|
About the Security Announcements category
|
|
1
|
1518
|
February 10, 2021
|
|
[CVE-2022-44570] Possible Denial of Service Vulnerability in Rack's Range header parsing
|
|
0
|
444
|
January 17, 2023
|
|
[CVE-2022-44571] Possible Denial of Service Vulnerability in Rack Content-Disposition parsing
|
|
0
|
338
|
January 17, 2023
|
|
[CVE-2022-44572] Possible Denial of Service Vulnerability in Rack's RFC2183 boundary parsing
|
|
0
|
359
|
January 17, 2023
|
|
[CVE-2023-22799] Possible ReDoS based DoS vulnerability in GlobalID
|
|
0
|
249
|
January 17, 2023
|
|
[CVE-2023-22794] SQL Injection Vulnerability via ActiveRecord comments
|
|
0
|
1328
|
January 17, 2023
|
|
[CVE-2023-22795] Possible ReDoS based DoS vulnerability in Action Dispatch
|
|
0
|
820
|
January 17, 2023
|
|
[CVE-2022-44566] Possible Denial of Service Vulnerability in ActiveRecord's PostgreSQL adapter
|
|
0
|
947
|
January 17, 2023
|
|
[CVE-2023-22797] Possible Open Redirect Vulnerability in Action Pack
|
|
0
|
1063
|
January 17, 2023
|
|
[CVE-2023-22796] Possible ReDoS based DoS vulnerability in Active Support's underscore
|
|
0
|
845
|
January 17, 2023
|
|
[CVE-2023-22792] Possible ReDoS based DoS vulnerability in Action Dispatch
|
|
0
|
742
|
January 17, 2023
|
|
Rails-html-sanitizer v1.4.4 addresses multiple CVEs
|
|
0
|
960
|
December 13, 2022
|
|
[CVE-2022-32224] Possible RCE escalation bug with Serialized Columns in Active Record
|
|
0
|
22599
|
July 12, 2022
|
|
[CVE-2022-32209] Possible XSS Vulnerability in Rails::Html::Sanitizer
|
|
0
|
1785
|
June 9, 2022
|
|
[CVE-2022-30122] Denial of Service Vulnerability in Rack Multipart Parsing
|
|
0
|
2462
|
May 27, 2022
|
|
[CVE-2022-30123] Possible shell escape sequence injection vulnerability in Rack
|
|
0
|
2861
|
May 27, 2022
|
|
[CVE-2022-27777] Possible XSS Vulnerability in Action View tag helpers
|
|
0
|
7184
|
April 26, 2022
|
|
[CVE-2022-22577] Possible XSS Vulnerability in Action Pack
|
|
0
|
6518
|
April 26, 2022
|
|
[CVE-2022-21831] Possible code injection vulnerability in Rails / Active Storage
|
|
0
|
6357
|
March 8, 2022
|
|
[CVE-2022-23633] Possible exposure of information vulnerability in Action Pack
|
|
0
|
6284
|
February 11, 2022
|
|
Possible Open Redirect in Host Authorization Middleware
|
|
0
|
4306
|
December 14, 2021
|
|
[CVE-2021-22942] Possible Open Redirect in Host Authorization Middleware
|
|
0
|
5978
|
August 19, 2021
|
|
[CVE-2021-22904] Possible DoS Vulnerability in Action Controller Token Authentication
|
|
0
|
7173
|
May 5, 2021
|
|
[CVE-2021-22885] Possible Information Disclosure / Unintended Method Execution in Action Pack
|
|
0
|
4991
|
May 5, 2021
|
|
[CVE-2021-22903] Possible Open Redirect Vulnerability in Action Pack
|
|
0
|
5656
|
May 5, 2021
|
|
[CVE-2021-22902] Possible Denial of Service vulnerability in Action Dispatch
|
|
0
|
8560
|
May 5, 2021
|
|
[CVE-2021-22881] Possible Open Redirect in Host Authorization Middleware
|
|
0
|
6509
|
February 10, 2021
|
|
[CVE-2021-22880] Possible DoS Vulnerability in Active Record PostgreSQL adapter
|
|
0
|
8064
|
February 10, 2021
|
|
[CVE-2020-8264] Possible XSS Vulnerability in Action Pack in Development Mode
|
|
1
|
5030
|
October 16, 2020
|
