Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Deserialization of Untrusted Data		activesupport<5.2.4.3>=6.0.0, <6.0.3.1RubyGems19 May 2020
  • M
Improper Validation		activestorage<5.2.4.3>=6.0.0, <6.0.3.1RubyGems19 May 2020
  • C
Remote Code Execution (RCE)		actionview<4.2.11.3>=5.0.0, <5.0.1RubyGems17 May 2020
  • H
Directory Traversal		rack<2.1.3RubyGems13 May 2020
  • H
Authentication Bypass		sorcery<0.15.0RubyGems8 May 2020
  • H
Arbitrary File Write		actionpack-page_caching<1.2.1RubyGems6 May 2020
  • M
Information Exposure		activeresource<5.1.1RubyGems6 May 2020
  • M
Information Disclosure		doorkeeper>=5.0.0, <5.0.3>=5.1.0, <5.1.1>=5.2.0, <5.2.5>=5.3.0, <5.3.2RubyGems4 May 2020
  • H
Denial of Service (DoS)		bson<3.0.4RubyGems30 Apr 2020
  • L
Man-in-the-Middle (MitM)		log4j-jars<2.15.0RubyGems28 Apr 2020
  • L
Man-in-the-Middle (MitM)		slyphon-log4j>=0.0.0RubyGems28 Apr 2020
  • H
Prototype Pollution		lodash-rails<4.17.21RubyGems28 Apr 2020
  • H
Improper Access Control		faye<1.0.4>=1.1.0, <1.1.3>=1.2.0, <1.2.5RubyGems28 Apr 2020
  • H
Cross-Site Request Forgery (CSRF)		faye<1.1.0RubyGems23 Apr 2020
  • H
Malicious Package		active-model_serializers-matchers>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		apple_news-client>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		approval_ratings-cli-app>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		activeadmin-globalize_inputs>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		airbrake-user_attributes>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		get-stats>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		a1616ts-gem>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		alias-class>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		cocoapods_fixbugs-plugin>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		capistrano_scm-gitsubmodules>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		active-model_serializers-cancan>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		font_stack>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		acmesmith_designate>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		fluent_plugin-stats-notifier>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		capistrano_stats>=0.0.0RubyGems17 Apr 2020
  • H
Malicious Package		devino-sms>=0.0.0RubyGems17 Apr 2020