Whoops, I couldn't find that page - RubySec

You may want to try a search above, or [visit the homepage](/). Also, here are some recent posts:

May 08

CVE-2026-44837 (view_component): view_component - System Test Entry Point Path Check Allows Sibling Directory Escape

posted in •

May 08

CVE-2026-44836 (view_component): view_component - Preview Route Can Dispatch Inherited Helper Methods'

posted in •

May 06

GHSA-v2fc-qm4h-8hqv (nokogiri): Nokogiri XSLT transform has a memory leak

posted in •

May 06

GHSA-c4rq-3m3g-8wgx (nokogiri): Nokogiri CSS selector tokenizer has regular expression backtracking

posted in •

May 04

CVE-2026-42258 (net-imap): net-imap vulnerable to command Injection via unvalidated Symbol inputs

posted in •

May 04

CVE-2026-42257 (net-imap): net-imap vulnerable to command Injection via "raw" arguments to multiple commands

posted in •

May 04

CVE-2026-42256 (net-imap): net-imap vulnerable to denial of service via high iteration count for `SCRAM-*` authentication

posted in •

May 04

CVE-2026-42246 (net-imap): net-imap vulnerable to STARTTLS stripping via invalid response timing

posted in •

May 04

CVE-2026-42245 (net-imap): net-imap has quadratic complexity when reading response literals

posted in •

Apr 17

GHSA-3jfp-46x4-xgfj (yard): yard - Possible arbitrary path traversal and file access via yard server

posted in •