Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Improper Validation of Specified Quantity in Input		resolv<0.2.3>=0.3.0, <0.3.1>=0.4.0, <0.6.2RubyGems21 Jul 2025
  • H
OS Command Injection		thor<1.4.0RubyGems21 Jul 2025
  • H
Out-of-bounds Read		nokogiri<1.18.9RubyGems10 Jul 2025
  • H
Expired Pointer Dereference		nokogiri<1.18.9RubyGems10 Jul 2025
  • L
Stack-based Buffer Overflow		nokogiri<1.18.9RubyGems10 Jul 2025
  • H
Stack-based Buffer Overflow		nokogiri<1.18.9RubyGems10 Jul 2025
  • H
Expired Pointer Dereference		nokogiri<1.18.9RubyGems10 Jul 2025
  • C
Weak Password Requirements		openc3>=0.0.0RubyGems10 Jul 2025
  • H
Improper Certificate Validation		logstash-output-tcp<6.2.2>=7.0.0, <7.0.1RubyGems2 Jul 2025
  • H
HTTP Request Smuggling		webrick<1.8.2RubyGems26 Jun 2025
  • M
Heap-based Buffer Overflow		nokogiri>=1.0.0RubyGems23 Jun 2025
  • M
Heap-based Buffer Overflow		nokogiri>=1.0.0RubyGems23 Jun 2025
  • H
Arbitrary Code Injection		openc3>=5.0.6RubyGems19 Jun 2025
  • H
Directory Traversal		openc3>=5.0.6RubyGems16 Jun 2025
  • H
Directory Traversal		openc3>=5.0.6RubyGems16 Jun 2025
  • H
Use of Hard-coded Credentials		openc3<6.0.2RubyGems16 Jun 2025
  • H
Allocation of Resources Without Limits or Throttling		rack>=3.1.0, <3.1.16RubyGems5 Jun 2025
  • L
Race Condition		rack-session>=2.0.0, <2.1.1RubyGems8 May 2025
  • L
Race Condition		rack<2.2.14RubyGems8 May 2025
  • H
Allocation of Resources Without Limits or Throttling		rack<2.2.14>=3.0.0.beta1, <3.0.16>=3.1.0, <3.1.14RubyGems8 May 2025
  • M
Improper Validation of Certificate with Host Mismatch		jruby-openssl>=0.12.1, <0.15.4RubyGems8 May 2025
  • H
Memory Allocation with Excessive Size Value		net-imap<0.2.5>=0.3.0, <0.3.9>=0.4.0, <0.4.20>=0.5.0, <0.5.7RubyGems4 May 2025
  • L
Buffer Under-read		nokogiri<1.18.8RubyGems22 Apr 2025
  • M
Cross-site Scripting (XSS)		publify_core<10.0.2RubyGems30 Mar 2025
  • M
HTTP Response Splitting		pitchfork<0.11.0RubyGems28 Mar 2025
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • C
Improperly Controlled Modification of Dynamically-Determined Object Attributes		camaleon_cms<2.9.1RubyGems17 Mar 2025
  • C
Arbitrary Code Injection		graphql>=1.11.5, <1.11.11>=1.12.0, <1.12.25>=1.13.0, <1.13.24>=2.0.0, <2.0.32>=2.1.0, <2.1.15>=2.2.10, <2.2.17>=2.3.0, <2.3.21>=2.4.0, <2.4.13RubyGems13 Mar 2025
  • H
Out-of-bounds Read		json>=2.10.0, <2.10.2RubyGems13 Mar 2025