Whoops, I couldn't find that page - RubySec

You may want to try a search above, or [visit the homepage](/). Also, here are some recent posts:

Mar 13

CVE-2023-28120 (activesupport): Possible XSS Security Vulnerability in SafeBuffer#bytesplice

posted in •

Mar 13

CVE-2023-27539 (rack): Possible Denial of Service Vulnerability in Rack’s header parsing

posted in •

Mar 03

CVE-2023-27530 (rack): Possible DoS Vulnerability in Multipart MIME parsing

posted in •

Feb 24

CVE-2022-36231 (pdf_info): Code injection in pdf_info

posted in •

Feb 01

CVE-2023-25015 (clockwork_web): CSRF Vulnerability with Rails < 5.2

posted in •

Jan 29

CVE-2023-0569 (publify_core): Publify contains Weak Password Requirements

posted in •

Jan 28

CVE-2023-23627 (sanitize): Improper neutralization of `noscript` element content may allow XSS in Sanitize

posted in •

Jan 24

GHSA-636f-xm5j-pj9m (commonmarker): Several quadratic complexity bugs may lead to denial of service in Commonmarker

posted in •

Jan 20

GHSA-q95h-cqrv-8jv5 (exiftool_vendored): ExifTool vulnerable to arbitrary code execution

posted in •

Jan 18

CVE-2023-22799 (globalid): ReDoS based DoS vulnerability in GlobalID

posted in •