Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • M
Use of a Broken or Risky Cryptographic Algorithm 		openssl >=3.0.0 RubyGems 10 Jan 2024
  • M
HTTP Request Smuggling 		puma <5.6.8 >=6.0.0, <6.4.2 RubyGems 9 Jan 2024
  • H
Uncontrolled Resource Consumption ('Resource Exhaustion') 		encoded_id <1.0.0.rc3 RubyGems 5 Jan 2024
  • M
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		view_component <2.83.0 >=3.0.0, <3.9.0 RubyGems 5 Jan 2024
  • H
Improper Authentication 		omniauth-microsoft_graph <2.0.0 RubyGems 3 Jan 2024
  • H
Improper Verification of Cryptographic Signature 		json-jwt >=0.0.0 RubyGems 27 Dec 2023
  • C
Improper Neutralization of Formula Elements in a CSV File 		activeadmin <3.2.0 RubyGems 24 Dec 2023
  • M
Cross-site Scripting (XSS) 		resque-scheduler <4.10.2 RubyGems 20 Dec 2023
  • M
Cross-site Scripting (XSS) 		resque <2.2.1 RubyGems 19 Dec 2023
  • M
Cross-site Scripting (XSS) 		resque <2.6.0 RubyGems 19 Dec 2023
  • M
Cross-site Scripting (XSS) 		resque <2.1.0 RubyGems 19 Dec 2023
  • M
Information Exposure 		activeadmin <2.12.0 RubyGems 17 Dec 2023
  • M
Insufficient Entropy 		pubnub <5.3.0 RubyGems 5 Dec 2023
  • M
Cross-site Scripting (XSS) 		carrierwave <2.2.5 >=3.0.0, <3.0.5 RubyGems 30 Nov 2023
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion') 		rmagick <5.3.0 RubyGems 31 Oct 2023
  • M
Missing Cryptographic Step 		openssl >=0.0.0 RubyGems 26 Oct 2023
  • M
XML External Entity (XXE) Injection 		svg_optimizer >=0.2.6, <0.3.0 RubyGems 22 Oct 2023
  • M
Improper Privilege Management 		bolt <3.27.4 RubyGems 16 Oct 2023
  • C
Improper Access Control 		decidim-templates >=0.23.2, <0.26.8 >=0.27.0, <0.27.4 RubyGems 6 Oct 2023
  • H
Command Injection 		geokit-rails <2.5.0 RubyGems 5 Oct 2023
  • M
Directory Traversal 		mongrel >=1.0.4, <1.0.5 >=1.1.0, <1.1.3 RubyGems 2 Oct 2023
  • H
Uncaught Exception 		grpc >=1.23.0, <1.53.2 >=1.54.0, <1.54.3 >=1.55.0, <1.55.3 >=1.56.0, <1.56.2 RubyGems 14 Sep 2023
  • M
Denial of Service (DoS) 		sidekiq <6.5.10 >=7.0.0, <7.1.3 RubyGems 12 Sep 2023
  • C
Malicious Package 		gunther >=0.0.0 RubyGems 4 Sep 2023
  • H
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') 		openshift-origin-controller >=0.0.0 RubyGems 29 Aug 2023
  • M
Information Exposure 		activesupport >=5.2.0, <6.1.7.5 >=7.0.0, <7.0.7.1 RubyGems 23 Aug 2023
  • M
Information Exposure 		railties >=5.2.0, <6.1.7.5 >=7.0.0, <7.0.7.1 RubyGems 23 Aug 2023
  • H
HTTP Request Smuggling 		puma <5.6.7 >=6.0.0, <6.3.1 RubyGems 19 Aug 2023
  • H
Excessive Iteration 		grpc <1.53.2 >=1.54.0, <1.54.3 >=1.55.0, <1.55.2 >=1.56.0, <1.56.2 RubyGems 9 Aug 2023
  • M
HTTP Request Smuggling 		protocol-http1 <0.15.1 RubyGems 4 Aug 2023