Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2018-11627HistoryMay 31, 2018 - 7:29 p.m.
CVE-2018-11627
2018-05-3119:29:00
Debian Security Bug Tracker
security-tracker.debian.org
15
0.001 Low
EPSS
Percentile
44.3%
Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs upon a params parser exception.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ruby-sinatra | < 3.0.5-3 | ruby-sinatra_3.0.5-3_all.deb |
| Debian | 11 | all | ruby-sinatra | < 2.0.8.1-2 | ruby-sinatra_2.0.8.1-2_all.deb |
| Debian | 10 | all | ruby-sinatra | < 2.0.5-4 | ruby-sinatra_2.0.5-4_all.deb |
| Debian | 999 | all | ruby-sinatra | < 3.0.5-3 | ruby-sinatra_3.0.5-3_all.deb |
| Debian | 13 | all | ruby-sinatra | < 3.0.5-3 | ruby-sinatra_3.0.5-3_all.deb |
Related
nessus
nessus
RHEL 7 : CloudForms 4.6.8 (RHSA-2019:0315)
2024-04-27 00:00:00
Fedora 27 : 1:rubygem-sinatra (2018-0b17e1e529)
2018-06-25 00:00:00
osv
osv
CVE-2018-11627
2018-05-31 19:29:00
Sinatra Cross-site Scripting vulnerability
2018-06-05 21:32:06
redhatcve
redhatcve
CVE-2018-11627
2018-06-01 14:49:42
fedora
fedora
[SECURITY] Fedora 28 Update: rubygem-sinatra-2.0.0-4.fc28
2018-06-23 20:49:00
[SECURITY] Fedora 27 Update: rubygem-sinatra-2.0.0-3.fc27
2018-06-23 19:57:17
cve
cve
CVE-2018-11627
2018-05-31 19:29:00
openvas
openvas
Fedora Update for rubygem-sinatra FEDORA-2018-3f61c5cf7c
2018-06-24 00:00:00
Fedora Update for rubygem-sinatra FEDORA-2018-0b17e1e529
2018-06-24 00:00:00
cvelist
cvelist
CVE-2018-11627
2018-05-31 19:00:00
redhat
redhat
github
github
Sinatra Cross-site Scripting vulnerability
2018-06-05 21:32:06
prion
prion
Cross site request forgery (csrf)
2018-05-31 19:29:00
veracode
veracode
Cross-site Scripting (XSS)
2018-05-31 03:16:08
freebsd
freebsd
sinatra -- XSS vulnerability
2018-06-09 00:00:00
ubuntucve
ubuntucve
CVE-2018-11627
2018-05-31 00:00:00