Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • M
Use After Free		nokogiri<1.18.4RubyGems23 Mar 2025
  • C
Improperly Controlled Modification of Dynamically-Determined Object Attributes		camaleon_cms<2.9.1RubyGems17 Mar 2025
  • C
Arbitrary Code Injection		graphql>=1.11.5, <1.11.11>=1.12.0, <1.12.25>=1.13.0, <1.13.24>=2.0.0, <2.0.32>=2.1.0, <2.1.15>=2.2.10, <2.2.17>=2.3.0, <2.3.21>=2.4.0, <2.4.13RubyGems13 Mar 2025
  • H
Out-of-bounds Read		json>=2.10.0, <2.10.2RubyGems13 Mar 2025
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Allocation of Resources Without Limits or Throttling		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Stack-based Buffer Overflow		google-protobuf<3.25.5>=4.0.0.rc.1, <4.27.5>=4.28.0.rc.1, <4.28.2RubyGems12 Mar 2025
  • H
Relative Path Traversal		rack<2.2.13>=3.0.0.beta1, <3.0.14>=3.1.0, <3.1.12RubyGems12 Mar 2025
  • M
Improper Output Neutralization for Logs		rack<2.2.12>=3.0.0.beta1, <3.0.13>=3.1.0, <3.1.11RubyGems5 Mar 2025
  • M
Regular Expression Denial of Service (ReDoS)		cgi<0.3.5.1>=0.3.6, <0.3.7>=0.4.0, <0.4.2RubyGems4 Mar 2025
  • M
Allocation of Resources Without Limits or Throttling		cgi<0.3.5.1>=0.3.6, <0.3.7>=0.4.0, <0.4.2RubyGems4 Mar 2025
  • L
Improper Removal of Sensitive Information Before Storage or Transfer		uri<0.11.3>=0.12.0, <0.12.4>=0.13.0, <0.13.2>=1.0.0, <1.0.3RubyGems4 Mar 2025
  • H
Directory Traversal		oxidized-web<0.15.0RubyGems3 Mar 2025
  • M
Use of Uninitialized Resource		passenger>=6.0.21, <6.0.26RubyGems25 Feb 2025
  • H
Use After Free		nokogiri<1.18.3RubyGems19 Feb 2025
  • H
Stack-based Buffer Overflow		nokogiri<1.18.3RubyGems19 Feb 2025
  • H
Improper Output Neutralization for Logs		rack<2.2.11>=3.0.0, <3.0.12>=3.1.0, <3.1.10RubyGems13 Feb 2025
  • H
Denial of Service (DoS)		net-imap>=0.3.2, <0.3.8>=0.4.0, <0.4.19>=0.5.0, <0.5.6RubyGems11 Feb 2025
  • C
Covert Timing Channel		openssl>=0.0.0RubyGems13 Jan 2025
  • C
Malicious Package		chauuuyhhn>=0.0.0RubyGems5 Jan 2025
  • C
Malicious Package		nosvemosssadfsd>=0.0.0RubyGems5 Jan 2025
  • C
Malicious Package		holaaaaaafasdf>=0.0.0RubyGems5 Jan 2025
  • H
Session Fixation		pwpush>=0.0.0RubyGems31 Dec 2024
  • L
Cross-site Scripting (XSS)		actionpack>=5.2.0, <7.0.8.7>=7.1.0, <7.1.5.1>=7.2.0, <7.2.2.1>=8.0.0, <8.0.0.1RubyGems11 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems4 Dec 2024
  • L
Cross-site Scripting (XSS)		nokogiri<1.15.7>=1.16.0.rc1, <1.16.8RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024