.7,>=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • M
Information Exposure
actionpack >=2.0.0, <5.2.4.6,>=5.2.5, <5.2.6,>=6.0.0, <6.0.3.7,>=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • H
Directory Traversal
rubysl-tmpdir >=0.0.0 RubyGems 06 May, 2021
  • H
Directory Traversal
tmpdir <0.1.2 RubyGems 06 May, 2021
  • H
Command Injection
rdoc >=3.11, <6.3.0 RubyGems 05 May, 2021
  • M
Information Exposure
pgsync <0.6.7 RubyGems 27 Apr, 2021
  • M
Web Cache Poisoning
rack >0.0.0 RubyGems 19 Apr, 2021
  • M
Cross-site Request Forgery (CSRF)
trestle-auth >=0.4.0, <0.4.2 RubyGems 15 Apr, 2021
  • M
Improper Input Validation
puppet <6.13.0 RubyGems 14 Apr, 2021
  • M
Cross-site Request Forgery (CSRF)
trestle-auth >=0.4.0, <0.4.2 RubyGems 14 Apr, 2021
  • M
Improper Certificate Validation
tweetstream >=0.0.0 RubyGems 14 Apr, 2021
  • H
Information Exposure
foreman_azure_rm <2.2.0 RubyGems 09 Apr, 2021
  • L
Improper Input Validation
rexml <3.2.5 RubyGems 09 Apr, 2021
  • M
Cross-site Scripting (XSS)
sidekiq >=0.0.0 RubyGems 06 Apr, 2021
  • M
Cross-site Scripting (XSS)
qiita-markdown <0.33.0 RubyGems 19 Mar, 2021
  • M
Deserialization of Untrusted Data
kramdown >=1.16.0, <2.3.1 RubyGems 19 Mar, 2021
  • H
Denial of Service (DoS)
spree <4.2.0 RubyGems 08 Mar, 2021
  • M
Timing Attack
activerecord-session_store <2.0.0 RubyGems 05 Mar, 2021
  • M
Open Redirect
actionpack >=6.0.0, <6.0.3.5,>=6.1.0.rc1, <6.1.2.1 RubyGems 02 Mar, 2021
  • H
Regular Expression Denial of Service (ReDoS)
activerecord >=6.1.0, <6.1.2.1,>=6.0.0, <6.0.3.5,>=4.2.0, <5.2.4.5 RubyGems 02 Mar, 2021