VulnerableCode Package Details - pkg:rpm/redhat/ruby193-rubygem-bcrypt-ruby@3.0.1-7?arch=el6

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/ruby193-rubygem-bcrypt-ruby@3.0.1-7?arch=el6

Essentials
History (12)

purl	pkg:rpm/redhat/ruby193-rubygem-bcrypt-ruby@3.0.1-7?arch=el6

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (12)

Vulnerability	Summary	Fixed by
VCID-23ur-7nqb-tybr Aliases: CVE-2013-0185	EVM: CSRF	There are no reported fixed by versions.
VCID-a8g4-d3m8-uub1 Aliases: CVE-2013-4423	CloudForms: user password stored in recoverable format	There are no reported fixed by versions.
VCID-g4tm-8zhw-a7hn Aliases: CVE-2013-1900	Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guessmore details	There are no reported fixed by versions.
VCID-krve-mwjb-93at Aliases: CVE-2013-4172	interface: Ruby code injection	There are no reported fixed by versions.
VCID-m86x-54rz-2uat Aliases: CVE-2013-2050	2: miq_policy/explorer SQL injection	There are no reported fixed by versions.
VCID-n3ka-63rx-5fgk Aliases: CVE-2013-1899	A connection request containing a database name that begins with "-" may be crafted to damage or destroy files within a server's data directorymore details	There are no reported fixed by versions.
VCID-pb4n-q6u8-syds Aliases: CVE-2013-0256 GHSA-v2r9-c84j-v7xm OSV-90004	XSS exploit of RDoc documentation generated by rdoc This exploit may lead to cookie disclosure to third parties. The exploit exists in darkfish.js which is copied from the RDoc install location to the generated documentation. RDoc is a static documentation generation tool. Patching the library itself is insufficient to correct this exploit.	There are no reported fixed by versions.
VCID-rrwv-dzq7-9ybd Aliases: CVE-2013-2034 GHSA-fg4r-f9j2-36mw	Jenkins Cross-Site Request Forgery vulnerabilities Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary code or (2) initiate deployment of binaries to a Maven repository via unspecified vectors.	There are no reported fixed by versions.
VCID-skb5-eeak-v7hz Aliases: CVE-2013-1901	An unprivileged user can run commands that could interfere with in-progress backups.more details	There are no reported fixed by versions.
VCID-ueq8-4dv4-eubu Aliases: CVE-2013-2049	2: static secret_token.rb value	There are no reported fixed by versions.
VCID-xenc-mfdw-mucm Aliases: CVE-2013-1808	stapler-adjunct-zeroclipboard: XSS via copying XSS payload into buffer	There are no reported fixed by versions.
VCID-z46p-c93u-auav Aliases: CVE-2013-2033 GHSA-826f-32qm-vm3j	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2013-2033 Jenkins: Build Description XSS	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:52:32.286791+00:00	RedHat Importer	Affected by	VCID-pb4n-q6u8-syds	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0256.json	38.0.0
2026-04-01T14:52:28.397803+00:00	RedHat Importer	Affected by	VCID-xenc-mfdw-mucm	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json	38.0.0
2026-04-01T14:51:59.494461+00:00	RedHat Importer	Affected by	VCID-skb5-eeak-v7hz	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1901.json	38.0.0
2026-04-01T14:51:57.616749+00:00	RedHat Importer	Affected by	VCID-g4tm-8zhw-a7hn	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1900.json	38.0.0
2026-04-01T14:51:55.036327+00:00	RedHat Importer	Affected by	VCID-n3ka-63rx-5fgk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1899.json	38.0.0
2026-04-01T14:51:32.264426+00:00	RedHat Importer	Affected by	VCID-rrwv-dzq7-9ybd	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json	38.0.0
2026-04-01T14:51:30.699599+00:00	RedHat Importer	Affected by	VCID-z46p-c93u-auav	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json	38.0.0
2026-04-01T14:50:18.569437+00:00	RedHat Importer	Affected by	VCID-krve-mwjb-93at	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4172.json	38.0.0
2026-04-01T14:49:37.209375+00:00	RedHat Importer	Affected by	VCID-m86x-54rz-2uat	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2050.json	38.0.0
2026-04-01T14:49:34.889821+00:00	RedHat Importer	Affected by	VCID-ueq8-4dv4-eubu	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2049.json	38.0.0
2026-04-01T14:49:32.764036+00:00	RedHat Importer	Affected by	VCID-23ur-7nqb-tybr	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0185.json	38.0.0
2026-04-01T14:49:30.175687+00:00	RedHat Importer	Affected by	VCID-a8g4-d3m8-uub1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4423.json	38.0.0