Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/42550?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/42550?format=api", "vulnerability_id": "VCID-ga2g-htdr-7ken", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nVIewComponent is a framework for building view components in Ruby on Rails. Versions prior to 2.31.2 and 2.49.1 contain a cross-site scripting vulnerability that has the potential to impact anyone using translations with the view_component gem. Data received via user input and passed as an interpolation argument to the `translate` method is not properly sanitized before display. Versions 2.31.2 and 2.49.1 have been released and fully mitigate the vulnerability. As a workaround, avoid passing user input to the `translate` function, or sanitize the inputs before passing them.", "aliases": [ { "alias": "CVE-2022-24722" }, { "alias": "GHSA-cm9w-c4rj-r2cf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/60840?format=api", "purl": "pkg:gem/view_component@2.31.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.31.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/60841?format=api", "purl": "pkg:gem/view_component@2.49.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.49.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/164204?format=api", "purl": "pkg:gem/view_component@1.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@1.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164205?format=api", "purl": "pkg:gem/view_component@1.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@1.17.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164206?format=api", "purl": "pkg:gem/view_component@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164207?format=api", "purl": "pkg:gem/view_component@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164208?format=api", "purl": "pkg:gem/view_component@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164209?format=api", "purl": "pkg:gem/view_component@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164210?format=api", "purl": "pkg:gem/view_component@2.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/164211?format=api", "purl": "pkg:gem/view_component@2.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164212?format=api", "purl": "pkg:gem/view_component@2.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164214?format=api", "purl": "pkg:gem/view_component@2.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164215?format=api", "purl": "pkg:gem/view_component@2.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164216?format=api", "purl": "pkg:gem/view_component@2.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164217?format=api", "purl": "pkg:gem/view_component@2.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164219?format=api", "purl": "pkg:gem/view_component@2.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164220?format=api", "purl": "pkg:gem/view_component@2.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164221?format=api", "purl": "pkg:gem/view_component@2.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164222?format=api", "purl": "pkg:gem/view_component@2.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164223?format=api", "purl": "pkg:gem/view_component@2.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164224?format=api", "purl": "pkg:gem/view_component@2.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164225?format=api", "purl": "pkg:gem/view_component@2.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164226?format=api", "purl": "pkg:gem/view_component@2.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164227?format=api", "purl": "pkg:gem/view_component@2.14.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.14.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164228?format=api", "purl": "pkg:gem/view_component@2.15.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.15.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164229?format=api", "purl": "pkg:gem/view_component@2.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164230?format=api", "purl": "pkg:gem/view_component@2.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.17.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164232?format=api", "purl": "pkg:gem/view_component@2.17.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.17.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164233?format=api", "purl": "pkg:gem/view_component@2.18.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.18.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164234?format=api", "purl": "pkg:gem/view_component@2.18.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.18.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164235?format=api", "purl": "pkg:gem/view_component@2.18.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.18.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/164236?format=api", "purl": "pkg:gem/view_component@2.19.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.19.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164237?format=api", "purl": "pkg:gem/view_component@2.19.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.19.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164239?format=api", "purl": "pkg:gem/view_component@2.20.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.20.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164240?format=api", "purl": "pkg:gem/view_component@2.21.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.21.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164241?format=api", "purl": "pkg:gem/view_component@2.22.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.22.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164242?format=api", "purl": "pkg:gem/view_component@2.22.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.22.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164243?format=api", "purl": "pkg:gem/view_component@2.23.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.23.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164244?format=api", "purl": "pkg:gem/view_component@2.23.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.23.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164245?format=api", "purl": "pkg:gem/view_component@2.23.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.23.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/164246?format=api", "purl": "pkg:gem/view_component@2.24.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.24.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164247?format=api", "purl": "pkg:gem/view_component@2.25.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.25.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164248?format=api", "purl": "pkg:gem/view_component@2.25.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.25.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164249?format=api", "purl": "pkg:gem/view_component@2.26.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.26.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164250?format=api", "purl": "pkg:gem/view_component@2.26.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.26.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164251?format=api", "purl": "pkg:gem/view_component@2.27.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.27.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164252?format=api", "purl": "pkg:gem/view_component@2.28.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.28.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164253?format=api", "purl": "pkg:gem/view_component@2.29.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.29.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164254?format=api", "purl": "pkg:gem/view_component@2.30.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.30.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/60838?format=api", "purl": "pkg:gem/view_component@2.31.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.31.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164255?format=api", "purl": "pkg:gem/view_component@2.31.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.31.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/60839?format=api", "purl": "pkg:gem/view_component@2.32.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.32.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/75576?format=api", "purl": "pkg:gem/view_component@2.32", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.32" }, { "url": "http://public2.vulnerablecode.io/api/packages/164256?format=api", "purl": "pkg:gem/view_component@2.33.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.33.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164257?format=api", "purl": "pkg:gem/view_component@2.34.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.34.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164258?format=api", "purl": "pkg:gem/view_component@2.35.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.35.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164259?format=api", "purl": "pkg:gem/view_component@2.36.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.36.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164260?format=api", "purl": "pkg:gem/view_component@2.37.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.37.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164261?format=api", "purl": "pkg:gem/view_component@2.38.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.38.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164262?format=api", "purl": "pkg:gem/view_component@2.39.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.39.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164263?format=api", "purl": "pkg:gem/view_component@2.40.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.40.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164264?format=api", "purl": "pkg:gem/view_component@2.41.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.41.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164265?format=api", "purl": "pkg:gem/view_component@2.42.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.42.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164266?format=api", "purl": "pkg:gem/view_component@2.43.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.43.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164267?format=api", "purl": "pkg:gem/view_component@2.43.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.43.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/164268?format=api", "purl": "pkg:gem/view_component@2.44.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.44.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164269?format=api", "purl": "pkg:gem/view_component@2.45.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.45.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164270?format=api", "purl": "pkg:gem/view_component@2.46.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.46.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164271?format=api", "purl": "pkg:gem/view_component@2.47.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.47.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164272?format=api", "purl": "pkg:gem/view_component@2.48.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.48.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/164273?format=api", "purl": "pkg:gem/view_component@2.49.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fk74-z1fr-1uem" }, { "vulnerability": "VCID-ga2g-htdr-7ken" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/view_component@2.49.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24722", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00735", "scoring_system": "epss", "scoring_elements": "0.73173", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-24722" }, { "reference_url": "https://github.com/github/view_component", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/github/view_component" }, { "reference_url": "https://github.com/github/view_component/commit/3f82a6e62578ff6f361aba24a1feb2caccf83ff9", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/github/view_component/commit/3f82a6e62578ff6f361aba24a1feb2caccf83ff9" }, { "reference_url": "https://github.com/github/view_component/releases/tag/v2.31.2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/github/view_component/releases/tag/v2.31.2" }, { "reference_url": "https://github.com/github/view_component/releases/tag/v2.49.1", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/github/view_component/releases/tag/v2.49.1" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/view_component/CVE-2022-24722.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/view_component/CVE-2022-24722.yml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24722", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24722" }, { "reference_url": "https://github.com/advisories/GHSA-cm9w-c4rj-r2cf", "reference_id": "GHSA-cm9w-c4rj-r2cf", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-cm9w-c4rj-r2cf" }, { "reference_url": "https://github.com/github/view_component/security/advisories/GHSA-cm9w-c4rj-r2cf", "reference_id": "GHSA-cm9w-c4rj-r2cf", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "" }, { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/github/view_component/security/advisories/GHSA-cm9w-c4rj-r2cf" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 79, "name": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "description": "The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ga2g-htdr-7ken" }