pkg:gem/paperclip
Type
gem
Name
paperclip
Known advisories, vulnerabilities and fixes for paperclip package.
- Repository
- https://rubygems.org/gems/paperclip
Critical
1
Medium
1
None
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 4.0.0 |
 RUBYSEC:PAPERCLIP-103151
|
Paperclip: Access Restriction Bypass |
2014-01-31T00:00:00
(10 years ago) |
|||
| Fixed | >= 4.0.0 |
RUBYSEC:PAPERCLIP-103151
|
Paperclip: Access Restriction Bypass |
2014-01-31T00:00:00
(10 years ago) |
|||
| Affected | < 4.2.2 |
CVE-2015-2963
|
RUBYSEC:PAPERCLIP-2015-2963
|
Paperclip Gem for Ruby vulnerable to content type spoofing | medium |
2015-06-05T00:00:00
(9 years ago) |
|
| Fixed | >= 4.2.2 |
CVE-2015-2963
|
RUBYSEC:PAPERCLIP-2015-2963
|
Paperclip Gem for Ruby vulnerable to content type spoofing | medium |
2015-06-05T00:00:00
(9 years ago) |
|
| Affected | < 5.2.0 |
CVE-2017-0889
|
RUBYSEC:PAPERCLIP-2017-0889
|
Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class. | critical |
2018-01-23T00:00:00
(6 years ago) |
|
| Fixed | >= 5.2.0 |
CVE-2017-0889
|
RUBYSEC:PAPERCLIP-2017-0889
|
Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class. | critical |
2018-01-23T00:00:00
(6 years ago) |