Lucene search
K

24 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.22 views

Debian: Security Advisory (DSA-2260-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS9.6AI score0.03022EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.35 views

Debian Security Advisory DSA 2301-2 (rails)

The remote host is missing an update to rails announced via advisory DSA 2301-2. OpenVAS Vulnerability Test $Id: deb23012.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2301-2 rails Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

7.5CVSS0.6AI score0.03022EPSS
Exploits0
Debian
Debian
added 2012/01/23 6:35 p.m.131 views

[SECURITY] [DSA 2301-2] rails regression

------------------------------------------------------------------------- Debian Security Advisory DSA-2392-1 [email protected] http://www.debian.org/security/ January 23, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package...

7.5CVSS5.9AI score0.03022EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/09/21 12:0 a.m.26 views

Debian: Security Advisory (DSA-2301-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.7AI score0.03022EPSS
Exploits0References3
securityvulns
securityvulns
added 2011/09/09 12:0 a.m.77 views

[SECURITY] [DSA 2301-1] rails security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2301-1 [email protected] http://www.debian.org/security/ Luciano Bello September 5, 2011 http://www.debian.org/security/faq -...

7.5CVSS1.8AI score0.03022EPSS
Exploits0
OSV
OSV
added 2011/09/05 12:0 a.m.42 views

DSA-2301-1 rails - several

Bulletin has no description...

7.5CVSS9.5AI score0.03022EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/06/15 12:0 a.m.40 views

Debian DSA-2260-1 : rails - several vulnerabilities

Two vulnerabilities were discovered in Ruby on Rails, a web application framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-3086 The cookie store may be vulnerable to a timing attack, potentially allowing remote attackers to forge message...

5CVSS5AI score0.03022EPSS
Exploits1References7
Debian
Debian
added 2011/06/14 6:57 p.m.47 views

[SECURITY] [DSA 2259-1] rails security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2260-1 [email protected] http://www.debian.org/security/ Florian Weimer June 14, 2011 http://www.debian.org/security/faq -...

5CVSS6.2AI score0.03022EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2010/03/11 12:0 a.m.39 views

openSUSE Security Update : rubygem-actionpack-2_3 (rubygem-actionpack-2_3-1934)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

6.8CVSS5AI score0.0808EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/03/04 12:0 a.m.50 views

openSUSE Security Update : rubygem-actionpack (rubygem-actionpack-1946)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

6.8CVSS5AI score0.0808EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/03/04 12:0 a.m.36 views

openSUSE Security Update : rubygem-actionpack (rubygem-actionpack-1946)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

6.8CVSS5AI score0.0808EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.62 views

Gentoo Security Advisory GLSA 200912-02 (rails)

The remote host is missing updates announced in advisory GLSA 200912-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.7AI score0.0808EPSS
Exploits5
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.39 views

Fedora Core 12 FEDORA-2009-13393 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13393. OpenVAS Vulnerability Test $Id: fcore200913393.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13393 rubygem-actionpack Authors: Thomas Reinke...

4.3CVSS0.2AI score0.03022EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.35 views

Fedora Core 12 FEDORA-2009-13393 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13393. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

4.3CVSS9.5AI score0.03022EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.31 views

Fedora Core 11 FEDORA-2009-13361 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13361. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

4.3CVSS9.6AI score0.03022EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/12/18 12:0 a.m.45 views

Fedora 12 : rubygem-actionpack-2.3.4-3.fc12 (2009-13393)

Fix CVE-2009-4214 bz 542786 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.3CVSS5AI score0.03022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/12/18 12:0 a.m.31 views

Fedora 11 : rubygem-actionpack-2.3.2-4.fc11 (2009-13361)

Fix CVE-2009-4214 bz 542786 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.3CVSS5AI score0.03022EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.36 views

Fedora Core 10 FEDORA-2009-12966 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-12966. OpenVAS Vulnerability Test $Id: fcore200912966.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12966 rubygem-actionpack Authors: Thomas Reinke...

5CVSS9.6AI score0.03022EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.34 views

Fedora Core 10 FEDORA-2009-12966 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-12966. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

5CVSS9.4AI score0.03022EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2009/12/10 12:0 a.m.35 views

Fedora 10 : rubygem-actionpack-2.1.1-5.fc10 (2009-12966)

Two security issues are found on activepack shipped on Fedora 10. One bug is that there is a weakness in the striptags function in ruby on rails bug 542786, CVE-2009-4214. Another one is a possibility to circumvent protection against cross-site request forgery CSRF attacks bug 544329. This new rp...

4.3CVSS4.8AI score0.03022EPSS
Exploits0References3
Rows per page
Query Builder