Facets

How secure are your Ruby projects? Scan
Gemfile.lock for vulnerabilities, take action, and ship
secure apps!


Latest Gem Vulnerabilities

CVE-2014-9490 in raven-ruby
Severe

The numtok function in lib/raven/okjson.rb in the raven-ruby gem before 0.12.2 for Ruby allows remote attackers to cause a denial of service via a large exponent value in a scientific number.

Published 4 months ago
CVE-2014-7829 in rails
Severe

Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before...
Read more →

Published 6 months ago
CVE-2014-4975 in rails
Severe

Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a...
Read more →

Published 6 months ago
CVE-2014-7819 in rails
Severe

Multiple directory traversal vulnerabilities in server.rb in Sprockets before 2.0.5, 2.1.x before 2.1.4, 2.2.x before 2.2.3, 2.3.x before 2.3.3, 2.4.x before 2.4.6, 2.5.x before 2.5.1, 2.6.x and...
Read more →

Published 7 months ago
CVE-2014-7818 in rails
Moderate

Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before...
Read more →

Published 7 months ago

Vulnerabilities in the Past 12 Months

Vulnerabilities
Jun 1
Jul 2
Aug 1
Sep 0
Oct 0
Nov 4
Dec 0
Jan 1
Feb 0
Mar 0
Apr 0
May 0

Vulnerabilities in the Past 6 Years

Vulnerabilities
2010 2
2011 15
2012 15
2013 50
2014 23
2015 1