Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Cross-site Scripting (XSS)CVE-2020-26298
Affects redcarpet | Versions <3.5.1
Has fix
RubyGemsPublished 12 Jan 2021
- H
Authentication BypassCVE-2020-26254
Affects omniauth-apple | Versions >=1.0.0, <1.0.1
Has fix
RubyGemsPublished 5 Jan 2021
- L
XML External Entity (XXE) InjectionCVE-2020-26247
Affects nokogiri | Versions <1.11.0.rc4
Has fix
RubyGemsPublished 31 Dec 2020
- M
Information ExposureCVE-2020-13353
Affects gitaly | Versions >=1.79.0, <13.3.9>=13.4, <13.4.5>=13.5, <13.5.2
Has fix
RubyGemsPublished 17 Nov 2020
- H
Information ExposureCVE-2020-26223
Affects spree_api | Versions >=3.7.0, <3.7.13>=4.0.0, <4.0.5>=4.1.0, <4.1.12
Has fix
RubyGemsPublished 15 Nov 2020
- L
Remote Code Execution (RCE)CVE-2020-26222
Affects dependabot-omnibus | Versions >=0.119.0.beta1, <0.125.1
Has fix
RubyGemsPublished 15 Nov 2020
- L
Remote Code Execution (RCE)CVE-2020-26222
Affects dependabot-common | Versions >=0.119.0.beta1, <0.125.1
Has fix
RubyGemsPublished 15 Nov 2020
- H
Regression in JWT Signature ValidationCVE-2020-15240
Affects omniauth-auth0 | Versions >=2.3.0, <2.4.1
Has fix
RubyGemsPublished 23 Oct 2020
- H
Authentication BypassCVE-2020-15269
Affects spree | Versions >=3.7.0, <3.7.11>=4.0.0, <4.0.4>=4.1.0, <4.1.11
Has fix
RubyGemsPublished 21 Oct 2020
- H
Cross-site Scripting (XSS)CVE-2020-8264
Affects actionpack | Versions >=6.0.0, <6.0.3.4
Has fix
RubyGemsPublished 8 Oct 2020
- H
HTTP Request SmugglingCVE-2020-25613
Affects webrick | Versions <1.5.1>=1.6.0, <1.6.1
Has fix
RubyGemsPublished 29 Sept 2020
- H
Man-in-the-Middle (MitM)CVE-2016-11086
Affects oauth | Versions <0.5.5
Has fix
RubyGemsPublished 25 Sept 2020
- H
Cross-site Scripting (XSS)CVE-2020-25739
Affects gon | Versions <6.4.0
Has fix
RubyGemsPublished 24 Sept 2020
- M
Cross-site Scripting (XSS)CVE-2020-15169
Affects actionview | Versions <5.2.4.4>=6.0.0.0, <6.0.3.3
Has fix
RubyGemsPublished 10 Sept 2020
Affects personnummer | Versions <3.0.1
Has fix
RubyGemsPublished 10 Sept 2020
- H
Directory TraversalCVE-2019-8320
Affects rubygems-update | Versions >=2.7.6, <2.7.9>=3.0.0, <3.0.3
Has fix
RubyGemsPublished 19 Aug 2020
- H
Arbitrary Code InjectionCVE-2019-8322
Affects rubygems-update | Versions >=2.6.0, <2.7.9>=3.0.0, <3.0.2
Has fix
RubyGemsPublished 19 Aug 2020
- H
Arbitrary Code InjectionCVE-2019-8323
Affects rubygems-update | Versions >=2.6.0, <2.7.9>=3.0.0, <3.0.3
Has fix
RubyGemsPublished 19 Aug 2020
- H
Arbitrary Code InjectionCVE-2019-8321
Affects rubygems-update | Versions >=2.6.0, <2.7.9>=3.0.0, <3.0.3
Has fix
RubyGemsPublished 18 Aug 2020
- H
CSS InjectionCVE-2020-16254
Affects chartkick | Versions <3.4.0
Has fix
RubyGemsPublished 6 Aug 2020
- H
Cross-site Request Forgery (CSRF)CVE-2020-16252
Affects field_test | Versions <0.4.0
Has fix
RubyGemsPublished 5 Aug 2020
- H
Cross-site Request Forgery (CSRF)CVE-2020-16253
Affects pghero | Versions <2.7.0
Has fix
RubyGemsPublished 5 Aug 2020
- H
Improper Input ValidationCVE-2020-15109
Affects solidus_api | Versions >=2.8.0, <2.8.6>=2.9.0, <2.9.6>=2.10.0, <2.10.2
Has fix
RubyGemsPublished 5 Aug 2020
- H
Improper Input ValidationCVE-2020-15109
Affects solidus_frontend | Versions >=2.8.0, <2.8.6>=2.9.0, <2.9.6>=2.10.0, <2.10.2
Has fix
RubyGemsPublished 5 Aug 2020
- H
Improper Certificate ValidationCVE-2020-15133
Affects faye-websocket | Versions <0.11.0
Has fix
RubyGemsPublished 2 Aug 2020
- H
Remote Code Execution (RCE)CVE-2020-14001
Affects kramdown | Versions <2.3.0
Has fix
RubyGemsPublished 19 Jul 2020
- H
Improper AuthorizationCVE-2020-8185
Affects actionpack | Versions >=6.0.0, <6.0.3.2
Has fix
RubyGemsPublished 17 Jun 2020