Rails CVEs and Security Vulnerabilities

Filtered by vendor Rubyonrails Subscriptions

Filtered by product Rails Subscriptions

Switch to Advanced Search (Beta)

Total 122 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2011-1497	1 Rubyonrails	1 Rails	2024-11-21	6.1 Medium
A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.
CVE-2010-3299	2 Debian, Rubyonrails	2 Debian Linux, Rails	2024-11-21	6.5 Medium
The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.

« first previous Page 7 of 7.