Lucene search
+L

Possible XSS Vulnerability in Action View tag helpers

🗓️ 26 Apr 2022 00:00:00Reported by RubySecType 
rubygems
 rubygems
🔗 rubysec.com👁 25 Views

Possible XSS vulnerability in Action View tag helpers. Untrusted hash keys can lead to CVE-2022-27777

Related
Detection
Refs
ReporterTitlePublishedViews
Family
freebsd
Rails -- XSS vulnerabilities
26 Apr 202200:00
freebsd
attackerkb
CVE-2022-27777
26 May 202217:15
attackerkb
astralinux
Astra Linux – Vulnerability in Rails
20 May 202605:53
astralinux
bdu_fstec
The vulnerability of the actionpack plugin in the Ruby on Rails software platform allows attackers to execute XSS attacks.
13 Jul 202200:00
bdu_fstec
circl
CVE-2022-27777
26 May 202220:14
circl
cnnvd
Action View tag helpers 跨站脚本漏洞
26 May 202200:00
cnnvd
cve
CVE-2022-27777
26 May 202200:00
cve
cvelist
CVE-2022-27777
26 May 202200:00
cvelist
debian
[SECURITY] [DLA 3093-1] rails security update
3 Sep 202211:34
debian
debian
[SECURITY] [DSA 5372-1] rails security update
13 Mar 202303:06
debian
Rows per page
Vulners
Node
OR
rubyactionviewRange5.2.05.2.7.1
rubyactionviewRange6.0.06.0.4.8
rubyactionviewRange6.1.06.1.5.1
rubyactionviewRange7.0.2.4

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Apr 2022 00:00Current
3.2Low risk
Vulners AI Score3.2
CVSS 24.3
CVSS 3.16.1
EPSS0.01485
25