About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
Expand this section
PACKAGE MANAGER
any
cocoapods
Composer
Go
hex
Linux
Maven
npm
NuGet
pip
RubyGems
Unmanaged (C/C++)
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Cross-site Scripting (XSS)
publify_core
Open this link in a new tab
<9.2.5
RubyGems
10 Nov 2021
M
Access Restriction Bypass
publify_core
Open this link in a new tab
>=9.0.0.pre1, <9.2.5
RubyGems
2 Nov 2021
M
Regular Expression Denial of Service (ReDoS)
fluentd
Open this link in a new tab
>=0.14.14, <1.14.2.
RubyGems
31 Oct 2021
M
Cross-site Scripting (XSS)
rails
Open this link in a new tab
<3.0.6
RubyGems
20 Oct 2021
H
Always-Incorrect Control Flow Implementation
evm
Open this link in a new tab
<0.31.0
RubyGems
20 Oct 2021
M
Cross-site Scripting (XSS)
camaleon_cms
Open this link in a new tab
<2.6.0.1
RubyGems
20 Oct 2021
M
Denial of Service (DoS)
camaleon_cms
Open this link in a new tab
>=2.0.1, <2.6.0.1
RubyGems
20 Oct 2021
H
Insufficient Session Expiration
camaleon_cms
Open this link in a new tab
>=0.1.7, <2.6.0.1
RubyGems
20 Oct 2021
M
Server-Side Request Forgery (SSRF)
camaleon_cms
Open this link in a new tab
>=2.1.2.0, <2.6.0.1
RubyGems
20 Oct 2021
L
HTTP Request Smuggling
puma
Open this link in a new tab
<4.3.9
>=5.0.0, <5.5.1
RubyGems
13 Oct 2021
M
HTTP Request Smuggling
llhttp
Open this link in a new tab
>=0.0.0
RubyGems
13 Oct 2021
M
HTTP Request Smuggling
llhttp
Open this link in a new tab
>=0.0.0
RubyGems
13 Oct 2021
M
Cross-site Scripting (XSS)
sidekiq
Open this link in a new tab
<5.2.0
>=6.0.0, <6.2.1
RubyGems
8 Oct 2021
H
Arbitrary Code Execution
ruby-jss
Open this link in a new tab
<1.6.0
RubyGems
8 Oct 2021
H
XML External Entity (XXE) Injection
nokogiri
Open this link in a new tab
<1.12.5
RubyGems
28 Sep 2021
M
Denial of Service (DoS)
nokogiri
Open this link in a new tab
<1.8.2
RubyGems
8 Sep 2021
M
Cross-site Request Forgery (CSRF)
better_errors
Open this link in a new tab
<2.8.0
RubyGems
8 Sep 2021
H
Open Redirect
clearance
Open this link in a new tab
<2.5.0
RubyGems
31 Aug 2021
H
Open Redirect
rails
Open this link in a new tab
>=6.1.0, <6.1.4.1
>=6.0.0, <6.0.4.1
RubyGems
20 Aug 2021
H
Command Injection
rdoc
Open this link in a new tab
<6.3.1
RubyGems
8 Jul 2021
H
Regular Expression Denial of Service (ReDoS)
addressable
Open this link in a new tab
>=2.3.0, <2.8.0
RubyGems
7 Jul 2021
M
Cross-site Scripting (XSS)
smashing
Open this link in a new tab
<1.3.5
RubyGems
7 Jul 2021
C
SQL Injection
activerecord-jdbc-adapter
Open this link in a new tab
>=1.2.6, <1.2.8
RubyGems
2 Jul 2021
M
Directory Traversal
webrick
Open this link in a new tab
<1.4.0.beta1
RubyGems
1 Jul 2021
C
Improper Input Validation
webrick
Open this link in a new tab
<1.4.0.beta1
RubyGems
1 Jul 2021
H
Arbitrary Code Injection
narou
Open this link in a new tab
<3.8.0
RubyGems
28 Jun 2021
H
Data Injection
activerecord
Open this link in a new tab
>=2.3.2, <4.0.0.beta1
RubyGems
25 Jun 2021
L
Denial of Service (DoS)
bindata
Open this link in a new tab
<2.4.10
RubyGems
24 Jun 2021
M
Cross-site Scripting (XSS)
qiita-markdown
Open this link in a new tab
<0.34.0
RubyGems
21 Jun 2021
M
Improper Authorization
foreman_ansible
Open this link in a new tab
<2.0.0
RubyGems
10 Jun 2021