Search for packages
| purl | pkg:gem/cgi@0.3 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2yge-cajg-eke7
Aliases: CVE-2021-33621 GHSA-vc47-6rqg-c7f5 |
The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object. |
Affected by 2 other vulnerabilities. |
|
VCID-7qzs-b3aw-myex
Aliases: CVE-2021-41819 GHSA-4vf4-qmvg-mh7h |
multiple issues |
Affected by 4 other vulnerabilities. |
|
VCID-86ec-ufeg-n7et
Aliases: CVE-2021-41816 GHSA-5cqm-crxm-6qpv GMS-2021-17 |
arbitrary code execution |
Affected by 4 other vulnerabilities. Affected by 3 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-01T16:58:18.923264+00:00 | Ruby Importer | Affected by | VCID-86ec-ufeg-n7et | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41816.yml | 36.1.3 |
| 2025-07-01T16:58:18.890952+00:00 | Ruby Importer | Affected by | VCID-7qzs-b3aw-myex | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-41819.yml | 36.1.3 |
| 2025-07-01T16:58:18.831859+00:00 | Ruby Importer | Affected by | VCID-2yge-cajg-eke7 | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-33621.yml | 36.1.3 |