Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
rubygems actionpack Security Advisories
Loading...
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 5 months ago
GSA_kwCzR0hTQS00Zzh2LXZnNDMtd3BnZs4AA0Io
Actionpack has possible cross-site scripting vulnerability via User Supplied Values to redirect_toEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 5 months ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
GSA_kwCzR0hTQS1wODR2LTQ1eGotd3dxas4AAxDz
ReDoS based DoS vulnerability in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
GSA_kwCzR0hTQS05NDQ1LTRjcjYtMzM2cs4AAxDx
Open Redirect Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
GSA_kwCzR0hTQS04eHd3LXgzZzMtNmpjds4AAxDv
ReDoS based DoS vulnerability in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: 11 months ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS05Y2hyLTRmamgtNXJnd84AAvjh
Cross-site Scripting in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1tbTMzLTV2ZnEtM21tM81BUA
Cross-site Scripting Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1xNThqLWZtdmYtOXJxNs0_jg
Cross site scripting in actionpack RubygemEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 1 year ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 2 years ago
GSA_kwCzR0hTQS13aDk4LXAyOHItdnJjOc0rDg
Exposure of information in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 2 years ago
GSA_kwCzR0hTQS1xcGhjLWhmNXEtdjhmY80bRw
actionpack Open Redirect in Host Authorization MiddlewareEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJycXctdjI2NS1qZjhj
Open Redirect in ActionPackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3angtM2c3ai04NTg0
Possible DoS Vulnerability in Action Controller Token AuthenticationEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqZzQtOHE1Zi14NmZt
Action Pack contains Information Disclosure / Unintended Method Execution vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVocTIteGY4OS05anhx
Possible Open Redirect Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4d3ctNDZ4Mi0ycDY1
Denial of Service in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1bW0tY2M2ci04Zmpw
Cross-site scripting in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4NzctcHJxNC05eGZ3
Actionpack Open Redirect VulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: almost 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM2cXItaDV2cS01OWpj
Untrusted users can run pending migrations in production in RailsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwNXYtNWd4NC1qbWo5
Ability to forge per-form CSRF tokens in RailsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MjctbTZnai1tYzM3
Possible Strong Parameters Bypass in ActionPackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3ZmctcWozci02djNy
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01M2YtcmhxOC1xNmhm
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4bWotd205Ni1mbXc4
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzdjMtcWZyai13bWdo
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmNXgtcWd4Ny00Mzdo
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU0NGotNzd4OS1oOTM4
Moderate severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 5 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4NDYtdndteC13eDk1
High severity vulnerability that affects actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4cjgtODMzdi1jN3dj
Cross-site Scripting vulnerability in i18n translations helper methodEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI3cTItNWdxZy02Yzdx
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5djQtN2pwNi04Yzcz
rails Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxcmgtaDltMi01ZnZm
Cross site scripting that affects railsEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4amotNXg2aC04dm1m
Cross-site Scripting in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmcXgtN3B2NC0zandt
Improper Input Validation in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZnOXctZzZtNC01NTdq
actionpack and activesupport vulnerable to information leaksEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1amctNTU4ai1xNjdj
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkydzktMnBxdy1yaGpq
actionpack Improper Authentication vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzNGMtNDhnYy1tOWc4
actionpack allows remote attackers to bypass database-query restrictions, perform NULL checks via crafted requestEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3dzMtM3J4ai04djZx
actionpack allows remote attackers to bypass intended access restrictionsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0ZmctcDk2di1oeGg4
actionpack Cross-Site Request Forgery vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN2ZnctN3JjcC0zeGdt
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhncHAtcHA4OS00Zmdm
Action Pack contains database-query restrictions bypassEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionview, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1dzYtcDZtZy12aDhq
Rails actionpack gem vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionview, actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZjcWYtaDRoNC02OTVt
actionpack CRLF injection vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1weGYtZ2N3Mi1wdzVx
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnNjUtZ2hyZy1ocGY1
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptZ3ctNnZqZy1qandn
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4MzgtdmZwcS1mbWYy
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5OW0tbWNqbS05Y3c4
actionpack vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3NTktaHd2Yy1tM2pn
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4bWYtOGY1Ny02NHFm
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI5Z3ItdzU3Zi1ycGZ3
actionpack vulnerable to Path TraversalEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwdzctd3hqbS1jdzhy
actionpack allows bypass of database-query restrictionsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloNmctZ3A5NS14M3E1
actionpack is vulnerable to denial of service because of a wildcard controller routeEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjZ3AtYzNnNy1xdnJ3
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4ODUtajVqMi0yN2p4
actionpack Path Traversal vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczN2MtcTY1My1xZzk1
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack, rails
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00NnAtZ2dtNS01ajgz
Rails vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack, rails
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZoNXEtOTZocC05amdt
actionpack vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2OTItN21tMy0zZnhn
actionpack is vulnerable to remote bypass authenticationEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1Nm0tdnd4Yy0zcXB3
Directory traversal vulnerability in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ4OWotNDZyaC1mcXI4
actionview contains Path Traversal vulnerabilityEcosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmcHYtYzRobS0zeDZ2
actionpack is vulnerable to denial of service via a crafted HTTP Accept headerEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4cmMtOGMyOS1wNDVn
actionpack allows remote code execution via application's unrestricted use of render methodEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhycjQtcDZmcS1oamc3
Directory traversal vulnerability in Action View in Ruby on RailsEcosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Published: about 6 years ago
Filter by Severity
Filter by Ecosystem
Filter by Package
actionpack
63
nokogiri
40
rubygems-update
25
activerecord
24
rack
20
puppet
16
activesupport
15
publify_core
14
actionview
14
passenger
13
rails-html-sanitizer
12
fat_free_crm
11
jquery-rails
11
jquery
10
rails
10
puma
10
org.webjars.npm:jquery
9
org.webjars.npm:jquery-ui
8
jQuery.UI.Combined
8
jquery-ui-rails
8
jquery-ui
8
jQuery
8
org.jruby:jruby-stdlib
7
doorkeeper
7
camaleon_cms
6
ember-source
6
loofah
6
bundler
5
katello
5
spree
5
commonmarker
5
spree_auth_devise
5
mail
4
fluentd
4
devise
4
sanitize
4
safemode
4
sidekiq
4
rubyzip
4
decidim
4
sinatra
4
dragonfly
4
grpcio
3
webrick
3
grpc
3
io.grpc:grpc-protobuf
3
geminabox
3
private_address_check
3
carrierwave
3
rails_admin
3
gollum
3
rest-client
3
bootstrap
3
paperclip
3
git
3
chartkick
3
cgi
3
omniauth
3
sprockets
3
activestorage
3
openssl
3
ruby-saml
3
yajl-ruby
2
sup
2
redcarpet
2
kramdown
2
administrate
2
pageflow
2
qiita-markdown
2
echor
2
activemodel
2
net-ldap
2
pyarrow
2
red-arrow
2
rack-cors
2
jquery
2
rack-mini-profiler
2
uri
2
yard
2
VladTheEnterprising
2
mini_magick
2
json
2
pdfkit
2
omniauth-facebook
2
devise-two-factor
2
decidim-core
2
mapbox-rails
2
mapbox.js
2
pghero
2
google-protobuf
2
cocoapods-downloader
2
solidus_frontend
2
com.google.protobuf:protobuf-java
2
facter
2
bson
2
bootstrap
2
bootstrap-sass
2
field_test
2
avo
2
rdoc
2
spina
2
secure_headers
2
i18n
2
faye
2
httparty
2
archive-tar-minitar
2
user_agent_parser
2
logstash-core
2
twitter-bootstrap-rails
2
ruby-openid
2
web-console
2
git-fastclone
2
minitar
2
espeak-ruby
2
colorscore
2
json-jwt
2
ox
2
solidus_core
2
com.google.protobuf:protobuf-kotlin
2
mechanize
2
festivaltts4r
2
metasploit-framework
2
radiant
2
foreman_ansible
1
restforce
1
airbrake-ruby
1
encoded_id-rails
1
clockwork_web
1
railties
1
will_paginate
1
show_in_browser
1
com.google.protobuf:protobuf-kotlin-lite
1
com.google.protobuf:protobuf-javalite
1
curupira
1
text_helpers
1
opensearch-ruby
1
actionpack-page_caching
1
sentry-raven
1
sfpagent
1
openshift-origin-node
1
curl
1
rgpg
1
svg_optimizer
1
sounder
1
cremefraiche
1
fastreader
1
haml
1
codders-dataset
1
rubocop
1
gollum-lib
1
http
1
paratrooper-newrelic
1
grape
1
apollo_upload_server
1
sensu
1
sqlite3-ruby
1
sqlite3
1
omniauth-oauth2
1
fluentd-ui
1
keynote
1
kelredd-pruview
1
delayed_job_web
1
arr-pm
1
ruby-mysql
1
gyazo
1
paratrooper-pingdom
1
many_versioned_gem
1
jmespath
1
excon
1
octokit
1
marginalia
1
datagrid
1
uglifier
1
bolt
1
padrino-contrib
1
uap-core
1
bibtex-ruby
1
RedCloth
1
doorkeeper-openid_connect
1
karo
1
rack-ssl
1
geocoder
1
wicked
1
actionmailer
1
command_wrap
1
devise_token_auth
1
open-uri-cached
1
gtk2
1
ldoce
1
solidus_backend
1
active-support
1
multi_xml
1
gitlab-grit
1
omniauth-saml
1
activeresource
1
rmagick
1
diffy
1
personnummer
1
sorcery
1
websocket-extensions
1
shrine
1
spree_api
1
govuk_tech_docs
1
kredis
1
tzinfo
1
cairo
1
em-imap
1
pdf_info
1
elastic-apm
1
django
1
fog-dragonfly
1
goliath
1
narou
1
rexml
1
decidim-templates
1
geokit-rails
1
update_by_case
1
alchemy_cms
1
cap-strap
1
brbackup
1
sprout
1
faye-websocket
1
date
1
matestack-ui-core
1
netaddr
1
ruby-jss
1
kaminari
1
solidus_api
1
omniauth-auth0
1
iodine
1
github.com/github/hub
1
hub
1
better_errors
1
trestle-auth
1
solidus_auth_devise
1
rails_multisite
1
hiera
1
mcollective-client
1
time
1
mysql-binuuid-rails
1
kubeclient
1
bootstrap-wysihtml5-rails
1
message_bus
1
view_component
1
image_processing
1
octopoller
1
ciborg
1
gibbon
1
random_password_generator
1
trilogy
1
rbovirt
1
pysha3
1
blazer
1
pay
1
sha3
1
rswag
1
cron_parser
1
rake
1
oxidized-web
1
inline_svg
1
audited
1
newrelic_rpm
1
clearance
1
moped
1
active_attr
1
coming-soon
1
kitchen-terraform
1
asciidoctor-include-ext
1
tmpdir
1
csv-safe
1
simple_captcha2
1
cocaine
1
smart_proxy_dynflow
1
smalruby
1
kafo
1
xapian-core
1
omniauth-weibo-oauth2
1
thin
1
org.jruby:jruby-parent
1
point-cli
1
hammer_cli_foreman
1
ccsv
1
smalruby-editor
1
ldap_fluff
1
xaviershay-dm-rails
1
authlogic
1
kajam
1
kcapifony
1
lynx
1
lawn-login
1
karteek-docsplit
1
flash_tool
1
aescrypt
1
gon
1
dependabot-common
1
ftpd
1
tweetstream
1
jquery-ujs
1
openshift-origin-controller
1
omniauth-apple
1