Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Programming Language

Ruby

Ruby is a dynamic reflective programming language for the object.

Official Site:

https://www.ruby-lang.org/en/

Severity Summary:

Critical: 15 High: 35 Medium: 39
Reference
Title
Severity
CVE-2021-41817
Ruby Other Vulnerability
High
CVE-2022-28739
Ruby Out-of-bounds Read Vulnerability
High
CVE-2023-22795
Ruby Inefficient Regular Expression Complexity Vulnerability
High
CVE-2023-28756
Ruby Inefficient Regular Expression Complexity Vulnerability
High
CVE-2011-4815
Ruby Improper Input Validation Vulnerability
High
CVE-2021-33621
Ruby Interpretation Conflict Vulnerability
High
CVE-2015-7551
Ruby Improper Input Validation Vulnerability
High
CVE-2018-6914
Ruby Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2009-5147
Ruby Improper Input Validation Vulnerability
High
CVE-2014-6438
Ruby Resource Management Errors Vulnerability
High
CVE-2020-25613
Ruby Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
High
CVE-2017-6181
Ruby Improper Input Validation Vulnerability
High
CVE-2017-10784
Ruby Improper Authentication Vulnerability
High
CVE-2017-17405
Ruby Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
High
CVE-2017-14033
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
High
CVE-2018-8779
Ruby Improper Input Validation Vulnerability
High
CVE-2018-16396
Ruby Vulnerability
High
CVE-2018-8778
Ruby Use of Externally-Controlled Format String Vulnerability
High
CVE-2019-16201
Ruby Improper Authentication Vulnerability
High
CVE-2018-8777
Ruby Uncontrolled Resource Consumption Vulnerability
High
CVE-2019-16254
Ruby Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Medium
CVE-2011-3624
Ruby Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Medium
CVE-2015-1855
Ruby Improper Input Validation Vulnerability
Medium
CVE-2020-10933
Ruby Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2021-31810
Ruby Exposure of Resource to Wrong Sphere Vulnerability
Medium
CVE-2019-15845
Ruby Vulnerability
Medium
CVE-2008-1891
Ruby Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2007-5770
Ruby Improper Authentication Vulnerability
Medium
CVE-2007-5162
Ruby Improper Authentication Vulnerability
Medium
CVE-2008-3443
Ruby Resource Management Errors Vulnerability
Medium