pkg:gem/rails
Type
gem
Name
rails
Known advisories, vulnerabilities and fixes for rails package.
- Repository
- https://rubygems.org/gems/rails
Critical
1
High
2
Medium
7
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 1.1.6 = 1.1.0 |
CVE-2006-4111
|
 RUBYSEC:RAILS-2006-4111
|
High severity vulnerability that affects rails | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.1.6 |
CVE-2006-4111
|
RUBYSEC:RAILS-2006-4111
|
High severity vulnerability that affects rails | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Unaffected | < 1.1.0 |
CVE-2006-4111
|
RUBYSEC:RAILS-2006-4111
|
High severity vulnerability that affects rails | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 1.1.6 = 1.1.0 |
CVE-2006-4112
|
RUBYSEC:RAILS-2006-4112
|
High severity vulnerability that affects rails. | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.1.6 |
CVE-2006-4112
|
RUBYSEC:RAILS-2006-4112
|
High severity vulnerability that affects rails. | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Unaffected | < 1.1.0 |
CVE-2006-4112
|
RUBYSEC:RAILS-2006-4112
|
High severity vulnerability that affects rails. | high |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 1.2.5 |
CVE-2007-3227
|
RUBYSEC:RAILS-2007-3227
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.2.5 |
CVE-2007-3227
|
RUBYSEC:RAILS-2007-3227
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 1.2.5 |
CVE-2007-5379
|
RUBYSEC:RAILS-2007-5379
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.2.5 |
CVE-2007-5379
|
RUBYSEC:RAILS-2007-5379
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 1.2.4 |
CVE-2007-5380
|
RUBYSEC:RAILS-2007-5380
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.2.4 |
CVE-2007-5380
|
RUBYSEC:RAILS-2007-5380
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 1.2.6 |
CVE-2007-6077
|
RUBYSEC:RAILS-2007-6077
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 1.2.6 |
CVE-2007-6077
|
RUBYSEC:RAILS-2007-6077
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 2.0.5 |
CVE-2008-5189
|
RUBYSEC:RAILS-2008-5189
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | >= 2.0.5 |
CVE-2008-5189
|
RUBYSEC:RAILS-2008-5189
|
Moderate severity vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 2.3.3 |
CVE-2009-2422
|
RUBYSEC:RAILS-2009-2422
|
High Security Vulnerability with authenticate_with_http_digest of Rails | critical |
2009-07-10T00:00:00
(15 years ago) |
|
| Fixed | >= 2.3.3 |
CVE-2009-2422
|
RUBYSEC:RAILS-2009-2422
|
High Security Vulnerability with authenticate_with_http_digest of Rails | critical |
2009-07-10T00:00:00
(15 years ago) |
|
| Affected | < 2.3.5 |
CVE-2009-4214
|
RUBYSEC:RAILS-2009-4214
|
Moderate severity XSS vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | = 2.2.2 >= 2.3.5 |
CVE-2009-4214
|
RUBYSEC:RAILS-2009-4214
|
Moderate severity XSS vulnerability that affects rails | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Affected | < 4.1.0 |
CVE-2014-0081
|
RUBYSEC:RAILS-2014-0081
|
Rails vulnerable to Cross-site Scripting | medium |
2017-10-24T00:00:00
(7 years ago) |
|
| Fixed | = 3.2.17 = 4.0.3 = 4.1.0.beta2 >= 4.1.0 |
CVE-2014-0081
|
RUBYSEC:RAILS-2014-0081
|
Rails vulnerable to Cross-site Scripting | medium |
2017-10-24T00:00:00
(7 years ago) |