actionpack
RubyGems61 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting actionpackpage 1 of 2
- CVE-2008-7248NONECVSS 0.0EG 0.0✓ Fixed in 2.2.22009-12-16
Ruby on Rails 2.1 before 2.1.3 and 2.2.x before 2.2.2 does not verify tokens for requests with certain content types, which allows remote attackers to bypass cross-site request forgery (CSRF) protection for requests to applications that re…
- CVE-2009-3009NONECVSS 0.0EG 0.0✓ Fixed in 2.3.42009-09-08
vulnerable: 2.3.2, 2.3.3
Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper.
- CVE-2009-3086NONECVSS 0.0EG 0.0✓ Fixed in 2.3.42009-09-08
vulnerable: 2.3.2, 2.3.3
A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x before 2.3.4, leaks information about the complexity of message-digest signature verification in the cookie store, which might allow remote attackers to forge a digest via…
- CVE-2011-0446NONECVSS 0.0EG 0.0✓ Fixed in 3.0.42011-02-14
vulnerable: 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4.rc1
Multiple cross-site scripting (XSS) vulnerabilities in the mail_to helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbitrary web script or HTML via a crafted (…
- CVE-2011-0447NONECVSS 0.0EG 0.0✓ Fixed in 3.0.42011-02-14
vulnerable: 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4.rc1
Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before 3.0.4, does not properly validate HTTP requests that contain an X-Requested-With header, which makes it easier for remote attackers to conduct cross-site request forgery (…
- CVE-2011-0449NONECVSS 0.0EG 0.0✓ Fixed in 3.0.42011-02-21
vulnerable: 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4.rc1
actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attac…
- CVE-2011-1497MEDIUMCVSS 6.1EG 6.1✓ Fixed in 3.0.62021-10-19
vulnerable: 3.0.0 ... 3.0.6.rc2 (12 versions)
A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.
- CVE-2011-2197NONECVSS 0.0EG 0.0✓ Fixed in 3.0.82011-06-30
vulnerable: 3.0.0 ... 3.0.8.rc4 (17 versions)
The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct X…
- CVE-2011-2929NONECVSS 0.0EG 0.0✓ Fixed in 3.0.102011-08-29
vulnerable: 3.0.0 ... 3.0.9.rc5 (24 versions)
The template selection functionality in actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly handle glob characters, which allows remote attackers to render arbit…
- CVE-2011-2931NONECVSS 0.0EG 0.0✓ Fixed in 3.0.102011-08-29
vulnerable: 3.0.0 ... 3.0.9.rc5 (24 versions)
Cross-site scripting (XSS) vulnerability in the strip_tags helper in actionpack/lib/action_controller/vendor/html-scanner/html/node.rb in Ruby on Rails before 2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allows remote attackers …
- CVE-2011-3186NONECVSS 0.0EG 0.0✓ Fixed in 2.3.132011-08-29
vulnerable: 2.3.10 ... 2.3.9.pre (13 versions)
CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type hea…
- CVE-2011-3187NONECVSS 0.0EG 0.0✓ Fixed in 2.3.132011-08-29
vulnerable: 2.3.10 ... 2.3.9.pre (13 versions)
The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject …
- CVE-2011-4319NONECVSS 0.0EG 0.0✓ Fixed in 3.1.22011-11-28
vulnerable: 3.1.0 ... 3.1.2.rc2 (7 versions)
Cross-site scripting (XSS) vulnerability in the i18n translations helper method in Ruby on Rails 3.0.x before 3.0.11 and 3.1.x before 3.1.2, and the rails_xss plugin in Ruby on Rails 2.3.x, allows remote attackers to inject arbitrary web s…
- CVE-2012-1099NONECVSS 0.0EG 0.0✓ Fixed in 3.2.22012-03-13
vulnerable: 3.2.0, 3.2.1, 3.2.2.rc1
Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_options_helper.rb in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject a…
- CVE-2012-2660NONECVSS 0.0EG 0.0✓ Fixed in 2.3.162012-06-22
vulnerable: 0.9.0 ... 2.3.9.pre (60 versions)
actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences in parameter handling between the Active Record component and the Rack interfa…
- CVE-2012-2694NONECVSS 0.0EG 0.0✓ Fixed in 3.2.62012-06-22
vulnerable: 3.2.0 ... 3.2.5 (10 versions)
actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly consider differences in parameter handling between the Active Record component and the Rack interfa…
- CVE-2012-3424NONECVSS 0.0EG 0.0✓ Fixed in 2.3.52012-08-08
vulnerable: 0.9.0 ... 2.3.4 (48 versions)
The decode_credentials method in actionpack/lib/action_controller/metal/http_authentication.rb in Ruby on Rails 3.x before 3.0.16, 3.1.x before 3.1.7, and 3.2.x before 3.2.7 converts Digest Authentication strings to symbols, which allows r…
- CVE-2012-3463NONECVSS 0.0EG 0.0✓ Fixed in 3.2.82012-08-10
vulnerable: 3.2.0 ... 3.2.8.rc2 (15 versions)
Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_tag_helper.rb in Ruby on Rails 3.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML…
- CVE-2012-3465NONECVSS 0.0EG 0.0✓ Fixed in 2.3.162012-08-10
vulnerable: 0.9.0 ... 2.3.9.pre (60 versions)
Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/sanitize_helper.rb in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitra…
- CVE-2013-0156NONECVSS 0.0EG 9.0✓ Fixed in 3.2.112013-01-13
vulnerable: 3.2.0 ... 3.2.9.rc3 (21 versions)
active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which allows remote attackers to conduct objec…
- CVE-2013-1855NONECVSS 0.0EG 0.0✓ Fixed in 3.2.132013-03-19
vulnerable: 3.2.0 ... 3.2.9.rc3 (25 versions)
The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline…
- CVE-2013-1857NONECVSS 0.0EG 0.0✓ Fixed in 3.2.132013-03-19
vulnerable: 3.2.0 ... 3.2.9.rc3 (25 versions)
The sanitize helper in lib/action_controller/vendor/html-scanner/html/sanitizer.rb in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before 3.1.12, and 3.2.x before 3.2.13 does not properly handle encoded : (colo…
- CVE-2013-4491NONECVSS 0.0EG 0.0✓ Fixed in 4.0.22013-12-07
vulnerable: 4.0.0 ... 4.0.1.rc4 (6 versions)
Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/translation_helper.rb in the internationalization component in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary …
- CVE-2013-6414NONECVSS 0.0EG 0.0✓ Fixed in 4.0.22013-12-07
vulnerable: 4.0.0 ... 4.0.1.rc4 (6 versions)
actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that…
- CVE-2013-6415NONECVSS 0.0EG 0.0✓ Fixed in 4.0.22013-12-07
vulnerable: 4.0.0 ... 4.0.1.rc4 (6 versions)
Cross-site scripting (XSS) vulnerability in the number_to_currency helper in actionpack/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or …
- CVE-2013-6416NONECVSS 0.0EG 0.0✓ Fixed in 4.0.22013-12-07
vulnerable: 4.0.0 ... 4.0.1.rc4 (6 versions)
Cross-site scripting (XSS) vulnerability in the simple_format helper in actionpack/lib/action_view/helpers/text_helper.rb in Ruby on Rails 4.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML a…
- CVE-2013-6417NONECVSS 0.0EG 0.0✓ Fixed in 4.0.22013-12-07
vulnerable: 4.0.0 ... 4.0.1.rc4 (6 versions)
actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows r…
- CVE-2014-0081NONECVSS 0.0EG 0.0✓ Fixed in 4.0.32014-02-20
vulnerable: 4.0.0 ... 4.0.2 (7 versions)
Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2 allow remote attackers to inject arbitrary web scri…
- CVE-2014-0082NONECVSS 0.0EG 0.0✓ Fixed in 3.2.172014-02-20
vulnerable: 3.0.0 ... 3.2.9.rc3 (101 versions)
actionpack/lib/action_view/template/text.rb in Action View in Ruby on Rails 3.x before 3.2.17 converts MIME type strings to symbols during use of the :text option to the render method, which allows remote attackers to cause a denial of ser…
- CVE-2014-0130HIGHCVSS 7.5EG 9.0⚠ KEV✓ Fixed in 4.1.12014-05-07
vulnerable: 4.1.0
Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails before 3.2.18, 4.0.x before 4.0.5, and 4.1.x before 4.1.1, when certain route globbing configurations ar…
- CVE-2014-7818NONECVSS 0.0EG 0.0✓ Fixed in 4.2.0.beta32014-11-08
vulnerable: 4.2.0.beta1, 4.2.0.beta2
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when serve_static_assets is …
- CVE-2014-7829NONECVSS 0.0EG 0.0✓ Fixed in 4.2.0.beta42014-11-18
vulnerable: 4.2.0.beta1, 4.2.0.beta2, 4.2.0.beta3
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is …
- CVE-2015-7576LOWCVSS 3.7EG 3.7✓ Fixed in 4.1.14.12016-02-16
vulnerable: 4.0.0 ... 4.1.9.rc1 (60 versions)
The http_basic_authenticate_with method in actionpack/lib/action_controller/metal/http_authentication.rb in the Basic Authentication implementation in Action Controller in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2…
- CVE-2015-7581HIGHCVSS 7.5EG 7.5✓ Fixed in 4.2.5.12016-02-16
vulnerable: 4.0.0 ... 4.2.5.rc2 (87 versions)
actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous caching and memory consumption) by levera…
- CVE-2016-0751HIGHCVSS 7.5EG 7.5✓ Fixed in 4.1.14.12016-02-16
vulnerable: 4.0.0 ... 4.1.9.rc1 (60 versions)
actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, wh…
- CVE-2016-0752HIGHCVSS 7.5EG 9.0⚠ KEV✓ Fixed in 3.2.22.12016-02-16
vulnerable: 0.9.0 ... 3.2.9.rc3 (176 versions)
Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an applica…
- CVE-2016-2097MEDIUMCVSS 5.3EG 5.3✓ Fixed in 4.1.14.22016-04-07
vulnerable: 4.0.0 ... 4.1.9.rc1 (61 versions)
Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a …
- CVE-2016-2098HIGHCVSS 7.3EG 7.3✓ Fixed in 4.2.5.22016-04-07
vulnerable: 4.2.0 ... 4.2.5.rc2 (15 versions)
Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.
- CVE-2020-8164HIGHCVSS 7.5EG 7.5✓ Fixed in 6.0.3.12020-06-19
vulnerable: 6.0.0 ... 6.0.3.rc1 (10 versions)
A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails < 6.0.3.1 which can allow an attacker to supply information can be inadvertently leaked fromStrong Parameters.
- CVE-2020-8166MEDIUMCVSS 4.3EG 4.3✓ Fixed in 6.0.3.12020-07-02
vulnerable: 6.0.0 ... 6.0.3.rc1 (10 versions)
A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an attacker to, given a global CSRF token such as the one present in the authenticity_token meta tag, forge a per-form CSRF token.
- CVE-2020-8185MEDIUMCVSS 6.5EG 6.5✓ Fixed in 6.0.3.22020-07-02
vulnerable: 6.0.0 ... 6.0.3.rc1 (11 versions)
A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.
- CVE-2020-8264MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.0.3.42021-01-06
vulnerable: 6.0.0 ... 6.0.3.rc1 (13 versions)
In actionpack gem >= 6.0.0, a possible XSS vulnerability exists when an application is running in development mode allowing an attacker to send or embed (in another page) a specially crafted URL which can allow the attacker to execute Java…
- CVE-2021-22881MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.1.2.12021-02-11
vulnerable: 6.1.0, 6.1.1, 6.1.2
The Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redirect vulnerability. Specially crafted `Host` headers in combination with certain "allowed host" formats can cause the Host Authorization midd…
- CVE-2021-22885HIGHCVSS 7.5EG 7.5✓ Fixed in 5.2.4.62021-05-27
vulnerable: 2.0.0 ... 5.2.4.rc1 (320 versions)
A possible information disclosure / unintended method execution vulnerability in Action Pack >= 2.0.0 when using the `redirect_to` or `polymorphic_url`helper with untrusted user input.
- CVE-2021-22902HIGHCVSS 7.5EG 7.5✓ Fixed in 6.1.3.22021-06-11
vulnerable: 6.1.0 ... 6.1.3.1 (6 versions)
The actionpack ruby gem (a framework for handling and responding to web requests in Rails) before 6.0.3.7, 6.1.3.2 suffers from a possible denial of service vulnerability in the Mime type parser of Action Dispatch. Carefully crafted Accept…
- CVE-2021-22903MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.1.3.22021-06-11
vulnerable: 6.1.0 ... 6.1.3.1 (7 versions)
The actionpack ruby gem before 6.1.3.2 suffers from a possible open redirect vulnerability. Specially crafted Host headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack to red…
- CVE-2021-22904HIGHCVSS 7.5EG 7.5✓ Fixed in 5.2.4.62021-06-11
vulnerable: 4.0.0 ... 5.2.4.rc1 (171 versions)
The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the Token Authentication logic in Action Controller due to a too permissive regular expression. Impacted code uses `…
- CVE-2021-22942MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.1.4.12021-10-18
vulnerable: 6.1.0 ... 6.1.4 (8 versions)
A possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 that could allow attackers to redirect users to a malicious website.
- CVE-2021-44528MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.1.4.22022-01-10
vulnerable: 6.1.0 ... 6.1.4.1 (9 versions)
A open redirect vulnerability exists in Action Pack >= 6.0.0 that could allow an attacker to craft a "X-Forwarded-Host" headers in combination with certain "allowed host" formats can cause the Host Authorization middleware in Action Pack t…
- CVE-2022-22577MEDIUMCVSS 6.1EG 6.1✓ Fixed in 7.0.2.42022-05-26
vulnerable: 7.0.0 ... 7.0.2.3 (6 versions)
An XSS Vulnerability in Action Pack >= 5.2.0 and < 5.2.0 that could allow an attacker to bypass CSP for non HTML like responses.
Check whether actionpack is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for actionpack CVEs against the assets you own.
Start Free Scan →