Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36403

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ti-adc161s626 component of the Industrial I/O IIO ADC subsystem where spi read utilized stack memory instead of DMA-safe memory. Direct Memory Access DMA is a...

7.8CVSS5.4AI score0.00129EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-0312

Malware in sbrugna...

4.3CVSS7.3AI score0.01962EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 5:52 a.m.3 views

SUSE CVE-2011-2197

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS6.4AI score0.01962EPSS
Exploits0References3
OSV
OSV
added 2017/10/24 6:33 p.m.29 views

GHSA-V9V4-7JP6-8C73 rails Cross-site Scripting vulnerability

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS4.9AI score0.01962EPSS
Exploits0References12
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.35 views

rails Cross-site Scripting vulnerability

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS4.9AI score0.01962EPSS
Exploits0References12Affected Software2
GitLab Advisory Database
GitLab Advisory Database
added 2017/10/24 12:0 a.m.38 views

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS5.5AI score0.01962EPSS
Exploits0References12Affected Software1
RubySec
RubySec
added 2017/10/24 12:0 a.m.25 views

Potential XSS Vulnerability in Ruby on Rails Applications

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS5.5AI score0.01962EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2011/06/30 3:55 p.m.36 views

CVE-2011-2197

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

4.3CVSS6.8AI score0.01962EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/06/30 3:26 p.m.42 views

CVE-2011-2197

The cross-site scripting XSS prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a...

5AI score0.01962EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2011/06/30 12:0 a.m.36 views

Fedora 15 : rubygem-activesupport-3.0.5-3.fc15 (2011-8494)

This update fixes : - Bug 713692 - CVE-2011-2197 rubygem-activesupport: XSS due improper management of safe buffers Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format ...

4.3CVSS7.2AI score0.01962EPSS
Exploits0References3
Rows per page
Query Builder