Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/52055?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/52055?format=api", "purl": "pkg:gem/actionpack@3.2.0a", "type": "gem", "namespace": "", "name": "actionpack", "version": "3.2.0a", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "8.1.2.1", "latest_non_vulnerable_version": "8.1.2.1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37775?format=api", "vulnerability_id": "VCID-xee7-ge26-yfdc", "summary": "Arbitrary file existence disclosure\nSpecially crafted requests can be used to determine whether a file exists on the filesystem that is outside the Rails application's root directory. The files will not be served, but attackers can determine whether the file exists. This only impacts Rails applications that enable static file serving at runtime. For example, the application's production configuration will say: `config.serve_static_assets = true`", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7829.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7829.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7829", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50144", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50206", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7829" }, { "reference_url": "https://github.com/advisories/GHSA-h56m-vwxc-3qpw", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-h56m-vwxc-3qpw" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7829.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7829.yml" }, { "reference_url": "https://groups.google.com/forum/message/raw?msg=rubyonrails-security/rMTQy4oRCGk/loS_CRS8mNEJ", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/forum/message/raw?msg=rubyonrails-security/rMTQy4oRCGk/loS_CRS8mNEJ" }, { "reference_url": "https://groups.google.com/forum/#!topic/rubyonrails-security/rMTQy4oRCGk", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/forum/#!topic/rubyonrails-security/rMTQy4oRCGk" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-7829", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-7829" }, { "reference_url": "https://puppet.com/security/cve/cve-2014-7829", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://puppet.com/security/cve/cve-2014-7829" }, { "reference_url": "https://web.archive.org/web/20160403085126/http://www.securityfocus.com/bid/71183", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160403085126/http://www.securityfocus.com/bid/71183" }, { "reference_url": "http://weblog.rubyonrails.org/2014/11/19/Rails-4-0-11-1-and-4-1-7-1-have-been-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://weblog.rubyonrails.org/2014/11/19/Rails-4-0-11-1-and-4-1-7-1-have-been-released/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1164659", "reference_id": "1164659", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1164659" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770934", "reference_id": "770934", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770934" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52067?format=api", "purl": "pkg:gem/actionpack@3.2.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-7spd-zybv-pbgm" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-fj3n-g8wp-bbaj" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/52068?format=api", "purl": "pkg:gem/actionpack@4.0.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-ujt2-es3k-67aq" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.0.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52069?format=api", "purl": "pkg:gem/actionpack@4.0.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.0.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/158988?format=api", "purl": "pkg:gem/actionpack@4.1.0.beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vex8-56fk-gqdf" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-xvsy-e7fv-1ufe" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.0.beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52070?format=api", "purl": "pkg:gem/actionpack@4.1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-ujt2-es3k-67aq" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52071?format=api", "purl": "pkg:gem/actionpack@4.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/159420?format=api", "purl": "pkg:gem/actionpack@4.2.0.beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-xvsy-e7fv-1ufe" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0.beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/120683?format=api", "purl": "pkg:gem/actionpack@4.2.0.beta4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0.beta4" } ], "aliases": [ "CVE-2014-7829", "GHSA-h56m-vwxc-3qpw" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xee7-ge26-yfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37770?format=api", "vulnerability_id": "VCID-xvsy-e7fv-1ufe", "summary": "Arbitrary file existence disclosure\nSpecially crafted requests can be used to determine whether a file exists on the filesystem that is outside the Rails application's root directory. The files will not be served, but attackers can determine whether the file exists. This only impacts Rails applications that enable static file serving at runtime. For example, the application's production configuration will say: `config.serve_static_assets = true`", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-11/msg00112.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7818.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-7818.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7818", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44743", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0022", "scoring_system": "epss", "scoring_elements": "0.44674", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-7818" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7818", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7818" }, { "reference_url": "https://github.com/advisories/GHSA-29gr-w57f-rpfw", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-29gr-w57f-rpfw" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7818.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2014-7818.yml" }, { "reference_url": "https://groups.google.com/forum/message/raw?msg=rubyonrails-security/dCp7duBiQgo/v_R_8PFs5IwJ", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/forum/message/raw?msg=rubyonrails-security/dCp7duBiQgo/v_R_8PFs5IwJ" }, { "reference_url": "https://groups.google.com/forum/#!topic/rubyonrails-security/dCp7duBiQgo", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/forum/#!topic/rubyonrails-security/dCp7duBiQgo" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-7818", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-7818" }, { "reference_url": "https://puppet.com/security/cve/cve-2014-7829", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://puppet.com/security/cve/cve-2014-7829" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1161499", "reference_id": "1161499", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1161499" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770934", "reference_id": "770934", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770934" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/52059?format=api", "purl": "pkg:gem/actionpack@3.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-7spd-zybv-pbgm" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-fj3n-g8wp-bbaj" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-ujt2-es3k-67aq" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/52060?format=api", "purl": "pkg:gem/actionpack@4.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-ujt2-es3k-67aq" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/158988?format=api", "purl": "pkg:gem/actionpack@4.1.0.beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vex8-56fk-gqdf" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-xvsy-e7fv-1ufe" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.0.beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52061?format=api", "purl": "pkg:gem/actionpack@4.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-9xc9-zvs2-1kde" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-mf6k-jx45-m3fy" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-ujt2-es3k-67aq" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-vv7c-uwnu-nfhb" }, { "vulnerability": "VCID-wake-zgkk-vber" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-y8dx-xevb-bka2" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/159420?format=api", "purl": "pkg:gem/actionpack@4.2.0.beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-xvsy-e7fv-1ufe" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0.beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/52062?format=api", "purl": "pkg:gem/actionpack@4.2.0.beta3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1pzg-37dp-cyb1" }, { "vulnerability": "VCID-37qm-tp8v-tugb" }, { "vulnerability": "VCID-4uv1-e1me-hqb3" }, { "vulnerability": "VCID-75m1-xqdk-j7f3" }, { "vulnerability": "VCID-9t5z-1umq-qbe4" }, { "vulnerability": "VCID-b464-j8ja-hke6" }, { "vulnerability": "VCID-bcwq-ngna-fqhd" }, { "vulnerability": "VCID-bfqq-ypyw-dycj" }, { "vulnerability": "VCID-cbvq-4ze7-r3g6" }, { "vulnerability": "VCID-chxq-j9us-cygh" }, { "vulnerability": "VCID-ecg2-wcty-b7hw" }, { "vulnerability": "VCID-egdx-4qqa-guh1" }, { "vulnerability": "VCID-f21a-143f-9qay" }, { "vulnerability": "VCID-f7bp-x4q3-jbeh" }, { "vulnerability": "VCID-ftus-vcww-2kgf" }, { "vulnerability": "VCID-gqfj-qxbc-xqhm" }, { "vulnerability": "VCID-hdu6-u2pb-aqhp" }, { "vulnerability": "VCID-hxcf-k4te-h3gu" }, { "vulnerability": "VCID-jkk1-jx5j-q3ch" }, { "vulnerability": "VCID-n798-maqx-y3c9" }, { "vulnerability": "VCID-nhny-abkr-6qhb" }, { "vulnerability": "VCID-nprk-kfvh-vqfh" }, { "vulnerability": "VCID-nt1m-frdh-tbbq" }, { "vulnerability": "VCID-p6yg-d8wm-4bgz" }, { "vulnerability": "VCID-sw7t-5s3e-vkhx" }, { "vulnerability": "VCID-ufrj-jn16-jybn" }, { "vulnerability": "VCID-ugdk-t2vk-nkfc" }, { "vulnerability": "VCID-v3vg-9jdz-guf5" }, { "vulnerability": "VCID-vp3u-cexw-57a4" }, { "vulnerability": "VCID-xee7-ge26-yfdc" }, { "vulnerability": "VCID-ypcy-hry9-5fa3" }, { "vulnerability": "VCID-z21g-8h32-yyf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@4.2.0.beta3" } ], "aliases": [ "CVE-2014-7818", "GHSA-29gr-w57f-rpfw" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xvsy-e7fv-1ufe" } ], "fixing_vulnerabilities": [], "risk_score": "3.1", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/actionpack@3.2.0a" }