Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Unsafe Dependency ResolutionCVE-2020-36327
Affects bundler | Versions >=1.16.0, <2.2.10>=2.2.11, <2.2.16
Has fix
RubyGemsPublished 22 Feb 2021
- M
Man-in-the-Middle (MitM)CVE-2020-24392
Affects tweetstream | Versions >=0.0.0
Has fix
RubyGemsPublished 21 Feb 2021
- M
Man-in-the-Middle (MitM)CVE-2020-24392
Affects twitter-stream | Versions >=0.0.0
Has fix
RubyGemsPublished 21 Feb 2021
- H
Code InjectionCVE-2021-23337
Affects lodash-rails | Versions <4.17.21
Has fix
RubyGemsPublished 15 Feb 2021
- H
Denial of Service (DoS)CVE-2021-22880
Affects rails | Versions >=4.2.0, <5.2.4.5>=6.0.0.beta1, <6.0.3.5>=6.1.0.rc1, <6.1.2.1
Has fix
RubyGemsPublished 11 Feb 2021
- M
Server-Side Request Forgery (SSRF)CVE-2021-21288
Affects carrierwave | Versions >=2.0.0.rc, <2.1.1<1.3.2
Has fix
RubyGemsPublished 9 Feb 2021
- M
Remote Code Execution (RCE)CVE-2021-21305
Affects carrierwave | Versions >=2.0.0.rc, <2.1.1<1.3.2
Has fix
RubyGemsPublished 9 Feb 2021
- H
Command InjectionCVE-2021-21289
Affects mechanize | Versions >=2.0.0, <2.7.7
Has fix
RubyGemsPublished 3 Feb 2021
- M
Cross-site Scripting (XSS)CVE-2020-36190
Affects rails_admin | Versions <1.4.3>=2.0.0, <2.0.2
Has fix
RubyGemsPublished 13 Jan 2021
- H
Cross-site Scripting (XSS)CVE-2020-26298
Affects redcarpet | Versions <3.5.1
Has fix
RubyGemsPublished 12 Jan 2021
- H
Authentication BypassCVE-2020-26254
Affects omniauth-apple | Versions >=1.0.0, <1.0.1
Has fix
RubyGemsPublished 5 Jan 2021
- L
XML External Entity (XXE) InjectionCVE-2020-26247
Affects nokogiri | Versions <1.11.0.rc4
Has fix
RubyGemsPublished 31 Dec 2020
- M
Information ExposureCVE-2020-13353
Affects gitaly | Versions >=1.79.0, <13.3.9>=13.4, <13.4.5>=13.5, <13.5.2
Has fix
RubyGemsPublished 17 Nov 2020
- H
Information ExposureCVE-2020-26223
Affects spree_api | Versions >=3.7.0, <3.7.13>=4.0.0, <4.0.5>=4.1.0, <4.1.12
Has fix
RubyGemsPublished 15 Nov 2020
- L
Remote Code Execution (RCE)CVE-2020-26222
Affects dependabot-common | Versions >=0.119.0.beta1, <0.125.1
Has fix
RubyGemsPublished 15 Nov 2020
- L
Remote Code Execution (RCE)CVE-2020-26222
Affects dependabot-omnibus | Versions >=0.119.0.beta1, <0.125.1
Has fix
RubyGemsPublished 15 Nov 2020
- H
Regression in JWT Signature ValidationCVE-2020-15240
Affects omniauth-auth0 | Versions >=2.3.0, <2.4.1
Has fix
RubyGemsPublished 23 Oct 2020
- H
Authentication BypassCVE-2020-15269
Affects spree | Versions >=3.7.0, <3.7.11>=4.0.0, <4.0.4>=4.1.0, <4.1.11
Has fix
RubyGemsPublished 21 Oct 2020
- H
Cross-site Scripting (XSS)CVE-2020-8264
Affects actionpack | Versions >=6.0.0, <6.0.3.4
Has fix
RubyGemsPublished 8 Oct 2020
- H
HTTP Request SmugglingCVE-2020-25613
Affects webrick | Versions <1.5.1>=1.6.0, <1.6.1
Has fix
RubyGemsPublished 29 Sept 2020
- H
Man-in-the-Middle (MitM)CVE-2016-11086
Affects oauth | Versions <0.5.5
Has fix
RubyGemsPublished 25 Sept 2020
- H
Cross-site Scripting (XSS)CVE-2020-25739
Affects gon | Versions <6.4.0
Has fix
RubyGemsPublished 24 Sept 2020
- M
Cross-site Scripting (XSS)CVE-2020-15169
Affects actionview | Versions <5.2.4.4>=6.0.0.0, <6.0.3.3
Has fix
RubyGemsPublished 10 Sept 2020
Affects personnummer | Versions <3.0.1
Has fix
RubyGemsPublished 10 Sept 2020
- H
Directory TraversalCVE-2019-8320
Affects rubygems-update | Versions >=2.7.6, <2.7.9>=3.0.0, <3.0.3
Has fix
RubyGemsPublished 19 Aug 2020
- H
Arbitrary Code InjectionCVE-2019-8322
Affects rubygems-update | Versions >=2.6.0, <2.7.9>=3.0.0, <3.0.2
Has fix
RubyGemsPublished 19 Aug 2020
- H
Arbitrary Code InjectionCVE-2019-8323
Affects rubygems-update | Versions >=2.6.0, <2.7.9>=3.0.0, <3.0.3
Has fix
RubyGemsPublished 19 Aug 2020