Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-5x54-hckg-x7b8
Summary
Exposure of Sensitive Information to an Unauthorized Actor
A bypass vulnerability in Active Storage for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in with HTML files and have them executed inline. Additionally, if combined with other techniques such as cookie bombing and specially crafted AppCache manifests, an attacker can gain access to private signed URLs within a specific storage path. This vulnerability has been fixed
Aliases
0
alias CVE-2018-16477
1
alias GHSA-7rr7-rcjw-56vj
Fixed_packages
0
url pkg:deb/debian/rails@2:5.2.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/rails@2:5.2.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:5.2.2%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1%2Bdeb10u3
purl pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-63gy-6njy-kbd8
9
vulnerability VCID-6ku5-mtgz-zygw
10
vulnerability VCID-6pxd-xsaw-tuer
11
vulnerability VCID-895a-ydc5-zfg6
12
vulnerability VCID-a6sp-18av-wya6
13
vulnerability VCID-ce39-j83r-6ug9
14
vulnerability VCID-dd9p-x7k3-37ea
15
vulnerability VCID-drg6-gj1f-h7ea
16
vulnerability VCID-es1t-7196-4kbb
17
vulnerability VCID-g3rk-djae-pkeh
18
vulnerability VCID-gjey-bqtd-kqa1
19
vulnerability VCID-hppf-a715-r7b2
20
vulnerability VCID-jwun-grgg-2uet
21
vulnerability VCID-mnkw-23eu-bkgc
22
vulnerability VCID-p5mc-r1rg-5ff7
23
vulnerability VCID-sfyc-jewr-wuf5
24
vulnerability VCID-sgdb-985e-4uej
25
vulnerability VCID-sygb-mygd-s3gb
26
vulnerability VCID-t684-yp58-hkg8
27
vulnerability VCID-t9yh-ss8z-e3cb
28
vulnerability VCID-v9mt-t1pb-hybk
29
vulnerability VCID-wg3a-j2dp-ayh4
30
vulnerability VCID-wyy6-h8bq-vyde
31
vulnerability VCID-yy6t-ybeu-qycc
32
vulnerability VCID-yzpx-3gam-y3bu
33
vulnerability VCID-zqzx-avvt-wkhm
34
vulnerability VCID-zy7d-3db6-sydw
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:5.2.2.1%252Bdfsg-1%252Bdeb10u3
2
url pkg:deb/debian/rails@2:6.0.3.7%2Bdfsg-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/rails@2:6.0.3.7%2Bdfsg-2%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-n8r7-wthv-fqaj
7
vulnerability VCID-qxe4-dubt-1kfp
8
vulnerability VCID-sarm-n22v-akcm
9
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:6.0.3.7%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie
3
url pkg:deb/debian/rails@2:6.1.7.10%2Bdfsg-1~deb12u2?distro=trixie
purl pkg:deb/debian/rails@2:6.1.7.10%2Bdfsg-1~deb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:6.1.7.10%252Bdfsg-1~deb12u2%3Fdistro=trixie
4
url pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2~deb13u1?distro=trixie
purl pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.2.2%252Bdfsg-2~deb13u1%3Fdistro=trixie
5
url pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.2.2%252Bdfsg-2%3Fdistro=trixie
6
url pkg:deb/debian/rails@2:7.2.3%2Bdfsg-3?distro=trixie
purl pkg:deb/debian/rails@2:7.2.3%2Bdfsg-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.3%252Bdfsg-3%3Fdistro=trixie
7
url pkg:deb/debian/rails@2:7.2.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/rails@2:7.2.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.3.1%252Bdfsg-1%3Fdistro=trixie
8
url pkg:gem/activestorage@5.2.1.1
purl pkg:gem/activestorage@5.2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-65tq-e5eb-eucj
1
vulnerability VCID-895a-ydc5-zfg6
2
vulnerability VCID-ad6q-vtdf-syb6
3
vulnerability VCID-drg6-gj1f-h7ea
4
vulnerability VCID-yzpx-3gam-y3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activestorage@5.2.1.1
9
url pkg:gem/rails@5.2.1.1
purl pkg:gem/rails@5.2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-63gy-6njy-kbd8
2
vulnerability VCID-65tq-e5eb-eucj
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-8dad-dvat-1fg4
5
vulnerability VCID-a6sp-18av-wya6
6
vulnerability VCID-c8b5-d83n-nuhw
7
vulnerability VCID-es1t-7196-4kbb
8
vulnerability VCID-gjey-bqtd-kqa1
9
vulnerability VCID-hppf-a715-r7b2
10
vulnerability VCID-jwun-grgg-2uet
11
vulnerability VCID-mnkw-23eu-bkgc
12
vulnerability VCID-t684-yp58-hkg8
13
vulnerability VCID-wg3a-j2dp-ayh4
14
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1.1
Affected_packages
0
url pkg:deb/debian/rails@1.1.6-3
purl pkg:deb/debian/rails@1.1.6-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-3zdr-vasc-a7cn
13
vulnerability VCID-43f3-rxwm-fkgv
14
vulnerability VCID-49pq-vg95-jkh2
15
vulnerability VCID-4cky-r218-dkbb
16
vulnerability VCID-4epw-vk25-mfdw
17
vulnerability VCID-4he5-y1u4-gkd2
18
vulnerability VCID-4zhj-en7h-3yaz
19
vulnerability VCID-5qu2-b8gt-7qe3
20
vulnerability VCID-5x54-hckg-x7b8
21
vulnerability VCID-63gy-6njy-kbd8
22
vulnerability VCID-6ku5-mtgz-zygw
23
vulnerability VCID-6pxd-xsaw-tuer
24
vulnerability VCID-6yr6-a21g-dyf5
25
vulnerability VCID-7f5r-9h1g-nuch
26
vulnerability VCID-86jq-2md2-d7ah
27
vulnerability VCID-895a-ydc5-zfg6
28
vulnerability VCID-8dad-dvat-1fg4
29
vulnerability VCID-9hq5-3usy-5fhq
30
vulnerability VCID-9hvm-2hnk-hyev
31
vulnerability VCID-9t7a-muwx-zyee
32
vulnerability VCID-a6sp-18av-wya6
33
vulnerability VCID-bjwf-uhyk-63aj
34
vulnerability VCID-c8b5-d83n-nuhw
35
vulnerability VCID-ca7u-t1y4-uuc7
36
vulnerability VCID-carc-ntrd-ebfe
37
vulnerability VCID-ce39-j83r-6ug9
38
vulnerability VCID-cnqr-6e98-5kgk
39
vulnerability VCID-cwa7-9d2t-rfhb
40
vulnerability VCID-d15q-6ukb-wfff
41
vulnerability VCID-dd9p-x7k3-37ea
42
vulnerability VCID-drg6-gj1f-h7ea
43
vulnerability VCID-eb5z-q7rj-j7hh
44
vulnerability VCID-ed3f-3bxh-eba4
45
vulnerability VCID-es1t-7196-4kbb
46
vulnerability VCID-g3rk-djae-pkeh
47
vulnerability VCID-g5q6-7uav-sqh1
48
vulnerability VCID-gjey-bqtd-kqa1
49
vulnerability VCID-gsx2-9sc2-3fbr
50
vulnerability VCID-hbtn-7423-m3gb
51
vulnerability VCID-hppf-a715-r7b2
52
vulnerability VCID-hr2h-y693-sbgc
53
vulnerability VCID-j7p8-hchp-xbe3
54
vulnerability VCID-jwun-grgg-2uet
55
vulnerability VCID-kkbt-pr7u-f7gn
56
vulnerability VCID-knsd-pv15-tydx
57
vulnerability VCID-kr1b-uct1-7kf6
58
vulnerability VCID-mep3-6sub-ykdk
59
vulnerability VCID-mnkw-23eu-bkgc
60
vulnerability VCID-nk6g-hhsk-8kaw
61
vulnerability VCID-nzeb-cy9e-tkax
62
vulnerability VCID-p5mc-r1rg-5ff7
63
vulnerability VCID-pb5f-g4uc-r7fp
64
vulnerability VCID-r1u7-1avr-fqbs
65
vulnerability VCID-s5ah-tf63-a7cw
66
vulnerability VCID-sb9g-rdnm-rqbm
67
vulnerability VCID-sfyc-jewr-wuf5
68
vulnerability VCID-sgdb-985e-4uej
69
vulnerability VCID-sygb-mygd-s3gb
70
vulnerability VCID-sz4r-kjse-cbdd
71
vulnerability VCID-t2cx-7ycd-tqhq
72
vulnerability VCID-t684-yp58-hkg8
73
vulnerability VCID-t9yh-ss8z-e3cb
74
vulnerability VCID-thx6-usb2-kkgc
75
vulnerability VCID-v3r3-bwp5-a3bn
76
vulnerability VCID-v9mt-t1pb-hybk
77
vulnerability VCID-va9q-fjn6-yqee
78
vulnerability VCID-vgm2-8wjy-x7ed
79
vulnerability VCID-wg3a-j2dp-ayh4
80
vulnerability VCID-wgr4-rzk2-4yet
81
vulnerability VCID-wyqh-g8df-hkay
82
vulnerability VCID-wyy6-h8bq-vyde
83
vulnerability VCID-xa94-z6yu-skf8
84
vulnerability VCID-xqzj-cww4-nbcy
85
vulnerability VCID-yy6t-ybeu-qycc
86
vulnerability VCID-yzpx-3gam-y3bu
87
vulnerability VCID-z1jv-4ga2-7kd1
88
vulnerability VCID-zkvd-bfd6-t7dg
89
vulnerability VCID-zqzx-avvt-wkhm
90
vulnerability VCID-zy7d-3db6-sydw
91
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@1.1.6-3
1
url pkg:deb/debian/rails@2.1.0-7%2Blenny2
purl pkg:deb/debian/rails@2.1.0-7%2Blenny2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-3zdr-vasc-a7cn
13
vulnerability VCID-43f3-rxwm-fkgv
14
vulnerability VCID-49pq-vg95-jkh2
15
vulnerability VCID-4cky-r218-dkbb
16
vulnerability VCID-4epw-vk25-mfdw
17
vulnerability VCID-4he5-y1u4-gkd2
18
vulnerability VCID-4zhj-en7h-3yaz
19
vulnerability VCID-5qu2-b8gt-7qe3
20
vulnerability VCID-5x54-hckg-x7b8
21
vulnerability VCID-63gy-6njy-kbd8
22
vulnerability VCID-6ku5-mtgz-zygw
23
vulnerability VCID-6pxd-xsaw-tuer
24
vulnerability VCID-6yr6-a21g-dyf5
25
vulnerability VCID-7f5r-9h1g-nuch
26
vulnerability VCID-86jq-2md2-d7ah
27
vulnerability VCID-895a-ydc5-zfg6
28
vulnerability VCID-8dad-dvat-1fg4
29
vulnerability VCID-9hq5-3usy-5fhq
30
vulnerability VCID-9t7a-muwx-zyee
31
vulnerability VCID-a6sp-18av-wya6
32
vulnerability VCID-bjwf-uhyk-63aj
33
vulnerability VCID-c8b5-d83n-nuhw
34
vulnerability VCID-ca7u-t1y4-uuc7
35
vulnerability VCID-carc-ntrd-ebfe
36
vulnerability VCID-ce39-j83r-6ug9
37
vulnerability VCID-cnqr-6e98-5kgk
38
vulnerability VCID-cwa7-9d2t-rfhb
39
vulnerability VCID-d15q-6ukb-wfff
40
vulnerability VCID-dd9p-x7k3-37ea
41
vulnerability VCID-drg6-gj1f-h7ea
42
vulnerability VCID-eb5z-q7rj-j7hh
43
vulnerability VCID-ed3f-3bxh-eba4
44
vulnerability VCID-es1t-7196-4kbb
45
vulnerability VCID-g3rk-djae-pkeh
46
vulnerability VCID-g5q6-7uav-sqh1
47
vulnerability VCID-gjey-bqtd-kqa1
48
vulnerability VCID-gsx2-9sc2-3fbr
49
vulnerability VCID-hbtn-7423-m3gb
50
vulnerability VCID-hppf-a715-r7b2
51
vulnerability VCID-hr2h-y693-sbgc
52
vulnerability VCID-j7p8-hchp-xbe3
53
vulnerability VCID-jwun-grgg-2uet
54
vulnerability VCID-kkbt-pr7u-f7gn
55
vulnerability VCID-knsd-pv15-tydx
56
vulnerability VCID-kr1b-uct1-7kf6
57
vulnerability VCID-mep3-6sub-ykdk
58
vulnerability VCID-mnkw-23eu-bkgc
59
vulnerability VCID-nk6g-hhsk-8kaw
60
vulnerability VCID-p5mc-r1rg-5ff7
61
vulnerability VCID-pb5f-g4uc-r7fp
62
vulnerability VCID-s5ah-tf63-a7cw
63
vulnerability VCID-sb9g-rdnm-rqbm
64
vulnerability VCID-sfyc-jewr-wuf5
65
vulnerability VCID-sgdb-985e-4uej
66
vulnerability VCID-sygb-mygd-s3gb
67
vulnerability VCID-sz4r-kjse-cbdd
68
vulnerability VCID-t2cx-7ycd-tqhq
69
vulnerability VCID-t684-yp58-hkg8
70
vulnerability VCID-t9yh-ss8z-e3cb
71
vulnerability VCID-thx6-usb2-kkgc
72
vulnerability VCID-v3r3-bwp5-a3bn
73
vulnerability VCID-v9mt-t1pb-hybk
74
vulnerability VCID-va9q-fjn6-yqee
75
vulnerability VCID-vgm2-8wjy-x7ed
76
vulnerability VCID-wg3a-j2dp-ayh4
77
vulnerability VCID-wyy6-h8bq-vyde
78
vulnerability VCID-xa94-z6yu-skf8
79
vulnerability VCID-yy6t-ybeu-qycc
80
vulnerability VCID-yzpx-3gam-y3bu
81
vulnerability VCID-z1jv-4ga2-7kd1
82
vulnerability VCID-zkvd-bfd6-t7dg
83
vulnerability VCID-zqzx-avvt-wkhm
84
vulnerability VCID-zy7d-3db6-sydw
85
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2.1.0-7%252Blenny2
2
url pkg:deb/debian/rails@2.3.5-1.2%2Bsqueeze8
purl pkg:deb/debian/rails@2.3.5-1.2%2Bsqueeze8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-43f3-rxwm-fkgv
13
vulnerability VCID-49pq-vg95-jkh2
14
vulnerability VCID-4cky-r218-dkbb
15
vulnerability VCID-4epw-vk25-mfdw
16
vulnerability VCID-4he5-y1u4-gkd2
17
vulnerability VCID-5qu2-b8gt-7qe3
18
vulnerability VCID-5x54-hckg-x7b8
19
vulnerability VCID-63gy-6njy-kbd8
20
vulnerability VCID-6ku5-mtgz-zygw
21
vulnerability VCID-6pxd-xsaw-tuer
22
vulnerability VCID-6yr6-a21g-dyf5
23
vulnerability VCID-86jq-2md2-d7ah
24
vulnerability VCID-895a-ydc5-zfg6
25
vulnerability VCID-8dad-dvat-1fg4
26
vulnerability VCID-9hq5-3usy-5fhq
27
vulnerability VCID-9t7a-muwx-zyee
28
vulnerability VCID-a6sp-18av-wya6
29
vulnerability VCID-bjwf-uhyk-63aj
30
vulnerability VCID-c8b5-d83n-nuhw
31
vulnerability VCID-ca7u-t1y4-uuc7
32
vulnerability VCID-carc-ntrd-ebfe
33
vulnerability VCID-ce39-j83r-6ug9
34
vulnerability VCID-cnqr-6e98-5kgk
35
vulnerability VCID-cwa7-9d2t-rfhb
36
vulnerability VCID-d15q-6ukb-wfff
37
vulnerability VCID-dd9p-x7k3-37ea
38
vulnerability VCID-drg6-gj1f-h7ea
39
vulnerability VCID-eb5z-q7rj-j7hh
40
vulnerability VCID-ed3f-3bxh-eba4
41
vulnerability VCID-es1t-7196-4kbb
42
vulnerability VCID-g3rk-djae-pkeh
43
vulnerability VCID-g5q6-7uav-sqh1
44
vulnerability VCID-gjey-bqtd-kqa1
45
vulnerability VCID-hbtn-7423-m3gb
46
vulnerability VCID-hppf-a715-r7b2
47
vulnerability VCID-hr2h-y693-sbgc
48
vulnerability VCID-j7p8-hchp-xbe3
49
vulnerability VCID-jwun-grgg-2uet
50
vulnerability VCID-kkbt-pr7u-f7gn
51
vulnerability VCID-knsd-pv15-tydx
52
vulnerability VCID-kr1b-uct1-7kf6
53
vulnerability VCID-mep3-6sub-ykdk
54
vulnerability VCID-mnkw-23eu-bkgc
55
vulnerability VCID-nk6g-hhsk-8kaw
56
vulnerability VCID-p5mc-r1rg-5ff7
57
vulnerability VCID-pb5f-g4uc-r7fp
58
vulnerability VCID-s5ah-tf63-a7cw
59
vulnerability VCID-sb9g-rdnm-rqbm
60
vulnerability VCID-sfyc-jewr-wuf5
61
vulnerability VCID-sgdb-985e-4uej
62
vulnerability VCID-sygb-mygd-s3gb
63
vulnerability VCID-sz4r-kjse-cbdd
64
vulnerability VCID-t2cx-7ycd-tqhq
65
vulnerability VCID-t684-yp58-hkg8
66
vulnerability VCID-t9yh-ss8z-e3cb
67
vulnerability VCID-thx6-usb2-kkgc
68
vulnerability VCID-v3r3-bwp5-a3bn
69
vulnerability VCID-v9mt-t1pb-hybk
70
vulnerability VCID-va9q-fjn6-yqee
71
vulnerability VCID-wg3a-j2dp-ayh4
72
vulnerability VCID-wyy6-h8bq-vyde
73
vulnerability VCID-xa94-z6yu-skf8
74
vulnerability VCID-yy6t-ybeu-qycc
75
vulnerability VCID-yzpx-3gam-y3bu
76
vulnerability VCID-z1jv-4ga2-7kd1
77
vulnerability VCID-zkvd-bfd6-t7dg
78
vulnerability VCID-zqzx-avvt-wkhm
79
vulnerability VCID-zy7d-3db6-sydw
80
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2.3.5-1.2%252Bsqueeze8
3
url pkg:deb/debian/rails@2:2.3.14.2
purl pkg:deb/debian/rails@2:2.3.14.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-2efj-tf8d-dfck
6
vulnerability VCID-31xv-z8c6-a7bg
7
vulnerability VCID-333w-aacz-mfcr
8
vulnerability VCID-3hur-esmy-x3hr
9
vulnerability VCID-3m2y-wy1w-n7h1
10
vulnerability VCID-5qu2-b8gt-7qe3
11
vulnerability VCID-5x54-hckg-x7b8
12
vulnerability VCID-63gy-6njy-kbd8
13
vulnerability VCID-6ku5-mtgz-zygw
14
vulnerability VCID-6pxd-xsaw-tuer
15
vulnerability VCID-6yr6-a21g-dyf5
16
vulnerability VCID-86jq-2md2-d7ah
17
vulnerability VCID-895a-ydc5-zfg6
18
vulnerability VCID-8dad-dvat-1fg4
19
vulnerability VCID-9hq5-3usy-5fhq
20
vulnerability VCID-9t7a-muwx-zyee
21
vulnerability VCID-a6sp-18av-wya6
22
vulnerability VCID-bjwf-uhyk-63aj
23
vulnerability VCID-c8b5-d83n-nuhw
24
vulnerability VCID-ce39-j83r-6ug9
25
vulnerability VCID-d15q-6ukb-wfff
26
vulnerability VCID-dd9p-x7k3-37ea
27
vulnerability VCID-drg6-gj1f-h7ea
28
vulnerability VCID-ed3f-3bxh-eba4
29
vulnerability VCID-es1t-7196-4kbb
30
vulnerability VCID-g3rk-djae-pkeh
31
vulnerability VCID-g5q6-7uav-sqh1
32
vulnerability VCID-gjey-bqtd-kqa1
33
vulnerability VCID-hppf-a715-r7b2
34
vulnerability VCID-jwun-grgg-2uet
35
vulnerability VCID-mnkw-23eu-bkgc
36
vulnerability VCID-p5mc-r1rg-5ff7
37
vulnerability VCID-pb5f-g4uc-r7fp
38
vulnerability VCID-s5ah-tf63-a7cw
39
vulnerability VCID-sb9g-rdnm-rqbm
40
vulnerability VCID-sfyc-jewr-wuf5
41
vulnerability VCID-sgdb-985e-4uej
42
vulnerability VCID-sygb-mygd-s3gb
43
vulnerability VCID-t2cx-7ycd-tqhq
44
vulnerability VCID-t684-yp58-hkg8
45
vulnerability VCID-t9yh-ss8z-e3cb
46
vulnerability VCID-thx6-usb2-kkgc
47
vulnerability VCID-v3r3-bwp5-a3bn
48
vulnerability VCID-v9mt-t1pb-hybk
49
vulnerability VCID-wg3a-j2dp-ayh4
50
vulnerability VCID-wyy6-h8bq-vyde
51
vulnerability VCID-yy6t-ybeu-qycc
52
vulnerability VCID-yzpx-3gam-y3bu
53
vulnerability VCID-z1jv-4ga2-7kd1
54
vulnerability VCID-zkvd-bfd6-t7dg
55
vulnerability VCID-zqzx-avvt-wkhm
56
vulnerability VCID-zy7d-3db6-sydw
57
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:2.3.14.2
4
url pkg:deb/debian/rails@2:4.1.8-1
purl pkg:deb/debian/rails@2:4.1.8-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-86jq-2md2-d7ah
14
vulnerability VCID-895a-ydc5-zfg6
15
vulnerability VCID-8dad-dvat-1fg4
16
vulnerability VCID-9hq5-3usy-5fhq
17
vulnerability VCID-9t7a-muwx-zyee
18
vulnerability VCID-a6sp-18av-wya6
19
vulnerability VCID-bjwf-uhyk-63aj
20
vulnerability VCID-c8b5-d83n-nuhw
21
vulnerability VCID-ce39-j83r-6ug9
22
vulnerability VCID-d15q-6ukb-wfff
23
vulnerability VCID-dd9p-x7k3-37ea
24
vulnerability VCID-drg6-gj1f-h7ea
25
vulnerability VCID-ed3f-3bxh-eba4
26
vulnerability VCID-es1t-7196-4kbb
27
vulnerability VCID-g3rk-djae-pkeh
28
vulnerability VCID-g5q6-7uav-sqh1
29
vulnerability VCID-gjey-bqtd-kqa1
30
vulnerability VCID-hppf-a715-r7b2
31
vulnerability VCID-jwun-grgg-2uet
32
vulnerability VCID-mnkw-23eu-bkgc
33
vulnerability VCID-p5mc-r1rg-5ff7
34
vulnerability VCID-pb5f-g4uc-r7fp
35
vulnerability VCID-s5ah-tf63-a7cw
36
vulnerability VCID-sfyc-jewr-wuf5
37
vulnerability VCID-sgdb-985e-4uej
38
vulnerability VCID-sygb-mygd-s3gb
39
vulnerability VCID-t2cx-7ycd-tqhq
40
vulnerability VCID-t684-yp58-hkg8
41
vulnerability VCID-t9yh-ss8z-e3cb
42
vulnerability VCID-thx6-usb2-kkgc
43
vulnerability VCID-v3r3-bwp5-a3bn
44
vulnerability VCID-v9mt-t1pb-hybk
45
vulnerability VCID-wg3a-j2dp-ayh4
46
vulnerability VCID-wyy6-h8bq-vyde
47
vulnerability VCID-yy6t-ybeu-qycc
48
vulnerability VCID-yzpx-3gam-y3bu
49
vulnerability VCID-z1jv-4ga2-7kd1
50
vulnerability VCID-zqzx-avvt-wkhm
51
vulnerability VCID-zy7d-3db6-sydw
52
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.1.8-1
5
url pkg:deb/debian/rails@2:4.1.8-1%2Bdeb8u4
purl pkg:deb/debian/rails@2:4.1.8-1%2Bdeb8u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-86jq-2md2-d7ah
14
vulnerability VCID-895a-ydc5-zfg6
15
vulnerability VCID-8dad-dvat-1fg4
16
vulnerability VCID-9hq5-3usy-5fhq
17
vulnerability VCID-9t7a-muwx-zyee
18
vulnerability VCID-a6sp-18av-wya6
19
vulnerability VCID-bjwf-uhyk-63aj
20
vulnerability VCID-c8b5-d83n-nuhw
21
vulnerability VCID-ce39-j83r-6ug9
22
vulnerability VCID-d15q-6ukb-wfff
23
vulnerability VCID-dd9p-x7k3-37ea
24
vulnerability VCID-drg6-gj1f-h7ea
25
vulnerability VCID-ed3f-3bxh-eba4
26
vulnerability VCID-es1t-7196-4kbb
27
vulnerability VCID-g3rk-djae-pkeh
28
vulnerability VCID-g5q6-7uav-sqh1
29
vulnerability VCID-gjey-bqtd-kqa1
30
vulnerability VCID-hppf-a715-r7b2
31
vulnerability VCID-jwun-grgg-2uet
32
vulnerability VCID-mnkw-23eu-bkgc
33
vulnerability VCID-p5mc-r1rg-5ff7
34
vulnerability VCID-pb5f-g4uc-r7fp
35
vulnerability VCID-s5ah-tf63-a7cw
36
vulnerability VCID-sfyc-jewr-wuf5
37
vulnerability VCID-sgdb-985e-4uej
38
vulnerability VCID-sygb-mygd-s3gb
39
vulnerability VCID-t2cx-7ycd-tqhq
40
vulnerability VCID-t684-yp58-hkg8
41
vulnerability VCID-t9yh-ss8z-e3cb
42
vulnerability VCID-thx6-usb2-kkgc
43
vulnerability VCID-v3r3-bwp5-a3bn
44
vulnerability VCID-v9mt-t1pb-hybk
45
vulnerability VCID-wg3a-j2dp-ayh4
46
vulnerability VCID-wyy6-h8bq-vyde
47
vulnerability VCID-yy6t-ybeu-qycc
48
vulnerability VCID-yzpx-3gam-y3bu
49
vulnerability VCID-z1jv-4ga2-7kd1
50
vulnerability VCID-zqzx-avvt-wkhm
51
vulnerability VCID-zy7d-3db6-sydw
52
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.1.8-1%252Bdeb8u4
6
url pkg:deb/debian/rails@2:4.2.7.1-1%2Bdeb9u2
purl pkg:deb/debian/rails@2:4.2.7.1-1%2Bdeb9u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-895a-ydc5-zfg6
14
vulnerability VCID-8dad-dvat-1fg4
15
vulnerability VCID-a6sp-18av-wya6
16
vulnerability VCID-c8b5-d83n-nuhw
17
vulnerability VCID-ce39-j83r-6ug9
18
vulnerability VCID-dd9p-x7k3-37ea
19
vulnerability VCID-drg6-gj1f-h7ea
20
vulnerability VCID-es1t-7196-4kbb
21
vulnerability VCID-g3rk-djae-pkeh
22
vulnerability VCID-g5q6-7uav-sqh1
23
vulnerability VCID-gjey-bqtd-kqa1
24
vulnerability VCID-hppf-a715-r7b2
25
vulnerability VCID-jwun-grgg-2uet
26
vulnerability VCID-mnkw-23eu-bkgc
27
vulnerability VCID-p5mc-r1rg-5ff7
28
vulnerability VCID-sfyc-jewr-wuf5
29
vulnerability VCID-sgdb-985e-4uej
30
vulnerability VCID-sygb-mygd-s3gb
31
vulnerability VCID-t684-yp58-hkg8
32
vulnerability VCID-t9yh-ss8z-e3cb
33
vulnerability VCID-v9mt-t1pb-hybk
34
vulnerability VCID-wg3a-j2dp-ayh4
35
vulnerability VCID-wyy6-h8bq-vyde
36
vulnerability VCID-yy6t-ybeu-qycc
37
vulnerability VCID-yzpx-3gam-y3bu
38
vulnerability VCID-zqzx-avvt-wkhm
39
vulnerability VCID-zy7d-3db6-sydw
40
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.2.7.1-1%252Bdeb9u2
7
url pkg:gem/activestorage@5.2.0
purl pkg:gem/activestorage@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5x54-hckg-x7b8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-895a-ydc5-zfg6
3
vulnerability VCID-ad6q-vtdf-syb6
4
vulnerability VCID-drg6-gj1f-h7ea
5
vulnerability VCID-yzpx-3gam-y3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activestorage@5.2.0
8
url pkg:gem/activestorage@5.2.1.rc1
purl pkg:gem/activestorage@5.2.1.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5x54-hckg-x7b8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-895a-ydc5-zfg6
3
vulnerability VCID-ad6q-vtdf-syb6
4
vulnerability VCID-drg6-gj1f-h7ea
5
vulnerability VCID-yzpx-3gam-y3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activestorage@5.2.1.rc1
9
url pkg:gem/activestorage@5.2.1.0
purl pkg:gem/activestorage@5.2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5x54-hckg-x7b8
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activestorage@5.2.1.0
10
url pkg:gem/activestorage@5.2.1
purl pkg:gem/activestorage@5.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5x54-hckg-x7b8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-895a-ydc5-zfg6
3
vulnerability VCID-ad6q-vtdf-syb6
4
vulnerability VCID-drg6-gj1f-h7ea
5
vulnerability VCID-yzpx-3gam-y3bu
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/activestorage@5.2.1
11
url pkg:gem/rails@5.2.0
purl pkg:gem/rails@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.0
12
url pkg:gem/rails@5.2.1.rc1
purl pkg:gem/rails@5.2.1.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1.rc1
13
url pkg:gem/rails@5.2.1
purl pkg:gem/rails@5.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-16477
reference_id
reference_type
scores
0
value 0.0026
scoring_system epss
scoring_elements 0.49443
published_at 2026-04-16T12:55:00Z
1
value 0.0026
scoring_system epss
scoring_elements 0.49345
published_at 2026-04-01T12:55:00Z
2
value 0.0026
scoring_system epss
scoring_elements 0.49372
published_at 2026-04-02T12:55:00Z
3
value 0.0026
scoring_system epss
scoring_elements 0.494
published_at 2026-04-04T12:55:00Z
4
value 0.0026
scoring_system epss
scoring_elements 0.49354
published_at 2026-04-07T12:55:00Z
5
value 0.0026
scoring_system epss
scoring_elements 0.49408
published_at 2026-04-08T12:55:00Z
6
value 0.0026
scoring_system epss
scoring_elements 0.49404
published_at 2026-04-09T12:55:00Z
7
value 0.0026
scoring_system epss
scoring_elements 0.49422
published_at 2026-04-11T12:55:00Z
8
value 0.0026
scoring_system epss
scoring_elements 0.49394
published_at 2026-04-12T12:55:00Z
9
value 0.0026
scoring_system epss
scoring_elements 0.49397
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-16477
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16477
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16477
2
reference_url https://github.com/advisories/GHSA-7rr7-rcjw-56vj
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-7rr7-rcjw-56vj
3
reference_url https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
4
reference_url https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements
url https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
5
reference_url https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
6
reference_url https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released/
reference_id
reference_type
scores
url https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released/
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914848
reference_id 914848
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914848
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-16477
reference_id CVE-2018-16477
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-16477
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Exploits
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-5x54-hckg-x7b8