pkg:RubyGems/rails

All known vulnerabilities

• CRITICAL9.8CVE-2009-2422rails vulnerable to improper authentication
  from 0, < 2.3.3
• MEDIUM6.1CVE-2024-26143Rails Possible XSS Vulnerability in Action Controller
  >= 7.0.0, < 7.0.8.1
• —CVE-2009-4214rails - several
  from 0, < 2.2.2
• —CVE-2007-3227Moderate severity vulnerability that affects rails
  from 0, < 1.2.5
• —CVE-2008-5189rails is vulnerable to CRLF injection
  from 0, < 2.0.5
• —CVE-2007-5380Session fixation vulnerability in Rails
  from 0, < 1.2.4
• —CVE-2007-6077session fixation protection mechanism in cgi_process.rb in Rails
  from 0, < 1.2.6
• —CVE-2006-4111Ruby on Rails vulnerable to code injection
  >= 1.1.0, < 1.1.6
• —CVE-2007-5379Moderate severity vulnerability that affects rails
  from 0, < 1.2.4
• —CVE-2006-4112Rails Denial of Service vulnerability
  >= 1.1.0, < 1.1.6
• —CVE-2014-0081ruby-actionpack-3.2 - security update
  >= 3.0.0, < 3.2.17