Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-zydu-j9dg-fqdb
Summary
Improper Input Validation
A remote code execution vulnerability in development mode Rails can allow an attacker to guess the automatically generated development mode secret token. This secret token can be used in combination with other Rails internals to escalate to a remote code execution exploit.
Aliases
0
alias CVE-2019-5420
1
alias GHSA-m42h-mh85-4qgc
Fixed_packages
0
url pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:5.2.2.1%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1%2Bdeb10u3
purl pkg:deb/debian/rails@2:5.2.2.1%2Bdfsg-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-63gy-6njy-kbd8
9
vulnerability VCID-6ku5-mtgz-zygw
10
vulnerability VCID-6pxd-xsaw-tuer
11
vulnerability VCID-895a-ydc5-zfg6
12
vulnerability VCID-a6sp-18av-wya6
13
vulnerability VCID-ce39-j83r-6ug9
14
vulnerability VCID-dd9p-x7k3-37ea
15
vulnerability VCID-drg6-gj1f-h7ea
16
vulnerability VCID-es1t-7196-4kbb
17
vulnerability VCID-g3rk-djae-pkeh
18
vulnerability VCID-gjey-bqtd-kqa1
19
vulnerability VCID-hppf-a715-r7b2
20
vulnerability VCID-jwun-grgg-2uet
21
vulnerability VCID-mnkw-23eu-bkgc
22
vulnerability VCID-p5mc-r1rg-5ff7
23
vulnerability VCID-sfyc-jewr-wuf5
24
vulnerability VCID-sgdb-985e-4uej
25
vulnerability VCID-sygb-mygd-s3gb
26
vulnerability VCID-t684-yp58-hkg8
27
vulnerability VCID-t9yh-ss8z-e3cb
28
vulnerability VCID-v9mt-t1pb-hybk
29
vulnerability VCID-wg3a-j2dp-ayh4
30
vulnerability VCID-wyy6-h8bq-vyde
31
vulnerability VCID-yy6t-ybeu-qycc
32
vulnerability VCID-yzpx-3gam-y3bu
33
vulnerability VCID-zqzx-avvt-wkhm
34
vulnerability VCID-zy7d-3db6-sydw
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:5.2.2.1%252Bdfsg-1%252Bdeb10u3
2
url pkg:deb/debian/rails@2:6.0.3.7%2Bdfsg-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/rails@2:6.0.3.7%2Bdfsg-2%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-n8r7-wthv-fqaj
7
vulnerability VCID-qxe4-dubt-1kfp
8
vulnerability VCID-sarm-n22v-akcm
9
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:6.0.3.7%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie
3
url pkg:deb/debian/rails@2:6.1.7.10%2Bdfsg-1~deb12u2?distro=trixie
purl pkg:deb/debian/rails@2:6.1.7.10%2Bdfsg-1~deb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:6.1.7.10%252Bdfsg-1~deb12u2%3Fdistro=trixie
4
url pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2~deb13u1?distro=trixie
purl pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.2.2%252Bdfsg-2~deb13u1%3Fdistro=trixie
5
url pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/rails@2:7.2.2.2%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.2.2%252Bdfsg-2%3Fdistro=trixie
6
url pkg:deb/debian/rails@2:7.2.3%2Bdfsg-3?distro=trixie
purl pkg:deb/debian/rails@2:7.2.3%2Bdfsg-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4tzv-1t1b-t3g3
1
vulnerability VCID-5tky-d2en-u7c7
2
vulnerability VCID-96qr-hdbp-p7ff
3
vulnerability VCID-a6z9-5n6k-2kak
4
vulnerability VCID-ad6q-vtdf-syb6
5
vulnerability VCID-hatd-vkun-13hj
6
vulnerability VCID-qxe4-dubt-1kfp
7
vulnerability VCID-sarm-n22v-akcm
8
vulnerability VCID-wpmk-wgpm-cuee
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.3%252Bdfsg-3%3Fdistro=trixie
7
url pkg:deb/debian/rails@2:7.2.3.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/rails@2:7.2.3.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:7.2.3.1%252Bdfsg-1%3Fdistro=trixie
8
url pkg:gem/rails@5.2.2.1
purl pkg:gem/rails@5.2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-63gy-6njy-kbd8
2
vulnerability VCID-65tq-e5eb-eucj
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-a6sp-18av-wya6
5
vulnerability VCID-es1t-7196-4kbb
6
vulnerability VCID-gjey-bqtd-kqa1
7
vulnerability VCID-hppf-a715-r7b2
8
vulnerability VCID-jwun-grgg-2uet
9
vulnerability VCID-mnkw-23eu-bkgc
10
vulnerability VCID-t684-yp58-hkg8
11
vulnerability VCID-wg3a-j2dp-ayh4
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.2.1
9
url pkg:gem/rails@6.0.0
purl pkg:gem/rails@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-1bxs-yghe-cyck
2
vulnerability VCID-1xgz-hwng-n3eq
3
vulnerability VCID-5qu2-b8gt-7qe3
4
vulnerability VCID-63gy-6njy-kbd8
5
vulnerability VCID-65tq-e5eb-eucj
6
vulnerability VCID-895a-ydc5-zfg6
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-es1t-7196-4kbb
9
vulnerability VCID-gjey-bqtd-kqa1
10
vulnerability VCID-hppf-a715-r7b2
11
vulnerability VCID-jwun-grgg-2uet
12
vulnerability VCID-mnkw-23eu-bkgc
13
vulnerability VCID-t684-yp58-hkg8
14
vulnerability VCID-wg3a-j2dp-ayh4
15
vulnerability VCID-wyy6-h8bq-vyde
16
vulnerability VCID-zy7d-3db6-sydw
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@6.0.0
10
url pkg:gem/railties@5.2.2.1
purl pkg:gem/railties@5.2.2.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.2.1
11
url pkg:gem/railties@6.0.0
purl pkg:gem/railties@6.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@6.0.0
Affected_packages
0
url pkg:deb/debian/rails@1.1.6-3
purl pkg:deb/debian/rails@1.1.6-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-3zdr-vasc-a7cn
13
vulnerability VCID-43f3-rxwm-fkgv
14
vulnerability VCID-49pq-vg95-jkh2
15
vulnerability VCID-4cky-r218-dkbb
16
vulnerability VCID-4epw-vk25-mfdw
17
vulnerability VCID-4he5-y1u4-gkd2
18
vulnerability VCID-4zhj-en7h-3yaz
19
vulnerability VCID-5qu2-b8gt-7qe3
20
vulnerability VCID-5x54-hckg-x7b8
21
vulnerability VCID-63gy-6njy-kbd8
22
vulnerability VCID-6ku5-mtgz-zygw
23
vulnerability VCID-6pxd-xsaw-tuer
24
vulnerability VCID-6yr6-a21g-dyf5
25
vulnerability VCID-7f5r-9h1g-nuch
26
vulnerability VCID-86jq-2md2-d7ah
27
vulnerability VCID-895a-ydc5-zfg6
28
vulnerability VCID-8dad-dvat-1fg4
29
vulnerability VCID-9hq5-3usy-5fhq
30
vulnerability VCID-9hvm-2hnk-hyev
31
vulnerability VCID-9t7a-muwx-zyee
32
vulnerability VCID-a6sp-18av-wya6
33
vulnerability VCID-bjwf-uhyk-63aj
34
vulnerability VCID-c8b5-d83n-nuhw
35
vulnerability VCID-ca7u-t1y4-uuc7
36
vulnerability VCID-carc-ntrd-ebfe
37
vulnerability VCID-ce39-j83r-6ug9
38
vulnerability VCID-cnqr-6e98-5kgk
39
vulnerability VCID-cwa7-9d2t-rfhb
40
vulnerability VCID-d15q-6ukb-wfff
41
vulnerability VCID-dd9p-x7k3-37ea
42
vulnerability VCID-drg6-gj1f-h7ea
43
vulnerability VCID-eb5z-q7rj-j7hh
44
vulnerability VCID-ed3f-3bxh-eba4
45
vulnerability VCID-es1t-7196-4kbb
46
vulnerability VCID-g3rk-djae-pkeh
47
vulnerability VCID-g5q6-7uav-sqh1
48
vulnerability VCID-gjey-bqtd-kqa1
49
vulnerability VCID-gsx2-9sc2-3fbr
50
vulnerability VCID-hbtn-7423-m3gb
51
vulnerability VCID-hppf-a715-r7b2
52
vulnerability VCID-hr2h-y693-sbgc
53
vulnerability VCID-j7p8-hchp-xbe3
54
vulnerability VCID-jwun-grgg-2uet
55
vulnerability VCID-kkbt-pr7u-f7gn
56
vulnerability VCID-knsd-pv15-tydx
57
vulnerability VCID-kr1b-uct1-7kf6
58
vulnerability VCID-mep3-6sub-ykdk
59
vulnerability VCID-mnkw-23eu-bkgc
60
vulnerability VCID-nk6g-hhsk-8kaw
61
vulnerability VCID-nzeb-cy9e-tkax
62
vulnerability VCID-p5mc-r1rg-5ff7
63
vulnerability VCID-pb5f-g4uc-r7fp
64
vulnerability VCID-r1u7-1avr-fqbs
65
vulnerability VCID-s5ah-tf63-a7cw
66
vulnerability VCID-sb9g-rdnm-rqbm
67
vulnerability VCID-sfyc-jewr-wuf5
68
vulnerability VCID-sgdb-985e-4uej
69
vulnerability VCID-sygb-mygd-s3gb
70
vulnerability VCID-sz4r-kjse-cbdd
71
vulnerability VCID-t2cx-7ycd-tqhq
72
vulnerability VCID-t684-yp58-hkg8
73
vulnerability VCID-t9yh-ss8z-e3cb
74
vulnerability VCID-thx6-usb2-kkgc
75
vulnerability VCID-v3r3-bwp5-a3bn
76
vulnerability VCID-v9mt-t1pb-hybk
77
vulnerability VCID-va9q-fjn6-yqee
78
vulnerability VCID-vgm2-8wjy-x7ed
79
vulnerability VCID-wg3a-j2dp-ayh4
80
vulnerability VCID-wgr4-rzk2-4yet
81
vulnerability VCID-wyqh-g8df-hkay
82
vulnerability VCID-wyy6-h8bq-vyde
83
vulnerability VCID-xa94-z6yu-skf8
84
vulnerability VCID-xqzj-cww4-nbcy
85
vulnerability VCID-yy6t-ybeu-qycc
86
vulnerability VCID-yzpx-3gam-y3bu
87
vulnerability VCID-z1jv-4ga2-7kd1
88
vulnerability VCID-zkvd-bfd6-t7dg
89
vulnerability VCID-zqzx-avvt-wkhm
90
vulnerability VCID-zy7d-3db6-sydw
91
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@1.1.6-3
1
url pkg:deb/debian/rails@2.1.0-7%2Blenny2
purl pkg:deb/debian/rails@2.1.0-7%2Blenny2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-3zdr-vasc-a7cn
13
vulnerability VCID-43f3-rxwm-fkgv
14
vulnerability VCID-49pq-vg95-jkh2
15
vulnerability VCID-4cky-r218-dkbb
16
vulnerability VCID-4epw-vk25-mfdw
17
vulnerability VCID-4he5-y1u4-gkd2
18
vulnerability VCID-4zhj-en7h-3yaz
19
vulnerability VCID-5qu2-b8gt-7qe3
20
vulnerability VCID-5x54-hckg-x7b8
21
vulnerability VCID-63gy-6njy-kbd8
22
vulnerability VCID-6ku5-mtgz-zygw
23
vulnerability VCID-6pxd-xsaw-tuer
24
vulnerability VCID-6yr6-a21g-dyf5
25
vulnerability VCID-7f5r-9h1g-nuch
26
vulnerability VCID-86jq-2md2-d7ah
27
vulnerability VCID-895a-ydc5-zfg6
28
vulnerability VCID-8dad-dvat-1fg4
29
vulnerability VCID-9hq5-3usy-5fhq
30
vulnerability VCID-9t7a-muwx-zyee
31
vulnerability VCID-a6sp-18av-wya6
32
vulnerability VCID-bjwf-uhyk-63aj
33
vulnerability VCID-c8b5-d83n-nuhw
34
vulnerability VCID-ca7u-t1y4-uuc7
35
vulnerability VCID-carc-ntrd-ebfe
36
vulnerability VCID-ce39-j83r-6ug9
37
vulnerability VCID-cnqr-6e98-5kgk
38
vulnerability VCID-cwa7-9d2t-rfhb
39
vulnerability VCID-d15q-6ukb-wfff
40
vulnerability VCID-dd9p-x7k3-37ea
41
vulnerability VCID-drg6-gj1f-h7ea
42
vulnerability VCID-eb5z-q7rj-j7hh
43
vulnerability VCID-ed3f-3bxh-eba4
44
vulnerability VCID-es1t-7196-4kbb
45
vulnerability VCID-g3rk-djae-pkeh
46
vulnerability VCID-g5q6-7uav-sqh1
47
vulnerability VCID-gjey-bqtd-kqa1
48
vulnerability VCID-gsx2-9sc2-3fbr
49
vulnerability VCID-hbtn-7423-m3gb
50
vulnerability VCID-hppf-a715-r7b2
51
vulnerability VCID-hr2h-y693-sbgc
52
vulnerability VCID-j7p8-hchp-xbe3
53
vulnerability VCID-jwun-grgg-2uet
54
vulnerability VCID-kkbt-pr7u-f7gn
55
vulnerability VCID-knsd-pv15-tydx
56
vulnerability VCID-kr1b-uct1-7kf6
57
vulnerability VCID-mep3-6sub-ykdk
58
vulnerability VCID-mnkw-23eu-bkgc
59
vulnerability VCID-nk6g-hhsk-8kaw
60
vulnerability VCID-p5mc-r1rg-5ff7
61
vulnerability VCID-pb5f-g4uc-r7fp
62
vulnerability VCID-s5ah-tf63-a7cw
63
vulnerability VCID-sb9g-rdnm-rqbm
64
vulnerability VCID-sfyc-jewr-wuf5
65
vulnerability VCID-sgdb-985e-4uej
66
vulnerability VCID-sygb-mygd-s3gb
67
vulnerability VCID-sz4r-kjse-cbdd
68
vulnerability VCID-t2cx-7ycd-tqhq
69
vulnerability VCID-t684-yp58-hkg8
70
vulnerability VCID-t9yh-ss8z-e3cb
71
vulnerability VCID-thx6-usb2-kkgc
72
vulnerability VCID-v3r3-bwp5-a3bn
73
vulnerability VCID-v9mt-t1pb-hybk
74
vulnerability VCID-va9q-fjn6-yqee
75
vulnerability VCID-vgm2-8wjy-x7ed
76
vulnerability VCID-wg3a-j2dp-ayh4
77
vulnerability VCID-wyy6-h8bq-vyde
78
vulnerability VCID-xa94-z6yu-skf8
79
vulnerability VCID-yy6t-ybeu-qycc
80
vulnerability VCID-yzpx-3gam-y3bu
81
vulnerability VCID-z1jv-4ga2-7kd1
82
vulnerability VCID-zkvd-bfd6-t7dg
83
vulnerability VCID-zqzx-avvt-wkhm
84
vulnerability VCID-zy7d-3db6-sydw
85
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2.1.0-7%252Blenny2
2
url pkg:deb/debian/rails@2.3.5-1.2%2Bsqueeze8
purl pkg:deb/debian/rails@2.3.5-1.2%2Bsqueeze8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rgy-k7a9-m7au
4
vulnerability VCID-1rxp-g9rz-4yb3
5
vulnerability VCID-1x8k-t8mr-3fgp
6
vulnerability VCID-2efj-tf8d-dfck
7
vulnerability VCID-31xv-z8c6-a7bg
8
vulnerability VCID-333w-aacz-mfcr
9
vulnerability VCID-3hur-esmy-x3hr
10
vulnerability VCID-3m2y-wy1w-n7h1
11
vulnerability VCID-3wtf-uu89-2qe5
12
vulnerability VCID-43f3-rxwm-fkgv
13
vulnerability VCID-49pq-vg95-jkh2
14
vulnerability VCID-4cky-r218-dkbb
15
vulnerability VCID-4epw-vk25-mfdw
16
vulnerability VCID-4he5-y1u4-gkd2
17
vulnerability VCID-5qu2-b8gt-7qe3
18
vulnerability VCID-5x54-hckg-x7b8
19
vulnerability VCID-63gy-6njy-kbd8
20
vulnerability VCID-6ku5-mtgz-zygw
21
vulnerability VCID-6pxd-xsaw-tuer
22
vulnerability VCID-6yr6-a21g-dyf5
23
vulnerability VCID-86jq-2md2-d7ah
24
vulnerability VCID-895a-ydc5-zfg6
25
vulnerability VCID-8dad-dvat-1fg4
26
vulnerability VCID-9hq5-3usy-5fhq
27
vulnerability VCID-9t7a-muwx-zyee
28
vulnerability VCID-a6sp-18av-wya6
29
vulnerability VCID-bjwf-uhyk-63aj
30
vulnerability VCID-c8b5-d83n-nuhw
31
vulnerability VCID-ca7u-t1y4-uuc7
32
vulnerability VCID-carc-ntrd-ebfe
33
vulnerability VCID-ce39-j83r-6ug9
34
vulnerability VCID-cnqr-6e98-5kgk
35
vulnerability VCID-cwa7-9d2t-rfhb
36
vulnerability VCID-d15q-6ukb-wfff
37
vulnerability VCID-dd9p-x7k3-37ea
38
vulnerability VCID-drg6-gj1f-h7ea
39
vulnerability VCID-eb5z-q7rj-j7hh
40
vulnerability VCID-ed3f-3bxh-eba4
41
vulnerability VCID-es1t-7196-4kbb
42
vulnerability VCID-g3rk-djae-pkeh
43
vulnerability VCID-g5q6-7uav-sqh1
44
vulnerability VCID-gjey-bqtd-kqa1
45
vulnerability VCID-hbtn-7423-m3gb
46
vulnerability VCID-hppf-a715-r7b2
47
vulnerability VCID-hr2h-y693-sbgc
48
vulnerability VCID-j7p8-hchp-xbe3
49
vulnerability VCID-jwun-grgg-2uet
50
vulnerability VCID-kkbt-pr7u-f7gn
51
vulnerability VCID-knsd-pv15-tydx
52
vulnerability VCID-kr1b-uct1-7kf6
53
vulnerability VCID-mep3-6sub-ykdk
54
vulnerability VCID-mnkw-23eu-bkgc
55
vulnerability VCID-nk6g-hhsk-8kaw
56
vulnerability VCID-p5mc-r1rg-5ff7
57
vulnerability VCID-pb5f-g4uc-r7fp
58
vulnerability VCID-s5ah-tf63-a7cw
59
vulnerability VCID-sb9g-rdnm-rqbm
60
vulnerability VCID-sfyc-jewr-wuf5
61
vulnerability VCID-sgdb-985e-4uej
62
vulnerability VCID-sygb-mygd-s3gb
63
vulnerability VCID-sz4r-kjse-cbdd
64
vulnerability VCID-t2cx-7ycd-tqhq
65
vulnerability VCID-t684-yp58-hkg8
66
vulnerability VCID-t9yh-ss8z-e3cb
67
vulnerability VCID-thx6-usb2-kkgc
68
vulnerability VCID-v3r3-bwp5-a3bn
69
vulnerability VCID-v9mt-t1pb-hybk
70
vulnerability VCID-va9q-fjn6-yqee
71
vulnerability VCID-wg3a-j2dp-ayh4
72
vulnerability VCID-wyy6-h8bq-vyde
73
vulnerability VCID-xa94-z6yu-skf8
74
vulnerability VCID-yy6t-ybeu-qycc
75
vulnerability VCID-yzpx-3gam-y3bu
76
vulnerability VCID-z1jv-4ga2-7kd1
77
vulnerability VCID-zkvd-bfd6-t7dg
78
vulnerability VCID-zqzx-avvt-wkhm
79
vulnerability VCID-zy7d-3db6-sydw
80
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2.3.5-1.2%252Bsqueeze8
3
url pkg:deb/debian/rails@2:2.3.14.2
purl pkg:deb/debian/rails@2:2.3.14.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-2efj-tf8d-dfck
6
vulnerability VCID-31xv-z8c6-a7bg
7
vulnerability VCID-333w-aacz-mfcr
8
vulnerability VCID-3hur-esmy-x3hr
9
vulnerability VCID-3m2y-wy1w-n7h1
10
vulnerability VCID-5qu2-b8gt-7qe3
11
vulnerability VCID-5x54-hckg-x7b8
12
vulnerability VCID-63gy-6njy-kbd8
13
vulnerability VCID-6ku5-mtgz-zygw
14
vulnerability VCID-6pxd-xsaw-tuer
15
vulnerability VCID-6yr6-a21g-dyf5
16
vulnerability VCID-86jq-2md2-d7ah
17
vulnerability VCID-895a-ydc5-zfg6
18
vulnerability VCID-8dad-dvat-1fg4
19
vulnerability VCID-9hq5-3usy-5fhq
20
vulnerability VCID-9t7a-muwx-zyee
21
vulnerability VCID-a6sp-18av-wya6
22
vulnerability VCID-bjwf-uhyk-63aj
23
vulnerability VCID-c8b5-d83n-nuhw
24
vulnerability VCID-ce39-j83r-6ug9
25
vulnerability VCID-d15q-6ukb-wfff
26
vulnerability VCID-dd9p-x7k3-37ea
27
vulnerability VCID-drg6-gj1f-h7ea
28
vulnerability VCID-ed3f-3bxh-eba4
29
vulnerability VCID-es1t-7196-4kbb
30
vulnerability VCID-g3rk-djae-pkeh
31
vulnerability VCID-g5q6-7uav-sqh1
32
vulnerability VCID-gjey-bqtd-kqa1
33
vulnerability VCID-hppf-a715-r7b2
34
vulnerability VCID-jwun-grgg-2uet
35
vulnerability VCID-mnkw-23eu-bkgc
36
vulnerability VCID-p5mc-r1rg-5ff7
37
vulnerability VCID-pb5f-g4uc-r7fp
38
vulnerability VCID-s5ah-tf63-a7cw
39
vulnerability VCID-sb9g-rdnm-rqbm
40
vulnerability VCID-sfyc-jewr-wuf5
41
vulnerability VCID-sgdb-985e-4uej
42
vulnerability VCID-sygb-mygd-s3gb
43
vulnerability VCID-t2cx-7ycd-tqhq
44
vulnerability VCID-t684-yp58-hkg8
45
vulnerability VCID-t9yh-ss8z-e3cb
46
vulnerability VCID-thx6-usb2-kkgc
47
vulnerability VCID-v3r3-bwp5-a3bn
48
vulnerability VCID-v9mt-t1pb-hybk
49
vulnerability VCID-wg3a-j2dp-ayh4
50
vulnerability VCID-wyy6-h8bq-vyde
51
vulnerability VCID-yy6t-ybeu-qycc
52
vulnerability VCID-yzpx-3gam-y3bu
53
vulnerability VCID-z1jv-4ga2-7kd1
54
vulnerability VCID-zkvd-bfd6-t7dg
55
vulnerability VCID-zqzx-avvt-wkhm
56
vulnerability VCID-zy7d-3db6-sydw
57
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:2.3.14.2
4
url pkg:deb/debian/rails@2:4.1.8-1
purl pkg:deb/debian/rails@2:4.1.8-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-86jq-2md2-d7ah
14
vulnerability VCID-895a-ydc5-zfg6
15
vulnerability VCID-8dad-dvat-1fg4
16
vulnerability VCID-9hq5-3usy-5fhq
17
vulnerability VCID-9t7a-muwx-zyee
18
vulnerability VCID-a6sp-18av-wya6
19
vulnerability VCID-bjwf-uhyk-63aj
20
vulnerability VCID-c8b5-d83n-nuhw
21
vulnerability VCID-ce39-j83r-6ug9
22
vulnerability VCID-d15q-6ukb-wfff
23
vulnerability VCID-dd9p-x7k3-37ea
24
vulnerability VCID-drg6-gj1f-h7ea
25
vulnerability VCID-ed3f-3bxh-eba4
26
vulnerability VCID-es1t-7196-4kbb
27
vulnerability VCID-g3rk-djae-pkeh
28
vulnerability VCID-g5q6-7uav-sqh1
29
vulnerability VCID-gjey-bqtd-kqa1
30
vulnerability VCID-hppf-a715-r7b2
31
vulnerability VCID-jwun-grgg-2uet
32
vulnerability VCID-mnkw-23eu-bkgc
33
vulnerability VCID-p5mc-r1rg-5ff7
34
vulnerability VCID-pb5f-g4uc-r7fp
35
vulnerability VCID-s5ah-tf63-a7cw
36
vulnerability VCID-sfyc-jewr-wuf5
37
vulnerability VCID-sgdb-985e-4uej
38
vulnerability VCID-sygb-mygd-s3gb
39
vulnerability VCID-t2cx-7ycd-tqhq
40
vulnerability VCID-t684-yp58-hkg8
41
vulnerability VCID-t9yh-ss8z-e3cb
42
vulnerability VCID-thx6-usb2-kkgc
43
vulnerability VCID-v3r3-bwp5-a3bn
44
vulnerability VCID-v9mt-t1pb-hybk
45
vulnerability VCID-wg3a-j2dp-ayh4
46
vulnerability VCID-wyy6-h8bq-vyde
47
vulnerability VCID-yy6t-ybeu-qycc
48
vulnerability VCID-yzpx-3gam-y3bu
49
vulnerability VCID-z1jv-4ga2-7kd1
50
vulnerability VCID-zqzx-avvt-wkhm
51
vulnerability VCID-zy7d-3db6-sydw
52
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.1.8-1
5
url pkg:deb/debian/rails@2:4.1.8-1%2Bdeb8u4
purl pkg:deb/debian/rails@2:4.1.8-1%2Bdeb8u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-86jq-2md2-d7ah
14
vulnerability VCID-895a-ydc5-zfg6
15
vulnerability VCID-8dad-dvat-1fg4
16
vulnerability VCID-9hq5-3usy-5fhq
17
vulnerability VCID-9t7a-muwx-zyee
18
vulnerability VCID-a6sp-18av-wya6
19
vulnerability VCID-bjwf-uhyk-63aj
20
vulnerability VCID-c8b5-d83n-nuhw
21
vulnerability VCID-ce39-j83r-6ug9
22
vulnerability VCID-d15q-6ukb-wfff
23
vulnerability VCID-dd9p-x7k3-37ea
24
vulnerability VCID-drg6-gj1f-h7ea
25
vulnerability VCID-ed3f-3bxh-eba4
26
vulnerability VCID-es1t-7196-4kbb
27
vulnerability VCID-g3rk-djae-pkeh
28
vulnerability VCID-g5q6-7uav-sqh1
29
vulnerability VCID-gjey-bqtd-kqa1
30
vulnerability VCID-hppf-a715-r7b2
31
vulnerability VCID-jwun-grgg-2uet
32
vulnerability VCID-mnkw-23eu-bkgc
33
vulnerability VCID-p5mc-r1rg-5ff7
34
vulnerability VCID-pb5f-g4uc-r7fp
35
vulnerability VCID-s5ah-tf63-a7cw
36
vulnerability VCID-sfyc-jewr-wuf5
37
vulnerability VCID-sgdb-985e-4uej
38
vulnerability VCID-sygb-mygd-s3gb
39
vulnerability VCID-t2cx-7ycd-tqhq
40
vulnerability VCID-t684-yp58-hkg8
41
vulnerability VCID-t9yh-ss8z-e3cb
42
vulnerability VCID-thx6-usb2-kkgc
43
vulnerability VCID-v3r3-bwp5-a3bn
44
vulnerability VCID-v9mt-t1pb-hybk
45
vulnerability VCID-wg3a-j2dp-ayh4
46
vulnerability VCID-wyy6-h8bq-vyde
47
vulnerability VCID-yy6t-ybeu-qycc
48
vulnerability VCID-yzpx-3gam-y3bu
49
vulnerability VCID-z1jv-4ga2-7kd1
50
vulnerability VCID-zqzx-avvt-wkhm
51
vulnerability VCID-zy7d-3db6-sydw
52
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.1.8-1%252Bdeb8u4
6
url pkg:deb/debian/rails@2:4.2.7.1-1%2Bdeb9u2
purl pkg:deb/debian/rails@2:4.2.7.1-1%2Bdeb9u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12x8-jxdf-jqdz
1
vulnerability VCID-19fr-55kr-hyax
2
vulnerability VCID-1bxs-yghe-cyck
3
vulnerability VCID-1rxp-g9rz-4yb3
4
vulnerability VCID-1x8k-t8mr-3fgp
5
vulnerability VCID-31xv-z8c6-a7bg
6
vulnerability VCID-3hur-esmy-x3hr
7
vulnerability VCID-5qu2-b8gt-7qe3
8
vulnerability VCID-5x54-hckg-x7b8
9
vulnerability VCID-63gy-6njy-kbd8
10
vulnerability VCID-6ku5-mtgz-zygw
11
vulnerability VCID-6pxd-xsaw-tuer
12
vulnerability VCID-6yr6-a21g-dyf5
13
vulnerability VCID-895a-ydc5-zfg6
14
vulnerability VCID-8dad-dvat-1fg4
15
vulnerability VCID-a6sp-18av-wya6
16
vulnerability VCID-c8b5-d83n-nuhw
17
vulnerability VCID-ce39-j83r-6ug9
18
vulnerability VCID-dd9p-x7k3-37ea
19
vulnerability VCID-drg6-gj1f-h7ea
20
vulnerability VCID-es1t-7196-4kbb
21
vulnerability VCID-g3rk-djae-pkeh
22
vulnerability VCID-g5q6-7uav-sqh1
23
vulnerability VCID-gjey-bqtd-kqa1
24
vulnerability VCID-hppf-a715-r7b2
25
vulnerability VCID-jwun-grgg-2uet
26
vulnerability VCID-mnkw-23eu-bkgc
27
vulnerability VCID-p5mc-r1rg-5ff7
28
vulnerability VCID-sfyc-jewr-wuf5
29
vulnerability VCID-sgdb-985e-4uej
30
vulnerability VCID-sygb-mygd-s3gb
31
vulnerability VCID-t684-yp58-hkg8
32
vulnerability VCID-t9yh-ss8z-e3cb
33
vulnerability VCID-v9mt-t1pb-hybk
34
vulnerability VCID-wg3a-j2dp-ayh4
35
vulnerability VCID-wyy6-h8bq-vyde
36
vulnerability VCID-yy6t-ybeu-qycc
37
vulnerability VCID-yzpx-3gam-y3bu
38
vulnerability VCID-zqzx-avvt-wkhm
39
vulnerability VCID-zy7d-3db6-sydw
40
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rails@2:4.2.7.1-1%252Bdeb9u2
7
url pkg:gem/rails@5.2.0
purl pkg:gem/rails@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.0
8
url pkg:gem/rails@5.2.1.rc1
purl pkg:gem/rails@5.2.1.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1.rc1
9
url pkg:gem/rails@5.2.1
purl pkg:gem/rails@5.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-5x54-hckg-x7b8
2
vulnerability VCID-63gy-6njy-kbd8
3
vulnerability VCID-65tq-e5eb-eucj
4
vulnerability VCID-6yr6-a21g-dyf5
5
vulnerability VCID-895a-ydc5-zfg6
6
vulnerability VCID-8dad-dvat-1fg4
7
vulnerability VCID-a6sp-18av-wya6
8
vulnerability VCID-c8b5-d83n-nuhw
9
vulnerability VCID-es1t-7196-4kbb
10
vulnerability VCID-gjey-bqtd-kqa1
11
vulnerability VCID-hppf-a715-r7b2
12
vulnerability VCID-jwun-grgg-2uet
13
vulnerability VCID-mnkw-23eu-bkgc
14
vulnerability VCID-t684-yp58-hkg8
15
vulnerability VCID-wg3a-j2dp-ayh4
16
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1
10
url pkg:gem/rails@5.2.1.1
purl pkg:gem/rails@5.2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-63gy-6njy-kbd8
2
vulnerability VCID-65tq-e5eb-eucj
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-8dad-dvat-1fg4
5
vulnerability VCID-a6sp-18av-wya6
6
vulnerability VCID-c8b5-d83n-nuhw
7
vulnerability VCID-es1t-7196-4kbb
8
vulnerability VCID-gjey-bqtd-kqa1
9
vulnerability VCID-hppf-a715-r7b2
10
vulnerability VCID-jwun-grgg-2uet
11
vulnerability VCID-mnkw-23eu-bkgc
12
vulnerability VCID-t684-yp58-hkg8
13
vulnerability VCID-wg3a-j2dp-ayh4
14
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.1.1
11
url pkg:gem/rails@5.2.2.rc1
purl pkg:gem/rails@5.2.2.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-63gy-6njy-kbd8
2
vulnerability VCID-65tq-e5eb-eucj
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-8dad-dvat-1fg4
5
vulnerability VCID-a6sp-18av-wya6
6
vulnerability VCID-c8b5-d83n-nuhw
7
vulnerability VCID-es1t-7196-4kbb
8
vulnerability VCID-gjey-bqtd-kqa1
9
vulnerability VCID-hppf-a715-r7b2
10
vulnerability VCID-jwun-grgg-2uet
11
vulnerability VCID-mnkw-23eu-bkgc
12
vulnerability VCID-t684-yp58-hkg8
13
vulnerability VCID-wg3a-j2dp-ayh4
14
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.2.rc1
12
url pkg:gem/rails@5.2.2
purl pkg:gem/rails@5.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qu2-b8gt-7qe3
1
vulnerability VCID-63gy-6njy-kbd8
2
vulnerability VCID-65tq-e5eb-eucj
3
vulnerability VCID-895a-ydc5-zfg6
4
vulnerability VCID-8dad-dvat-1fg4
5
vulnerability VCID-a6sp-18av-wya6
6
vulnerability VCID-c8b5-d83n-nuhw
7
vulnerability VCID-es1t-7196-4kbb
8
vulnerability VCID-gjey-bqtd-kqa1
9
vulnerability VCID-hppf-a715-r7b2
10
vulnerability VCID-jwun-grgg-2uet
11
vulnerability VCID-mnkw-23eu-bkgc
12
vulnerability VCID-t684-yp58-hkg8
13
vulnerability VCID-wg3a-j2dp-ayh4
14
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@5.2.2
13
url pkg:gem/rails@6.0.0.beta1
purl pkg:gem/rails@6.0.0.beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-63gy-6njy-kbd8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-hppf-a715-r7b2
3
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@6.0.0.beta1
14
url pkg:gem/rails@6.0.0.beta2
purl pkg:gem/rails@6.0.0.beta2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-63gy-6njy-kbd8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-hppf-a715-r7b2
3
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@6.0.0.beta2
15
url pkg:gem/rails@6.0.0.beta3
purl pkg:gem/rails@6.0.0.beta3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-63gy-6njy-kbd8
1
vulnerability VCID-65tq-e5eb-eucj
2
vulnerability VCID-hppf-a715-r7b2
3
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails@6.0.0.beta3
16
url pkg:gem/railties@5.2.0
purl pkg:gem/railties@5.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.0
17
url pkg:gem/railties@5.2.1.rc1
purl pkg:gem/railties@5.2.1.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.1.rc1
18
url pkg:gem/railties@5.2.1
purl pkg:gem/railties@5.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.1
19
url pkg:gem/railties@5.2.1.1
purl pkg:gem/railties@5.2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.1.1
20
url pkg:gem/railties@5.2.2.rc1
purl pkg:gem/railties@5.2.2.rc1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.2.rc1
21
url pkg:gem/railties@5.2.2
purl pkg:gem/railties@5.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.2
22
url pkg:gem/railties@5.2.2.0
purl pkg:gem/railties@5.2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@5.2.2.0
23
url pkg:gem/railties@6.0.0.beta1
purl pkg:gem/railties@6.0.0.beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@6.0.0.beta1
24
url pkg:gem/railties@6.0.0.beta2
purl pkg:gem/railties@6.0.0.beta2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@6.0.0.beta2
25
url pkg:gem/railties@6.0.0.beta3
purl pkg:gem/railties@6.0.0.beta3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zydu-j9dg-fqdb
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/railties@6.0.0.beta3
References
0
reference_url http://packetstormsecurity.com/files/152704/Ruby-On-Rails-DoubleTap-Development-Mode-secret_key_base-Remote-Code-Execution.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/152704/Ruby-On-Rails-DoubleTap-Development-Mode-secret_key_base-Remote-Code-Execution.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5420.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5420.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-5420
reference_id
reference_type
scores
0
value 0.93745
scoring_system epss
scoring_elements 0.99853
published_at 2026-04-16T12:55:00Z
1
value 0.93745
scoring_system epss
scoring_elements 0.9985
published_at 2026-04-01T12:55:00Z
2
value 0.93745
scoring_system epss
scoring_elements 0.99851
published_at 2026-04-09T12:55:00Z
3
value 0.93745
scoring_system epss
scoring_elements 0.99852
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-5420
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5420
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5420
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/railties/CVE-2019-5420.yml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/railties/CVE-2019-5420.yml
6
reference_url https://groups.google.com/forum/#%21topic/rubyonrails-security/IsQKvDqZdKw
reference_id
reference_type
scores
url https://groups.google.com/forum/#%21topic/rubyonrails-security/IsQKvDqZdKw
7
reference_url https://groups.google.com/forum/#!topic/rubyonrails-security/IsQKvDqZdKw
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://groups.google.com/forum/#!topic/rubyonrails-security/IsQKvDqZdKw
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA/
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y43636TH4D6T46IC6N2RQVJTRFJAAYGA/
11
reference_url https://weblog.rubyonrails.org/2019/3/13/Rails-4-2-5-1-5-1-6-2-have-been-released
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://weblog.rubyonrails.org/2019/3/13/Rails-4-2-5-1-5-1-6-2-have-been-released
12
reference_url https://weblog.rubyonrails.org/2019/3/13/Rails-4-2-5-1-5-1-6-2-have-been-released/
reference_id
reference_type
scores
url https://weblog.rubyonrails.org/2019/3/13/Rails-4-2-5-1-5-1-6-2-have-been-released/
13
reference_url https://www.exploit-db.com/exploits/46785
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/46785
14
reference_url https://www.exploit-db.com/exploits/46785/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/46785/
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1689154
reference_id 1689154
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1689154
16
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924521
reference_id 924521
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924521
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:6.0.0:beta1:*:*:*:*:*:*
reference_id cpe:2.3:a:rubyonrails:rails:6.0.0:beta1:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:6.0.0:beta1:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:6.0.0:beta2:*:*:*:*:*:*
reference_id cpe:2.3:a:rubyonrails:rails:6.0.0:beta2:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:6.0.0:beta2:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
22
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/46785.rb
reference_id CVE-2019-5420
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/46785.rb
23
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-5420
reference_id CVE-2019-5420
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-5420
24
reference_url https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/rails_double_tap.rb
reference_id CVE-2019-5420
reference_type exploit
scores
url https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/rails_double_tap.rb
25
reference_url https://github.com/advisories/GHSA-m42h-mh85-4qgc
reference_id GHSA-m42h-mh85-4qgc
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m42h-mh85-4qgc
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 20
name Improper Input Validation
description The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 330
name Use of Insufficiently Random Values
description The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.
4
cwe_id 77
name Improper Neutralization of Special Elements used in a Command ('Command Injection')
description The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
5
cwe_id 338
name Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
description The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.
Exploits
0
date_added 2019-05-02
description Ruby On Rails - DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2019-05-02
exploit_type remote
platform linux
source_date_updated 2019-05-02
data_source Exploit-DB
source_url https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/rails_double_tap.rb
1
date_added null
description 
This module exploits a vulnerability in Ruby on Rails. In development mode, a Rails
          application would use its name as the secret_key_base, and can be easily extracted by
          visiting an invalid resource for a path. As a result, this allows a remote user to
          create and deliver a signed serialized payload, load it by the application, and gain
          remote code execution.
required_action null
due_date null
notes 
AKA:
  - doubletap
Stability:
  - crash-safe
SideEffects:
  - ioc-in-logs
Reliability:
  - unknown-reliability
known_ransomware_campaign_use false
source_date_published 2019-03-13
exploit_type null
platform Linux
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/rails_double_tap.rb
Severity_range_score7.5 - 10.0
Exploitability2.0
Weighted_severity9.0
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-zydu-j9dg-fqdb