Issues - atzorvas/ccradio

Denial of Service Vulnerability in Rack Content-Disposition parsing
Open

    rack (1.6.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Directory traversal in Rack::Directory app bundled with Rack
Open

    rack (1.6.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Possible Information Disclosure / Unintended Method Execution in Action Pack
Open

    actionpack (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Possible RCE escalation bug with Serialized Columns in Active Record
Open

    activerecord (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Possible DoS Vulnerability in Active Record PostgreSQL adapter
Open

    activerecord (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Devise Gem for Ruby confirmation token validation with a blank string
Open

    devise (3.5.2)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

HTTP Smuggling via Transfer-Encoding Header in Puma
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Possible shell escape sequence injection vulnerability in Rack
Open

    rack (1.6.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

ReDoS based DoS vulnerability in Action Dispatch
Open

    actionpack (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Keepalive thread overload/DoS in puma
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Information Exposure with Puma when used with Rails
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

ReDoS based DoS vulnerability in Active Support’s underscore
Open

    activesupport (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

HTTP Response Splitting vulnerability in puma
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

HTTP Request Smuggling in puma
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Cross-site Scripting in Sidekiq
Open

    sidekiq (3.5.2)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Ability to forge per-form CSRF tokens given a global CSRF token
Open

    actionpack (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

CSRF Vulnerability in rails-ujs
Open

    actionview (4.2.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Denial of service via header parsing in Rack
Open

    rack (1.6.4)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Denial of service in sidekiq
Open

    sidekiq (3.5.2)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

Keepalive Connections Causing Denial Of Service in puma
Open

    puma (2.14.0)

Found in Gemfile.lock by bundler-audit

Read up
Read up
Create a ticket
Create a ticket
Exclude checks
- Disable engine
- Disable check

atzorvas/ccradio

Showing 218 of 218 total issues

Denial of Service Vulnerability in Rack Content-Disposition parsing
Open

Directory traversal in Rack::Directory app bundled with Rack
Open

Possible Information Disclosure / Unintended Method Execution in Action Pack
Open

Possible RCE escalation bug with Serialized Columns in Active Record
Open

Possible DoS Vulnerability in Active Record PostgreSQL adapter
Open

Devise Gem for Ruby confirmation token validation with a blank string
Open

HTTP Smuggling via Transfer-Encoding Header in Puma
Open

Possible shell escape sequence injection vulnerability in Rack
Open

ReDoS based DoS vulnerability in Action Dispatch
Open

Keepalive thread overload/DoS in puma
Open

Information Exposure with Puma when used with Rails
Open

ReDoS based DoS vulnerability in Active Support’s underscore
Open

HTTP Response Splitting vulnerability in puma
Open

HTTP Request Smuggling in puma
Open

Cross-site Scripting in Sidekiq
Open

Ability to forge per-form CSRF tokens given a global CSRF token
Open

CSRF Vulnerability in rails-ujs
Open

Denial of service via header parsing in Rack
Open

Denial of service in sidekiq
Open

Keepalive Connections Causing Denial Of Service in puma
Open

Severity

Category

Status

Source

Language

atzorvas/ccradio

Showing 218 of 218 total issues

Denial of Service Vulnerability in Rack Content-Disposition parsing Open

Directory traversal in Rack::Directory app bundled with Rack Open

Possible Information Disclosure / Unintended Method Execution in Action Pack Open

Possible RCE escalation bug with Serialized Columns in Active Record Open

Possible DoS Vulnerability in Active Record PostgreSQL adapter Open

Devise Gem for Ruby confirmation token validation with a blank string Open

HTTP Smuggling via Transfer-Encoding Header in Puma Open

Possible shell escape sequence injection vulnerability in Rack Open

ReDoS based DoS vulnerability in Action Dispatch Open

Keepalive thread overload/DoS in puma Open

Information Exposure with Puma when used with Rails Open

ReDoS based DoS vulnerability in Active Support’s underscore Open

HTTP Response Splitting vulnerability in puma Open

HTTP Request Smuggling in puma Open

Cross-site Scripting in Sidekiq Open

Ability to forge per-form CSRF tokens given a global CSRF token Open

CSRF Vulnerability in rails-ujs Open

Denial of service via header parsing in Rack Open

Denial of service in sidekiq Open

Keepalive Connections Causing Denial Of Service in puma Open

Severity

Category

Status

Source

Language

Denial of Service Vulnerability in Rack Content-Disposition parsing
Open

Directory traversal in Rack::Directory app bundled with Rack
Open

Possible Information Disclosure / Unintended Method Execution in Action Pack
Open

Possible RCE escalation bug with Serialized Columns in Active Record
Open

Possible DoS Vulnerability in Active Record PostgreSQL adapter
Open

Devise Gem for Ruby confirmation token validation with a blank string
Open

HTTP Smuggling via Transfer-Encoding Header in Puma
Open

Possible shell escape sequence injection vulnerability in Rack
Open

ReDoS based DoS vulnerability in Action Dispatch
Open

Keepalive thread overload/DoS in puma
Open

Information Exposure with Puma when used with Rails
Open

ReDoS based DoS vulnerability in Active Support’s underscore
Open

HTTP Response Splitting vulnerability in puma
Open

HTTP Request Smuggling in puma
Open

Cross-site Scripting in Sidekiq
Open

Ability to forge per-form CSRF tokens given a global CSRF token
Open

CSRF Vulnerability in rails-ujs
Open

Denial of service via header parsing in Rack
Open

Denial of service in sidekiq
Open

Keepalive Connections Causing Denial Of Service in puma
Open