搜索结果
关于「rails」的漏洞数据
| AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
|---|---|---|---|---|
| AVD-2026-33202 | Rails Active Storage 通配符注入导致文件误删漏洞(CVE-2026-33202) | 2026-03-24 | ||
| AVD-2026-33195 | Rails Active Storage 路径穿越漏洞(CVE-2026-33195) | 2026-03-24 | ||
| AVD-2026-33174 | Rails Active Storage 代理模式内存耗尽 DoS 漏洞(CVE-2026-33174) | 2026-03-24 | ||
| AVD-2026-33169 | ActiveSupport数字格式化ReDoS漏洞(CVE-2026-33169) | 2026-03-24 | ||
| AVD-2026-33176 | ActiveSupport 数值辅助方法 DoS 漏洞(CVE-2026-33176) | 2026-03-24 | ||
| AVD-2026-33170 | ActiveSupport SafeBuffer 跨站脚本漏洞(CVE-2026-33170) | 2026-03-24 | ||
| AVD-2026-33173 | Rails Active Storage 验证绕过漏洞(CVE-2026-33173) | 2026-03-24 | ||
| AVD-2024-54133 | Action Dispatch 中可能存在内容安全策略绕过问题 (CVE-2024-54133) | 2024-12-11 | ||
| AVD-2024-28103 | Action Pack 在非 HTML 响应中缺少安全标头(CVE-2024-28103) | 2024-06-05 | ||
| AVD-2024-32464 | ActionText ContentAttachment 可能包含未清理的 HTML (CVE-2024-32464) | 2024-06-05 | ||
| AVD-2024-26142 | Rails Action Dispatch 中的 Accept 标头解析中可能存在 ReDoS 漏洞 (CVE-2024-26142) | 2024-02-28 | ||
| AVD-2024-26144 | Active Storage 中可能存在敏感会话信息泄漏 (CVE-2024-26144) | 2024-02-28 | ||
| AVD-2024-26143 | Rails Action 控制器中可能存在 XSS 漏洞 (CVE-2024-26143) | 2024-02-28 | ||
| AVD-2023-23913 | Rails 代码执行漏洞(CVE-2023-23913) | 2023-03-20 | ||
| AVD-2023-28120 | Possible XSS Security Vulnerability in SafeBuffer#bytesplice(CVE-2023-28120) | 2023-03-16 | ||
| AVD-2023-25015 | Clockwork Web 安全漏洞 | 2023-02-02 | ||
| AVD-2022-44566 | ActiveRecord 的 PostgreSQL 适配器存在拒绝服务漏洞 | 2023-01-20 | ||
| AVD-2023-22794 | Rails SQL注入漏洞(CVE-2023-22794) | 2023-01-20 | ||
| AVD-2023-22795 | Action Dispatch 拒绝服务漏洞(CVE-2023-22795) | 2023-01-20 | ||
| AVD-2023-22797 | Rails 重定向漏洞(CVE-2023-22797) | 2023-01-20 | ||
| AVD-2023-22796 | Active Support 拒绝服务漏洞(CVE-2023-22796) | 2023-01-20 | ||
| AVD-2023-22792 | Rails 拒绝服务漏洞(CVE-2023-22792) | 2023-01-20 | ||
| AVD-2022-32224 | debian_12 rails 对生成代码的控制不恰当(代码注入) | 2022-12-06 | ||
| AVD-2022-3704 | rubyonrails rails 在web页面生成时对输入的转义处理不恰当(跨站脚本) | 2022-10-27 | ||
| AVD-2022-22577 | Rails Action Pack 跨站脚本漏洞(CVE-2022-22577) | 2022-05-27 | ||
| AVD-2022-21831 | Ruby on Rails 代码注入漏洞(CVE-2022-21831) | 2022-05-27 | ||
| AVD-2022-27777 | Action View tag helpers 跨站脚本漏洞(CVE-2022-27777) | 2022-05-27 | ||
| AVD-2022-23634 | Puma 信息泄露漏洞(CVE-2022-23634) | 2022-02-12 | ||
| AVD-2022-23633 | Rails Action Pack 信息泄露漏洞(CVE-2022-23633) | 2022-02-12 | ||
| AVD-2021-44528 | Rails Action Pack 输入验证错误漏洞 | 2022-01-10 |