Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2017/11/14 12:0 a.m.9 views

FreeBSD : rubygem-geminabox -- XSS vulnerabilities (27b38d85-c891-11e7-a7bd-cd1209e563f2)

NVD reports : Stored cross-site scripting XSS vulnerability in 'geminabox' Gem in a Box before 0.13.10 allows attackers to inject arbitrary web script via the 'homepage' value of a '.gemspec' file, related to views/gem.erb and views/index.erb. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

6.1CVSS6AI score0.01084EPSS
Exploits0References2
NVD
NVD
added 2017/11/13 9:29 a.m.25 views

CVE-2017-16792

Stored cross-site scripting XSS vulnerability in "geminabox" Gem in a Box before 0.13.10 allows attackers to inject arbitrary web script via the "homepage" value of a ".gemspec" file, related to views/gem.erb and views/index.erb...

6.1CVSS5.9AI score0.01084EPSS
Exploits0References3
CVE
CVE
added 2017/11/13 9:0 a.m.77 views

CVE-2017-16792

Gem in a Box (geminabox) prior to version 0.13.10 is affected by a stored XSS vulnerability. An attacker can inject arbitrary script via the homepage field in a .gemspec, related to the views/gem.erb and views/index.erb templates. The CVE-2017-16792 entry is corroborated by multiple sources (incl...

6.1CVSS5.8AI score0.01084EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/11/13 9:0 a.m.29 views

CVE-2017-16792

Stored cross-site scripting XSS vulnerability in "geminabox" Gem in a Box before 0.13.10 allows attackers to inject arbitrary web script via the "homepage" value of a ".gemspec" file, related to views/gem.erb and views/index.erb...

5.9AI score0.01084EPSS
Exploits0References3
Rows per page
Query Builder