pkg:gem/paperclip
Type
gem
Name
paperclip
Known advisories, vulnerabilities and fixes for paperclip package.
- Repository
- https://rubygems.org/gems/paperclip
Critical
1
Medium
1
None
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 4.0.0 | RUBYSEC:PAPERCLIP-103151 | Paperclip: Access Restriction Bypass |
2014-01-31T00:00:00
(10 years ago) |
|||
Fixed | >= 4.0.0 | RUBYSEC:PAPERCLIP-103151 | Paperclip: Access Restriction Bypass |
2014-01-31T00:00:00
(10 years ago) |
|||
Affected | < 4.2.2 |
CVE-2015-2963
|
RUBYSEC:PAPERCLIP-2015-2963 | Paperclip Gem for Ruby vulnerable to content type spoofing | medium |
2015-06-05T00:00:00
(9 years ago) |
|
Fixed | >= 4.2.2 |
CVE-2015-2963
|
RUBYSEC:PAPERCLIP-2015-2963 | Paperclip Gem for Ruby vulnerable to content type spoofing | medium |
2015-06-05T00:00:00
(9 years ago) |
|
Affected | < 5.2.0 |
CVE-2017-0889
|
RUBYSEC:PAPERCLIP-2017-0889 | Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class. | critical |
2018-01-23T00:00:00
(6 years ago) |
|
Fixed | >= 5.2.0 |
CVE-2017-0889
|
RUBYSEC:PAPERCLIP-2017-0889 | Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class. | critical |
2018-01-23T00:00:00
(6 years ago) |