Search for packages
| purl | pkg:gem/mapbox-rails@1.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2auu-6kv1-qfbu
Aliases: CVE-2017-1000042 GHSA-qr28-7j6p-9hmv |
Cross-site Scripting Mapbox is vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via `TileJSON` Name. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-4eaj-9htz-duc1
Aliases: CVE-2017-1000043 GHSA-q69p-5h74-w36f |
Cross-site Scripting Mapbox is vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via `TileJSON` name and map share control |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:38:35.068270+00:00 | GitLab Importer | Affected by | VCID-2auu-6kv1-qfbu | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/mapbox-rails/CVE-2017-1000042.yml | 38.6.0 |
| 2026-06-02T04:38:35.008565+00:00 | GitLab Importer | Affected by | VCID-4eaj-9htz-duc1 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/mapbox-rails/CVE-2017-1000043.yml | 38.6.0 |