Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
rubygems actionpack Security Advisories
Browse all Security Advisories for rubygems actionpack
Loading...
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
GSA_kwCzR0hTQS12Zmc5LXIzZnEtanZ4NM4ABATd
Possible ReDoS vulnerability in HTTP Token authentication in Action ControllerEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
GSA_kwCzR0hTQS14NzZ3LTZ2anItOHhnas4ABATe
Possible ReDoS vulnerability in query parameter filtering in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: 6 months ago
GSA_kwCzR0hTQS1md2hyLTg4cXgtaDlnN84AA8tD
Missing security headers in Action Pack on non-HTML responsesEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 32.1
Published: 6 months ago
Moderate
Ecosystems: rubygems
Packages: rails, actionpack
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: 9 months ago
GSA_kwCzR0hTQS05ODIyLTZtOTMteHFmNM4AA5jO
Rails has possible XSS Vulnerability in Action ControllerEcosystems: rubygems
Packages: rails, actionpack
Source: GitHub Advisory Database
Blast Radius: 36.3
Published: 9 months ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 9 months ago
GSA_kwCzR0hTQS1qamh4LWpodnAtNzR3cc4AA5jN
Rails has possible ReDoS vulnerability in Accept header parsing in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 9 months ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS00Zzh2LXZnNDMtd3BnZs4AA0Io
Actionpack has possible cross-site scripting vulnerability via User Supplied Values to redirect_toEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wODR2LTQ1eGotd3dxas4AAxDz
ReDoS based DoS vulnerability in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 2 years ago
GSA_kwCzR0hTQS05NDQ1LTRjcjYtMzM2cs4AAxDx
Open Redirect Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 2 years ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04eHd3LXgzZzMtNmpjds4AAxDv
ReDoS based DoS vulnerability in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 2 years ago
GSA_kwCzR0hTQS1tbTMzLTV2ZnEtM21tM81BUA
Cross-site Scripting Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 2 years ago
GSA_kwCzR0hTQS1xNThqLWZtdmYtOXJxNs0_jg
Cross site scripting in actionpack RubygemEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.0
Published: almost 3 years ago
GSA_kwCzR0hTQS13aDk4LXAyOHItdnJjOc0rDg
Exposure of information in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.0
Published: almost 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 3 years ago
GSA_kwCzR0hTQS1xcGhjLWhmNXEtdjhmY80bRw
actionpack Open Redirect in Host Authorization MiddlewareEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJycXctdjI2NS1qZjhj
Open Redirect in ActionPackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: about 3 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd3angtM2c3ai04NTg0
Possible DoS Vulnerability in Action Controller Token AuthenticationEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqZzQtOHE1Zi14NmZt
Action Pack contains Information Disclosure / Unintended Method Execution vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVocTIteGY4OS05anhx
Possible Open Redirect Vulnerability in Action PackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4d3ctNDZ4Mi0ycDY1
Denial of Service in Action DispatchEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1bW0tY2M2ci04Zmpw
Cross-site scripting in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4NzctcHJxNC05eGZ3
Actionpack Open Redirect VulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM2cXItaDV2cS01OWpj
Untrusted users can run pending migrations in production in RailsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 4 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 25.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwNXYtNWd4NC1qbWo5
Ability to forge per-form CSRF tokens in RailsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 25.6
Published: over 4 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3MjctbTZnai1tYzM3
Possible Strong Parameters Bypass in ActionPackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: over 4 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5djQtN2pwNi04Yzcz
rails Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhncHAtcHA4OS00Zmdm
Action Pack contains database-query restrictions bypassEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1amctNTU4ai1xNjdj
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI3cTItNWdxZy02Yzdx
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxcmgtaDltMi01ZnZm
Cross site scripting that affects railsEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3dzMtM3J4ai04djZx
actionpack allows remote attackers to bypass intended access restrictionsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZjcWYtaDRoNC02OTVt
actionpack CRLF injection vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN2ZnctN3JjcC0zeGdt
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzNGMtNDhnYy1tOWc4
actionpack allows remote attackers to bypass database-query restrictions, perform NULL checks via crafted requestEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0ZmctcDk2di1oeGg4
actionpack Cross-Site Request Forgery vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4cjgtODMzdi1jN3dj
Cross-site Scripting vulnerability in i18n translations helper methodEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZnOXctZzZtNC01NTdq
actionpack and activesupport vulnerable to information leaksEcosystems: rubygems
Packages: activesupport, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmcXgtN3B2NC0zandt
Improper Input Validation in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4amotNXg2aC04dm1m
Cross-site Scripting in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkydzktMnBxdy1yaGpq
actionpack Improper Authentication vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionview, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1dzYtcDZtZy12aDhq
Rails actionpack gem vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionview, actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4bWYtOGY1Ny02NHFm
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptZ3ctNnZqZy1qandn
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4MzgtdmZwcS1mbWYy
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5OW0tbWNqbS05Y3c4
actionpack vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1weGYtZ2N3Mi1wdzVx
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3NTktaHd2Yy1tM2pn
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnNjUtZ2hyZy1ocGY1
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczN2MtcTY1My1xZzk1
actionpack Cross-site Scripting vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZoNXEtOTZocC05amdt
actionpack vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1Nm0tdnd4Yy0zcXB3
Directory traversal vulnerability in actionpackEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjZ3AtYzNnNy1xdnJ3
actionpack Improper Input Validation vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack, rails
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00NnAtZ2dtNS01ajgz
Rails vulnerable to Cross-site ScriptingEcosystems: rubygems
Packages: actionpack, rails
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4ODUtajVqMi0yN2p4
actionpack Path Traversal vulnerabilityEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloNmctZ3A5NS14M3E1
actionpack is vulnerable to denial of service because of a wildcard controller routeEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
Low
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2OTItN21tMy0zZnhn
actionpack is vulnerable to remote bypass authenticationEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 22.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI5Z3ItdzU3Zi1ycGZ3
actionpack vulnerable to Path TraversalEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwdzctd3hqbS1jdzhy
actionpack allows bypass of database-query restrictionsEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 43.4
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4cmMtOGMyOS1wNDVn
actionpack allows remote code execution via application's unrestricted use of render methodEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 43.4
Published: about 7 years ago
Moderate
Ecosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Blast Radius: 31.5
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ4OWotNDZyaC1mcXI4
actionview contains Path Traversal vulnerabilityEcosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Blast Radius: 31.5
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmcHYtYzRobS0zeDZ2
actionpack is vulnerable to denial of service via a crafted HTTP Accept headerEcosystems: rubygems
Packages: actionpack
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
High
Ecosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhycjQtcDZmcS1oamc3
Directory traversal vulnerability in Action View in Ruby on RailsEcosystems: rubygems
Packages: actionpack, actionview
Source: GitHub Advisory Database
Blast Radius: 44.6
Published: about 7 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 2
Ecosystems: 12
Packages: 9,040
Repositories: 2
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
actionpack
60
nokogiri
43
rubygems-update
25
rack
23
puppet
23
activerecord
21
camaleon_cms
14
publify_core
14
activesupport
14
passenger
13
puma
12
actionview
12
decidim
11
rails
11
fat_free_crm
10
bootstrap
9
bootstrap
9
org.webjars:bootstrap
9
jquery-rails
9
twbs/bootstrap
9
rails-html-sanitizer
9
bootstrap
9
org.webjars.npm:jquery
8
jquery
8
bootstrap-sass
8
jQuery
7
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jquery-ui
7
jQuery.UI.Combined
7
bootstrap.sass
7
rexml
7
org.jruby:jruby-stdlib
7
loofah
6
katello
6
doorkeeper
6
ember-source
6
grpcio
5
grpc
5
bundler
5
webrick
5
sinatra
5
spree
5
sidekiq
5
commonmarker
5
bootstrap-sass
5
spree_auth_devise
5
sanitize
4
fluentd
4
mail
4
rails_admin
4
activestorage
4
ruby-saml
4
carrierwave
4
dragonfly
4
avo
4
devise
4
resque
3
google-protobuf
3
com.google.protobuf:protobuf-kotlin
3
rubyzip
3
com.google.protobuf:protobuf-java
3
json-jwt
3
actiontext
3
openc3
3
gollum
3
omniauth
3
openc3
3
decidim-admin
3
activeadmin
3
decidim-core
3
rack-cors
3
io.grpc:grpc-protobuf
3
spina
3
openssl
3
phlex
3
rdoc
3
devise-two-factor
3
yard
3
geminabox
3
private_address_check
3
cgi
3
git
3
rest-client
3
chartkick
3
mapbox.js
2
pageflow
2
mapbox-rails
2
decidim-meetings
2
view_component
2
pyarrow
2
red-arrow
2
ruby-openid
2
user_agent_parser
2
com.google.protobuf:protobuf-kotlin-lite
2
mechanize
2
com.google.protobuf:protobuf-javalite
2
pghero
2
cocoapods-downloader
2
solidus_frontend
2
solidus_core
2
paperclip
2
net-ldap
2
json
2
actionmailer
2
facter
2
radiant
2
secure_headers
2
uri
2
echor
2
qiita-markdown
2
safemode
2
yajl-ruby
2
omniauth-saml
2
logstash-core
2
git-fastclone
2
httparty
2
bson
2
pdfkit
2
faye
2
administrate
2
sidekiq-unique-jobs
2
field_test
2
kaminari
2
decidim-templates
2
VladTheEnterprising
2
twitter-bootstrap-rails
2
ox
2
sprockets
2
@openc3/tool-common
2
redcarpet
2
mini_magick
2
i18n
2
omniauth-facebook
2
maximebf/debugbar
2
kramdown
2
org.webjars.npm:bootstrap
2
sup
2
bindata
1
decidim-decidim_awesome
1
jquery
1
lynx
1
omniauth-microsoft_graph
1
net.sf.mpxj:mpxj
1
mpxj
1
bolt
1
padrino-contrib
1
mpxj
1
net.sf.mpxj
1
request_store
1
net.sf.mpxj-for-csharp
1
net.sf.mpxj-for-vb
1
gon
1
diffy
1
rmagick
1
brbackup
1
kcapifony
1
personnummer
1
activejob
1
discordrb
1
turbo_boost-commands
1
@turbo-boost/commands
1
rotp
1
gtk2
1
command_wrap
1
em-http-request
1
redcloth
1
jruby-openssl
1
hammer_cli_foreman
1
kafo
1
ruby-mysql
1
gitaly
1
thumbshooter
1
smart_proxy_dynflow
1
sqlite-vec
1
sqlite-vec
1
redis-store
1
espeak-ruby
1
sqlite-vec
1
pgsync
1
nori
1
jquery-ujs
1
sqlite-vec
1
bio-basespace-sdk
1
rack-ssl
1
text_helpers
1
stringio
1
http
1
fastreader
1
svg_optimizer
1
rubocop
1
consul
1
colorscore
1
MPXJ.Net
1
curl
1
netaddr
1
omniauth_amazon
1
coming-soon
1
bitcoin_vanity
1
capistrano-colors
1
Filter by Repository