VulnerableCode Package Details - pkg:gem/carrierwave@3.0.0.beta

Search for packages

Vulnerability	Summary	Fixed by
VCID-6jfa-g6gq-x3h2 Aliases: CVE-2026-44587 GHSA-7g26-2qgj-chfg	CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters	3.1.3 Affected by 0 other vulnerabilities.
VCID-pv9t-1fye-rfep Aliases: CVE-2024-29034 GHSA-vfmv-jfc5-pjjw	CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. The vulnerability CVE-2023-49090 wasn't fully addressed. This vulnerability is caused by the fact that when uploading to object storage, including Amazon S3, it is possible to set a Content-Type value that is interpreted by browsers to be different from what's allowed by `content_type_allowlist`, by providing multiple values separated by commas. This bypassed value can be used to cause XSS. Upgrade to 3.0.7 or 2.2.6.	3.0.7 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-xtp9-rft2-9uhg Aliases: CVE-2023-49090 GHSA-gxhx-g4fq-49hj	CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. CarrierWave has a Content-Type allowlist bypass vulnerability, possibly leading to XSS. The validation in `allowlisted_content_type?` determines Content-Type permissions by performing a partial match. If the `content_type` argument of `allowlisted_content_type?` is passed a value crafted by the attacker, Content-Types not included in the `content_type_allowlist` will be allowed. This issue has been patched in versions 2.2.5 and 3.0.5.	3.0.5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-6jfa-g6gq-x3h2
Aliases:
CVE-2026-44587
GHSA-7g26-2qgj-chfg

CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters

3.1.3
Affected by 0 other vulnerabilities.

VCID-pv9t-1fye-rfep
Aliases:
CVE-2024-29034
GHSA-vfmv-jfc5-pjjw

CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. The vulnerability CVE-2023-49090 wasn't fully addressed. This vulnerability is caused by the fact that when uploading to object storage, including Amazon S3, it is possible to set a Content-Type value that is interpreted by browsers to be different from what's allowed by `content_type_allowlist`, by providing multiple values separated by commas. This bypassed value can be used to cause XSS. Upgrade to 3.0.7 or 2.2.6.

3.0.7
Affected by 1 other vulnerability.

VCID-xtp9-rft2-9uhg
Aliases:
CVE-2023-49090
GHSA-gxhx-g4fq-49hj

CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. CarrierWave has a Content-Type allowlist bypass vulnerability, possibly leading to XSS. The validation in `allowlisted_content_type?` determines Content-Type permissions by performing a partial match. If the `content_type` argument of `allowlisted_content_type?` is passed a value crafted by the attacker, Content-Types not included in the `content_type_allowlist` will be allowed. This issue has been patched in versions 2.2.5 and 3.0.5.

3.0.5
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-xtp9-rft2-9uhg	CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. CarrierWave has a Content-Type allowlist bypass vulnerability, possibly leading to XSS. The validation in `allowlisted_content_type?` determines Content-Type permissions by performing a partial match. If the `content_type` argument of `allowlisted_content_type?` is passed a value crafted by the attacker, Content-Types not included in the `content_type_allowlist` will be allowed. This issue has been patched in versions 2.2.5 and 3.0.5.	CVE-2023-49090 GHSA-gxhx-g4fq-49hj

Vulnerability

Summary

Aliases

VCID-xtp9-rft2-9uhg

CVE-2023-49090
GHSA-gxhx-g4fq-49hj

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T09:24:33.964382+00:00	Ruby Importer	Affected by	VCID-pv9t-1fye-rfep	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/carrierwave/CVE-2024-29034.yml	38.6.0
2026-06-13T09:23:46.812974+00:00	Ruby Importer	Affected by	VCID-xtp9-rft2-9uhg	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/carrierwave/CVE-2023-49090.yml	38.6.0
2026-06-12T19:12:15.340390+00:00	GitLab Importer	Fixing	VCID-xtp9-rft2-9uhg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/carrierwave/CVE-2023-49090.yml	38.6.0
2026-06-11T20:38:51.056715+00:00	GHSA Importer	Affected by	VCID-6jfa-g6gq-x3h2	https://github.com/advisories/GHSA-7g26-2qgj-chfg	38.6.0