rubygem-puma-doc vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rubygem-puma-doc package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M Authorization Bypass Through User-Controlled Key	*
H HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M XML External Entity (XXE) Injection	<0:3.7.1-1.el7cf
M XML External Entity (XXE) Injection	<0:3.7.1-1.el7cf
H Directory Traversal	<0:4.3.12-1.el7rhgs
H HTTP Request Smuggling	*
H HTTP Request Smuggling	<0:4.3.12-1.el7rhgs
H Exposure of Private Information ('Privacy Violation')	*
L HTTP Request Smuggling	*
L HTTP Request Smuggling	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M HTTP Request Smuggling	*
L HTTP Request Smuggling	*
M HTTP Response Splitting	*
L HTTP Response Splitting	*
M Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
L HTTP Request Smuggling	*
M HTTP Request Smuggling	*
H Resource Exhaustion	<0:4.3.12-1.el7rhgs
H Incorrect Behavior Order: Early Validation	<0:4.3.12-1.el7rhgs
H Resource Exhaustion	<0:4.3.12-1.el7rhgs
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf
M Cross-site Scripting (XSS)	<0:3.7.1-1.el7cf