Search for packages
| purl | pkg:gem/cgi@0.3 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1vp9-6q85-5ffv
Aliases: CVE-2021-41819 GHSA-4vf4-qmvg-mh7h |
Reliance on Cookies without Validation and Integrity Checking in a Security Decision CGI::Cookie.parse in Ruby mishandles security prefixes in cookie names. This also affects the CGI gem for Ruby. |
Affected by 4 other vulnerabilities. |
|
VCID-9g2w-sc9w-eyce
Aliases: CVE-2021-33621 GHSA-vc47-6rqg-c7f5 |
Multiple vulnerabilities have been discovered in Ruby, the worst of which could lead to execution of arbitrary code. |
Affected by 2 other vulnerabilities. |
|
VCID-gfjn-m9zp-57c5
Aliases: CVE-2021-41816 GHSA-5cqm-crxm-6qpv GMS-2021-17 |
Duplicate This advisory duplicates another. |
Affected by 4 other vulnerabilities. Affected by 3 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T15:18:22.116079+00:00 | Ruby Importer | Affected by | VCID-gfjn-m9zp-57c5 | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41816.yml | 38.0.0 |
| 2026-04-01T15:18:22.064244+00:00 | Ruby Importer | Affected by | VCID-1vp9-6q85-5ffv | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41819.yml | 38.0.0 |
| 2026-04-01T15:18:21.971379+00:00 | Ruby Importer | Affected by | VCID-9g2w-sc9w-eyce | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-33621.yml | 38.0.0 |