rubygem-puma-doc vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rubygem-puma-doc package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Authorization Bypass Through User-Controlled Key	*
H HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M XML External Entity (XXE) Injection	<0:3.7.1-1.el7cf
M XML External Entity (XXE) Injection	<0:3.7.1-1.el7cf
H Directory Traversal	<0:4.3.12-1.el7rhgs
H HTTP Request Smuggling	*
H HTTP Request Smuggling	<0:4.3.12-1.el7rhgs
H Exposure of Private Information ('Privacy Violation')	*
L HTTP Request Smuggling	*
L HTTP Request Smuggling	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M HTTP Request Smuggling	*
L HTTP Request Smuggling	*
L HTTP Response Splitting	*
M HTTP Response Splitting	*
M Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
M Allocation of Resources Without Limits or Throttling	*
L Allocation of Resources Without Limits or Throttling	*
M HTTP Request Smuggling	*
L HTTP Request Smuggling	*
H Resource Exhaustion	<0:4.3.12-1.el7rhgs
H Incorrect Behavior Order: Early Validation	<0:4.3.12-1.el7rhgs
H Resource Exhaustion	<0:4.3.12-1.el7rhgs
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf