actionpack
Web apps on Rails. Simple, battle-tested conventions for building and testing MVC web applications. Works with any Rack-compatible server.
Security Advisories for actionpack in rubygems
Moderate
about 1 year ago
Possible ReDoS vulnerability in HTTP Token authentication in Action Controller
rubygems
actionpack
Moderate
about 1 year ago
Possible ReDoS vulnerability in query parameter filtering in Action Dispatch
rubygems
actionpack
Moderate
over 1 year ago
Missing security headers in Action Pack on non-HTML responses
rubygems
actionpack
Moderate
over 1 year ago
Rails has possible XSS Vulnerability in Action Controller
rubygems
actionpack
Low
over 1 year ago
Rails has possible ReDoS vulnerability in Accept header parsing in Action Dispatch
rubygems
actionpack
Moderate
over 2 years ago
Actionpack has possible cross-site scripting vulnerability via User Supplied Values to redirect_to
rubygems
actionpack
Moderate
almost 4 years ago
actionpack Open Redirect in Host Authorization Middleware
rubygems
actionpack
High
over 4 years ago
Possible DoS Vulnerability in Action Controller Token Authentication
rubygems
actionpack
High
over 4 years ago
Action Pack contains Information Disclosure / Unintended Method Execution vulnerability
rubygems
actionpack
Moderate
over 5 years ago
Untrusted users can run pending migrations in production in Rails
rubygems
actionpack
Moderate
about 8 years ago
actionpack allows remote attackers to bypass database-query restrictions, perform NULL checks via crafted request
rubygems
actionpack
Moderate
about 8 years ago
Cross-site Scripting vulnerability in i18n translations helper method
rubygems
actionpack
Moderate
about 8 years ago
rails Cross-site Scripting vulnerability
rubygems
activesupport, actionpack
Moderate
about 8 years ago
Action Pack contains database-query restrictions bypass
rubygems
actionpack
Moderate
about 8 years ago
actionpack and activesupport vulnerable to information leaks
rubygems
activesupport, actionpack
Moderate
about 8 years ago
Cross site scripting that affects rails
rubygems
activesupport, actionpack
Moderate
about 8 years ago
Rails actionpack gem vulnerable to Cross-site Scripting
rubygems
actionpack
High
about 8 years ago
actionpack allows remote attackers to bypass intended access restrictions
rubygems
actionpack
High
about 8 years ago
actionpack is vulnerable to denial of service because of a wildcard controller route
rubygems
actionpack
Moderate
about 8 years ago
actionpack allows bypass of database-query restrictions
rubygems
actionpack
High
about 8 years ago
actionpack allows remote code execution via application's unrestricted use of render method
rubygems
actionpack
High
about 8 years ago
actionpack is vulnerable to denial of service via a crafted HTTP Accept header
rubygems
actionpack