Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Remote Code Execution (RCE)CVE-2022-33127
Affects diffy | Versions <3.4.1
Has fix
RubyGemsPublished 24 Jun 2022
  • H
Improper Encoding or Escaping of OutputCVE-2022-23079
Affects motor-admin | Versions <0.2.61
Has fix
RubyGemsPublished 22 Jun 2022
  • L
Insecure PermissionsCVE-2022-31071
Affects octopoller | Versions >=0.2.0, <0.3.0
Has fix
RubyGemsPublished 16 Jun 2022
  • M
Insufficiently Protected CredentialsCVE-2022-31033
Affects mechanize | Versions <2.8.5
Has fix
RubyGemsPublished 10 Jun 2022
  • H
Deserialization of Untrusted DataCVE-2022-32511
Affects jmespath | Versions <1.6.1
Has fix
RubyGemsPublished 7 Jun 2022
  • M
Use of Uninitialized ResourceCVE-2022-31026
Affects trilogy | Versions <2.1.1
Has fix
RubyGemsPublished 7 Jun 2022
  • M
Cross-site Scripting (XSS)CVE-2021-25975
Affects publify_core | Versions >=8.0, <9.2.5
Has fix
RubyGemsPublished 6 Jun 2022
  • L
Cross-site Request Forgery (CSRF)CVE-2022-31000
Affects solidus_backend | Versions <2.11.16>=3.0.0, <3.0.6>=3.1.0, <3.1.6
Has fix
RubyGemsPublished 2 Jun 2022
  • H
Denial of Service (DoS)CVE-2022-30122
Affects rack | Versions >=1.2, <2.0.9.1>=2.1.0, <2.1.4.1>=2.2.0, <2.2.3.1
Has fix
RubyGemsPublished 28 May 2022
  • C
Arbitrary Code InjectionCVE-2022-30123
Affects rack | Versions <2.0.9.1>=2.1.0, <2.1.4.1>=2.2.0, <2.2.3.1
Has fix
RubyGemsPublished 28 May 2022
  • M
Improper Access ControlCVE-2022-1810
Affects publify_core | Versions <9.2.9
Has fix
RubyGemsPublished 24 May 2022
  • M
Cross-site Scripting (XSS)CVE-2022-1811
Affects publify_core | Versions <9.2.9
Has fix
RubyGemsPublished 24 May 2022
  • H
Improper Handling of Unexpected Data TypeCVE-2022-29181
Affects nokogiri | Versions <1.13.6
Has fix
RubyGemsPublished 20 May 2022
  • H
Inadequate Encryption StrengthCVE-2019-25061
Affects random_password_generator | Versions >=0.0.0
Has fix
RubyGemsPublished 18 May 2022
  • M
Cross-site Scripting (XSS)CVE-2022-0578
Affects publify_core | Versions <9.2.8
Has fix
RubyGemsPublished 17 May 2022
  • L
Information ExposureCVE-2022-1553
Affects publify_core | Versions <9.2.8
Has fix
RubyGemsPublished 17 May 2022
  • L
Improper Access ControlCVE-2022-0574
Affects publify_core | Versions <9.2.8
Has fix
RubyGemsPublished 17 May 2022
  • M
CSV InjectionCVE-2022-28481
Affects csv-safe | Versions <3.0.0
Has fix
RubyGemsPublished 2 May 2022
  • H
Improper Input ValidationCVE-2022-29970
Affects sinatra | Versions <2.2.0
Has fix
RubyGemsPublished 2 May 2022
  • M
Cross-site Scripting (XSS)CVE-2022-27777
Affects actionview | Versions <5.2.7.1>=6.0.0.beta1, <6.0.4.8>=6.1.0.rc1, <6.1.5.1>=7.0.0.alpha1, <7.0.2.4
Has fix
RubyGemsPublished 27 Apr 2022
  • M
Cross-site Scripting (XSS)CVE-2022-22577
Affects actionpack | Versions >=5.2.0, <5.2.7.1>=6.0.0.beta1, <6.0.4.8>=6.1.0.rc1, <6.1.5.1>=7.0.0.alpha1, <7.0.2.4
Has fix
RubyGemsPublished 27 Apr 2022
  • M
Server-side Request Forgery (SSRF)CVE-2022-27311
Affects gibbon | Versions <3.4.4
Has fix
RubyGemsPublished 25 Apr 2022
  • M
SQL InjectionCVE-2022-29498
Affects blazer | Versions <2.6.0
Has fix
RubyGemsPublished 21 Apr 2022
  • H
Command InjectionCVE-2022-25648
Affects git | Versions <1.11.0
Has fix
RubyGemsPublished 19 Apr 2022
  • H
Out-of-bounds WriteCVE-2018-25032
Affects nokogiri | Versions <1.13.4
Has fix
RubyGemsPublished 12 Apr 2022
  • H
Regular Expression Denial of Service (ReDoS)CVE-2022-24836
Affects nokogiri | Versions <1.13.4
Has fix
RubyGemsPublished 12 Apr 2022
  • H
Denial of Service (DoS)CVE-2022-23437
Affects nokogiri | Versions <1.13.4
Has fix
RubyGemsPublished 12 Apr 2022
  • M
Time-Based One-Time Password (TOTP) ReuseCVE-2021-43177
Affects devise-two-factor | Versions <4.0.2
Has fix
RubyGemsPublished 10 Apr 2022
  • M
Denial of Service (DoS)CVE-2022-24795
Affects yajl-ruby | Versions <1.4.2
Has fix
RubyGemsPublished 6 Apr 2022
  • H
Command InjectionCVE-2022-24440
Affects cocoapods-downloader | Versions <1.6.0>=1.6.2, <1.6.3
Has fix
RubyGemsPublished 1 Apr 2022