Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Cross-site Scripting (XSS)		rollout-ui<0.5.3RubyGems12 May 2023
  • H
Deserialization of Untrusted Data		metasploit-framework<6.0.33RubyGems5 May 2023
  • H
Improper Certificate Validation		faye<1.4.0RubyGems4 May 2023
  • M
Race Condition		audited>=4.0.0, <5.3.3RubyGems2 May 2023
  • C
Remote Code Execution (RCE)		flavour_saver<0.3.3RubyGems23 Apr 2023
  • L
Information Exposure		kitchen-terraform>=7.0.0, <7.0.1RubyGems23 Apr 2023
  • M
Cross-site Scripting (XSS)		pay<6.3.2RubyGems21 Apr 2023
  • M
Cross-site Scripting (XSS)		govuk_tech_docs>=2.0.2, <3.3.1RubyGems12 Apr 2023
  • H
Cross-site Scripting (XSS)		sidekiq>=7.0.4, <7.0.8RubyGems6 Apr 2023
  • M
Insecure Defaults		fluentd-ui>=0.0.0RubyGems5 Apr 2023
  • M
Denial of Service (DoS)		commonmarker<0.23.9RubyGems2 Apr 2023
  • M
Denial of Service (DoS)		commonmarker<0.23.9RubyGems2 Apr 2023
  • M
Regular Expression Denial of Service (ReDoS)		time<0.1.1>=0.2.0, <0.2.2RubyGems31 Mar 2023
  • M
Denial of Service (DoS)		unpoly-rails<2.7.2.2RubyGems31 Mar 2023
  • M
Cross-site Scripting (XSS)		rails>=5.1.0, <6.1.7.3>=7.0.0, <7.0.4.3RubyGems28 Mar 2023
  • H
Command Injection		discordrb<3.5.0RubyGems28 Mar 2023
  • M
Regular Expression Denial of Service (ReDoS)		uri<0.10.0.1>=0.10.1, <0.10.2>=0.11.0, <0.11.1>=0.12.0, <0.12.1RubyGems28 Mar 2023
  • H
Arbitrary Command Injection		karo>=2.3.8RubyGems27 Mar 2023
  • H
Denial of Service (DoS)		apollo_upload_server<2.1.0RubyGems19 Mar 2023
  • M
Cross-site Scripting (XSS)		activesupport<6.1.7.3>=7.0.0.alpha1, <7.0.4.3RubyGems15 Mar 2023
  • M
Regular Expression Denial of Service (ReDoS)		rack>=2.0.0.alpha, <2.2.6.4>=3.0.0.beta1, <3.0.6.1RubyGems15 Mar 2023
  • C
Deserialization of Untrusted Data		rubygems-update>=2.0.0, <2.6.14RubyGems9 Mar 2023
  • H
Denial of Service (DoS)		rubygems-update<0.9.1RubyGems9 Mar 2023
  • M
Access Control Bypass		nokogiri<1.10.3RubyGems9 Mar 2023
  • H
Denial of Service (DoS)		rack<2.0.9.3>=2.1.0, <2.1.4.3>=2.2.0, <2.2.6.3>=3.0.0.beta1, <3.0.4.2RubyGems8 Mar 2023
  • H
Improper Input Validation		elastic-apm<2.9.0RubyGems5 Mar 2023
  • H
Arbitrary Code Injection		pdf_info>=0.0.0RubyGems24 Feb 2023
  • H
SQL Injection		katello<2.4.3RubyGems9 Feb 2023
  • M
Cross-site Request Forgery (CSRF)		clockwork_web<0.1.2RubyGems2 Feb 2023
  • M
Information Exposure		katello<3.1.0.rc1RubyGems31 Jan 2023