Lucene search

K
RubyonrailsRails

111 matches found

CVE
CVE
added 2016/02/16 2:59 a.m.1062 views

CVE-2016-0752

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a...

7.5CVSS6.1AI score0.92461EPSS
In wildWeb
CVE
CVE
added 2014/05/07 10:55 a.m.1059 views

CVE-2014-0130

Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails before 3.2.18, 4.0.x before 4.0.5, and 4.1.x before 4.1.1, when certain route globbing configurations are enabled, allows remote attackers to read arbitrary files v...

7.5CVSS6.3AI score0.44315EPSS
In wildWeb
CVE
CVE
added 2019/03/27 2:29 p.m.382 views

CVE-2019-5418

There is a File Content Disclosure vulnerability in Action View <5.2.2.1, <5.1.6.2, <5.0.7.2,

7.5CVSS8.3AI score0.94327EPSS
In wildWeb
CVE
CVE
added 2023/02/09 8:15 p.m.368 views

CVE-2023-22795

A regular expression based DoS vulnerability in Action Dispatch <6.1.7.1 and

7.5CVSS7.3AI score0.00492EPSS
CVE
CVE
added 2019/03/27 2:29 p.m.284 views

CVE-2019-5420

A remote code execution vulnerability in development mode Rails <5.2.2.1,

9.8CVSS9.5AI score0.9338EPSS
Web
CVE
CVE
added 2013/01/13 10:55 p.m.282 views

CVE-2013-0156

active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a d...

7.5CVSS9.6AI score0.91941EPSS
CVE
CVE
added 2022/02/11 10:15 p.m.278 views

CVE-2022-23634

Puma is a Ruby/Rack web server built for parallelism. Prior to puma version 5.6.2, puma may not always call close on the response body. Rails, prior to version 7.0.2.2, depended on the response body being closed in order for its CurrentAttributes implementation to work correctly. The combination of...

8CVSS6.4AI score0.00402EPSS
CVE
CVE
added 2021/02/11 6:15 p.m.274 views

CVE-2021-22880

The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the money type of the PostgreSQL adapter in Active Record to spend too much time in a regular...

7.5CVSS7.1AI score0.06365EPSS
CVE
CVE
added 2023/02/09 8:15 p.m.256 views

CVE-2023-22792

A regular expression based DoS vulnerability in Action Dispatch <6.0.6.1,< 6.1.7.1, and

7.5CVSS7.3AI score0.01152EPSS
CVE
CVE
added 2019/03/27 2:29 p.m.254 views

CVE-2019-5419

There is a possible denial of service vulnerability in Action View (Rails) <5.2.2.1, <5.1.6.2, <5.0.7.2,

7.8CVSS8.1AI score0.04121EPSS
Web
CVE
CVE
added 2016/04/07 11:59 p.m.229 views

CVE-2016-2097

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists ...

5.3CVSS6.3AI score0.92461EPSS
In wild
CVE
CVE
added 2020/06/19 6:15 p.m.227 views

CVE-2020-8165

A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails

9.8CVSS9.1AI score0.81734EPSS
CVE
CVE
added 2021/06/11 4:15 p.m.227 views

CVE-2021-22902

The actionpack ruby gem (a framework for handling and responding to web requests in Rails) before 6.0.3.7, 6.1.3.2 suffers from a possible denial of service vulnerability in the Mime type parser of Action Dispatch. Carefully crafted Accept headers can cause the mime type parser in Action Dispatch t...

7.5CVSS7.2AI score0.01304EPSS
CVE
CVE
added 2021/05/27 12:15 p.m.220 views

CVE-2021-22885

A possible information disclosure / unintended method execution vulnerability in Action Pack >= 2.0.0 when using the redirect_to or polymorphic_urlhelper with untrusted user input.

7.5CVSS7.2AI score0.00787EPSS
CVE
CVE
added 2020/07/02 7:15 p.m.216 views

CVE-2020-8166

A CSRF forgery vulnerability exists in rails < 5.2.5, rails

4.3CVSS4.5AI score0.00243EPSS
Web
CVE
CVE
added 2020/06/19 5:15 p.m.203 views

CVE-2020-8164

A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails

7.5CVSS8AI score0.04017EPSS
CVE
CVE
added 2020/07/02 7:15 p.m.194 views

CVE-2020-8185

A denial of service vulnerability exists in Rails

6.5CVSS6.2AI score0.00477EPSS
CVE
CVE
added 2022/02/11 9:15 p.m.193 views

CVE-2022-23633

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to data ...

7.4CVSS6.3AI score0.00271EPSS
CVE
CVE
added 2020/06/19 6:15 p.m.190 views

CVE-2020-8167

A CSRF vulnerability exists in rails

6.5CVSS7.5AI score0.00347EPSS
Web
CVE
CVE
added 2020/07/02 7:15 p.m.187 views

CVE-2020-8163

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the locals argument of a render call to perform a RCE.

8.8CVSS8.5AI score0.83251EPSS
Web
CVE
CVE
added 2012/06/22 2:55 p.m.180 views

CVE-2012-2695

The Active Record component in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly implement the passing of request data to a where method in an ActiveRecord class, which allows remote attackers to conduct certain SQL injection attacks via nested query paramete...

7.5CVSS7.4AI score0.02508EPSS
Web
CVE
CVE
added 2024/02/27 4:15 p.m.169 views

CVE-2024-26143

Rails is a web-application framework. There is a possible XSS vulnerability when using the translation helpers in Action Controller. Applications using translation methods like translate, or t on a controller, with a key ending in "_html", a :default key which contains untrusted user input, and the...

6.1CVSS6AI score0.01301EPSS
CVE
CVE
added 2024/02/27 4:15 p.m.151 views

CVE-2024-26144

Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user's session cookie when serving blobs. It also sets Cache-Control to public. Certain pr...

5.3CVSS5.2AI score0.02507EPSS
Web
CVE
CVE
added 2021/02/11 6:15 p.m.139 views

CVE-2021-22881

The Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redirect vulnerability. Specially crafted Host headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to redirect users to a malicious website...

6.1CVSS6AI score0.06304EPSS
CVE
CVE
added 2021/06/11 4:15 p.m.136 views

CVE-2021-22904

The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the Token Authentication logic in Action Controller due to a too permissive regular expression. Impacted code uses authenticate_or_request_with_http_token or authenticate_with_...

7.5CVSS7.4AI score0.0618EPSS
CVE
CVE
added 2013/01/30 12:0 p.m.132 views

CVE-2013-0333

lib/active_support/json/backends/yaml.rb in Ruby on Rails 2.3.x before 2.3.16 and 3.0.x before 3.0.20 does not properly convert JSON data to YAML data for processing by a YAML parser, which allows remote attackers to execute arbitrary code, conduct SQL injection attacks, or bypass authentication vi...

7.5CVSS10AI score0.91941EPSS
Web
CVE
CVE
added 2012/06/22 2:55 p.m.127 views

CVE-2012-2660

actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended databas...

6.4CVSS7.3AI score0.00387EPSS
CVE
CVE
added 2013/01/13 10:55 p.m.125 views

CVE-2013-0155

Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NULL...

6.4CVSS7.5AI score0.16131EPSS
Web
CVE
CVE
added 2012/06/22 2:55 p.m.122 views

CVE-2012-2661

The Active Record component in Ruby on Rails 3.0.x before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly implement the passing of request data to a where method in an ActiveRecord class, which allows remote attackers to conduct certain SQL injection attacks via nested query pa...

5CVSS7.3AI score0.02508EPSS
Web
CVE
CVE
added 2014/02/20 3:27 p.m.120 views

CVE-2014-0081

Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2 allow remote attackers to inject arbitrary web script or HTML via the (1) format, (2) negative_format, or (3) u...

4.3CVSS5.9AI score0.00664EPSS
CVE
CVE
added 2013/03/19 10:55 p.m.118 views

CVE-2013-1854

The Active Record component in Ruby on Rails 2.3.x before 2.3.18, 3.1.x before 3.1.12, and 3.2.x before 3.2.13 processes certain queries by converting hash keys to symbols, which allows remote attackers to cause a denial of service via crafted input to a where method.

5CVSS6.3AI score0.01795EPSS
CVE
CVE
added 2023/02/09 8:15 p.m.117 views

CVE-2023-22797

An open redirect vulnerability is fixed in Rails 7.0.4.1 with the new protection against open redirects from calling redirect_to with untrusted user input. In prior versions the developer was fully responsible for only providing trusted input. However the check introduced could allow an attacker to...

6.1CVSS5.8AI score0.00509EPSS
CVE
CVE
added 2013/03/19 10:55 p.m.115 views

CVE-2013-1855

The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline) characters, which makes it easier for remote attackers to ...

4.3CVSS5.5AI score0.00536EPSS
CVE
CVE
added 2013/02/13 1:55 a.m.114 views

CVE-2013-0277

ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +serialize+ helper to deserialize arbitrary YAML.

10CVSS7.5AI score0.07162EPSS
CVE
CVE
added 2020/06/19 5:15 p.m.113 views

CVE-2020-8162

A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails

7.5CVSS7.2AI score0.01137EPSS
CVE
CVE
added 2012/08/10 10:34 a.m.112 views

CVE-2012-3464

Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.

4.3CVSS5.3AI score0.00333EPSS
CVE
CVE
added 2016/02/16 2:59 a.m.112 views

CVE-2016-0751

actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, which allows remote attackers to cause a denial of service (me...

7.5CVSS5.8AI score0.01233EPSS
CVE
CVE
added 2012/06/22 2:55 p.m.111 views

CVE-2012-2694

actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended databas...

4.3CVSS7.3AI score0.00387EPSS
CVE
CVE
added 2013/01/04 4:46 a.m.111 views

CVE-2012-6496

SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x before 3.1.9, and 3.2.x before 3.2.10 allows remote attackers to execute arbitrary SQL commands via a crafted request that leverages incorrect behavior of dynamic finders in applications that can use un...

7.5CVSS8AI score0.02213EPSS
CVE
CVE
added 2013/10/17 12:55 a.m.110 views

CVE-2013-4389

Multiple format string vulnerabilities in log_subscriber.rb files in the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15 allow remote attackers to cause a denial of service via a crafted e-mail address that is improperly handled during construction of a log message.

4.3CVSS6.5AI score0.01333EPSS
CVE
CVE
added 2024/02/27 4:15 p.m.107 views

CVE-2024-26142

Rails is a web-application framework. Starting in version 7.1.0, there is a possible ReDoS vulnerability in the Accept header parsing routines of Action Dispatch. This vulnerability is patched in 7.1.3.1. Ruby 3.2 has mitigations for this problem, so Rails applications using Ruby 3.2 or newer are u...

7.5CVSS7.4AI score0.01498EPSS
CVE
CVE
added 2011/02/14 9:0 p.m.106 views

CVE-2011-0446

Multiple cross-site scripting (XSS) vulnerabilities in the mail_to helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbitrary web script or HTML via a crafted (1) name or (2) email value.

4.3CVSS5.4AI score0.0067EPSS
CVE
CVE
added 2021/10/18 1:15 p.m.106 views

CVE-2021-22942

A possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 that could allow attackers to redirect users to a malicious website.

6.1CVSS6AI score0.00382EPSS
CVE
CVE
added 2009/09/08 6:30 p.m.105 views

CVE-2009-3086

A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x before 2.3.4, leaks information about the complexity of message-digest signature verification in the cookie store, which might allow remote attackers to forge a digest via multiple attempts.

5CVSS9AI score0.00556EPSS
CVE
CVE
added 2013/12/07 12:55 a.m.105 views

CVE-2013-6415

Cross-site scripting (XSS) vulnerability in the number_to_currency helper in actionpack/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via the unit parameter.

4.3CVSS5.4AI score0.01506EPSS
CVE
CVE
added 2013/03/19 10:55 p.m.104 views

CVE-2013-1857

The sanitize helper in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle encoded : (colon) characters in URLs, which makes it easier for remote atta...

4.3CVSS5.4AI score0.00625EPSS
CVE
CVE
added 2016/02/16 2:59 a.m.103 views

CVE-2016-0753

Active Model in Ruby on Rails 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 supports the use of instance-level writers for class accessors, which allows remote attackers to bypass intended validation steps via crafted parameters.

5.3CVSS5.4AI score0.03741EPSS
CVE
CVE
added 2016/04/07 11:59 p.m.102 views

CVE-2016-2098

Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.

7.5CVSS6.5AI score0.83669EPSS
Web
CVE
CVE
added 2012/08/10 10:34 a.m.101 views

CVE-2012-3465

Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/sanitize_helper.rb in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup.

4.3CVSS5.5AI score0.00333EPSS
CVE
CVE
added 2013/02/13 1:55 a.m.101 views

CVE-2013-0276

ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and 3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection mechanism and modify protected model attributes via a crafted request.

4.3CVSS6.2AI score0.01439EPSS
Web
Total number of security vulnerabilities111