Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • C
Improper Verification of Cryptographic Signature		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Allocation of Resources Without Limits or Throttling		ruby-saml<1.12.4>=1.13.0, <1.18.0RubyGems13 Mar 2025
  • H
Stack-based Buffer Overflow		google-protobuf<3.25.5>=4.0.0.rc.1, <4.27.5>=4.28.0.rc.1, <4.28.2RubyGems12 Mar 2025
  • H
Relative Path Traversal		rack<2.2.13>=3.0.0.beta1, <3.0.14>=3.1.0, <3.1.12RubyGems12 Mar 2025
  • M
Improper Output Neutralization for Logs		rack<2.2.12>=3.0.0.beta1, <3.0.13>=3.1.0, <3.1.11RubyGems5 Mar 2025
  • M
Regular Expression Denial of Service (ReDoS)		cgi<0.3.5.1>=0.3.6, <0.3.7>=0.4.0, <0.4.2RubyGems4 Mar 2025
  • M
Allocation of Resources Without Limits or Throttling		cgi<0.3.5.1>=0.3.6, <0.3.7>=0.4.0, <0.4.2RubyGems4 Mar 2025
  • L
Improper Removal of Sensitive Information Before Storage or Transfer		uri<0.11.3>=0.12.0, <0.12.4>=0.13.0, <0.13.2>=1.0.0, <1.0.3RubyGems4 Mar 2025
  • H
Directory Traversal		oxidized-web<0.15.0RubyGems3 Mar 2025
  • M
Use of Uninitialized Resource		passenger>=6.0.21, <6.0.26RubyGems25 Feb 2025
  • H
Use After Free		nokogiri<1.18.3RubyGems19 Feb 2025
  • H
Stack-based Buffer Overflow		nokogiri<1.18.3RubyGems19 Feb 2025
  • H
Improper Output Neutralization for Logs		rack<2.2.11>=3.0.0, <3.0.12>=3.1.0, <3.1.10RubyGems13 Feb 2025
  • H
Denial of Service (DoS)		net-imap>=0.3.2, <0.3.8>=0.4.0, <0.4.19>=0.5.0, <0.5.6RubyGems11 Feb 2025
  • C
Covert Timing Channel		openssl>=0.0.0RubyGems13 Jan 2025
  • C
Malicious Package		chauuuyhhn>=0.0.0RubyGems5 Jan 2025
  • C
Malicious Package		nosvemosssadfsd>=0.0.0RubyGems5 Jan 2025
  • C
Malicious Package		holaaaaaafasdf>=0.0.0RubyGems5 Jan 2025
  • H
Session Fixation		pwpush>=0.0.0RubyGems31 Dec 2024
  • L
Cross-site Scripting (XSS)		actionpack>=5.2.0, <7.0.8.7>=7.1.0, <7.1.5.1>=7.2.0, <7.2.2.1>=8.0.0, <8.0.0.1RubyGems11 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems4 Dec 2024
  • L
Cross-site Scripting (XSS)		nokogiri<1.15.7>=1.16.0.rc1, <1.16.8RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • L
Cross-site Scripting (XSS)		rails-html-sanitizer>=1.6.0, <1.6.1RubyGems3 Dec 2024
  • M
Denial of Service (DoS)		pwpush>=0.0.0RubyGems22 Nov 2024
  • M
Cross-site Scripting (XSS)		decidim-meetings>=0.28.0, <0.28.3>=0.29.0.rc1, <0.29.0RubyGems14 Nov 2024
  • C
SQL Injection		decidim-decidim_awesome>=0.9.1, <0.10.3>=0.11.0, <0.11.2RubyGems13 Nov 2024