Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

rubygems/uriLast updated 24 July 2024

medium
5.3
First published (updated )
CVE-2023-36617

RubyInfoleak

medium
5.8
First published (updated )
CVE-2021-31810

redhat/rubyInfoleak

medium
5.3
First published (updated )
CVE-2020-10933

UbuntuCommand Injection, OS Command Injection

medium
6.9
First published (updated )
CVE-2020-8130

RubyInput Validation

medium
5.9
First published (updated )
CVE-2015-1855

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyVarious methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Fo…

medium
5.3
First published (updated )
CVE-2011-3624

redhat/rubyRuby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If …

medium
5.3
First published (updated )
CVE-2019-16254

redhat/rubyRuby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within Fil…

medium
6.5
First published (updated )
CVE-2019-15845

WEBrickPath Traversal

medium
5.5
First published (updated )
CVE-2019-11879

redhat/rubyLast updated 24 July 2024

medium
5.3
First published (updated )
CVE-2017-17742

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

debian/ruby1.8Command Injection, CRLF Injection

medium
6.1
First published (updated )
CVE-2015-9096

RubyGemsRubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostn…

medium
5
First published (updated )
CVE-2015-3900

RubyXEE

medium
5
First published (updated )
CVE-2014-8090

RubyXEE

medium
5
First published (updated )
CVE-2014-8080

RubyBuffer Overflow

medium
5
First published (updated )
CVE-2014-4975

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyThe openssl extension in Ruby 2.x does not properly maintain the state of process memory after a fil…

medium
5.8
First published (updated )
CVE-2014-2734

Wicked RubyPath Traversal

medium
5
First published (updated )
CVE-2013-4413

RubyBuffer Overflow

medium
6.8
First published (updated )
CVE-2013-4164

Ruby(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, …

medium
6.4
First published (updated )
CVE-2013-2065

RubyGems Mail GemAlgorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION_PATTERN in lib/rubygems/versi…

medium
4.3
First published (updated )
CVE-2013-4363

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyGems Mail GemAlgorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb in …

medium
4.3
First published (updated )
CVE-2013-4287

Phusion Passengerext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 for Ruby allows local users to …

medium
4.4
First published (updated )
CVE-2013-4136

RubyThe OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7…

medium
6.8
First published (updated )
CVE-2013-4073

DeviseIncorrect Type Cast

medium
6.8
First published (updated )
CVE-2013-0233

rubygems/ldoceInput Validation

medium
6.8
First published (updated )
CVE-2013-1911

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyInput Validation, XEE

medium
5
First published (updated )
CVE-2013-1821

RubyXSS

medium
4.3
First published (updated )
CVE-2013-0256

Phusion PassengerPhusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a de…

medium
4.6
First published (updated )
CVE-2013-2119

RubyThe rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and Ruby 2.0.0 before r…

medium
5
First published (updated )
CVE-2012-4522

RubyRuby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly r…

medium
5
First published (updated )
CVE-2012-5371

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203