Lucene search

CVE-2013-4491

🗓️ 07 Dec 2013 00:03:55Reported by redhatType

Ruby on Rails XSS vulnerability in translation_helper.rb allows remote attackers to inject arbitrary web script or HTML via form generation

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 46
Cvelist	CVE-2013-4491	7 Dec 201300:00	–	cvelist
GitLab Advisory Database	Reflective XSS Vulnerability	6 Dec 201300:00	–	gitlab
NVD	CVE-2013-4491	7 Dec 201300:55	–	nvd
OSV	actionpack vulnerable to Cross-site Scripting	24 Oct 201718:33	–	osv
OSV	RHSA-2013:1794 Red Hat Security Advisory: ruby193-rubygem-actionpack security update	13 Sep 202408:26	–	osv
OSV	RHSA-2014:0008 Red Hat Security Advisory: ruby193-rubygem-actionpack security update	13 Sep 202408:27	–	osv
Prion	Cross site scripting	7 Dec 201300:55	–	prion
Veracode	Cross-site Scripting (XSS)	15 Jan 201908:52	–	veracode
Github Security Blog	actionpack vulnerable to Cross-site Scripting	24 Oct 201718:33	–	github
UbuntuCve	CVE-2013-4491	7 Dec 201300:00	–	ubuntucve

Nvd

Node

rubyonrails railsRange≤4.0.1-

rubyonrails railsMatch4.0.0-

rubyonrails railsMatch4.0.0beta

rubyonrails railsMatch4.0.0rc1

rubyonrails railsMatch4.0.0rc2

rubyonrails railsMatch4.0.1rc1

Node

rubyonrails railsMatch3.0.0

rubyonrails railsMatch3.0.0beta

rubyonrails railsMatch3.0.0beta2

rubyonrails railsMatch3.0.0beta3

rubyonrails railsMatch3.0.0beta4

rubyonrails railsMatch3.0.0rc

rubyonrails railsMatch3.0.0rc2

rubyonrails railsMatch3.0.1

rubyonrails railsMatch3.0.1pre

rubyonrails railsMatch3.0.2

rubyonrails railsMatch3.0.2pre

rubyonrails railsMatch3.0.3

rubyonrails railsMatch3.0.4rc1

rubyonrails railsMatch3.0.5

rubyonrails railsMatch3.0.5rc1

rubyonrails railsMatch3.0.6

rubyonrails railsMatch3.0.6rc1

rubyonrails railsMatch3.0.6rc2

rubyonrails railsMatch3.0.7

rubyonrails railsMatch3.0.7rc1

rubyonrails railsMatch3.0.7rc2

rubyonrails railsMatch3.0.8

rubyonrails railsMatch3.0.8rc1

rubyonrails railsMatch3.0.8rc2

rubyonrails railsMatch3.0.8rc3

rubyonrails railsMatch3.0.8rc4

rubyonrails railsMatch3.0.9

rubyonrails railsMatch3.0.9rc1

rubyonrails railsMatch3.0.9rc2

rubyonrails railsMatch3.0.9rc3

rubyonrails railsMatch3.0.9rc4

rubyonrails railsMatch3.0.9rc5

rubyonrails railsMatch3.0.10

rubyonrails railsMatch3.0.10rc1

rubyonrails railsMatch3.0.11

rubyonrails railsMatch3.0.12

rubyonrails railsMatch3.0.12rc1

rubyonrails railsMatch3.0.13

rubyonrails railsMatch3.0.13rc1

rubyonrails railsMatch3.0.14

rubyonrails railsMatch3.0.16

rubyonrails railsMatch3.0.17

rubyonrails railsMatch3.0.18

rubyonrails railsMatch3.0.19

rubyonrails railsMatch3.0.20

rubyonrails railsMatch3.1.0

rubyonrails railsMatch3.1.0beta1

rubyonrails railsMatch3.1.0rc1

rubyonrails railsMatch3.1.0rc2

rubyonrails railsMatch3.1.0rc3

rubyonrails railsMatch3.1.0rc4

rubyonrails railsMatch3.1.0rc5

rubyonrails railsMatch3.1.0rc6

rubyonrails railsMatch3.1.0rc7

rubyonrails railsMatch3.1.0rc8

rubyonrails railsMatch3.1.1

rubyonrails railsMatch3.1.1rc1

rubyonrails railsMatch3.1.1rc2

rubyonrails railsMatch3.1.1rc3

rubyonrails railsMatch3.1.2

rubyonrails railsMatch3.1.2rc1

rubyonrails railsMatch3.1.2rc2

rubyonrails railsMatch3.1.3

rubyonrails railsMatch3.1.4

rubyonrails railsMatch3.1.4rc1

rubyonrails railsMatch3.1.5

rubyonrails railsMatch3.1.5rc1

rubyonrails railsMatch3.1.6

rubyonrails railsMatch3.1.7

rubyonrails railsMatch3.1.8

rubyonrails railsMatch3.1.9

rubyonrails railsMatch3.1.10

rubyonrails railsMatch3.2.0

rubyonrails railsMatch3.2.0rc1

rubyonrails railsMatch3.2.0rc2

rubyonrails railsMatch3.2.1

rubyonrails railsMatch3.2.2

rubyonrails railsMatch3.2.2rc1

rubyonrails railsMatch3.2.3

rubyonrails railsMatch3.2.3rc1

rubyonrails railsMatch3.2.3rc2

rubyonrails railsMatch3.2.4

rubyonrails railsMatch3.2.4rc1

rubyonrails railsMatch3.2.5

rubyonrails railsMatch3.2.6

rubyonrails railsMatch3.2.7

rubyonrails railsMatch3.2.8

rubyonrails railsMatch3.2.9

rubyonrails railsMatch3.2.10

rubyonrails railsMatch3.2.11

rubyonrails railsMatch3.2.12

rubyonrails railsMatch3.2.13

rubyonrails railsMatch3.2.13rc1

rubyonrails railsMatch3.2.13rc2

rubyonrails ruby_on_railsRange≤3.2.15

rubyonrails ruby_on_railsMatch3.0.4

rubyonrails ruby_on_railsMatch3.1.11

rubyonrails ruby_on_railsMatch3.2.14

rubyonrails ruby_on_railsMatch3.2.14rc1

rubyonrails ruby_on_railsMatch3.2.14rc2

rubyonrails ruby_on_railsMatch3.2.15rc1

rubyonrails ruby_on_railsMatch3.2.15rc2

Source	Link
securityfocus	www.securityfocus.com/bid/64076
lists	www.lists.opensuse.org/opensuse-updates/2013-12/msg00081.html
weblog	www.weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/
debian	www.debian.org/security/2014/dsa-2888
getchef	www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/
lists	www.lists.opensuse.org/opensuse-updates/2013-12/msg00082.html
groups	www.groups.google.com/forum/message/raw
lists	www.lists.opensuse.org/opensuse-updates/2013-12/msg00079.html
rhn	www.rhn.redhat.com/errata/RHSA-2014-1863.html
rhn	www.rhn.redhat.com/errata/RHSA-2014-0008.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Dec 2013 00:55Current

5.3Medium risk

Vulners AI Score5.3

CVSS24.3

EPSS0.00713

CWE-79