Browse Security Advisories
Security Advisories for https://github.com/puppetlabs/puppet in rubygems Clear Filters
Moderate
about 3 years ago
Puppet uses predictable filenames, allowing arbitrary file overwrite
rubygems
puppet
Moderate
about 3 years ago
Puppet does not properly restrict access to node resources
rubygems
puppet
Moderate
about 3 years ago
Puppet allows local users to modify the permissions of arbitrary files
rubygems
puppet
Moderate
about 3 years ago
Puppet uses predictable filenames, allowing arbitrary file overwrite
rubygems
puppet
Low
almost 8 years ago
Puppet supports use of IP addresses in certnames without warning of potential risks
rubygems
puppet
Moderate
almost 8 years ago
Pupper does not properly restrict characters in Common Name field of Certificate Signing Request
rubygems
puppet
Low
almost 8 years ago
Puppet allows local users to obtain sensitive configuration information
rubygems
puppet
Filter by Severity
Filter by Ecosystem
maven
6,662
packagist
5,355
pypi
4,831
npm
4,188
go
2,795
nuget
1,700
cargo
1,065
rubygems
918
hex
37
swift
35
actions
32
pub
10
Filter by Package
actionpack
61
nokogiri
46
rack
29
rubygems-update
25
puppet
23
activerecord
21
publify_core
15
activesupport
14
rails-html-sanitizer
14
camaleon_cms
14
passenger
14
puma
12
actionview
12
decidim
11
rails
11
fat_free_crm
10
jquery-rails
9
twbs/bootstrap
9
bootstrap
9
bootstrap
9
bootstrap
9
org.webjars:bootstrap
9
bootstrap-sass
8
org.webjars.npm:jquery
8
jquery
8
jquery-ui-rails
7
org.jruby:jruby-stdlib
7
jquery-ui
7
bootstrap.sass
7
jQuery
7
jQuery.UI.Combined
7
org.webjars.npm:jquery-ui
7
rexml
7
ruby-saml
7
bootstrap-sass
6
loofah
6
ember-source
6
doorkeeper
6
katello
6
webrick
6
grpcio
5
bundler
5
sidekiq
5
commonmarker
5
cgi
5
sinatra
5
spree
5
grpc
5
sanitize
4
avo
4
dragonfly
4
carrierwave
4
devise
4
activestorage
4
rails_admin
4
mail
4
yard
3
gollum
3
omniauth-saml
3
resque
3
openssl
3
com.google.protobuf:protobuf-kotlin
3
activeadmin
3
rubyzip
3
actiontext
3
chartkick
3
fluentd
3
private_address_check
3
phlex
3
json
3
json-jwt
3
omniauth
3
com.google.protobuf:protobuf-java
3
rest-client
3
openc3
3
uri
3
geminabox
3
spina
3
git
3
rack-cors
3
io.grpc:grpc-protobuf
3
decidim-core
3
openc3
3
google-protobuf
3
rdoc
3
decidim-admin
3
devise-two-factor
3
qiita-markdown
2
logstash-core
2
oxidized-web
2
administrate
2
paperclip
2
user_agent_parser
2
com.google.protobuf:protobuf-kotlin-lite
2
sprockets
2
bson
2
org.webjars.npm:bootstrap
2
mapbox.js
2
radiant
2
spree_auth_devise
2
pghero
2
components/jquery
2
pdfkit
2
ox
2
cocoapods-downloader
2
faye
2
facter
2
sup
2
mini_magick
2
pageflow
2
field_test
2
twitter-bootstrap-rails
2
echor
2
solidus_core
2
kaminari
2
openc3-cosmos-tool-iframe
2
ruby-openid
2
pyarrow
2
mapbox-rails
2
pwpush
2
omniauth-facebook
2
httparty
2
red-arrow
2
secure_headers
2
redcarpet
2
VladTheEnterprising
2
decidim-meetings
2
actionmailer
2
decidim-templates
2
sidekiq-unique-jobs
2
view_component
2
maximebf/debugbar
2
i18n
2
solidus_frontend
2
@openc3/tool-common
2
git-fastclone
2
net-ldap
2
net-imap
2
safemode
2
com.google.protobuf:protobuf-javalite
2
mechanize
2
yajl-ruby
2
kramdown
2
mcollective-client
1
delayed_job_web
1
activeresource
1
mpxj
1
dependabot-common
1
omniauth_amazon
1
slanger
1
codders-dataset
1
easymon
1
rubocop
1
paratrooper-pingdom
1
pysha3
1
discordrb
1
trix
1
curupira
1
features
1
ruby-mysql
1
keynote
1
typo3/cms
1
ftpd
1
globalid
1
ruby_parser
1
pdf_info
1
decidim-decidim_awesome
1
pubnub/pubnub
1
stimulus_reflex
1
awesome_spawn
1
random_password_generator
1
extlib
1
mongrel
1
actionpack-page_caching
1
backup-agoddard
1
nori
1
@turbo-boost/commands
1
dependabot-omnibus
1
chloride
1
jquery-ujs
1
clockwork_web
1
rack-ssl
1
github.com/pubnub/swift
1
org.jruby:jruby-parent
1
elastic-apm
1
webbynode
1
command_wrap
1
fastreader
1
aescrypt
1
paratrooper-newrelic
1
festivaltts4r
1
jmespath
1
rgpg
1
multi_xml
1
thor
1
kafo
1
ruby-jss
1
typo3/cms-core
1
metasploit-framework
1
sqlite-vec
1
Filter by Repository
https://github.com/rails/rails
68
https://github.com/sparklemotion/nokogiri
35
https://github.com/rack/rack
23
https://github.com/rubygems/rubygems
18
https://github.com/decidim/decidim
15
https://github.com/puppetlabs/puppet
15
https://github.com/publify/publify
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/puma/puma
12
https://github.com/phusion/passenger
11
https://github.com/owen2345/camaleon-cms
11
https://github.com/jquery/jquery
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/twbs/bootstrap
7
https://github.com/ruby/rexml
7
https://github.com/jquery/jquery-ui
6
https://github.com/flavorjones/loofah
6
https://github.com/doorkeeper-gem/doorkeeper
6
https://github.com/SAML-Toolkits/ruby-saml
6
https://github.com/sinatra/sinatra
5
https://github.com/solidusio/solidus
5
https://github.com/carrierwaveuploader/carrierwave
4
https://github.com/ruby/webrick
4
https://github.com/grpc/grpc
4
https://github.com/Katello/katello
4
https://github.com/mikel/mail
4
https://github.com/rgrove/sanitize
4
https://github.com/avo-hq/avo
4
https://github.com/ruby/openssl
4
https://github.com/markevans/dragonfly
4
https://github.com/gollum/gollum
3
https://github.com/OpenC3/cosmos
3
https://github.com/resque/resque
3
https://github.com/cyu/rack-cors
3
https://github.com/fluent/fluentd
3
https://github.com/rest-client/rest-client
3
https://github.com/spree/spree
3
https://github.com/rubygems/rubygems.org
3
https://github.com/geminabox/geminabox
3
https://github.com/jtdowney/private_address_check
3
https://github.com/ruby/cgi
3
https://github.com/ruby/uri
3
https://github.com/lsegal/yard
3
https://github.com/activeadmin/activeadmin
3
https://github.com/ruby-git/ruby-git
3
https://github.com/phlex-ruby/phlex
3
https://github.com/sidekiq/sidekiq
3
https://github.com/gjtorikian/commonmarker
3
https://github.com/rubyzip/rubyzip
3
https://github.com/protocolbuffers/protobuf
3
https://github.com/increments/qiita-markdown
2
https://github.com/vmg/redcarpet
2
https://github.com/mongodb/bson-ruby
2
https://github.com/jnunemaker/httparty
2
https://github.com/emberjs/ember.js
2
https://github.com/codevise/pageflow
2
https://github.com/ruby-ldap/ruby-net-ldap
2
https://github.com/CocoaPods/cocoapods-downloader
2
https://github.com/sup-heliotrope/sup
2
https://github.com/rack/rack-session
2
https://github.com/ruby/net-imap
2
https://github.com/thoughtbot/paperclip
2
https://github.com/railsadminteam/rails_admin
2
https://github.com/twitter/secure_headers
2
https://gitlab.com/gitlab-org/cves
2
https://github.com/ohler55/ox
2
https://github.com/solidusio/solidus_auth_devise
2
https://github.com/square/git-fastclone
2
https://github.com/gettalong/kramdown
2
https://github.com/faye/faye
2
https://github.com/tinfoil/devise-two-factor
2
https://github.com/github/cmark-gfm
2
https://github.com/svenfuchs/safemode
2
https://github.com/mperham/sidekiq
2
https://github.com/openid/ruby-openid
2
https://github.com/nov/json-jwt
2
https://github.com/kaminari/kaminari
2
https://github.com/pglombardo/PasswordPusher
2
https://github.com/svenfuchs/i18n
2
https://github.com/mhenrixon/sidekiq-unique-jobs
2
https://github.com/sparklemotion/mechanize
2
https://github.com/ruby/rdoc
2
https://github.com/omniauth/omniauth
2
https://github.com/ankane/pghero
2
https://github.com/ankane/chartkick
2
https://github.com/ytti/oxidized-web
2
https://github.com/plataformatec/devise
2
https://github.com/brianmario/yajl-ruby
2
https://github.com/ankane/field_test
2
https://github.com/VulnSphere/LLMVulnSphere
1
https://github.com/exiftool-rb/exiftool_vendored.rb
1
https://github.com/ffi/ffi
1
https://github.com/ua-parser/uap-core
1
https://github.com/GNOME/libxml2
1
https://github.com/recurly/recurly-client-ruby
1
https://github.com/rails/activerecord-session_store
1
https://github.com/sparklemotion/nekohtml
1
https://github.com/P3ngu1nW/CVE_Request
1
https://github.com/XKCP/XKCP
1
https://github.com/plataformatec/simple_form
1
https://github.com/quadule/colorscore
1
https://github.com/floraison/fugit
1
https://github.com/Sorcery/sorcery
1
https://github.com/binarylogic/authlogic
1
https://github.com/collectiveidea/audited
1
https://github.com/jekyll/jekyll
1
https://github.com/rtomayko/rack-cache
1
https://github.com/elastic/apm-agent-ruby
1
https://github.com/octokit/octopoller.rb
1
https://github.com/flori/json
1
https://github.com/socketry/protocol-http1
1
https://github.com/rmosolgo/graphql-ruby
1
https://github.com/theforeman/foreman_fog_proxmox
1
https://github.com/shardlab/discordrb
1
https://github.com/ruby/fileutils
1
https://github.com/getsentry/raven-ruby
1
https://github.com/rack/rack-contrib
1
https://github.com/camilova/activerecord-update-by-case
1
https://github.com/restforce/restforce
1
https://github.com/ankane/clockwork_web
1
https://github.com/excon/excon
1
https://github.com/ua-parser/uap-ruby
1
https://github.com/omniauth/omniauth-rails
1
https://github.com/redis-store/redis-store
1
https://github.com/ankane/chartkick.js
1
https://github.com/makandra/consul
1
https://github.com/github/view_component
1
https://github.com/schneems/wicked
1
https://github.com/paragbagul111/CVE-2023-30145
1
https://github.com/BetterErrors/better_errors
1
https://github.com/paragbagul111/CVE-2024-48652
1
https://github.com/AlchemyCMS/alchemy_cms
1
https://github.com/Snorby/snorby
1
https://github.com/macournoyer/thin
1
https://github.com/resque/resque-scheduler
1
https://github.com/theforeman/foreman_ansible
1
https://github.com/rails/sprockets
1
https://github.com/ruby/date
1
https://github.com/joniles/mpxj
1
https://github.com/markburns/ldoce
1
https://github.com/geokit/geokit-rails
1
https://github.com/nedap/mysql-binuuid-rails
1
https://github.com/prodigasistemas/curupira
1
https://github.com/faye/websocket-extensions-ruby
1
https://github.com/zendesk/samlr
1
https://github.com/bvsatyaram/random_password_generator
1
https://github.com/stevegeek/encoded_id-rails
1
https://github.com/madler/zlib
1
https://github.com/Shopify/measured
1
https://github.com/samg/diffy
1
https://github.com/rapid7/metasploit-framework
1
https://github.com/discourse/rails_multisite
1
https://github.com/Smashing/smashing
1
https://github.com/ankane/blazer
1
https://github.com/jamesmartin/inline_svg
1
https://github.com/amro/gibbon
1
https://github.com/hashicorp/vagrant
1
https://github.com/zvory/csv-safe
1
https://github.com/asteinhauser/fat_free_crm
1
https://github.com/fnando/svg_optimizer
1
https://github.com/voloko/twitter-stream
1
https://github.com/affix/CVE-2022-36231
1
https://github.com/basecamp/easymon
1
https://github.com/aws/aws-sdk-ruby
1
https://github.com/synth/omniauth-microsoft_graph
1
https://github.com/tigris/open-uri-cached
1
https://github.com/ruby-grape/grape
1
https://github.com/opensearch-project/opensearch-ruby
1
https://github.com/unpoly/unpoly-rails
1
https://github.com/sinatra/rack-protection
1
https://github.com/jordansissel/ruby-arr-pm
1
https://github.com/jmespath/jmespath.rb
1
https://github.com/sporkmonger/addressable
1
https://github.com/twbs/bootstrap-sass
1
https://github.com/beenhero/omniauth-weibo-oauth2
1
https://github.com/pay-rails/pay
1
https://github.com/alphagov/tech-docs-gem
1
https://github.com/josh/rack-ssl
1
https://github.com/sferik/rails_admin
1
https://github.com/github/hub
1
https://github.com/fluent/fluentd-ui
1
https://github.com/cgriego/active_attr
1
https://github.com/wconrad/ftpd
1
https://github.com/zenspider/ruby_parser-legacy
1
https://github.com/rails/globalid
1
https://github.com/dmendel/bindata
1
https://github.com/doorkeeper-gem/doorkeeper-openid_connect
1
https://github.com/ConradIrwin/em-imap
1
https://github.com/webbynode/webbynode
1
https://github.com/seattlerb/ruby_parser
1
https://github.com/rswag/rswag
1
https://github.com/petergoldstein/dalli
1
https://github.com/theforeman/smart_proxy_dynflow
1
https://github.com/codders/dataset
1
https://github.com/elastic/logstash
1
https://github.com/presidentbeef/rails-security-history
1
https://github.com/gazay/gon
1
https://github.com/haml/haml
1
https://github.com/adamzaninovich/sounder
1