Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
rubygems nokogiri Security Advisories
Browse all Security Advisories for rubygems nokogiri
Loading...
Low
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 6 months ago
GSA_kwCzR0hTQS1yOTVoLTl4OGYtcjNmN84AA74p
Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 6 months ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 8 months ago
GSA_kwCzR0hTQS12Y2MzLXJ3NmYtanY5N84AA6Gq
Use-after-free in libxml2 via Nokogiri::XML::ReaderEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 8 months ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 10 months ago
GSA_kwCzR0hTQS14Yzl4LWpqNzctOXA5as4AA5Ek
Nokogiri update packaged libxml2 to v2.12.5 to resolve CVE-2024-25062Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 10 months ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS1weHZnLTJxajUtMzdqcc4AAytn
Nokogiri updates packaged libxml2 to v2.10.4 to resolve multiple CVEsEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 2 years ago
GSA_kwCzR0hTQS1xdjRxLW1yNXItcXByas4AAwNH
Unchecked return value from xmlTextReaderExpandEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 2 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS0ycWM2LW1jdnctOTJjd84AAvaT
Update bundled libxml2 to v2.10.3 to resolve multiple CVEsEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
GSA_kwCzR0hTQS01OWdwLXFxbTctY3c0as4AApYf
Nokogiri has vulnerable dependencies on libxml2 and libxsltEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 51.9
Published: over 2 years ago
GSA_kwCzR0hTQS1qdzlmLWhoNDktY3ZwOc4AAoiz
Nokogiri contains libxml Out-of-bounds Write vulnerabilityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 51.9
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
GSA_kwCzR0hTQS12NGY4LTI4NDctcndtN84AAoiI
Nokogiri Implements libxml2 version vulnerable to use-after-freeEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 35.6
Published: over 2 years ago
GSA_kwCzR0hTQS0yODZ2LXBjZjUtMjVyY84AAof1
Nokogiri Implements libxml2 version vulnerable to null pointer dereferencingEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 35.6
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS12bWZ4LWdjZnEtd3ZtMs4AAi6z
Nokogiri implementation of libxslt vulnerable to heap corruptionEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS0yNDJ4LTdjbTYtNHc4as4AAid7
Nokogiri affected by libxslt Use of Uninitialized Resource/Use After Free vulnerabilityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS1jZjQ2LTZ4eGgtcGM3Nc4AAhJV
libxslt Type Confusion vulnerability that affects NokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS00aG05LTg0NGotam14cM4AAhJW
Uninitialized read in Nokogiri gemEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 49.5
Published: over 2 years ago
GSA_kwCzR0hTQS14aDI5LXIydzUtd3g4bc4AAgdN
Nokogiri Improperly Handles Unexpected Data TypeEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 49.5
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 51.9
Published: over 2 years ago
GSA_kwCzR0hTQS1jZ3g2LWhwd3EtZmh2Nc4AAgZn
Integer Overflow or Wraparound in libxml2 affects NokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 51.9
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
GSA_kwCzR0hTQS1yNThyLTc0Z3gtNnd4M84AAVTq
Nokogiri gem, via libxml, is affected by DoS vulnerabilitiesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 2 years ago
Critical
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 2 years ago
GSA_kwCzR0hTQS1xeGNnLXhqamctNjZtas4AAQF8
Nokogiri vulnerable to libxslt protection mechanism bypassEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS14MmZtLTkzd3ctZ2d2eM3pEA
Nokogiri gem, via libxml, is affected by DoS vulnerabilitiesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
GSA_kwCzR0hTQS02MnFwLTNmeG0tOXd4Zs3gJg
Nokogiri vulnerable to DoS while parsing XML documentsEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
GSA_kwCzR0hTQS1qbWhoLXc3eHAtd2czOc3gKA
Nokogiri vulnerable to DoS while parsing XML entitiesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS02d2o5LTc3d3EtanE3cM1Auw
Nokogiri is vulnerable to XML External Entity (XXE) attackEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS1neDh4LWc4N20taDVxNs055Q
Denial of Service (DoS) in Nokogiri on JRubyEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
GSA_kwCzR0hTQS14eHg5LTN4Y3ItZ2pqM8055A
XML Injection in Xerces Java affects NokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS12NmdwLTltbW0tYzZwNc054w
Out-of-bounds Write in zlib affects NokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS1jcmpyLTlyYzUtZ2h3OM054g
Nokogiri Inefficient Regular Expression ComplexityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
GSA_kwCzR0hTQS1qYzM2LTQyY2YtdnF3as018g
Nokogiri affected by zlib's Out-of-bounds Write vulnerabilityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1mcTQyLWM1cmctOTJjMs0u1A
Vulnerable dependencies in NokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: about 3 years ago
GSA_kwCzR0hTQS0ycnI1LThxMzctMnc3aM0V_Q
Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRubyEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: about 3 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdycm0tdjQ1Zi1qcDY0
Nokogiri updates packaged dependency on libxml2 from 2.9.10 to 2.9.12Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 26.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZyOHEtZzVjNy1tNTRt
Nokogiri::XML::Schema trusts input by default, exposing risk of XXE vulnerabilityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 26.0
Published: almost 4 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1NTMtanI5OC12eDQ3
libxml as used in Nokogiri has an infinite loop in a certain end-of-file situationEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: over 4 years ago
Critical
Ecosystems: rubygems
Packages: rexical, nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyNWotOTUzai14dzVw
Nokogiri Command Injection VulnerabilityEcosystems: rubygems
Packages: rexical, nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 5 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZxdnAtcjZyMy05cDdo
Nokogiri NULL Pointer DereferenceEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 6 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4anItNWg2OS1xdzN3
Heap-based buffer overflow in nokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdocDIteHdwai05NWpx
Denial of service or RCE from libxml2 and libxsltEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: about 6 years ago
Critical
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZyNTItNGhxdy1wMjdm
Nokogiri does not forbid namespace nodes in XPointer rangesEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 59.2
Published: over 6 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhqcWctOWp2Zy1mZ3gy
Nokogiri subject to DoS via libxml2 vulnerabilityEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3d3gtNjJyNy1qMng3
Nokogiri vulnerable to libxml XML Entity ExpansionEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBmNm0tZnhwcS1mZzh2
Nokogiri implementation of libxslt lacks integer overflow checksEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 53.1
Published: over 6 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4MnAtanFnbS1mNDVn
Uncontrolled resource consumption in nokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 39.3
Published: over 6 years ago
Moderate
Ecosystems: rubygems
Packages: nokogiri, loofah
Source: GitHub Advisory Database
Blast Radius: 36.8
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3cnYtY3I2di00dm00
Cross-site Scripting in loofahEcosystems: rubygems
Packages: nokogiri, loofah
Source: GitHub Advisory Database
Blast Radius: 36.8
Published: over 6 years ago
High
Ecosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 7 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThjNTYtY3Btdy04OXg3
Out-of-bounds read in nokogiriEcosystems: rubygems
Packages: nokogiri
Source: GitHub Advisory Database
Blast Radius: 45.3
Published: almost 7 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 6
Ecosystems: 12
Packages: 9,040
Repositories: 6
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
actionpack
60
nokogiri
43
rubygems-update
25
rack
23
puppet
23
activerecord
21
publify_core
14
activesupport
14
camaleon_cms
14
passenger
13
actionview
12
puma
12
rails
11
decidim
11
fat_free_crm
10
bootstrap
9
org.webjars:bootstrap
9
bootstrap
9
bootstrap
9
twbs/bootstrap
9
rails-html-sanitizer
9
jquery-rails
9
bootstrap-sass
8
jquery
8
org.webjars.npm:jquery
8
bootstrap.sass
7
rexml
7
jquery-ui-rails
7
org.jruby:jruby-stdlib
7
jQuery.UI.Combined
7
jQuery
7
jquery-ui
7
org.webjars.npm:jquery-ui
7
doorkeeper
6
ember-source
6
katello
6
loofah
6
grpcio
5
spree_auth_devise
5
sidekiq
5
grpc
5
bootstrap-sass
5
bundler
5
commonmarker
5
sinatra
5
spree
5
webrick
5
carrierwave
4
activestorage
4
fluentd
4
sanitize
4
devise
4
mail
4
dragonfly
4
rails_admin
4
ruby-saml
4
avo
4
io.grpc:grpc-protobuf
3
decidim-core
3
openssl
3
activeadmin
3
google-protobuf
3
com.google.protobuf:protobuf-kotlin
3
com.google.protobuf:protobuf-java
3
openc3
3
phlex
3
spina
3
openc3
3
decidim-admin
3
actiontext
3
omniauth
3
gollum
3
cgi
3
json-jwt
3
resque
3
rdoc
3
geminabox
3
rubyzip
3
rack-cors
3
yard
3
chartkick
3
rest-client
3
devise-two-factor
3
git
3
private_address_check
3
ruby-openid
2
mapbox-rails
2
mechanize
2
field_test
2
sidekiq-unique-jobs
2
administrate
2
pdfkit
2
bson
2
decidim-templates
2
git-fastclone
2
logstash-core
2
twitter-bootstrap-rails
2
ox
2
omniauth-saml
2
yajl-ruby
2
decidim-meetings
2
pageflow
2
safemode
2
qiita-markdown
2
echor
2
view_component
2
pyarrow
2
red-arrow
2
com.google.protobuf:protobuf-kotlin-lite
2
com.google.protobuf:protobuf-javalite
2
uri
2
VladTheEnterprising
2
user_agent_parser
2
@openc3/tool-common
2
kaminari
2
httparty
2
kramdown
2
paperclip
2
radiant
2
redcarpet
2
org.webjars.npm:bootstrap
2
mini_magick
2
facter
2
net-ldap
2
json
2
faye
2
actionmailer
2
sprockets
2
mapbox.js
2
secure_headers
2
omniauth-facebook
2
i18n
2
solidus_frontend
2
cocoapods-downloader
2
maximebf/debugbar
2
sup
2
pghero
2
solidus_core
2
thumbshooter
1
rack-ssl
1
bio-basespace-sdk
1
smart_proxy_dynflow
1
blockchain_wallet
1
jquery-ujs
1
nori
1
pgsync
1
coin_base
1
resque-scheduler
1
cron_parser
1
crack
1
blazer
1
aescrypt
1
espeak-ruby
1
redis-store
1
rexical
1
airbrake-ruby
1
excon
1
openshift-origin-node
1
point-cli
1
sorcery
1
actionpack-page_caching
1
festivaltts4r
1
web-console
1
tmpdir
1
tzinfo
1
activemodel
1
gibbon
1
will_paginate
1
govuk_tech_docs
1
audited
1
alchemy_cms
1
omniauth-apple
1
spree_api
1
svg_optimizer
1
omniauth-auth0
1
fastreader
1
shrine
1
http
1
message_bus
1
inline_svg
1
pdf_info
1
redcloth
1
hiera
1
em-http-request
1
command_wrap
1
rack-mini-profiler
1
ruby-jss
1
cap-strap
1
sha3
1
pysha3
1
twitter-stream
1
sequenceserver
1
keynote
1
activejob
1
personnummer
1
kcapifony
1
brbackup
1
multi_xml
1
rmagick
1
geokit-rails
1