Vulnerability Library

search
ID
Packages
Summary
Affected versions
Published
Fix
GHSA-3qc2-v3hp-6cv8
  • RubyGems/sidekiq
 sidekiq Denial of Service vulnerability
  • 0.10.0
  • 0.10.1
  • 0.11.0
  • 0.11.1
  • 0.11.2
  • 0.5.0
  • 0.5.1
  • ...
 2023-09-14T06:30:19Z Fix available
GHSA-cr5q-6q9f-rq6q
  • RubyGems/activesupport
  • RubyGems/activesupport
 Active Support Possibly Discloses Locally Encrypted Files
  • 5.2.0
  • 5.2.1
  • 5.2.1.1
  • 5.2.1.rc1
  • 5.2.2
  • 5.2.2.1
  • 5.2.2.rc1
  • ...
 2023-08-23T20:36:24Z Fix available
GHSA-68xg-gqqm-vgj8
  • RubyGems/puma
  • RubyGems/puma
 Puma HTTP Request/Response Smuggling vulnerability
  • 0.8.0
  • 0.8.1
  • 0.8.2
  • 0.9.0
  • 0.9.1
  • 0.9.2
  • 0.9.3
  • ...
 2023-08-18T21:50:05Z Fix available
MAL-2023-1436
Malicious code in puppet-module-posix-system-r3.2 (RubyGems)
  • 1.0.0
 2023-08-10T15:30:28Z No fix available
MAL-2023-1433
Malicious code in puppet-module-posix-system-r (RubyGems)
  • 1.0.0
 2023-08-09T17:50:27Z No fix available
GHSA-7vh7-fw88-wj87
  • RubyGems/commonmarker
 Several quadratic complexity bugs may lead to denial of service in Commonmarker
  • 0.0.1
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.3
  • 0.10.0
  • 0.11.0
  • ...
 2023-08-08T17:12:00Z Fix available
GHSA-6jwc-qr2q-7xwj
  • RubyGems/protocol-http1
 protocol-http1 HTTP Request/Response Smuggling vulnerability
  • 0.1.0
  • 0.10.0
  • 0.10.1
  • 0.10.2
  • 0.10.3
  • 0.11.0
  • 0.11.1
  • ...
 2023-08-03T16:36:34Z Fix available
MAL-2023-1426
Malicious code in google-apis-androidpublisher_v2 (RubyGems)
  • 0.0
 2023-07-19T06:30:24Z No fix available
MAL-2023-1434
Malicious code in systemd-daemon (RubyGems)
  • 0.0.1
 2023-07-17T06:15:48Z No fix available
MAL-2023-1430
Malicious code in naveen4gem (RubyGems)
  • 1.1.0
 2023-07-16T13:00:16Z No fix available
MAL-2023-1431
Malicious code in naveengem (RubyGems)
  • 0.1.0
 2023-07-15T09:45:22Z No fix available
GHSA-vc79-65pr-q82v
  • RubyGems/rswag
 rswag vulnerable to arbitrary JSON and YAML file read via directory traversal
  • 1.0.0
  • 1.0.1
  • 1.0.2
  • 1.0.3
  • 1.1.0
  • 1.2.0
  • 1.2.1
  • ...
 2023-07-15T00:30:34Z Fix available
GHSA-469h-mqg8-535r
  • RubyGems/decidim
  • RubyGems/decidim-core
  • RubyGems/decidim-core
  • RubyGems/decidim
 Decidim Cross-site Scripting vulnerability in the external link redirections
  • 0.25.0
  • 0.25.1
  • 0.25.2
  • 0.26.0
  • 0.26.0.rc2
  • 0.26.1
  • 0.26.2
  • ...
 2023-07-11T22:47:01Z Fix available
GHSA-5652-92r9-3fx9
  • RubyGems/decidim
  • RubyGems/decidim
  • RubyGems/decidim-core
  • RubyGems/decidim-core
 Decidim Cross-site Scripting vulnerability in the processes filter
  • 0.14.1
  • 0.14.2
  • 0.14.3
  • 0.14.4
  • 0.15.0
  • 0.15.1
  • 0.15.2
  • ...
 2023-07-11T22:46:57Z Fix available
GHSA-jm79-9pm4-vrw9
  • RubyGems/decidim
  • RubyGems/decidim-meetings
 Decidim vulnerable to sensitive data disclosure
  • 0.27.0
  • 0.27.1
  • 0.27.2
  • 0.27.0
  • 0.27.1
  • 0.27.2
 2023-07-11T22:46:51Z Fix available
GHSA-6628-q6j9-w8vg
  • Maven/io.grpc:grpc-protobuf
  • PyPI/grpcio
  • RubyGems/grpc
 gRPC Reachable Assertion issue
  • 0.12.0
  • 0.13.0
  • 0.13.1
  • 0.13.2
  • 0.14.0
  • 0.14.1
  • 0.15.0
  • ...
 2023-07-06T21:15:08Z Fix available
Load more...