CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-0159

Malware in sbrugna...

4.3CVSS7.3AI score0.08484EPSS

Exploits1References14

Github Security Blog•added 2017/10/24 6:33 p.m.•20 views

actionpack Improper Input Validation vulnerability

The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...

4.3CVSS6.3AI score0.08484EPSS

Exploits1References12Affected Software1

GitLab Advisory Database•added 2017/10/24 12:0 a.m.•13 views

Improper Input Validation

The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...

4.3CVSS4.5AI score0.08484EPSS

Exploits1References11Affected Software1

Cvelist•added 2011/08/29 6:0 p.m.•19 views

CVE-2011-3187

The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...

6.5AI score0.08484EPSS

Exploits1References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by