MEDIUM 6.1 RubyGems
GHSA-9822-6m93-xqf4 · BIT-rails-2024-26143, CVE-2024-26143 Rails has possible XSS Vulnerability in Action Controller
Modified: 6/8/2026
package
RubyGems / rails
pkg:rubygems/rails
MEDIUM RubyGems
GHSA-9p3v-wf2w-v29c · CVE-2009-4214 Moderate severity vulnerability that affects rails
Modified: 4/9/2025
HIGH RubyGems
GHSA-9wrq-xvmp-xjc8 · CVE-2006-4112 Rails Denial of Service vulnerability
Modified: 4/3/2025
MEDIUM RubyGems
GHSA-fjfg-q662-gm6j · CVE-2007-5379 Moderate severity vulnerability that affects rails
Modified: 5/1/2025
MEDIUM RubyGems
GHSA-gm25-fpmr-43fj · CVE-2007-3227 Moderate severity vulnerability that affects rails
Modified: 4/9/2025
MEDIUM RubyGems
GHSA-jmgf-p46x-982h · CVE-2008-5189 rails is vulnerable to CRLF injection
Modified: 4/9/2025
MEDIUM RubyGems
GHSA-jwhv-rgqc-fqj5 · CVE-2007-5380 Session fixation vulnerability in Rails
Modified: 4/9/2025
MEDIUM RubyGems
GHSA-m46p-ggm5-5j83 · CVE-2014-0081 Rails vulnerable to Cross-site Scripting
Modified: 12/8/2024
MEDIUM RubyGems
GHSA-p4c6-77gc-694x · CVE-2007-6077 session fixation protection mechanism in cgi_process.rb in Rails
Modified: 4/9/2025
HIGH RubyGems
GHSA-rvpq-5xqx-pfpp · CVE-2006-4111 Ruby on Rails vulnerable to code injection
Modified: 4/3/2025
CRITICAL 9.8 RubyGems
GHSA-rxq3-gm4p-5fj4 · CVE-2009-2422 rails vulnerable to improper authentication
Modified: 2/16/2024