MEDIUM 4.8 RubyGems
GHSA-65cv-r6x7-79hv · CVE-2020-5267 Cross site scripting vulnerability in ActionView
Modified: 3/13/2026
package
RubyGems / actionview
pkg:rubygems/actionview
MEDIUM RubyGems
GHSA-75w6-p6mg-vh8j · CVE-2011-0446 Rails actionpack gem vulnerable to Cross-site Scripting
Modified: 11/28/2024
HIGH 7.5 RubyGems
GHSA-86g5-2wh3-gc9j · CVE-2019-5418 Path Traversal in Action View
Modified: 10/22/2025
MEDIUM 5.4 RubyGems
GHSA-cfjv-5498-mph5 · CVE-2020-15169 XSS in Action View
Modified: 3/13/2026
MEDIUM 6.1 RubyGems
GHSA-ch3h-j2vf-95pv · CVE-2022-27777 XSS Vulnerability in Action View tag helpers
Modified: 2/16/2024
HIGH 8.8 RubyGems
GHSA-cr3x-7m39-c6jq · BIT-rails-2020-8163, CVE-2020-8163 Remote code execution via user-provided local names in ActionView
Modified: 2/16/2024
HIGH 7.5 RubyGems
GHSA-m63j-wh5w-c252 · CVE-2019-5419 Denial of Service Vulnerability in Action View
Modified: 2/16/2024
MEDIUM 6.1 RubyGems
GHSA-pc3m-v286-2jwj · CVE-2016-6316 actionview Cross-site Scripting vulnerability
Modified: 2/20/2024
LOW RubyGems
GHSA-v55j-83pf-r9cq · CVE-2026-33168 Rails has a possible XSS vulnerability in its Action View tag helpers
Modified: 5/13/2026
MEDIUM 5.3 RubyGems
GHSA-vx9j-46rh-fqr8 · CVE-2016-2097 actionview contains Path Traversal vulnerability
Modified: 2/22/2024
MEDIUM 6.3 RubyGems
GHSA-xp5h-f8jf-rc8q · CVE-2023-23913 rails-ujs vulnerable to DOM Based Cross-site Scripting contenteditable HTML Elements
Modified: 1/9/2025
MEDIUM 6.5 RubyGems
GHSA-xq5j-gw7f-jgj8 · CVE-2020-8167 CSRF Vulnerability in rails-ujs
Modified: 2/16/2024
HIGH 7.5 RubyGems
GHSA-xrr4-p6fq-hjg7 · CVE-2016-0752 Directory traversal vulnerability in Action View in Ruby on Rails
Modified: 10/22/2025