Vulnerabilities | Fluid Attacks Database

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

1

RubyGems

Total vulnerabilities tracked

20

From global vulnerability databases

Exclude malware

NO

Package rubygems-update

FLAT-Z50QL (CVE-2012-2125)

Uncontrolled external site redirect In rubygems-update

2.7

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-IZFVI (CVE-2012-2126)

Insecure digital certificates In rubygems-update

1.7

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-W1M9T (CVE-2015-4020)

Lack of data validation In rubygems-update

1.3

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-I2ZDJ (CVE-2013-4363)

Asymmetric denial of service - ReDoS In rubygems-update

2.7

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-9DQZI (CVE-2015-3900)

Lack of data validation In rubygems-update

1.3

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-ZQ3D4 (CVE-2013-4287)

Asymmetric denial of service In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-48DMX (CVE-2017-0900)

Lack of data validation In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-V9G4Y (CVE-2018-1000074)

Insecure deserialization In rubygems-update

5.7

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-ZKMXL (CVE-2018-1000075)

Inappropriate coding practices In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-IPZDR (CVE-2017-0901)

Lack of data validation - Path Traversal In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-SBHNV (CVE-2017-0903)

Insecure deserialization In rubygems-update

8.1

High

Ecosystem: RubyGems

Package: rubygems-update

FLAT-S737P (CVE-2017-0899)

Server side template injection In rubygems-update

8.1

High

Ecosystem: RubyGems

Package: rubygems-update

FLAT-PPXAG (CVE-2017-0902)

Lack of data validation In rubygems-update

7.2

High

Ecosystem: RubyGems

Package: rubygems-update

FLAT-AT3U9 (CVE-2007-0469)

Insecure file upload In rubygems-update

1.3

Low

Ecosystem: RubyGems

Package: rubygems-update

FLAT-K7957 (CVE-2019-8325)

Lack of data validation In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-OZ1X1 (CVE-2019-8320)

Lack of data validation - Path Traversal In rubygems-update

4.9

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-NJ7KL (CVE-2019-8324)

Server side template injection In rubygems-update

6.3

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-MMI2I (CVE-2019-8321)

Insecure functionality In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-TU1I8 (CVE-2019-8322)

Lack of data validation In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update

FLAT-T66PN (CVE-2019-8323)

Lack of data validation In rubygems-update

6.6

Medium

Ecosystem: RubyGems

Package: rubygems-update