Lucene search

CVE-2024-21636

🗓️ 04 Jan 2024 20:25:15Reported by [email protected]Type

view_component Ruby on Rails framework has cross-site scripting vulnerability impacting versions prior to 3.9.0 and 2.83.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
OSV	GHSA-WF2X-8W6J-QW37 view_component Cross-site Scripting vulnerability	4 Jan 202421:54	–	osv
OSV	CVE-2024-21636	4 Jan 202420:15	–	osv
Veracode	Cross Site Scripting (XSS)	5 Jan 202409:04	–	veracode
CVE	CVE-2024-21636	4 Jan 202420:15	–	cve
Github Security Blog	view_component Cross-site Scripting vulnerability	4 Jan 202421:54	–	github
RubySec	view_component Cross-site Scripting vulnerability	3 Jan 202421:00	–	rubygems
RedhatCVE	CVE-2024-21636	23 May 202509:44	–	redhatcve
Prion	Cross site scripting	4 Jan 202420:15	–	prion
Cvelist	CVE-2024-21636 view_component Cross-site Scripting vulnerability	4 Jan 202420:09	–	cvelist

Nvd

Node

viewcomponent view_componentRange<2.83.0ruby

viewcomponent view_componentRange3.0.0–3.9.0ruby

Source	Link
github	www.github.com/ViewComponent/view_component/security/advisories/GHSA-wf2x-8w6j-qw37
github	www.github.com/ViewComponent/view_component/pull/1962
github	www.github.com/ViewComponent/view_component/commit/0d26944a8d2730ea40e60eae23d70684483e5017
github	www.github.com/ViewComponent/view_component/pull/1950
github	www.github.com/ViewComponent/view_component/commit/c43d8bafa7117cbce479669a423ab266de150697

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jan 2024 20:15Current

6.2Medium risk

Vulners AI Score6.2

CVSS36.1

EPSS0.00501

CWE-79