14178 matches found
rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>
A vulnerability was found in REXML, an XML toolkit used for Ruby. When parsing an untrusted XML with many specific characters, the REXML gem may take a long time, leading to a denial of service condition. Some of these special characters include the whitespace character, '', and ''...
rexml: DoS vulnerability in REXML
A vulnerability was found in REXML RubyGems. This package is vulnerable to denial of service DoS when parsing a deep XML structure with the same local name attribute. This vulnerability only affects tree parser API like REXML::Document.new, other parser APIs such as stream parser API and SAX2...
rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>
A vulnerability was found in REXML, an XML toolkit used for Ruby. When parsing an untrusted XML with many specific characters, the REXML gem may take a long time, leading to a denial of service condition. Some of these special characters include the whitespace character, '', and ''...
rexml: DoS vulnerability in REXML
A vulnerability was found in REXML RubyGems. This package is vulnerable to denial of service DoS when parsing a deep XML structure with the same local name attribute. This vulnerability only affects tree parser API like REXML::Document.new, other parser APIs such as stream parser API and SAX2...
rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>
A vulnerability was found in REXML, an XML toolkit used for Ruby. When parsing an untrusted XML with many specific characters, the REXML gem may take a long time, leading to a denial of service condition. Some of these special characters include the whitespace character, '', and ''...
Decidim 跨站脚本漏洞
Decidim is an open source participatory democracy framework from Decidim, written in Ruby on Rails. A cross-site scripting vulnerability exists in Decidim version 0.27.6 and earlier versions, which stems from a possible cross-site scripting attack on QuillJS, the WYSIWYG editor used...
PT-2025-8696
Name of the Vulnerable Software and Affected Versions URI gem versions prior to 0.11.3 URI gem versions 0.12.0 through 0.12.3 URI gem versions 0.13.0 through 0.13.1 URI gem versions 1.0.0 through 1.0.2 Description The URI handling methods URI.join, URImerge, URI+ in the URI gem for Ruby have an...
RHSA-2013:0698 Red Hat Security Advisory: rubygem-actionpack and ruby193-rubygem-actionpack security update
Bulletin has no description...
RHSA-2013:0701 Red Hat Security Advisory: ruby193-ruby, rubygem-json and rubygem-rdoc security update
Bulletin has no description...
RHSA-2013:0612 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2013:0611 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2013:0153 Red Hat Security Advisory: Ruby on Rails security update
Bulletin has no description...
RHSA-2013:0129 Red Hat Security Advisory: ruby security and bug fix update
Bulletin has no description...
RHSA-2012:0070 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2012:0069 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2011:1581 Red Hat Security Advisory: ruby security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2011:0910 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2011:0909 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2011:0908 Red Hat Security Advisory: ruby security update
Bulletin has no description...
RHSA-2009:1140 Red Hat Security Advisory: ruby security update
Bulletin has no description...