Filter
-Infinity
0

Trending

Last week
Last month
Last year

RubyGemsUnauthorized gem takeover for some gems on rubygems.org

critical
9.9
First published (updated )
CVE-2022-29176

RubyGemsrubygems.org MFA Bypass through password reset function could allow account takeover

critical
9.8
EPSS
0.08%
First published (updated )
CVE-2024-21654

RubyGemsLast updated 24 July 2024

critical
9.8
First published (updated )
CVE-2018-1000076

Red Hat Enterprise Linux ServerCode Injection

critical
9.8
First published (updated )
CVE-2017-0899

RubyGemsLast updated 24 July 2024

critical
9.8
First published (updated )
CVE-2017-0903

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/rubyCode Injection, Input Validation

high
8.8
First published (updated )
CVE-2019-8324

rubygems/rubygems-updatePath Traversal

high
8.8
First published (updated )
CVE-2019-8320

RubyGems Mail GemRubyGems allows creation of users with arbitrary unverified emails

high
8.8
First published (updated )
CVE-2022-36073

Red Hat Enterprise Linux ServerLast updated 24 July 2024

high
8.1
First published (updated )
CVE-2017-0902

RubyGemsLast updated 24 July 2024

high
7.8
First published (updated )
CVE-2018-1000074

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyGemsUnauthorized takeover for new versions of some platform-specific gems

high
7.7
First published (updated )
CVE-2022-29218

MailInput Validation

high
7.5
First published (updated )
CVE-2012-2140

JSONInput Validation, SQL Injection

high
7.5
First published (updated )
CVE-2013-0269

rubygems/rubygems-updateAn issue was discovered in RubyGems 2.6 and later through 3.0.2. Gem::GemcutterUtilities#with_respon…

high
7.5
First published (updated )
CVE-2019-8323

rubygems/rubygems-updateAn issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManager#run calls…

high
7.5
First published (updated )
CVE-2019-8325

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/rubyPath Traversal

high
7.5
First published (updated )
CVE-2018-1000073

rubygems/rubygems-updateAn issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the c…

high
7.5
First published (updated )
CVE-2019-8322

RubyGemsLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2018-1000075

rubygems/rubygems-updateAn issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::UserInteraction#verbose …

high
7.5
First published (updated )
CVE-2019-8321

Rubygems Command WrapCode Injection

high
7.5
First published (updated )
CVE-2013-1875

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Red Hat Enterprise Linux ServerInput Validation, Path Traversal

high
7.5
First published (updated )
CVE-2017-0901

Red Hat Enterprise Linux ServerInput Validation

high
7.5
First published (updated )
CVE-2017-0900

RubyGemsUnauthorized gem replacement for full names ending in numbers on rubygems.org

high
7.5
First published (updated )
CVE-2023-40165

Rubygems FastreaderCode Injection

high
7.5
First published (updated )
CVE-2013-2615

rubygems/mini_magickCode Injection

high
7.5
First published (updated )
CVE-2013-2616

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

RubyGems Mail GemAn issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line nam…

high
7
First published (updated )
REDHAT-BUG-1692520

RubyGemsXSS

medium
6.1
First published (updated )
CVE-2018-1000078

RubyGemsRubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which makes it easier for remote atta…

medium
5.8
First published (updated )
CVE-2012-2125

redhat/rubyPath Traversal

medium
5.5
First published (updated )
CVE-2018-1000079

PublifyPublify Vulnerable To Cross-Site Scripting (XSS) Via Redirects Requiring User Interaction

medium
5.4
First published (updated )
CVE-2024-39311

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203