Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
rubygems phlex Security Advisories
Loading...
High
Ecosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 1 month ago
GSA_kwCzR0hTQS1nN3hxLXh2OGMtaDk4Y84AA7Da
Cross-site Scripting (XSS) possible due to improper sanitisation of `href` attributes on `<a>` tagsEcosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 1 month ago
High
Ecosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: 20 days ago
GSA_kwCzR0hTQS05cDU3LWg5ODctNHZneM4AA7eG
Phlex vulnerable to Cross-site Scripting (XSS) via maliciously formed HTML attribute names and valuesEcosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: 20 days ago
High
Ecosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: 2 months ago
GSA_kwCzR0hTQS0yNDJwLTR2MzktMnY4Z84AA56s
Cross-site Scripting (XSS) possible with maliciously formed HTML attribute names and values in PhlexEcosystems: rubygems
Packages: phlex
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: 2 months ago
Statistics
Advisories: 18,804
Packages: 8,399
Repositories: 1
Ecosystems: 12
Packages: 8,399
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
actionpack
57
nokogiri
43
rubygems-update
25
puppet
23
rack
22
activerecord
21
publify_core
14
activesupport
14
passenger
13
actionview
12
puma
11
rails
11
fat_free_crm
10
jquery-rails
9
rails-html-sanitizer
9
org.webjars.npm:jquery
8
jquery
8
jQuery
7
org.jruby:jruby-stdlib
7
jQuery.UI.Combined
7
org.webjars.npm:jquery-ui
7
jquery-ui-rails
7
decidim
7
jquery-ui
7
doorkeeper
6
loofah
6
ember-source
6
camaleon_cms
6
katello
6
sidekiq
5
spree_auth_devise
5
commonmarker
5
spree
5
bundler
5
webrick
4
sanitize
4
sinatra
4
devise
4
avo
4
grpc
4
grpcio
4
dragonfly
4
activestorage
4
fluentd
4
mail
4
carrierwave
4
rest-client
3
geminabox
3
resque
3
gollum
3
cgi
3
yard
3
omniauth
3
rails_admin
3
bootstrap
3
bootstrap
3
phlex
3
json-jwt
3
rdoc
3
rack-cors
3
decidim-core
3
rubyzip
3
openssl
3
private_address_check
3
git
3
io.grpc:grpc-protobuf
3
chartkick
3
ruby-saml
3
logstash-core
2
bson
2
faye
2
redcarpet
2
twitter-bootstrap-rails
2
git-fastclone
2
mini_magick
2
spina
2
httparty
2
VladTheEnterprising
2
omniauth-facebook
2
ox
2
facter
2
json
2
net-ldap
2
field_test
2
paperclip
2
devise-two-factor
2
solidus_frontend
2
cocoapods-downloader
2
rexml
2
yajl-ruby
2
radiant
2
activeadmin
2
pdfkit
2
echor
2
pghero
2
user_agent_parser
2
uri
2
secure_headers
2
kramdown
2
i18n
2
pyarrow
2
red-arrow
2
google-protobuf
2
com.google.protobuf:protobuf-kotlin
2
com.google.protobuf:protobuf-java
2
sup
2
sprockets
2
qiita-markdown
2
decidim-templates
2
safemode
2
mapbox.js
2
mapbox-rails
2
bootstrap-sass
2
mechanize
2
administrate
2
ruby-openid
2
solidus_core
2
pageflow
2
view_component
2
trilogy
1
redcloth
1
sentry-raven
1
jruby-openssl
1
hammer_cli_foreman
1
websocket-extensions
1
kafo
1
ruby-mysql
1
railties
1
rubocop
1
foreman_ansible
1
lynx
1
gitlab-grit
1
geokit-rails
1
omniauth-microsoft_graph
1
multi_xml
1
ruby_parser
1
keynote
1
twitter-stream
1
pysha3
1
sha3
1
@turbo-boost/commands
1
brbackup
1
rmagick
1
turbo_boost-commands
1
discordrb
1
kcapifony
1
diffy
1
recurly
1
solidus_backend
1
personnummer
1
md2pdf
1
sounder
1
date
1
octopoller
1
activejob
1
rotp
1
gtk2
1
command_wrap
1
em-http-request
1
github.com/github/hub
1
paratrooper-newrelic
1
jmespath
1
ldap_fluff
1
xapian-core
1
rswag
1
pdf_info
1
inline_svg
1
mixlib-archive
1
message_bus
1
shrine
1
omniauth-auth0
1
spree_api
1
omniauth-apple
1
foreman_fog_proxmox
1
papercrop
1
audited
1
govuk_tech_docs
1
asciidoctor
1
oauth
1
clockwork_web
1
point-cli
1
openshift-origin-node
1
trestle-auth
1
lean-ruport
1
flash_tool
1
tweetstream
1
decidim-system
1
ftpd
1
decidim-admin
1
hub
1
better_errors
1
cap-strap
1
mongrel
1
unpoly-rails
1
ruby-jss
1
rack-mini-profiler
1
hiera
1
mcollective-client
1
wicked
1
actionmailer
1
Filter by Repository