Whoops, I couldn't find that page - RubySec

You may want to try a search above, or [visit the homepage](/). Also, here are some recent posts:

Sep 14

CVE-2023-26141 (sidekiq): sidekiq Denial of Service vulnerability

posted in •

Aug 23

CVE-2023-38037 (activesupport): Possible File Disclosure of Locally Encrypted Files

posted in •

Aug 18

GHSA-68xg-gqqm-vgj8 (puma): Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in puma

posted in •

Aug 18

CVE-2023-40175 (puma): Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in puma

posted in •

Aug 08

GHSA-7vh7-fw88-wj87 (commonmarker): Several quadratic complexity bugs may lead to denial of service in Commonmarker

posted in •

Aug 03

CVE-2023-38697 (protocol-http1): protocol-http1 HTTP Request/Response Smuggling vulnerability

posted in •

Jul 15

CVE-2023-38337 (rswag): rswag vulnerable to arbitrary JSON and YAML file read via directory traversal

posted in •

Jul 11

CVE-2023-34090 (decidim): Decidim vulnerable to sensitive data disclosure

posted in •

Jul 11

CVE-2023-34089 (decidim): Decidim Cross-site Scripting vulnerability in the processes filter

posted in •

Jul 11

CVE-2023-32693 (decidim): Decidim Cross-site Scripting vulnerability in the external link redirections

posted in •