actionpack
rubygems · Web apps on Rails. Simple, battle-tested conventions for building and testing MVC web applications. Works with any Rack-compatible server. · Repository · Package
Security Advisories for actionpack in rubygems
Moderate
12 months ago
Possible ReDoS vulnerability in HTTP Token authentication in Action Controller
rubygems
actionpack
Moderate
12 months ago
Possible ReDoS vulnerability in query parameter filtering in Action Dispatch
rubygems
actionpack
Moderate
over 1 year ago
Missing security headers in Action Pack on non-HTML responses
rubygems
actionpack
Moderate
over 1 year ago
Rails has possible XSS Vulnerability in Action Controller
rubygems
actionpack
Low
over 1 year ago
Rails has possible ReDoS vulnerability in Accept header parsing in Action Dispatch
rubygems
actionpack
Moderate
over 2 years ago
Actionpack has possible cross-site scripting vulnerability via User Supplied Values to redirect_to
rubygems
actionpack
Moderate
almost 4 years ago
actionpack Open Redirect in Host Authorization Middleware
rubygems
actionpack
High
over 4 years ago
Possible DoS Vulnerability in Action Controller Token Authentication
rubygems
actionpack
High
over 4 years ago
Action Pack contains Information Disclosure / Unintended Method Execution vulnerability
rubygems
actionpack
Moderate
over 5 years ago
Untrusted users can run pending migrations in production in Rails
rubygems
actionpack
High
almost 8 years ago
actionpack allows remote attackers to bypass intended access restrictions
rubygems
actionpack
Moderate
almost 8 years ago
actionpack allows remote attackers to bypass database-query restrictions, perform NULL checks via crafted request
rubygems
actionpack
Moderate
almost 8 years ago
Cross site scripting that affects rails
rubygems
activesupport, actionpack
Moderate
almost 8 years ago
Cross-site Scripting vulnerability in i18n translations helper method
rubygems
actionpack
Moderate
almost 8 years ago
rails Cross-site Scripting vulnerability
rubygems
activesupport, actionpack
Moderate
almost 8 years ago
Action Pack contains database-query restrictions bypass
rubygems
actionpack
Moderate
almost 8 years ago
actionpack and activesupport vulnerable to information leaks
rubygems
activesupport, actionpack
Moderate
almost 8 years ago
Rails actionpack gem vulnerable to Cross-site Scripting
rubygems
actionpack
High
almost 8 years ago
actionpack is vulnerable to denial of service because of a wildcard controller route
rubygems
actionpack
Moderate
almost 8 years ago
actionpack allows bypass of database-query restrictions
rubygems
actionpack
High
almost 8 years ago
actionpack allows remote code execution via application's unrestricted use of render method
rubygems
actionpack
High
almost 8 years ago
actionpack is vulnerable to denial of service via a crafted HTTP Accept header
rubygems
actionpack