Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/ruby193-rubygem-treetop@1.4.10-6?arch=el6
purl pkg:rpm/redhat/ruby193-rubygem-treetop@1.4.10-6?arch=el6
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (10)
Vulnerability Summary Fixed by
VCID-23ur-7nqb-tybr
Aliases:
CVE-2013-0185
EVM: CSRF There are no reported fixed by versions.
VCID-455w-hqsj-jkh1
Aliases:
CVE-2013-0196
OpenShift Enterprise and Online vulnerable to CSRF attack with REST API There are no reported fixed by versions.
VCID-a8g4-d3m8-uub1
Aliases:
CVE-2013-4423
CloudForms: user password stored in recoverable format There are no reported fixed by versions.
VCID-g4tm-8zhw-a7hn
Aliases:
CVE-2013-1900
Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guessmore details There are no reported fixed by versions.
VCID-krve-mwjb-93at
Aliases:
CVE-2013-4172
interface: Ruby code injection There are no reported fixed by versions.
VCID-m86x-54rz-2uat
Aliases:
CVE-2013-2050
2: miq_policy/explorer SQL injection There are no reported fixed by versions.
VCID-n3ka-63rx-5fgk
Aliases:
CVE-2013-1899
A connection request containing a database name that begins with "-" may be crafted to damage or destroy files within a server's data directorymore details There are no reported fixed by versions.
VCID-pb4n-q6u8-syds
Aliases:
CVE-2013-0256
GHSA-v2r9-c84j-v7xm
OSV-90004
XSS exploit of RDoc documentation generated by rdoc This exploit may lead to cookie disclosure to third parties. The exploit exists in darkfish.js which is copied from the RDoc install location to the generated documentation. RDoc is a static documentation generation tool. Patching the library itself is insufficient to correct this exploit. There are no reported fixed by versions.
VCID-skb5-eeak-v7hz
Aliases:
CVE-2013-1901
An unprivileged user can run commands that could interfere with in-progress backups.more details There are no reported fixed by versions.
VCID-ueq8-4dv4-eubu
Aliases:
CVE-2013-2049
2: static secret_token.rb value There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:52:32.057970+00:00 RedHat Importer Affected by VCID-pb4n-q6u8-syds https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0256.json 38.0.0
2026-04-01T14:51:59.369571+00:00 RedHat Importer Affected by VCID-skb5-eeak-v7hz https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1901.json 38.0.0
2026-04-01T14:51:57.538614+00:00 RedHat Importer Affected by VCID-g4tm-8zhw-a7hn https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1900.json 38.0.0
2026-04-01T14:51:54.903746+00:00 RedHat Importer Affected by VCID-n3ka-63rx-5fgk https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1899.json 38.0.0
2026-04-01T14:50:18.388749+00:00 RedHat Importer Affected by VCID-krve-mwjb-93at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4172.json 38.0.0
2026-04-01T14:49:37.049963+00:00 RedHat Importer Affected by VCID-m86x-54rz-2uat https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2050.json 38.0.0
2026-04-01T14:49:34.760160+00:00 RedHat Importer Affected by VCID-ueq8-4dv4-eubu https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2049.json 38.0.0
2026-04-01T14:49:32.603449+00:00 RedHat Importer Affected by VCID-23ur-7nqb-tybr https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0185.json 38.0.0
2026-04-01T14:49:30.026896+00:00 RedHat Importer Affected by VCID-a8g4-d3m8-uub1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4423.json 38.0.0
2026-04-01T14:46:16.588998+00:00 RedHat Importer Affected by VCID-455w-hqsj-jkh1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0196.json 38.0.0