Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

PACKAGE MANAGER

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
Information Exposure
actionpack Open this link in a new tab <5.2.6.2 >=6.0.0.0, <6.0.4.6 >=6.1.0.0, <6.1.4.6 >=7.0.0.0, <7.0.2.2 RubyGems 13 Feb 2022
  • H
Information Exposure
puma Open this link in a new tab <4.3.11 >=5.0.0, <5.6.2 RubyGems 13 Feb 2022
  • H
Improper Authentication
cgi Open this link in a new tab >=0.3.0, <0.3.1 >=0.2.0, <0.2.1 <0.1.1 RubyGems 23 Jan 2022
  • H
Denial of Service (DoS)
sidekiq Open this link in a new tab <5.2.10 >=6.0.0.pre1, <6.4.0 RubyGems 23 Jan 2022
  • H
Denial of Service (DoS)
google-protobuf Open this link in a new tab <3.19.2 RubyGems 7 Jan 2022
  • L
Cross-site Request Forgery (CSRF)
solidus_frontend Open this link in a new tab <2.11.14 >=3.0.0, <3.0.5 >=3.1.0, <3.1.5 RubyGems 21 Dec 2021
  • M
Directory Traversal
message_bus Open this link in a new tab <3.3.7 RubyGems 19 Dec 2021
  • M
Open Redirect
actionpack Open this link in a new tab >=6.0.0, <6.0.4.2 >=6.1.0, <6.1.4.2 RubyGems 15 Dec 2021
  • C
Remote Code Execution (RCE)
log4j-jars Open this link in a new tab >=2.0.0rc1, <2.15.0 RubyGems 10 Dec 2021
  • M
Arbitrary Code Execution
bundler Open this link in a new tab <2.2.33 RubyGems 9 Dec 2021
  • H
Regular Expression Denial of Service (ReDoS)
solidus_core Open this link in a new tab >=3.1.0, <3.1.4 >=3.0.0rc2, <3.0.4 <2.11.13 RubyGems 8 Dec 2021
  • H
Authentication Bypass
devise_masquerade Open this link in a new tab <1.3.1 RubyGems 8 Dec 2021
  • H
Buffer Overflow
cgi Open this link in a new tab <0.3.1 >=0.2.0, <0.2.1 >=0.1.0, <0.1.1 RubyGems 25 Nov 2021
  • C
Cross-site Request Forgery (CSRF)
spree_auth_devise Open this link in a new tab >=4.3.0, <4.4.1 >=4.2.0, <4.2.1 >=4.1.0, <4.1.1 <4.0.1 RubyGems 19 Nov 2021
  • C
Cross-site Request Forgery (CSRF)
spree_auth_devise Open this link in a new tab <4.0.1 >=4.1.0, <4.1.1 >=4.2.0, <4.2.1 >=4.3.0, <4.4.1 RubyGems 18 Nov 2021
  • C
Cross-site Request Forgery (CSRF)
solidus_auth_devise Open this link in a new tab >=3.1.0, <3.1.3 >=3.0.0, <3.0.3 >=2.6.0, <2.11.12 >=1.0.0, <2.5.4 RubyGems 18 Nov 2021
  • M
Denial of Service (DoS)
puppet Open this link in a new tab <6.25.1 >=7.0.0, <7.12.1 RubyGems 17 Nov 2021
  • M
Information Disclosure
puppet Open this link in a new tab <6.25.1 >=7.0.0, <7.12.1 RubyGems 17 Nov 2021
  • M
Improper Input Validation
rails_multisite Open this link in a new tab <4.0.0 RubyGems 16 Nov 2021
  • M
Regular Expression Denial of Service (ReDoS)
date Open this link in a new tab <2.0.1 >=3.0.0, <3.0.2 >=3.1.0, <3.1.2 >=3.2.0, <3.2.1 RubyGems 16 Nov 2021
  • M
Cross-site Scripting (XSS)
publify_core Open this link in a new tab <9.2.5 RubyGems 10 Nov 2021
  • M
Access Restriction Bypass
publify_core Open this link in a new tab >=9.0.0.pre1, <9.2.5 RubyGems 2 Nov 2021
  • M
Regular Expression Denial of Service (ReDoS)
fluentd Open this link in a new tab >=0.14.14, <1.14.2. RubyGems 31 Oct 2021
  • M
Cross-site Scripting (XSS)
rails Open this link in a new tab <3.0.6 RubyGems 20 Oct 2021
  • H
Always-Incorrect Control Flow Implementation
evm Open this link in a new tab <0.31.0 RubyGems 20 Oct 2021
  • M
Cross-site Scripting (XSS)
camaleon_cms Open this link in a new tab <2.6.0.1 RubyGems 20 Oct 2021
  • M
Denial of Service (DoS)
camaleon_cms Open this link in a new tab >=2.0.1, <2.6.0.1 RubyGems 20 Oct 2021
  • H
Insufficient Session Expiration
camaleon_cms Open this link in a new tab >=0.1.7, <2.6.0.1 RubyGems 20 Oct 2021
  • M
Server-Side Request Forgery (SSRF)
camaleon_cms Open this link in a new tab >=2.1.2.0, <2.6.0.1 RubyGems 20 Oct 2021
  • L
HTTP Request Smuggling
puma Open this link in a new tab <4.3.9 >=5.0.0, <5.5.1 RubyGems 13 Oct 2021