| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-53987 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | rails | rails-html-sanitizer | 低危 | - | 2024-12-02 21:15:49 | Deep Dive |
| CVE-2024-53986 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | rails | rails-html-sanitizer | 低危 | - | 2024-12-02 21:13:01 | Deep Dive |
| CVE-2024-53988 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | rails | rails-html-sanitizer | 低危 | - | 2024-12-02 21:09:56 | Deep Dive |
| CVE-2024-53989 | Possible XSS vulnerability with certain configurations of rails-html-sanitizer 1.6.0 | rails | rails-html-sanitizer | 低危 | - | 2024-12-02 21:07:04 | Deep Dive |
| CVE-2024-47889 | Action Mailer has possible ReDoS vulnerability in block_format | rails | rails | 低危 | - | 2024-10-16 20:55:34 | Deep Dive |
| CVE-2024-47888 | Action Text has possible ReDoS vulnerability in plain_text_for_blockquote_node | rails | rails | 低危 | - | 2024-10-16 20:31:06 | Deep Dive |
| CVE-2024-47887 | Action Controller has possible ReDoS vulnerability in HTTP Token authentication | rails | rails | 低危 | - | 2024-10-16 20:02:35 | Deep Dive |
| CVE-2024-41128 | Action Dispatch has possible ReDoS vulnerability in query parameter filtering | rails | rails | 低危 | - | 2024-10-16 18:04:43 | Deep Dive |
| CVE-2024-32464 | ActionText ContentAttachment can Contain Unsanitized HTML | rails | rails | Medium | 6.1 | 2024-06-04 19:54:00 | Deep Dive |
| CVE-2024-28103 | Action Pack is missing security headers on non-HTML responses | rails | rails | Medium | 5.4 | 2024-06-04 19:47:44 | Deep Dive |
| CVE-2024-26144 | Possible Sensitive Session Information Leak in Active Storage | rails | rails | Medium | 5.3 | 2024-02-27 15:44:04 | Deep Dive |
| CVE-2024-26143 | Rails Possible XSS Vulnerability in Action Controller | rails | rails | Medium | 6.1 | 2024-02-27 15:33:55 | Deep Dive |
| CVE-2024-26142 | Rails possible ReDoS vulnerability in Accept header parsing in Action Dispatch | rails | rails | High | 7.5 | 2024-02-27 15:25:44 | Deep Dive |
| CVE-2023-26153 | Geokit Rails 代码问题漏洞 | - | geokit-rails | High | 8.3 | 2023-10-06 05:00:01 | Deep Dive |
| CVE-2023-30614 | Improper Neutralization of Script-Related HTML Tags in a Web Page in pay | pay-rails | pay | High | 7.1 | 2023-04-19 17:28:31 | Deep Dive |
| CVE-2023-28846 | Denial of Service in unpoly-rails | unpoly | unpoly-rails | Medium | 5.9 | 2023-03-30 19:57:39 | Deep Dive |
| CVE-2015-10083 | harrystech Dynosaur-Rails application_controller.rb basic_auth improper authentication | harrystech | Dynosaur-Rails | Medium | 6.3 | 2023-02-21 15:00:06 | Deep Dive |
| CVE-2023-22796 | rubygem-activesupport 安全漏洞 | - | https://github.com/rails/rails | 高危 | - | 2023-02-09 00:00:00 | Deep Dive |
| CVE-2023-22794 | rubygem-activerecord SQL注入漏洞 | - | https://github.com/rails/rails | 高危 | - | 2023-02-09 00:00:00 | Deep Dive |
| CVE-2023-22795 | actionpack 安全漏洞 | - | https://github.com/rails/rails | 高危 | - | 2023-02-09 00:00:00 | Deep Dive |