Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2010/05/12 12:0 a.m.272 views

Mac OS X Security Update 2007-009

The remote host is missing Security Update 2007-009. One or more of the following components are affected: Address Book CFNetwork ColorSync Core Foundation CUPS Desktop Services Flash Player Plug-in GNU Tar iChat IO Storage Family Launch Services Mail perl python Quick Look ruby Safari Safari RSS...

10CVSS8.6AI score0.70386EPSS
Exploits24
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.40 views

Gentoo Security Advisory GLSA 200711-17 (rails)

The remote host is missing updates announced in advisory GLSA 200711-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

6.8CVSS0.03969EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.20 views

Gentoo Security Advisory GLSA 200711-17 (rails)

The remote host is missing updates announced in advisory GLSA 200711-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.03969EPSS
Exploits1References3
securityvulns
securityvulns
added 2007/11/15 12:0 a.m.75 views

[ GLSA 200711-17 ] Ruby on Rails: Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200711-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

6.8CVSS9.9AI score0.03969EPSS
Exploits1
OSV
OSV
added 2007/10/19 11:17 p.m.10 views

CVE-2007-5379

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

6.5AI score
Exploits0References13
CVE
CVE
added 2007/10/19 11:0 p.m.88 views

CVE-2007-5379

CVE-2007-5379 affects Ruby on Rails installations using Rails prior to 1.2.4. The vulnerability stems from Hash.from_xml (Hash#from_xml) using XmlSimple unsafely, enabling remote attackers to determine the existence of arbitrary files and read arbitrary XML files (e.g., passwords from Pidgin .pur...

5CVSS9.3AI score0.03969EPSS
Exploits0References13Affected Software1
Rows per page
Query Builder