Facets

How secure are your Ruby projects? Scan
Gemfile.lock for vulnerabilities, take action, and ship
secure apps!


Latest Gem Vulnerabilities

CVE-2016-0751 in rails
Critical

There is a possible object leak which can lead to a denial of service vulnerability in Action Pack. This vulnerability has been assigned the CVE identifier CVE-2016-0751. A carefully crafted...
Read more →

Published 15 days ago
CVE-2015-7579 in rails-html-sanitizer
Critical

There is a XSS vulnerability in `Rails::Html::FullSanitizer` used by Action View's `strip_tags`. This vulnerability has been assigned the CVE identifier CVE-2015-7579. Due to the way that...
Read more →

Published 15 days ago
CVE-2015-7576 in rails
Critical

There is a timing attack vulnerability in the basic authentication support in Action Controller. This vulnerability has been assigned the CVE identifier CVE-2015-7576. Due to the way that Action...
Read more →

Published 15 days ago
CVE-2016-0752 in rails
Critical

There is a possible directory traversal and information leak vulnerability in Action View. This vulnerability has been assigned the CVE identifier CVE-2016-0752. Applications that pass...
Read more →

Published 15 days ago
CVE-2015-7577 in rails
Critical

There is a vulnerability in how the nested attributes feature in Active Record handles updates in combination with destroy flags when destroying records is disabled. This vulnerability has been...
Read more →

Published 15 days ago

Vulnerabilities in the Past 12 Months

Vulnerabilities
Mar 0
Apr 1
May 0
Jun 3
Jul 3
Aug 0
Sep 0
Oct 0
Nov 0
Dec 0
Jan 10
Feb 0

Vulnerabilities in the Past 6 Years

Vulnerabilities
2011 15
2012 15
2013 50
2014 23
2015 8
2016 10