Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
rubygems Security Advisories
Loading...
Moderate
Ecosystems: rubygems
Packages: chef
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mNjhtLXEyNnItNjRmNs4AAfmQ
Chef Improper Access Control vulnerabilityEcosystems: rubygems
Packages: chef
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: spree_auth_devise
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qcDU3LTlqMzctNTQ3Ns4AAfSa
spree_auth_devise allows remote authenticated users to assign themselves arbitrary rolesEcosystems: rubygems
Packages: spree_auth_devise
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: almost 2 years ago
GSA_kwCzR0hTQS01eHYyLXE0NzUtcndyaM4AAfRW
Katello uses hard coded credentialEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rack-cache
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ocnA2LXc0djItODczN84AAfFd
Rack-Cache caches sensitive headersEcosystems: rubygems
Packages: rack-cache
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-parent, rack
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS12NmozLTdqcnctaHEycM4AAe7J
Rack Gem Subject to Denial of Service via Hash CollisionsEcosystems: maven, rubygems
Packages: org.jruby:jruby-parent, rack
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: sup
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01ZjJwLTZ2anYtMnEybc4AAe3F
Sup Code Injection vulnerabilityEcosystems: rubygems
Packages: sup
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00eHE5LXZ3ODktcDVjeM4AAe1N
Fat Free CRM allows remote attackers to obtain sensitive information via a direct requestEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tY3ZxLTd4anEtNDZ4Ns4AAe1M
Fat Free CRM contains Cross-site Request Forgery vulnerablilitiesEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mMjVoLTNtajYtNGpwZ84AAe1f
Fat Free CRM vulnerable to Exposure of Sensitive InformationEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1nODk3LWNnZmMtN3E4ds4AAe1L
Fat Free CRM has fixed token valueEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05Z2dwLTVyZjQteDdxOc4AAe1h
Fat Free CRM vulnerable to SQL InjectionEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS0yMjhmLWczaDctM2ZqM84AAe0N
RubyGems HTTPS to HTTP redirectEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01bWdqLW12djgtNDZtd84AAe0M
RubyGems does not verify SSL certificateEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: kafo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oeHZwLTY1NXgteHhxds4AAekI
Kafo allows local users to obtain passwords and other sensitive information by reading default_values.yamlEcosystems: rubygems
Packages: kafo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: gitlab-grit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05NXhxLXY0bTItZnEzcs4AAei0
GitLab Grit Gem for Ruby contains a flaw allowing arbitrary commands to be executedEcosystems: rubygems
Packages: gitlab-grit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13Y2Z4LTNtNnYtNGZyZ84AAeVa
Fat Free CRM subject to Cross-site ScriptingEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: sup
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oaDJ4LTdtZjktNzhmcs4AAcfW
Sup Code Injection vulnerabilityEcosystems: rubygems
Packages: sup
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: karteek-docsplit
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00ZnZnLXB3djctdjU0Z84AAZ5y
Karteek Docsplit vulnerable to OS Command InjectionEcosystems: rubygems
Packages: karteek-docsplit
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: ccsv
Source: GitHub Advisory Database
Blast Radius: 5.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01Z3hwLWMzNzktcGo0Ms4AAYUG
ccsv Double Free vulnerabilityEcosystems: rubygems
Packages: ccsv
Source: GitHub Advisory Database
Blast Radius: 5.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xdjYyLXhmajYtMzJ4bc4AAYCz
RubyGems Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05cXZtLTJ2aGYtcTY0Oc4AAYC6
RubyGems Regular Expression Denial of ServiceEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: almost 2 years ago
GSA_kwCzR0hTQS01am03LWc1MjctbTY5NM4AAX7R
Publify exposes article metadataEcosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 2 years ago
GSA_kwCzR0hTQS13NzhxLTR3MzQtanJqeM4AAX6n
Publify vulnerable to code injectionEcosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 2 years ago
GSA_kwCzR0hTQS03OW0zLXEzd2gtYzNxbc4AAX6X
Publify Incorrect AuthorizationEcosystems: rubygems
Packages: publify_core
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: VladTheEnterprising
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14NHZqLTI3OXgtcXdmMs4AAXfi
VladTheEnterprising allows local users to write to arbitrary files via a symlink attackEcosystems: rubygems
Packages: VladTheEnterprising
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: VladTheEnterprising
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04NmNmLWczNGYtNzQ2Ms4AAXfs
VladTheEnterprising allows local users to obtain sensitive information by reading MySQL root password from temporary fileEcosystems: rubygems
Packages: VladTheEnterprising
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: backup_checksum, backup-agoddard
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13cjVqLXEzNTktNnZyMs4AAXfh
backup-agoddard and backup_checksum have Information Exposure vulnerabilityEcosystems: rubygems
Packages: backup_checksum, backup-agoddard
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: codders-dataset
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13OXZ2LWZ2dzgtajZxM84AAXfu
codders-dataset Process Table Local Plaintext Credential DisclosureEcosystems: rubygems
Packages: codders-dataset
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: point-cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tYzhtLXg2aGYtY3cyZ84AAXfc
point-cli allows local users to obtain sensitive information by listing the processEcosystems: rubygems
Packages: point-cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: kajam
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00cGg3LTVjNDQtcHBwds4AAXfe
kajam allows local users to obtain sensitive information by listing the processEcosystems: rubygems
Packages: kajam
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: lean-ruport
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01ZzdmLXA3amctdjZtds4AAXfa
lean-ruport allows local users to obtain sensitive information by listing the processEcosystems: rubygems
Packages: lean-ruport
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: echor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qNGd4LXAzeDUtbTk4N84AAXap
Echor Ruby Gem credentials can be stolen via process table monitoringEcosystems: rubygems
Packages: echor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: echor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04OTM2LWNnajQtcGhyMs4AAXa1
Echor contains Command InjectionEcosystems: rubygems
Packages: echor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: ldap_fluff
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05d2hoLTU4MnItNTg5aM4AAW52
ldap_fluff authentication bypassEcosystems: rubygems
Packages: ldap_fluff
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: ember-source
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04eG0zLWdtN2MtNWZqeM4AAWfr
Ember.js Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: ember-source
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: xapian-core
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
GSA_kwCzR0hTQS03cXc0LXc3aGYtMjJxM84AAWZ_
xapian-core Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: xapian-core
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13eDdjLThqMzUtbXBnOM4AAWDM
Fat Free CRM Cross-Site Request Forgery vulnerabilityEcosystems: rubygems
Packages: fat_free_crm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: spree
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1od3J4LXdjNzUtbWdoN84AAV4o
Spree allows remote attackers to obtain sensitive informationEcosystems: rubygems
Packages: spree
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: ember-source
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yY3g2LTdqcDYtcHFmMs4AAVW9
ember-source Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: ember-source
Source: GitHub Advisory Database
Blast Radius: 19.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: almost 2 years ago
GSA_kwCzR0hTQS1yNThyLTc0Z3gtNnd4M84AAVTq
Nokogiri gem, via libxml, is affected by DoS vulnerabilitiesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: webrick
Source: GitHub Advisory Database
Blast Radius: 41.1
Published: almost 2 years ago
GSA_kwCzR0hTQS0zNjltLTJndjYtbXcyOM4AAU7q
WEBrick RCE VulnerabilityEcosystems: rubygems
Packages: webrick
Source: GitHub Advisory Database
Blast Radius: 41.1
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: openssl
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: almost 2 years ago
GSA_kwCzR0hTQS12NnJwLTNyM3YtaGY0cM4AAU7l
Ruby OpenSSL DoS VulnerabilityEcosystems: rubygems
Packages: openssl
Source: GitHub Advisory Database
Blast Radius: 24.6
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: alchemy_cms
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: almost 2 years ago
GSA_kwCzR0hTQS03bWo0LTI5ODQtOTU1Zs4AAUyG
AlchemyCMS is vulnerable to stored XSS via the /admin/pictures image fieldEcosystems: rubygems
Packages: alchemy_cms
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: almost 2 years ago
Moderate
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: almost 2 years ago
GSA_kwCzR0hTQS04cXhnLW1mZjUtajN3Y84AAUt2
RubyGems Path Traversal vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: karo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xZndxLWNoZjQtanZ3Z84AAUl6
karo Metacharacter Handling Remote Command ExecutionEcosystems: rubygems
Packages: karo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: i18n
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: almost 2 years ago
GSA_kwCzR0hTQS0zNGhmLWc3NDQtanc2NM4AAUk-
i18n Vulnerable to Denial of Service AttackEcosystems: rubygems
Packages: i18n
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: fileutils
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: almost 2 years ago
GSA_kwCzR0hTQS05eDk3LXgycDktaHZwZs4AAUMU
Fileutils Command Injection vulnerabilityEcosystems: rubygems
Packages: fileutils
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 24.7
Published: almost 2 years ago
GSA_kwCzR0hTQS1qamNqLWZnZm0tOWc5cs4AAUCZ
Phusion Passenger Race Condition Allows Privilege EscalationEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 24.7
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 34.5
Published: almost 2 years ago
GSA_kwCzR0hTQS03Y3YzLWd2bWMtOG1xNc4AAUCS
Phusion Passenger SpawningKit Contains Arbitrary Read/Write VulnerabilityEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 34.5
Published: almost 2 years ago
Moderate
Ecosystems: maven, rubygems, nuget, npm
Packages: org.webjars.npm:jquery, jquery-rails, jQuery, jquery
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS01Nzl2LW1wM3YtcnJ3Nc4AATnF
jQuery vulnerable to Cross-Site Scripting (XSS)Ecosystems: maven, rubygems, nuget, npm
Packages: org.webjars.npm:jquery, jquery-rails, jQuery, jquery
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: almost 2 years ago
GSA_kwCzR0hTQS01MjdyLW1mbWotcHJxZs4AATl1
Katello SQL Injection vulnerabilitiesEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 8.8
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13cDNqLXJ2ZnAtNjI0aM4AATla
RubyGems vulnerable to DNS hijack attackEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05ajdtLXJqcXgtNDh2aM4AATk3
RubyGems Regular Expression Denial of Service vulnerabilityEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 2 years ago
GSA_kwCzR0hTQS1wN2YyLXJyNDItbTl4bc4AATe8
RubyGems Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: almost 2 years ago
GSA_kwCzR0hTQS1taGhjLXI4OGgtMnFybc4AATeC
katello Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: almost 2 years ago
Critical
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: almost 2 years ago
GSA_kwCzR0hTQS1tYzZqLWg5NDgtdjJwNs4AATbI
RubyGems Improper Verification of Cryptographic Signature vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: almost 2 years ago
High
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: almost 2 years ago
GSA_kwCzR0hTQS1xajJ3LW13MnItcHYzOc4AATbJ
RubyGems Deserialization of Untrusted Data vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: almost 2 years ago
Moderate
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: almost 2 years ago
GSA_kwCzR0hTQS1ndjg2LTQzcnYtNzltMs4AATay
RubyGems Improper Input Validation vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: almost 2 years ago
Moderate
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: almost 2 years ago
GSA_kwCzR0hTQS04N3F4LWc1d2ctbXdtas4AATa0
RubyGems Cross-site Scripting vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: logstash-core
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
GSA_kwCzR0hTQS12Y21tLXBwcXgtOTVjaM4AATXo
Logstash Logs Sensitive InformationEcosystems: rubygems
Packages: logstash-core
Source: GitHub Advisory Database
Blast Radius: 22.7
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: bundler
Source: GitHub Advisory Database
Blast Radius: 52.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1qdmdtLXBmcXYtODg3eM4AATVs
Bundler allows attacker to inject arbitrary code via secondary Gem sourceEcosystems: rubygems
Packages: bundler
Source: GitHub Advisory Database
Blast Radius: 52.5
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tcG14LWdtNXYtcTc4Oc4AATVg
Puppet uses predictable filenames, allowing arbitrary file overwriteEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS05cHZ4LWZ3d2gtdzI4Oc4AATVb
Puppet does not properly restrict access to node resourcesEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04YzU2LXYyNXctZjg5Y84AATVI
Puppet arbitrary file overwriteEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1xaDNnLTI3amYtM2o1NM4AATVQ
Puppet allows local users to modify the permissions of arbitrary filesEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: facter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qNDM2LWg3aG0tcng0Ns4AATVN
Puppet Labs Facter allows local users to obtain sensitive Amazon EC2 IAM instance metadataEcosystems: rubygems
Packages: facter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS12NTh3LTZ4YzItdzc5Oc4AATUx
Puppet Denial of Service and Arbitrary File WriteEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1jNG1jLTQ5aHEtcTI3Nc4AATUu
Puppet uses predictable filenames, allowing arbitrary file overwriteEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS02eHhxLWozOXctZzNmNs4AATUt
Puppet Arbitrary Command ExecutionEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03N2hnLWc4Y2MtNXIzN84AATUv
Puppet Privilege EscallationEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: authlogic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1yeDdqLW13NGMtNzZnOc4AATRU
Authlogic Information Exposure vulnerabilityEcosystems: rubygems
Packages: authlogic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: asciidoctor
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: almost 2 years ago
GSA_kwCzR0hTQS1xYzlwLW1qeG0tajJ3as4AASwT
Asciidoctor Infinite Loop vulnerabilityEcosystems: rubygems
Packages: asciidoctor
Source: GitHub Advisory Database
Blast Radius: 28.6
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: openssl
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: almost 2 years ago
GSA_kwCzR0hTQS1tbXJxLTY5OTktNzJ2OM4AASvC
Ruby Openssl Allows Incorrect Value ComparisonEcosystems: rubygems
Packages: openssl
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: almost 2 years ago
GSA_kwCzR0hTQS00Mjg0LWpmaGMtZjg1NM4AASqQ
Phusion Passenger incorrect permission assignmentEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 18.7
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1qamhqLThneDcteDgzNs4AASpe
Incorrect Access Control in Phusion PassengerEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 31.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13aGZ4LTg3N2MtNXAyOM4AASot
Insecure Permissions in Phusion PassengerEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 31.0
Published: almost 2 years ago
High
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
GSA_kwCzR0hTQS03NHB2LXY5Z2gtaDI1cM4AASkU
RubyGems Infinite Loop vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 22.5
Published: almost 2 years ago
GSA_kwCzR0hTQS12dzIyLTQ2NXAtOGo1d84AAR7S
Tarball permission preservation in puppetEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 22.5
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: logstash-core
Source: GitHub Advisory Database
Blast Radius: 19.7
Published: almost 2 years ago
GSA_kwCzR0hTQS0zZ2c0LTZocWctMnZqeM4AARoc
Logstash Logs Sensitive InformationEcosystems: rubygems
Packages: logstash-core
Source: GitHub Advisory Database
Blast Radius: 19.7
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 2 years ago
GSA_kwCzR0hTQS1wbTl4LTQzOTItMmMycM4AARmv
RubyGems may allow a maliciously crafted gem to overwrite filesEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 15.4
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1tcXdyLTRxZjItMmhjds4AARmu
RubyGems vulnerable to Deserialization of Untrusted DataEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: almost 2 years ago
GSA_kwCzR0hTQS03Z2NwLTJnbXEtdzN4aM4AARmK
RubyGems Code Injection vulnerabilityEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 20.2
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: almost 2 years ago
GSA_kwCzR0hTQS03M3c3LTZ3OWctZ2M4d84AARms
RubyGems has Origin Validation Error vulnerabilityEcosystems: rubygems
Packages: rubygems-update
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: almost 2 years ago
GSA_kwCzR0hTQS1jcHY2LXBmcTYtajJ2N84AARb-
katello Improper Privilege Management vulnerabilityEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: hammer_cli_foreman
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: almost 2 years ago
GSA_kwCzR0hTQS03N2g4LXhyODUtM3g1cc4AARcM
hammer_cli_foreman Improper Certificate Validation vulnerabilityEcosystems: rubygems
Packages: hammer_cli_foreman
Source: GitHub Advisory Database
Blast Radius: 11.7
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: almost 2 years ago
GSA_kwCzR0hTQS1qeDV2LTc4OGctcXc1OM4AARNZ
katello SQL Injection vulnerabilityEcosystems: rubygems
Packages: katello
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: geminabox
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: almost 2 years ago
GSA_kwCzR0hTQS05OGhxLTNxdmctcGc3OM4AAQ3l
Gem in a Box vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: geminabox
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: geminabox
Source: GitHub Advisory Database
Blast Radius: 21.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1xd3YyLTJ4OGctZzQzZ84AAQ3m
Gem in a Box vulnerable to Cross-site Request ForgeryEcosystems: rubygems
Packages: geminabox
Source: GitHub Advisory Database
Blast Radius: 21.5
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 16.6
Published: almost 2 years ago
GSA_kwCzR0hTQS1jdjNmLXB4OXItNTRobc4AAQ3b
Phusion Passenger information disclosureEcosystems: rubygems
Packages: passenger
Source: GitHub Advisory Database
Blast Radius: 16.6
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1xeGNnLXhqamctNjZtas4AAQF8
Nokogiri vulnerable to libxslt protection mechanism bypassEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: almost 2 years ago
High
Ecosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
GSA_kwCzR0hTQS1neDY5LTZjcDQtaHhyas38Wg
RubyGems Link Following vulnerabilityEcosystems: maven, rubygems
Packages: org.jruby:jruby-stdlib, rubygems-update
Source: GitHub Advisory Database
Blast Radius: 27.8
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: smalruby, smalruby-editor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mNDg5LTY1NXIteDZncs35NQ
smalruby and smalruby-editor vulnerable to OS Command InjectionEcosystems: rubygems
Packages: smalruby, smalruby-editor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: open-uri-cached
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: almost 2 years ago
GSA_kwCzR0hTQS03bTJ3LTlndzctYzN4cM31tA
open-uri-cached Gem for Ruby Unsafe Temporary File Creation Enables Code ExecutionEcosystems: rubygems
Packages: open-uri-cached
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: mixlib-archive
Source: GitHub Advisory Database
Blast Radius: 23.1
Published: almost 2 years ago
GSA_kwCzR0hTQS05OHd4LWN3ODYtYzk3eM3xGg
mixlib-archive Path Traversal vulnerabilityEcosystems: rubygems
Packages: mixlib-archive
Source: GitHub Advisory Database
Blast Radius: 23.1
Published: almost 2 years ago
Moderate
Ecosystems: rubygems, npm
Packages: bootstrap
Source: GitHub Advisory Database
Blast Radius: 63.7
Published: almost 2 years ago
GSA_kwCzR0hTQS0zd3FmLTR4ODktOWc3Oc3uvQ
Bootstrap vulnerable to Cross-Site Scripting (XSS)Ecosystems: rubygems, npm
Packages: bootstrap
Source: GitHub Advisory Database
Blast Radius: 63.7
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: fluentd
Source: GitHub Advisory Database
Blast Radius: 34.1
Published: almost 2 years ago
GSA_kwCzR0hTQS01anJwLXc4ZnItbXJ3d83uVQ
Fluentd Escape Sequence Injection VulnerabilityEcosystems: rubygems
Packages: fluentd
Source: GitHub Advisory Database
Blast Radius: 34.1
Published: almost 2 years ago
Critical
Ecosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: almost 2 years ago
GSA_kwCzR0hTQS1wcWo1LTdyODYtNjRmds3svQ
Puppet Improper Access ControlEcosystems: rubygems
Packages: puppet
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: camaleon_cms
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: almost 2 years ago
GSA_kwCzR0hTQS03Zjg0LTljcWYtZzRqOc3r0A
Camaleon CMS vulnerable to Stored Cross-site ScriptingEcosystems: rubygems
Packages: camaleon_cms
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: almost 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 2 years ago
GSA_kwCzR0hTQS14MmZtLTkzd3ctZ2d2eM3pEA
Nokogiri gem, via libxml, is affected by DoS vulnerabilitiesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: bundler
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00OWp4LTljbWMteGp4bc3ilw
Bundler may install gems from a different source than expectedEcosystems: rubygems
Packages: bundler
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Statistics
Advisories: 18,235
Packages: 8,259
Repositories: 285
Ecosystems: 12
Packages: 8,259
Repositories: 285
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
actionpack
57
nokogiri
42
rubygems-update
25
puppet
23
rack
22
activerecord
21
activesupport
14
publify_core
14
passenger
13
actionview
12
rails
11
puma
11
jquery-rails
10
fat_free_crm
10
jquery
9
rails-html-sanitizer
9
org.webjars.npm:jquery
9
jQuery
8
decidim
7
jquery-ui
7
org.jruby:jruby-stdlib
7
jQuery.UI.Combined
7
org.webjars.npm:jquery-ui
7
jquery-ui-rails
7
ember-source
6
loofah
6
camaleon_cms
6
doorkeeper
6
katello
6
spree
5
commonmarker
5
spree_auth_devise
5
bundler
5
sidekiq
5
avo
4
sanitize
4
carrierwave
4
grpcio
4
grpc
4
webrick
4
sinatra
4
dragonfly
4
activestorage
4
mail
4
devise
4
fluentd
4
private_address_check
3
rdoc
3
rails_admin
3
rack-cors
3
resque
3
cgi
3
decidim-core
3
io.grpc:grpc-protobuf
3
yard
3
rest-client
3
omniauth
3
bootstrap
3
bootstrap
3
git
3
json-jwt
3
ruby-saml
3
rubyzip
3
gollum
3
geminabox
3
openssl
3
chartkick
3
pageflow
2
omniauth-facebook
2
facter
2
logstash-core
2
redcarpet
2
pdfkit
2
git-fastclone
2
paperclip
2
mini_magick
2
twitter-bootstrap-rails
2
ox
2
net-ldap
2
devise-two-factor
2
httparty
2
json
2
bson
2
yajl-ruby
2
safemode
2
ruby-openid
2
bootstrap-sass
2
mapbox-rails
2
mapbox.js
2
secure_headers
2
sprockets
2
phlex
2
faye
2
sup
2
echor
2
uri
2
field_test
2
i18n
2
kramdown
2
spina
2
view_component
2
VladTheEnterprising
2
solidus_frontend
2
radiant
2
cocoapods-downloader
2
pyarrow
2
red-arrow
2
activeadmin
2
google-protobuf
2
com.google.protobuf:protobuf-kotlin
2
com.google.protobuf:protobuf-java
2
qiita-markdown
2
decidim-templates
2
pghero
2
user_agent_parser
2
mechanize
2
administrate
2
solidus_core
2
blazer
1
solidus_auth_devise
1
kaminari
1
rmagick
1
solidus_backend
1
github.com/github/hub
1
hub
1
websocket-extensions
1
railties
1
foreman_ansible
1
gitlab-grit
1
geokit-rails
1
multi_xml
1
keynote
1
twitter-stream
1
pysha3
1
sha3
1
cap-strap
1
ruby-jss
1
rack-mini-profiler
1
hiera
1
mcollective-client
1
wicked
1
actionmailer
1
kelredd-pruview
1
sqlite3-ruby
1
thin
1
matestack-ui-core
1
restforce
1
ruby_parser
1
better_errors
1
mongrel
1
unpoly-rails
1
bindata
1
oxidized-web
1
github.com/pubnub/swift
1
pubnub
1
pubnub
1
pubnub/pubnub
1
pubnub
1
pubnub
1
Pubnub
1
github.com/pubnub/go/v5
1
github.com/pubnub/go/v6
1
github.com/pubnub/go
1
github.com/pubnub/go/v7
1
com.pubnub:pubnub
1
rubocop
1
ruby-mysql
1
gtk2
1
rotp
1
@turbo-boost/commands
1
turbo_boost-commands
1
stringio
1
discordrb
1
diffy
1
recurly
1
md2pdf
1
sounder
1
date
1
octopoller
1
paratrooper-newrelic
1
jmespath
1
trilogy
1
sentry-raven
1
devise_invitable
1
ftpd
1
tweetstream
1
flash_tool
1
lean-ruport
1
openshift-origin-node
1
point-cli
1
govuk_tech_docs
1
audited
1
omniauth-apple
1
spree_api
1
omniauth-auth0
1
shrine
1
message_bus
1
inline_svg
1
pdf_info
1
rswag
1
Filter by Repository
https://github.com/rails/rails
53
https://github.com/sparklemotion/nokogiri
31
https://github.com/rubygems/rubygems
18
https://github.com/rack/rack
17
https://github.com/puppetlabs/puppet
15
https://github.com/publify/publify
13
https://github.com/puma/puma
11
https://github.com/phusion/passenger
10
https://github.com/jquery/jquery
10
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/rails/rails-html-sanitizer
9
https://github.com/decidim/decidim
8
https://github.com/jquery/jquery-ui
6
https://github.com/doorkeeper-gem/doorkeeper
6
https://github.com/flavorjones/loofah
6
https://github.com/solidusio/solidus_auth_devise
5
https://github.com/solidusio/solidus
5
https://github.com/owen2345/camaleon-cms
4
https://github.com/mikel/mail
4
https://github.com/grpc/grpc
4
https://github.com/markevans/dragonfly
4
https://github.com/Katello/katello
4
https://github.com/fluent/fluentd
4
https://github.com/sinatra/sinatra
4
https://github.com/rgrove/sanitize
4
https://github.com/carrierwaveuploader/carrierwave
4
https://github.com/avo-hq/avo
4
https://github.com/ruby/openssl
4
https://github.com/resque/resque
3
https://github.com/rest-client/rest-client
3
https://github.com/sidekiq/sidekiq
3
https://github.com/rubygems/rubygems.org
3
https://github.com/ruby-git/ruby-git
3
https://github.com/spree/spree
3
https://github.com/rubyzip/rubyzip
3
https://github.com/geminabox/geminabox
3
https://github.com/cyu/rack-cors
3
https://github.com/twbs/bootstrap
3
https://github.com/gjtorikian/commonmarker
3
https://github.com/gollum/gollum
3
https://github.com/lsegal/yard
3
https://github.com/jtdowney/private_address_check
3
https://github.com/faye/faye
2
https://github.com/emberjs/ember.js
2
https://github.com/codevise/pageflow
2
https://github.com/CocoaPods/cocoapods-downloader
2
https://github.com/brianmario/yajl-ruby
2
https://github.com/ankane/pghero
2
https://github.com/ankane/field_test
2
https://github.com/ruby-ldap/ruby-net-ldap
2
https://github.com/ankane/chartkick
2
https://github.com/ruby/rdoc
2
https://github.com/ruby/uri
2
https://github.com/ruby/webrick
2
https://github.com/activeadmin/activeadmin
2
https://github.com/gettalong/kramdown
2
https://github.com/github/cmark-gfm
2
https://github.com/increments/qiita-markdown
2
https://github.com/jnunemaker/httparty
2
https://github.com/protocolbuffers/protobuf
2
https://github.com/plataformatec/devise
2
https://github.com/mongodb/bson-ruby
2
https://github.com/phlex-ruby/phlex
2
https://github.com/mperham/sidekiq
2
https://github.com/openid/ruby-openid
2
https://github.com/omniauth/omniauth
2
https://github.com/ohler55/ox
2
https://github.com/nov/json-jwt
2
https://github.com/vmg/redcarpet
2
https://github.com/sparklemotion/mechanize
2
https://github.com/twitter/secure_headers
2
https://github.com/square/git-fastclone
2
https://github.com/tinfoil/devise-two-factor
2
https://github.com/sup-heliotrope/sup
2
https://github.com/svenfuchs/i18n
2
https://github.com/svenfuchs/safemode
2
https://github.com/thoughtbot/paperclip
2
https://gitlab.com/gitlab-org/cves
2
https://github.com/github/view_component
1
https://github.com/github/trilogy
1
https://github.com/github/hub
1
https://github.com/twbs/bootstrap-sass
1
https://github.com/kaminari/kaminari
1
https://github.com/theforeman/ldap_fluff
1
https://github.com/getsentry/raven-ruby
1
https://github.com/geokit/geokit-rails
1
https://github.com/tzinfo/tzinfo
1
https://github.com/gazay/gon
1
https://github.com/fnando/svg_optimizer
1
https://github.com/ua-parser/uap-core
1
https://github.com/flori/json
1
https://github.com/ua-parser/uap-ruby
1
https://github.com/ffi/ffi
1
https://github.com/faye/websocket-extensions-ruby
1
https://github.com/faye/faye-websocket-ruby
1
https://github.com/unpoly/unpoly-rails
1
https://github.com/ViewComponent/view_component
1
https://github.com/theforeman/foreman_fog_proxmox
1
https://github.com/exiftool-rb/exiftool_vendored.rb
1
https://github.com/excon/excon
1
https://github.com/evan/ccsv
1
https://github.com/thoughtbot/cocaine
1
https://github.com/jnunemaker/crack
1
https://github.com/jmespath/jmespath.rb
1
https://github.com/jirutka/asciidoctor-include-ext
1
https://github.com/jgarber/redcloth
1
https://github.com/jekyll/jekyll
1
https://github.com/janko/image_processing
1
https://github.com/jamesmartin/inline_svg
1
https://github.com/inukshuk/bibtex-ruby
1
https://github.com/jordansissel/ruby-arr-pm
1
https://github.com/josh/rack-ssl
1
https://github.com/imsebao/404team
1
https://github.com/thoughtbot/clearance
1
https://github.com/igrigorik/em-http-request
1
https://github.com/hopsoft/turbo_boost-commands
1
https://github.com/heartcombo/devise
1
https://github.com/thoughtbot/administrate
1
https://github.com/haml/haml
1
https://github.com/halostatue/minitar
1
https://github.com/Gurpartap/aescrypt
1
https://github.com/tigris/open-uri-cached
1
https://github.com/theforeman/smart_proxy_dynflow
1
https://github.com/GNOME/libxml2
1
https://github.com/TrestleAdmin/trestle-auth
1
https://github.com/binarylogic/authlogic
1
https://github.com/BetterErrors/better_errors
1
https://github.com/beenhero/omniauth-weibo-oauth2
1
https://github.com/bdmac/strong_password
1
https://github.com/bbatsov/rubocop
1
https://github.com/basecamp/marginalia
1
https://github.com/basecamp/easymon
1
https://github.com/aws/aws-sdk-ruby
1
https://github.com/zendesk/samlr
1
https://github.com/auth0/omniauth-auth0
1
https://github.com/asteinhauser/fat_free_crm
1
https://github.com/asciidoctor/asciidoctor
1
https://github.com/ankane/pgsync
1
https://github.com/zenspider/ruby_parser-legacy
1
https://github.com/zvory/csv-safe
1
https://github.com/ankane/clockwork_web
1
https://github.com/ankane/chartkick.js
1
https://gitlab.com/2013/11
1
https://github.com/ankane/blazer
1
https://github.com/amro/gibbon
1
https://github.com/alphagov/tech-docs-gem
1
https://github.com/alexreisner/geocoder
1
https://github.com/AlchemyCMS/alchemy_cms
1
https://github.com/airbrake/airbrake-ruby
1
https://github.com/ahorner/text-helpers
1
https://github.com/affix/CVE-2022-36231
1
https://github.com/adamzaninovich/sounder
1
https://github.com/elastic/logstash
1
https://github.com/elastic/apm-agent-ruby
1
https://github.com/ejschmitt/delayed_job_web
1
https://github.com/dspinhirne/netaddr-rb
1
https://github.com/doorkeeper-gem/doorkeeper-openid_connect
1
https://github.com/voloko/twitter-stream
1
https://github.com/dmendel/bindata
1
https://github.com/discourse/rails_multisite
1
https://github.com/discourse/message_bus
1
https://github.com/denkGroot/Spina
1
https://github.com/dejan/espeak-ruby
1
https://github.com/wconrad/ftpd
1
https://github.com/datamapper/extlib
1
https://github.com/webbynode/webbynode
1
https://github.com/ConradIrwin/em-imap
1
https://github.com/collectiveidea/audited
1
https://github.com/whiteleaf7/narou
1
https://github.com/codders/dataset
1
https://github.com/wycats/handlebars.js
1
https://github.com/chef/mixlib-archive
1
https://github.com/cgriego/active_attr
1
https://github.com/XKCP/XKCP
1
https://github.com/camilova/activerecord-update-by-case
1
https://github.com/bvsatyaram/random_password_generator
1
https://github.com/bundler/bundler
1
https://github.com/ytti/oxidized-web
1
https://github.com/sinatra/rack-protection
1
https://github.com/rf-/keynote
1
https://github.com/restforce/restforce
1
https://github.com/sisimai/rb-sisimai
1
https://github.com/resque/resque-scheduler
1
https://github.com/Smashing/smashing
1
https://github.com/redis-store/redis-store
1
https://github.com/recurly/recurly-client-ruby
1
https://github.com/rdoc/rdoc
1
https://github.com/rcook/rgpg
1
https://github.com/rapid7/metasploit-framework
1
https://github.com/rails/web-console
1
https://github.com/rails/sprockets
1
https://github.com/Snorby/snorby
1
https://github.com/socketry/protocol-http1
1
https://github.com/rails/kredis
1
https://github.com/rails/jquery-rails
1
https://github.com/rails/globalid
1
https://github.com/railsdog/spree
1
https://github.com/railsadminteam/rails_admin
1
https://github.com/rails/activeresource
1