Facets
How secure are your Ruby projects? Scan Gemfile.lock for vulnerabilities, take action, and ship secure apps!
How secure are your Ruby projects? Scan Gemfile.lock for vulnerabilities, take action, and ship secure apps!
There is a possible file content disclosure vulnerability in Action View. This vulnerability has been assigned the CVE identifier CVE-2019-5418. Versions Affected: All. Not affected: None. Fixed Versions: 6.0.0.beta3, 5.2.2.1, 5.1.6.2, 5.0.7.2, 4.2.11.1 Impact ------ There is a possible file content disclosure vulnerability...
Read more →
There is a potential denial of service vulnerability in actionview. This vulnerability has been assigned the CVE identifier CVE-2019-5419. Impact ------ Specially crafted accept headers can cause the Action View template location code to consume 100% CPU, causing the server unable to process requests. This impacts all Rails applications...
Read more →
There is a possible a possible remote code executing exploit in Rails when in development mode. This vulnerability has been assigned the CVE identifier CVE-2019-5420. Versions Affected: 6.0.0.X, 5.2.X. Not affected: None. Fixed Versions: 6.0.0.beta3, 5.2.2.1 Impact ------ With some knowledge of a target application it is...
Read more →
Devise ruby gem before 4.6.0 when the `lockable` module is used is vulnerable to a time-of-check time-of-use (TOCTOU) race condition due to `increment_failed_attempts` within the `Devise::Models::Lockable` class not being concurrency safe.
Read more →
When passing an invalid check name as parameter to the endpoint where the easymon routes are mounted, a 406 response with a body that contains the invalid check name unescaped is returned. Malicious JavaScript can be injected into that invalid name and have it executed in Firefox
Read more →
| Vulnerabilities | |
|---|---|
| Apr | 1 |
| May | 3 |
| Jun | 2 |
| Jul | 2 |
| Aug | 0 |
| Sep | 0 |
| Oct | 4 |
| Nov | 3 |
| Dec | 0 |
| Jan | 0 |
| Feb | 1 |
| Mar | 3 |
| Vulnerabilities | |
|---|---|
| 2014 | 75 |
| 2015 | 45 |
| 2016 | 32 |
| 2017 | 28 |
| 2018 | 25 |
| 2019 | 4 |