Filter
AND
-Infinity
0
Trending
Versions
3.0.0
33
3.1.0
32
3.1.0-beta1
30
3.1.0-rc1
30
3.0.0-beta
29
3.0.0-beta2
29
3.0.0-beta3
29
3.0.0-beta4
29
3.0.0-rc
29
3.0.0-rc2
29
3.0.1
29
3.0.2
29
3.0.3
29
3.0.4-rc1
29
3.1.0-rc2
29
3.1.0-rc3
29
3.1.0-rc4
29
3.0.1-pre
28
3.0.2-pre
28
3.0.5
28
3.0.4
27
3.0.5-rc1
27
3.0.6
27
3.0.6-rc1
27
3.0.6-rc2
27
3.0.7
27
3.0.7-rc1
27
3.0.7-rc2
27
3.0.8-rc1
27
3.0.8-rc2
27
3.0.8-rc3
27
3.0.8-rc4
27
3.1.0-rc5
27
3.0.10-rc1
26
3.0.8
26
3.0.9
26
3.0.9-rc1
26
3.0.9-rc2
26
3.0.9-rc3
26
3.0.9-rc4
26
3.0.9-rc5
26
3.1.0-rc6
26
3.1.0-rc7
26
3.1.0-rc8
26
3.1.1
26
3.1.1-rc1
26
3.1.1-rc2
26
3.1.1-rc3
26
3.2.0
26
3.2.1
25
rubygems/actiontextActionText ContentAttachment can Contain Unsanitized HTML
6.1
First published (updated )
rubygems/railsRails Possible XSS Vulnerability in Action Controller
6.1
EPSS
0.04%
First published (updated )
rubygems/activestoragePossible Sensitive Session Information Leak in Active Storage
5.3
EPSS
0.04%
First published (updated )
Ruby on Rails ActionPackAn open redirect vulnerability is fixed in Rails 7.0.4.1 with the new protection against open redire…
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
rubygems/actionpackRuby on Rails _table.html.erb cross site scripting
5.4
First published (updated )
Ruby on RailsA open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a…
6.1
First published (updated )
debian/railsA possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 …
6.1
First published (updated )
Ruby on RailsThe actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. Speciall…
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
rubygems/activerecord-session_storeThe activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on…
5.3
First published (updated )
Ruby on RailsThe Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redire…
6.1
First published (updated )
Ruby on RailsA denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian LinuxThe encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby on RailsActive Model in Ruby on Rails 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta…
5.3
First published (updated )
Ruby on RailsThe http_basic_authenticate_with method in actionpack/lib/action_controller/metal/http_authenticatio…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby on Railsactiverecord/lib/active_record/nested_attributes.rb in Active Record in Ruby on Rails 3.1.x and 3.2.…
5.3
First published (updated )
Ruby on RailsThe (1) jdom.rb and (2) rexml.rb components in Active Support in Ruby on Rails before 4.1.11 and 4.2…
First published (updated )
Ruby on RailsThe str_buf_cat function in string.c in Ruby 1.9.3, 2.0.0, and 2.1 allows context-dependent attacker…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.