exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2024-37031

больше 1 года назад

The Active Admin (aka activeadmin) framework before 3.2.2 for Ruby on Rails allows stored XSS in certain situations where users can create entities (to be later edited in forms) with arbitrary names, aka a "dynamic form legends" issue. 4.0.0.beta7 is also a fixed version.

CVSS3: 6.1

EPSS: Низкий

GHSA-9mg6-x45v-hcfm

больше 1 года назад

activeadmin vulnerable to stored persistent cross-site scripting (XSS) in dynamic form legends

CVSS3: 7.2

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2024-37031 The Active Admin (aka activeadmin) framework before 3.2.2 for Ruby on Rails allows stored XSS in certain situations where users can create entities (to be later edited in forms) with arbitrary names, aka a "dynamic form legends" issue. 4.0.0.beta7 is also a fixed version.	CVSS3: 6.1	0% Низкий	больше 1 года назад
	GHSA-9mg6-x45v-hcfm activeadmin vulnerable to stored persistent cross-site scripting (XSS) in dynamic form legends	CVSS3: 7.2	0% Низкий	больше 1 года назад

Уязвимостей на страницу