NerdDiffer/job_tracker

Gemfile.lock

Summary

Maintainability

Test Coverage

Rails 4.2.5.1 content_tag does not escape double quotes in attribute values (CVE-2016-6316). Upgrade to 4.2.7.1
Open

    rails (4.2.5.1)

Found in Gemfile.lock by brakeman

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Read more: https://groups.google.com/d/msg/ruby-security-ann/8B2iV2tPRSE/JkjCJkSoCgAJ

Rails 4.2.5.1 contains a SQL injection vulnerability (CVE-2016-6317). Upgrade to 4.2.7.1
Open

    rails (4.2.5.1)

Found in Gemfile.lock by brakeman

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Read more: https://groups.google.com/d/msg/ruby-security-ann/WccgKSKiPZA/9DrsDVSoCgAJ

Loofah 2.0.3 is vulnerable (CVE-2018-8048). Upgrade to 2.1.2
Open

    loofah (2.0.3)

Found in Gemfile.lock by brakeman

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Read more: https://github.com/flavorjones/loofah/issues/144

rails-html-sanitizer 1.0.3 is vulnerable (CVE-2018-3741). Upgrade to 1.0.4
Open

    rails-html-sanitizer (1.0.3)

Found in Gemfile.lock by brakeman

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Read more: https://groups.google.com/d/msg/rubyonrails-security/tP7W3kLc5u4/uDy2Br7xBgAJ

There are no issues that match your filters.