Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Incorrect Default Permissions		vagrant>=2.2.10, <2.4.7RubyGems4 Jul 2025
  • H
Improper Certificate Validation		logstash-output-tcp<6.2.2>=7.0.0, <7.0.1RubyGems2 Jul 2025
  • H
HTTP Request Smuggling		webrick<1.8.2RubyGems26 Jun 2025
  • M
Heap-based Buffer Overflow		nokogiri>=1.0.0RubyGems23 Jun 2025
  • M
Heap-based Buffer Overflow		nokogiri>=1.0.0RubyGems23 Jun 2025
  • H
Arbitrary Code Injection		openc3>=5.0.6RubyGems19 Jun 2025
  • H
Directory Traversal		openc3>=5.0.6RubyGems16 Jun 2025
  • H
Directory Traversal		openc3>=5.0.6RubyGems16 Jun 2025
  • H
Use of Hard-coded Credentials		openc3<6.0.2RubyGems16 Jun 2025
  • H
Allocation of Resources Without Limits or Throttling		rack>=3.1.0, <3.1.16RubyGems5 Jun 2025
  • L
Race Condition		rack-session>=2.0.0, <2.1.1RubyGems8 May 2025
  • L
Race Condition		rack<2.2.14RubyGems8 May 2025
  • H
Allocation of Resources Without Limits or Throttling		rack<2.2.14>=3.0.0.beta1, <3.0.16>=3.1.0, <3.1.14RubyGems8 May 2025
  • M
Improper Validation of Certificate with Host Mismatch		jruby-openssl>=0.12.1, <0.15.4RubyGems8 May 2025
  • H
Memory Allocation with Excessive Size Value		net-imap<0.2.5>=0.3.0, <0.3.9>=0.4.0, <0.4.20>=0.5.0, <0.5.7RubyGems4 May 2025
  • L
Buffer Under-read		nokogiri<1.18.8RubyGems22 Apr 2025
  • M
Cross-site Scripting (XSS)		publify_core<10.0.2RubyGems30 Mar 2025
  • M
HTTP Response Splitting		pitchfork<0.11.0RubyGems28 Mar 2025
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • C
Improperly Controlled Modification of Dynamically-Determined Object Attributes		camaleon_cms<2.9.1RubyGems17 Mar 2025
  • C
Arbitrary Code Injection		graphql>=1.11.5, <1.11.11>=1.12.0, <1.12.25>=1.13.0, <1.13.24>=2.0.0, <2.0.32>=2.1.0, <2.1.15>=2.2.10, <2.2.17>=2.3.0, <2.3.21>=2.4.0, <2.4.13RubyGems13 Mar 2025
  • H
Out-of-bounds Read		json>=2.10.0, <2.10.2RubyGems13 Mar 2025
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Allocation of Resources Without Limits or Throttling		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Stack-based Buffer Overflow		google-protobuf<3.25.5>=4.0.0.rc.1, <4.27.5>=4.28.0.rc.1, <4.28.2RubyGems12 Mar 2025
  • H
Relative Path Traversal		rack<2.2.13>=3.0.0.beta1, <3.0.14>=3.1.0, <3.1.12RubyGems12 Mar 2025
  • M
Improper Output Neutralization for Logs		rack<2.2.12>=3.0.0.beta1, <3.0.13>=3.1.0, <3.1.11RubyGems5 Mar 2025
  • M
Regular Expression Denial of Service (ReDoS)		cgi<0.3.5.1>=0.3.6, <0.3.7>=0.4.0, <0.4.2RubyGems4 Mar 2025