Lucene search
K

9 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.2 views

SUSE CVE-2018-1000078

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS6.1AI score0.02845EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2020/03/03 3:35 p.m.5 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/02/25 12:14 p.m.8 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/02/19 7:37 a.m.6 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/08/06 12:40 p.m.5 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/29 10:23 a.m.4 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/29 10:10 a.m.5 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/29 9:56 a.m.5 views

rubygems: XSS vulnerability in homepage attribute when displayed via gem server

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting XSS vulnerability in gem server display of homepage attribute that can...

6.1CVSS7.1AI score0.02845EPSS
Exploits0References5
CVE
CVE
added 2018/03/13 3:0 p.m.238 views

CVE-2018-1000078

CVE-2018-1000078 describes a Cross Site Scripting (XSS) vulnerability in RubyGems: gem server displays the homepage attribute and can execute injected scripts if a victim browses a malicious gem. Affected RubyGems before 2.7.6 (versions in the 2.x line) are vulnerable; the issue has been fixed in...

6.1CVSS7.2AI score0.02845EPSS
Exploits0References18Affected Software1
Rows per page
Query Builder