Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- C
Cross-site Request Forgery (CSRF)CVE-2021-41275
Affects spree_auth_devise | Versions <4.0.1>=4.1.0, <4.1.1>=4.2.0, <4.2.1>=4.3.0, <4.4.1
Has fix
RubyGemsPublished 18 Nov 2021
- C
Cross-site Request Forgery (CSRF)CVE-2021-41274
Affects solidus_auth_devise | Versions >=3.1.0, <3.1.3>=3.0.0, <3.0.3>=2.6.0, <2.11.12>=1.0.0, <2.5.4
Has fix
RubyGemsPublished 18 Nov 2021
- M
Denial of Service (DoS)CVE-2021-27025
Affects puppet | Versions <6.25.1>=7.0.0, <7.12.1
Has fix
RubyGemsPublished 17 Nov 2021
- M
Information DisclosureCVE-2021-27023
Affects puppet | Versions <6.25.1>=7.0.0, <7.12.1
Has fix
RubyGemsPublished 17 Nov 2021
- M
Improper Input ValidationCVE-2021-41263
Affects rails_multisite | Versions <4.0.0
Has fix
RubyGemsPublished 16 Nov 2021
- M
Regular Expression Denial of Service (ReDoS)CVE-2021-41817
Affects date | Versions <2.0.1>=3.0.0, <3.0.2>=3.1.0, <3.1.2>=3.2.0, <3.2.1
Has fix
RubyGemsPublished 16 Nov 2021
- M
Cross-site Scripting (XSS)CVE-2021-25974
Affects publify_core | Versions <9.2.5
Has fix
RubyGemsPublished 10 Nov 2021
- M
Access Restriction BypassCVE-2021-25973
Affects publify_core | Versions >=9.0.0.pre1, <9.2.5
Has fix
RubyGemsPublished 2 Nov 2021
- M
Regular Expression Denial of Service (ReDoS)CVE-2021-41186
Affects fluentd | Versions >=0.14.14, <1.14.2.
Has fix
RubyGemsPublished 31 Oct 2021
- M
Cross-site Scripting (XSS)CVE-2011-1497
Affects rails | Versions <3.0.6
Has fix
RubyGemsPublished 20 Oct 2021
- H
Always-Incorrect Control Flow ImplementationCVE-2021-41153
Affects evm | Versions <0.31.0
Has fix
RubyGemsPublished 20 Oct 2021
- M
Cross-site Scripting (XSS)CVE-2021-25969
Affects camaleon_cms | Versions <2.6.0.1
Has fix
RubyGemsPublished 20 Oct 2021
- M
Denial of Service (DoS)CVE-2021-25971
Affects camaleon_cms | Versions >=2.0.1, <2.6.0.1
Has fix
RubyGemsPublished 20 Oct 2021
- H
Insufficient Session ExpirationCVE-2021-25970
Affects camaleon_cms | Versions >=0.1.7, <2.6.0.1
Has fix
RubyGemsPublished 20 Oct 2021
- M
Server-Side Request Forgery (SSRF)CVE-2021-25972
Affects camaleon_cms | Versions >=2.1.2.0, <2.6.0.1
Has fix
RubyGemsPublished 20 Oct 2021
- L
HTTP Request SmugglingCVE-2021-41136
Affects puma | Versions <4.3.9>=5.0.0, <5.5.1
Has fix
RubyGemsPublished 13 Oct 2021
- M
HTTP Request SmugglingCVE-2021-22960
Affects llhttp | Versions >=0.0.0
Has fix
RubyGemsPublished 13 Oct 2021
- M
HTTP Request SmugglingCVE-2021-22959
Affects llhttp | Versions >=0.0.0
Has fix
RubyGemsPublished 13 Oct 2021
- M
Cross-site Scripting (XSS)CVE-2021-30151
Affects sidekiq | Versions <5.2.0>=6.0.0, <6.2.1
Has fix
RubyGemsPublished 8 Oct 2021
- H
Arbitrary Code ExecutionCVE-2021-33575
Affects ruby-jss | Versions <1.6.0
Has fix
RubyGemsPublished 8 Oct 2021
- H
XML External Entity (XXE) InjectionCVE-2021-41098
Affects nokogiri | Versions <1.12.5
Has fix
RubyGemsPublished 28 Sept 2021
- M
Denial of Service (DoS)CVE-2017-18258
Affects nokogiri | Versions <1.8.2
Has fix
RubyGemsPublished 8 Sept 2021
- M
Cross-site Request Forgery (CSRF)CVE-2021-39197
Affects better_errors | Versions <2.8.0
Has fix
RubyGemsPublished 8 Sept 2021
- H
Open RedirectCVE-2021-23435
Affects clearance | Versions <2.5.0
Has fix
RubyGemsPublished 31 Aug 2021
- H
Open RedirectCVE-2021-22942
Affects rails | Versions >=6.1.0, <6.1.4.1>=6.0.0, <6.0.4.1
Has fix
RubyGemsPublished 20 Aug 2021
- H
Regular Expression Denial of Service (ReDoS)CVE-2021-32740
Affects addressable | Versions >=2.3.0, <2.8.0
Has fix
RubyGemsPublished 7 Jul 2021
- M
Cross-site Scripting (XSS)CVE-2021-35440
Affects smashing | Versions <1.3.5
Has fix
RubyGemsPublished 7 Jul 2021
Affects activerecord-jdbc-adapter | Versions >=1.2.6, <1.2.8
Has fix
RubyGemsPublished 2 Jul 2021
- M
Directory TraversalCVE-2008-1891
Affects webrick | Versions <1.4.0.beta1
Has fix
RubyGemsPublished 1 Jul 2021