Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • M
Denial of Service (DoS)		pwpush>=0.0.0RubyGems22 Nov 2024
  • M
Cross-site Scripting (XSS)		decidim-meetings>=0.28.0, <0.28.3>=0.29.0.rc1, <0.29.0RubyGems14 Nov 2024
  • C
SQL Injection		decidim-decidim_awesome>=0.9.1, <0.10.3>=0.11.0, <0.11.2RubyGems13 Nov 2024
  • M
Reliance on Untrusted Inputs in a Security Decision		sinatra>=1.2.0.c, <4.1.0RubyGems31 Oct 2024
  • M
Regular Expression Denial of Service (ReDoS)		rexml<3.3.9RubyGems28 Oct 2024
  • M
Cross-site Scripting (XSS)		camaleon_cms>=0.0.0RubyGems23 Oct 2024
  • M
Regular Expression Denial of Service (ReDoS)		actiontext>=6.0.0, <6.1.7.9>=7.0.0, <7.0.8.5>=7.1.0, <7.1.4.1>=7.2.0, <7.2.1.1RubyGems16 Oct 2024
  • M
Regular Expression Denial of Service (ReDoS)		actionmailer>=3.1.0, <6.1.7.9>=7.0.0, <7.0.8.5>=7.1.0, <7.1.4.1>=7.2.0, <7.2.1.1RubyGems16 Oct 2024
  • M
Regular Expression Denial of Service (ReDoS)		actionpack>=3.1.0, <6.1.7.9>=7.0.0, <7.0.8.5>=7.1.0, <7.1.4.1>=7.2.0, <7.2.1.1RubyGems16 Oct 2024
  • M
Regular Expression Denial of Service (ReDoS)		actionpack>=3.1.0, <6.1.7.9>=7.0.0, <7.0.8.5>=7.1.0, <7.1.4.1>=7.2.0, <7.2.1.1RubyGems16 Oct 2024
  • M
Cleartext Storage of Sensitive Information		openc3<5.19.0RubyGems6 Oct 2024
  • H
Directory Traversal		openc3<5.19.0RubyGems6 Oct 2024
  • M
Cross-site Scripting (XSS)		openc3<5.19.0RubyGems6 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-proposals<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-meetings<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-initiatives<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-sortitions<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-core<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim-debates<0.27.8RubyGems2 Oct 2024
  • M
Cross-site Scripting (XSS)		decidim<0.27.8RubyGems2 Oct 2024
  • M
HTTP Request Smuggling		webrick<1.8.2RubyGems22 Sept 2024
  • H
HTTP Request Smuggling		puma<5.6.9>=6.0.0, <6.4.3RubyGems20 Sept 2024
  • M
Cross-site Scripting (XSS)		camaleon_cms<2.8.1RubyGems19 Sept 2024
  • H
Path Traversal		camaleon_cms<2.8.1RubyGems19 Sept 2024
  • H
Path Traversal		camaleon_cms<2.8.1RubyGems19 Sept 2024
  • H
Path Traversal		camaleon_cms>=2.8.0, <2.8.1RubyGems19 Sept 2024
  • M
Insufficient Entropy		devise-two-factor>=2.2.0, <6.0.0RubyGems18 Sept 2024
  • M
Cross-site Scripting (XSS)		decidim-admin<0.27.7>=0.28.0, <0.28.2RubyGems17 Sept 2024