Search for packages
| purl | pkg:gem/cgi@0.2 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1vp9-6q85-5ffv
Aliases: CVE-2021-41819 GHSA-4vf4-qmvg-mh7h |
Reliance on Cookies without Validation and Integrity Checking in a Security Decision CGI::Cookie.parse in Ruby mishandles security prefixes in cookie names. This also affects the CGI gem for Ruby. |
Affected by 5 other vulnerabilities. Affected by 4 other vulnerabilities. |
|
VCID-gfjn-m9zp-57c5
Aliases: CVE-2021-41816 GHSA-5cqm-crxm-6qpv GMS-2021-17 |
Duplicate This advisory duplicates another. |
Affected by 5 other vulnerabilities. Affected by 4 other vulnerabilities. Affected by 3 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T15:18:22.103677+00:00 | Ruby Importer | Affected by | VCID-gfjn-m9zp-57c5 | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41816.yml | 38.0.0 |
| 2026-04-01T15:18:22.052075+00:00 | Ruby Importer | Affected by | VCID-1vp9-6q85-5ffv | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41819.yml | 38.0.0 |