Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
NULL Pointer Dereference 		nokogiri <1.13.9 RubyGems 19 Oct 2022
  • M
Denial of Service (DoS) 		sqlite3 >=1.5.0, <1.5.1 RubyGems 19 Oct 2022
  • H
Privilege Escalation 		vagrant >=0.0.0 RubyGems 12 Oct 2022
  • M
Denial of Service (DoS) 		fat_free_crm <0.20.1 RubyGems 9 Oct 2022
  • M
Denial of Service (DoS) 		google-protobuf <3.16.3 >=3.17.0.rc.1, <3.19.6 >=3.20.0.rc.1, <3.20.3 >=3.21.0.rc.1, <3.21.7 RubyGems 5 Oct 2022
  • M
Heap-based Buffer Overflow 		psych <2.0.17 RubyGems 29 Sep 2022
  • M
Open Redirect 		actionpack >=7.0.3, <7.0.4 RubyGems 28 Sep 2022
  • M
Improper Input Validation 		personnummer <3.0.1 RubyGems 22 Sep 2022
  • H
Arbitrary Code Execution 		arr-pm <0.0.12 RubyGems 22 Sep 2022
  • M
Information Exposure 		pageflow <14.5.2 >=15.0.0, <15.7.1 RubyGems 15 Sep 2022
  • H
Authorization Bypass Through User-Controlled Key 		pageflow <14.5.2 >=15.0.0, <15.7.1 RubyGems 15 Sep 2022
  • C
Command Injection 		pdfkit <0.8.7.2 RubyGems 8 Sep 2022
  • L
Insecure Permissions 		octokit >=4.23.0, <4.25.0 RubyGems 22 Aug 2022
  • H
Improper Authentication 		omniauth <1.9.2 >=2.0.0.pre.rc1, <2.0.0 RubyGems 19 Aug 2022
  • H
SQL Injection 		update_by_case <0.1.3 RubyGems 12 Aug 2022
  • H
Directory Traversal 		tzinfo <0.3.61 >=1.0.0, <1.2.10 RubyGems 22 Jul 2022
  • M
Information Exposure 		bolt <3.24.0 RubyGems 20 Jul 2022
  • M
Cross-site Scripting (XSS) 		gollum >=5.0.0, <5.1.2 RubyGems 17 Jul 2022
  • C
Remote Code Execution (RCE) 		activerecord <5.2.8.1 >=6.0.0, <6.0.5.1 >=6.1.0, <6.1.6.1 >=7.0.0, <7.0.3.1 RubyGems 13 Jul 2022
  • M
HTTP Request Smuggling 		llhttp >=0.0.0 RubyGems 10 Jul 2022
  • M
HTTP Request Smuggling 		llhttp >=0.0.0 RubyGems 10 Jul 2022
  • M
HTTP Request Smuggling 		llhttp >=0.0.0 RubyGems 10 Jul 2022
  • H
Deserialization of Untrusted Data 		opensearch-ruby <2.0.2 RubyGems 1 Jul 2022
  • M
Access Restriction Bypass 		ruby-mysql <2.10.0 RubyGems 29 Jun 2022
  • M
Cross-site Scripting (XSS) 		rails-html-sanitizer <1.4.3 RubyGems 26 Jun 2022
  • H
Remote Code Execution (RCE) 		diffy <3.4.1 RubyGems 24 Jun 2022
  • H
Improper Encoding or Escaping of Output 		motor-admin <0.2.61 RubyGems 22 Jun 2022
  • L
Insecure Permissions 		octopoller >=0.2.0, <0.3.0 RubyGems 16 Jun 2022
  • M
Insufficiently Protected Credentials 		mechanize <2.8.5 RubyGems 10 Jun 2022
  • H
Deserialization of Untrusted Data 		jmespath <1.6.1 RubyGems 7 Jun 2022