How secure are your Ruby projects? Scan
Gemfile.lock for vulnerabilities, take action, and ship
secure apps!
The numtok function in lib/raven/okjson.rb in the raven-ruby gem before 0.12.2 for Ruby allows remote attackers to cause a denial of service via a large exponent value in a scientific number.
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before...
Read more →
Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a...
Read more →
Multiple directory traversal vulnerabilities in server.rb in Sprockets before 2.0.5, 2.1.x before 2.1.4, 2.2.x before 2.2.3, 2.3.x before 2.3.3, 2.4.x before 2.4.6, 2.5.x before 2.5.1, 2.6.x and...
Read more →
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before...
Read more →
| Vulnerabilities | |
|---|---|
| Apr | 4 |
| May | 6 |
| Jun | 1 |
| Jul | 2 |
| Aug | 1 |
| Sep | 0 |
| Oct | 0 |
| Nov | 4 |
| Dec | 0 |
| Jan | 1 |
| Feb | 0 |
| Mar | 0 |
| Vulnerabilities | |
|---|---|
| 2010 | 2 |
| 2011 | 15 |
| 2012 | 15 |
| 2013 | 50 |
| 2014 | 23 |
| 2015 | 1 |
