This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
95f306a6-0aee-11eb-add4-08002728f74c | Rails -- Possible XSS vulnerability Ruby on Rails blog:
Discovery 2020-10-07 Entry 2020-10-10 rubygem-actionpack60 < 6.0.3.4 https://weblog.rubyonrails.org/2020/10/7/Rails-6-0-3-4-has-been-released/ CVE-2020-8264 |
8e670b85-706e-11eb-abb2-08002728f74c | Rails -- multiple vulnerabilities Ruby on Rails blog:
Discovery 2021-02-10 Entry 2021-02-17 rubygem-activerecord52 < 5.2.4.5 rubygem-actionpack60 rubygem-activerecord60 < 6.0.3.5 rubygem-actionpack61 rubygem-activerecord61 < 6.1.2.1 https://weblog.rubyonrails.org/2021/2/10/Rails-5-2-4-5-6-0-3-5-and-6-1-2-1-have-been-released/ https://discuss.rubyonrails.org/t/cve-2021-22880-possible-dos-vulnerability-in-active-record-postgresql-adapter/77129 https://discuss.rubyonrails.org/t/cve-2021-22881-possible-open-redirect-in-host-authorization-middleware/77130 CVE-2021-22880 CVE-2021-22881 |
feb8afdc-b3e5-11ea-9df5-08002728f74c | Rails -- permission vulnerability Ruby on Rails blog:
Discovery 2020-06-17 Entry 2020-06-22 rubygem-actionpack60 < 6.0.3.2 https://weblog.rubyonrails.org/2020/6/17/Rails-6-0-3-2-has-been-released/ https://github.com/rails/rails/blob/6-0-stable/actionpack/CHANGELOG.md https://groups.google.com/forum/#!topic/rubyonrails-security/pAe9EV8gbM0 CVE-2020-8185 |
f7a00ad7-ae75-11eb-8113-08002728f74c | Rails -- multiple vulnerabilities Ruby on Rails blog:
Discovery 2021-05-05 Entry 2021-05-07 rubygem-actionpack52 < 5.2.6 rubygem-actionpack60 < 6.0.3.7 rubygem-actionpack61 < 6.1.3.2 https://weblog.rubyonrails.org/2021/5/5/Rails-versions-6-1-3-2-6-0-3-7-5-2-4-6-and-5-2-6-have-been-released/ https://discuss.rubyonrails.org/t/cve-2021-22885-possible-information-disclosure-unintended-method-execution-in-action-pack/77868 https://discuss.rubyonrails.org/t/cve-2021-22902-possible-denial-of-service-vulnerability-in-action-dispatch/77866 https://discuss.rubyonrails.org/t/cve-2021-22903-possible-open-redirect-vulnerability-in-action-pack/77867 https://discuss.rubyonrails.org/t/cve-2021-22904-possible-dos-vulnerability-in-action-controller-token-authentication/77869 CVE-2021-22885 CVE-2021-22902 CVE-2021-22903 CVE-2021-22904 |
9db93f3d-c725-11ec-9618-000d3ac47524 | Rails -- XSS vulnerabilities Ruby on Rails blog:
Discovery 2022-04-26 Entry 2022-04-30 rubygem-actionpack52 < 5.2.7.1 rubygem-actionpack60 < 6.0.4.8 rubygem-actionpack61 < 6.1.5.1 rubygem-actionpack70 < 7.0.2.4 rubygem-actionview52 < 5.2.7.1 rubygem-actionview60 < 6.0.4.8 rubygem-actionview61 < 6.1.5.1 rubygem-actionview70 < 7.0.2.4 CVE-2022-22577 CVE-2022-27777 https://rubyonrails.org/2022/4/26/Rails-7-0-2-4-6-1-5-1-6-0-4-8-and-5-2-7-1-have-been-released |