Search for packages
| purl | pkg:gem/carrierwave@0.4.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-3xc5-z1nh-n3fv
Aliases: GMS-2014-3 |
This package is vulnerable to Information Exposure. When an exception message occurs, it contains the full path of the project directory. |
Affected by 4 other vulnerabilities. |
|
VCID-cfb3-tkh5-kydt
Aliases: CVE-2021-21288 GHSA-fwcm-636p-68r5 |
CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. In CarrierWave before versions 1.3.2 and 2.1.1 the download feature has an SSRF vulnerability, allowing attacks to provide DNS entries or IP addresses that are intended for internal use and gather information about the Intranet infrastructure of the platform. This is fixed in versions 1.3.2 and 2.1.1. |
Affected by 2 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-gfum-nr44-17ck
Aliases: CVE-2021-21305 GHSA-cf3w-g86h-35x4 |
CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. In CarrierWave before versions 1.3.2 and 2.1.1, there is a code injection vulnerability. The "#manipulate!" method inappropriately evals the content of mutation option(:read/:write), allowing attackers to craft a string that can be executed as a Ruby code. If an application developer supplies untrusted inputs to the option, it will lead to remote code execution(RCE). This is fixed in versions 1.3.2 and 2.1.1. |
Affected by 2 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-pv9t-1fye-rfep
Aliases: CVE-2024-29034 GHSA-vfmv-jfc5-pjjw |
CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. The vulnerability CVE-2023-49090 wasn't fully addressed. This vulnerability is caused by the fact that when uploading to object storage, including Amazon S3, it is possible to set a Content-Type value that is interpreted by browsers to be different from what's allowed by `content_type_allowlist`, by providing multiple values separated by commas. This bypassed value can be used to cause XSS. Upgrade to 3.0.7 or 2.2.6. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
|
VCID-xtp9-rft2-9uhg
Aliases: CVE-2023-49090 GHSA-gxhx-g4fq-49hj |
CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. CarrierWave has a Content-Type allowlist bypass vulnerability, possibly leading to XSS. The validation in `allowlisted_content_type?` determines Content-Type permissions by performing a partial match. If the `content_type` argument of `allowlisted_content_type?` is passed a value crafted by the attacker, Content-Types not included in the `content_type_allowlist` will be allowed. This issue has been patched in versions 2.2.5 and 3.0.5. |
Affected by 1 other vulnerability. Affected by 3 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||