Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:36 a.m.10 views

CVE-2015-20108

xmlsecurity.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used...

9.8CVSS7.6AI score0.01332EPSS
Exploits0References1
Circl
Circl
added 2023/05/27 10:37 p.m.8 views

CVE-2015-20108

creationtimestamp| type| source ---|---|--- 2023-05-27 22:37:44+00:00| seen| https://t.me/cibsecurity/64742...

9.8CVSS8.7AI score0.01332EPSS
Exploits0References1
NVD
NVD
added 2023/05/27 7:15 p.m.48 views

CVE-2015-20108

xmlsecurity.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used...

9.8CVSS9.9AI score0.01332EPSS
Exploits0References5
OSV
OSV
added 2023/05/27 7:15 p.m.12 views

CVE-2015-20108

xmlsecurity.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used...

9.8CVSS9.8AI score
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/05/27 12:0 a.m.12 views

CVE-2015-20108

xmlsecurity.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used...

7.6AI score0.01332EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/05/27 12:0 a.m.17 views

CVE-2015-20108

xmlsecurity.rb in the ruby-saml gem before 1.0.0 for Ruby allows XPath injection and code execution because prepared statements are not used...

9.9AI score0.01332EPSS
Exploits0References5
CVE
CVE
added 2023/05/27 12:0 a.m.66 views

CVE-2015-20108

The CVE-2015-20108 issue affects the ruby-saml gem prior to 1.0.0, where xml_security.rb enables XPath injection and code execution because prepared statements are not used. Affected component: ruby-saml XML security handling. Root cause: lack of prepared statements in XPath processing leads to i...

9.8CVSS9.8AI score0.01332EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder