CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-0521

Malware in sbrugna...

6.1CVSS6.5AI score0.00307EPSS

Exploits1References7

RedhatCVE•added 2025/05/22 3:32 p.m.•4 views

CVE-2020-36190

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

6.1CVSS5.8AI score0.00307EPSS

Exploits1

OSV•added 2021/01/14 7:17 p.m.•27 views

GHSA-WJX2-7HQQ-8H7M rails_admin ruby gem XSS vulnerability

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

6.1CVSS6.1AI score0.00307EPSS

Exploits1References6

Github Security Blog•added 2021/01/14 7:17 p.m.•68 views

rails_admin ruby gem XSS vulnerability

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

6.1CVSS6.3AI score0.00307EPSS

Exploits1References6Affected Software1

Snyk•added 2021/01/13 2:16 p.m.•1 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via nested forms. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” a malicious script into an otherwise trusted website. The injected script gets downloaded and...

6.1CVSS5.3AI score0.00307EPSS

Exploits1References2

Veracode•added 2021/01/13 4:38 a.m.•15 views

Cross-Site Scripting (XSS)

railsadmin is vulnerable to cross-site scripting XSS. A remote attacker is able to inject and execute arbitrary Javascript in a user's browser via nested forms...

6.1CVSS4.4AI score0.00307EPSS

Exploits1References3Affected Software1

OSV•added 2021/01/12 8:15 p.m.•9 views

CVE-2020-36190

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

6.1CVSS5.8AI score

Exploits0References3

Prion•added 2021/01/12 8:15 p.m.•8 views

Design/Logic Flaw

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

4.3CVSS6.2AI score0.00307EPSS

Exploits1References3Affected Software1

Cvelist•added 2021/01/12 7:38 p.m.•10 views

CVE-2020-36190

RailsAdmin aka railsadmin before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms...

6.3AI score0.00307EPSS

Exploits1References3

CVE•added 2021/01/12 7:38 p.m.•64 views

CVE-2020-36190

The CVE-2020-36190 case affects the RailsAdmin (rails_admin) gem prior to 1.4.3 and 2.x prior to 2.0.2, exposing a cross-site scripting (XSS) vulnerability via nested forms. Root cause is unvalidated input in nested form handling, enabling injected scripts to be rendered in the browser. The impac...

6.1CVSS6.1AI score0.00307EPSS

Exploits1References3Affected Software1