Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-0446HistoryFeb 14, 2011 - 9:00 p.m.
CVE-2011-0446
2011-02-1421:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.0%
Multiple cross-site scripting (XSS) vulnerabilities in the mail_to helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbitrary web script or HTML via a crafted (1) name or (2) email value.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | rails | <Β 2.3.11-0.1 | rails_2.3.11-0.1_all.deb |
| Debian | 11 | all | rails | <Β 2.3.11-0.1 | rails_2.3.11-0.1_all.deb |
| Debian | 10 | all | rails | <Β 2.3.11-0.1 | rails_2.3.11-0.1_all.deb |
| Debian | 999 | all | rails | <Β 2.3.11-0.1 | rails_2.3.11-0.1_all.deb |
| Debian | 13 | all | rails | <Β 2.3.11-0.1 | rails_2.3.11-0.1_all.deb |
Related
osv
osv
Rails actionpack gem vulnerable to Cross-site Scripting
2017-10-24 18:33:38
rails - several vulnerabilities
2011-05-31 00:00:00
ubuntucve
ubuntucve
CVE-2011-0446
2011-02-14 00:00:00
github
github
Rails actionpack gem vulnerable to Cross-site Scripting
2017-10-24 18:33:38
gitlab
gitlab
openvas
openvas
Ruby on Rails Multiple Cross Site Scripting Vulnerabilities
2011-02-23 00:00:00
Debian Security Advisory DSA 2247-1 (rails)
2011-08-03 00:00:00
Fedora Update for rubygem-actionpack FEDORA-2011-2133
2011-03-08 00:00:00
cve
cve
CVE-2011-0446
2011-02-14 21:00:00
prion
prion
Cross site scripting
2011-02-14 21:00:00
nessus
nessus
Fedora 13 : rubygem-actionpack-2.3.5-4.fc13 (2011-2138)
2011-03-07 00:00:00
Fedora 14 : rubygem-actionpack-2.3.8-3.fc14 (2011-2133)
2011-03-07 00:00:00
Debian DSA-2247-1 : rails - several vulnerabilities
2011-06-10 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: rubygem-actionpack-2.3.8-3.fc14
2011-03-05 02:39:03
[SECURITY] Fedora 13 Update: rubygem-actionpack-2.3.5-4.fc13
2011-03-05 02:42:18
[SECURITY] Fedora 15 Update: rubygem-actionpack-3.0.5-1.fc15
2011-04-05 21:43:08
securityvulns
securityvulns
[SECURITY] [DSA 2247-1] rails security update
2011-06-02 00:00:00
debian
debian
[SECURITY] [DSA 2247-1] rails security update
2011-05-31 19:04:22
seebug
seebug
Ruby on Railsθ·¨η«θζ¬ζ§θ‘εθ·¨η«θ―·ζ±δΌͺι ζΌζ΄
2011-04-08 00:00:00
gentoo
gentoo
Ruby on Rails: Multiple vulnerabilities
2014-12-14 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.0%
Related for DEBIANCVE:CVE-2011-0446