Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- M
Cross-site Scripting (XSS)CVE-2024-27285
Affects yard | Versions <0.9.35
Has fix
RubyGemsPublished 29 Feb 2024
- M
Exposure of Data Element to Wrong SessionCVE-2024-26144
Affects actionpack | Versions >=5.2.0, <6.1.7.7>=7.0.0, <7.0.8.1
Has fix
RubyGemsPublished 25 Feb 2024
- M
Regular Expression Denial of Service (ReDoS)CVE-2024-26142
Affects actionpack | Versions >=7.1.0, <7.1.3.1
Has fix
RubyGemsPublished 25 Feb 2024
- M
Cross-site Scripting (XSS)CVE-2024-26143
Affects actionpack | Versions >=7.0.0, <7.0.8.1>=7.1.0, <7.1.3.1
Has fix
RubyGemsPublished 25 Feb 2024
- H
Denial of Service (DoS)CVE-2024-26141
Affects rack | Versions >=1.3.0, <2.2.8.1>=3.0.0, <3.0.9.1
Has fix
RubyGemsPublished 25 Feb 2024
- M
Regular Expression Denial of Service (ReDoS)CVE-2024-25126
Affects rack | Versions >=0.4.0, <2.2.8.1>=3.0.0, <3.0.9.1
Has fix
RubyGemsPublished 25 Feb 2024
- M
Regular Expression Denial of Service (ReDoS)CVE-2024-26146
Affects rack | Versions <2.0.9.4>=2.1.0, <2.1.4.4>=2.2.0, <2.2.8.1>=3.0.0, <3.0.9.1
Has fix
RubyGemsPublished 25 Feb 2024
- M
Cross-site Scripting (XSS)CVE-2023-51447
Affects decidim | Versions >=0.27.0, <0.27.5
Has fix
RubyGemsPublished 22 Feb 2024
- M
Cross-site Scripting (XSS)CVE-2023-51447
Affects decidim-core | Versions >=0.27.0, <0.27.5
Has fix
RubyGemsPublished 22 Feb 2024
- L
Race ConditionCVE-2023-47634
Affects decidim | Versions >=0.10.0, <0.26.9>=0.27.0, <0.27.5
Has fix
RubyGemsPublished 21 Feb 2024
- M
Server-Side Request Forgery (SSRF)CVE-2023-47635
Affects decidim-templates | Versions >=0.23.0, <0.27.5
Has fix
RubyGemsPublished 21 Feb 2024
- M
Operation on a Resource after Expiration or ReleaseCVE-2023-48220
Affects decidim-system | Versions >=0.0.1, <0.26.9>=0.27.0, <0.27.5
Has fix
RubyGemsPublished 21 Feb 2024
- M
Operation on a Resource after Expiration or ReleaseCVE-2023-48220
Affects decidim-admin | Versions >=0.0.1, <0.26.9>=0.27.0, <0.27.5
Has fix
RubyGemsPublished 21 Feb 2024
- M
Operation on a Resource after Expiration or ReleaseCVE-2023-48220
Affects devise_invitable | Versions >=0.4.0, <2.0.9
Has fix
RubyGemsPublished 21 Feb 2024
- H
Cross-site Scripting (XSS)CVE-2024-25122
Affects sidekiq-unique-jobs | Versions <7.1.33>=8.0.0, <8.0.7
Has fix
RubyGemsPublished 14 Feb 2024
- M
Use After FreeCVE-2024-25062
Affects nokogiri | Versions <1.15.6>=1.16.0, <1.16.2
Has fix
RubyGemsPublished 5 Feb 2024
- M
Cross-site Scripting (XSS)CVE-2024-22411
Affects avo | Versions <3.0.2
Has fix
RubyGemsPublished 18 Jan 2024
- M
Cross-site Scripting (XSS)CVE-2024-22191
Affects avo | Versions <2.47.0>=3.0.0.beta1, <3.3.0
Has fix
RubyGemsPublished 18 Jan 2024
- M
HTTP Request SmugglingCVE-2024-21647
Affects puma | Versions <5.6.8>=6.0.0, <6.4.2
Has fix
RubyGemsPublished 9 Jan 2024
Affects encoded_id | Versions <1.0.0.rc3
Has fix
RubyGemsPublished 5 Jan 2024
Affects view_component | Versions <2.83.0>=3.0.0, <3.9.0
Has fix
RubyGemsPublished 5 Jan 2024
- H
Improper AuthenticationCVE-2024-21632
Affects omniauth-microsoft_graph | Versions <2.0.0
Has fix
RubyGemsPublished 3 Jan 2024
- H
Improper Verification of Cryptographic SignatureCVE-2023-51774
Affects json-jwt | Versions <1.15.3.1>=1.16.0, <1.16.6
Has fix
RubyGemsPublished 27 Dec 2023
- M
Cross-site Scripting (XSS)CVE-2022-44303
Affects resque-scheduler | Versions <4.10.2
Has fix
RubyGemsPublished 20 Dec 2023
- M
Cross-site Scripting (XSS)CVE-2023-50725
Affects resque | Versions <2.2.1
Has fix
RubyGemsPublished 19 Dec 2023
- M
Cross-site Scripting (XSS)CVE-2023-50727
Affects resque | Versions <2.6.0
Has fix
RubyGemsPublished 19 Dec 2023
- M
Cross-site Scripting (XSS)CVE-2023-50724
Affects resque | Versions <2.1.0
Has fix
RubyGemsPublished 19 Dec 2023
- M
Information ExposureCVE-2023-50448
Affects activeadmin | Versions <2.12.0
Has fix
RubyGemsPublished 17 Dec 2023
- M
Insufficient EntropyCVE-2023-26154
Affects pubnub | Versions <5.3.0
Has fix
RubyGemsPublished 5 Dec 2023