Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Cross-site Scripting (XSS)CVE-2020-4054
Affects sanitize | Versions >=3.0.0, <5.2.1
Has fix
RubyGemsPublished 17 Jun 2020
  • M
Cross-site Request Forgery (CSRF)CVE-2020-8184
Affects rack | Versions <2.1.4>=2.2.0, <2.2.3
Has fix
RubyGemsPublished 16 Jun 2020
  • M
HTTP Request Smuggling
Affects iodine | Versions <0.7.39
Has fix
RubyGemsPublished 8 Jun 2020
  • M
Cross-site Scripting (XSS)CVE-2020-7011
Affects elastic-app-search | Versions <7.7.0
Has fix
RubyGemsPublished 4 Jun 2020
  • M
HTTP Request SmugglingCVE-2020-7670
Affects agoo | Versions <2.14.0
Has fix
RubyGemsPublished 3 Jun 2020
  • M
HTTP Request SmugglingCVE-2020-7671
Affects goliath | Versions >=0.0.0
Has fix
RubyGemsPublished 3 Jun 2020
  • H
Regular Expression Denial of Service (ReDoS)CVE-2020-7662
Affects websocket-extensions | Versions <0.1.5
Has fix
RubyGemsPublished 2 Jun 2020
  • M
Cross-site Scripting (XSS)CVE-2020-11082
Affects kaminari | Versions <1.2.1
Has fix
RubyGemsPublished 29 May 2020
  • H
HTTP Request SmugglingCVE-2020-7659
Affects reel | Versions >=0.0.0
Has fix
RubyGemsPublished 29 May 2020
  • H
Man-in-the-Middle (MitM)CVE-2020-13482
Affects em-http-request | Versions <1.1.6
Has fix
RubyGemsPublished 26 May 2020
  • M
HTTP Request SmugglingCVE-2020-11076
Affects puma | Versions <3.12.5>=4.0.0, <4.3.4
Has fix
RubyGemsPublished 22 May 2020
  • M
HTTP Request SmugglingCVE-2020-11077
Affects puma | Versions <3.12.6>=4.0.0, <4.3.5
Has fix
RubyGemsPublished 22 May 2020
  • H
Man-in-the-Middle (MitM)CVE-2020-13163
Affects em-imap | Versions >=0.0.0
Has fix
RubyGemsPublished 20 May 2020
  • M
Information ExposureCVE-2020-8164
Affects actionpack | Versions <5.2.4.3>=6.0.0, <6.0.3.1
Has fix
RubyGemsPublished 19 May 2020
  • M
Cross-site Request Forgery (CSRF)CVE-2020-8167
Affects actionview | Versions <5.2.4.3>=6.0.0, <6.0.3.1
Has fix
RubyGemsPublished 19 May 2020
  • M
Cross-site Request Forgery (CSRF)CVE-2020-8166
Affects actionpack | Versions <5.2.4.3>=6.0.0, <6.0.3.1
Has fix
RubyGemsPublished 19 May 2020
  • H
Deserialization of Untrusted DataCVE-2020-8165
Affects activesupport | Versions <5.2.4.3>=6.0.0, <6.0.3.1
Has fix
RubyGemsPublished 19 May 2020
  • M
Improper ValidationCVE-2020-8162
Affects activestorage | Versions <5.2.4.3>=6.0.0, <6.0.3.1
Has fix
RubyGemsPublished 19 May 2020
  • C
Remote Code Execution (RCE)CVE-2020-8163
Affects actionview | Versions <4.2.11.3>=5.0.0, <5.0.1
Has fix
RubyGemsPublished 17 May 2020
  • H
Directory TraversalCVE-2020-8161
Affects rack | Versions <2.1.3
Has fix
RubyGemsPublished 13 May 2020
  • H
Authentication BypassCVE-2020-11052
Affects sorcery | Versions <0.15.0
Has fix
RubyGemsPublished 8 May 2020
  • H
Arbitrary File WriteCVE-2020-8159
Affects actionpack-page_caching | Versions <1.2.1
Has fix
RubyGemsPublished 6 May 2020
  • M
Information ExposureCVE-2020-8151
Affects activeresource | Versions <5.1.1
Has fix
RubyGemsPublished 6 May 2020
  • M
Information DisclosureCVE-2020-10187
Affects doorkeeper | Versions >=5.0.0, <5.0.3>=5.1.0, <5.1.1>=5.2.0, <5.2.5>=5.3.0, <5.3.2
Has fix
RubyGemsPublished 4 May 2020
  • H
Denial of Service (DoS)CVE-2015-4411
Affects bson | Versions <3.0.4
Has fix
RubyGemsPublished 30 Apr 2020
  • L
Man-in-the-Middle (MitM)CVE-2020-9488
Affects slyphon-log4j | Versions >=0.0.0
Has fix
RubyGemsPublished 28 Apr 2020
  • L
Man-in-the-Middle (MitM)CVE-2020-9488
Affects log4j-jars | Versions <2.15.0
Has fix
RubyGemsPublished 28 Apr 2020
  • H
Prototype PollutionCVE-2020-8203
Affects lodash-rails | Versions <4.17.21
Has fix
RubyGemsPublished 28 Apr 2020
  • H
Improper Access ControlCVE-2020-11020
Affects faye | Versions <1.0.4>=1.1.0, <1.1.3>=1.2.0, <1.2.5
Has fix
RubyGemsPublished 28 Apr 2020
  • H
Cross-Site Request Forgery (CSRF)
Affects faye | Versions <1.1.0
Has fix
RubyGemsPublished 23 Apr 2020