Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/actionpack@4.0.0.0.alpha
purl pkg:gem/actionpack@4.0.0.0.alpha
Tags Ghost
Next non-vulnerable version 7.0.8.7
Latest non-vulnerable version 8.1.2.1
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-s5ah-tf63-a7cw
Aliases:
CVE-2016-2098
GHSA-78rc-8c29-p45g
Improper Input Validation The Rails gem allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.
4.1.14.2
Affected by 26 other vulnerabilities.
4.2.5.2
Affected by 26 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T12:47:01.851681+00:00 GitLab Importer Affected by VCID-s5ah-tf63-a7cw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/actionpack/CVE-2016-2098.yml 38.0.0