Homepage

tfm-ror51-rubygem-loofah vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the tfm-ror51-rubygem-loofah package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
SQL Injection

<0:2.1.1-2.el7sat
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
Deserialization of Untrusted Data

<0:2.1.1-2.el7sat
  • H
Cross-site Scripting (XSS)

<0:2.1.1-2.el7sat
  • H
Cross-site Scripting (XSS)

<0:2.1.1-2.el7sat
  • H
XML External Entity (XXE) Injection

<0:2.1.1-2.el7sat
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
Use of a Broken or Risky Cryptographic Algorithm

<0:2.1.1-2.el7sat
  • H
Improper Access Control

<0:2.1.1-2.el7sat
  • H
Missing Required Cryptographic Step

<0:2.1.1-2.el7sat
  • H
Missing Required Cryptographic Step

<0:2.1.1-2.el7sat
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
Covert Timing Channel

<0:2.1.1-2.el7sat
  • H
Incorrect Calculation

<0:2.1.1-2.el7sat
  • H
Missing Required Cryptographic Step

<0:2.1.1-2.el7sat
  • H
Missing Required Cryptographic Step

<0:2.1.1-2.el7sat
  • H
Missing Required Cryptographic Step

<0:2.1.1-2.el7sat
  • H
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

<0:2.1.1-2.el7sat
  • H
Improper Certificate Validation

<0:2.1.1-2.el7sat
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
Improper Input Validation

<0:2.1.1-2.el7sat
  • H
Improper Input Validation

<0:2.1.1-2.el7sat
  • H
Cross-site Scripting (XSS)

<0:2.1.1-2.el7sat
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.1.1-2.el7sat
  • H
Information Exposure

<0:2.1.1-2.el7sat
  • H
Incomplete Blacklist

<0:2.1.1-2.el7sat
  • H
Out-of-Bounds

<0:2.1.1-2.el7sat