exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2012-3464

больше 13 лет назад

Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.

CVSS2: 4.3

EPSS: Низкий

CVE-2012-3464

больше 13 лет назад

Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.

CVSS2: 4.3

EPSS: Низкий

CVE-2012-3464

больше 13 лет назад

Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.

CVSS2: 4.3

EPSS: Низкий

CVE-2012-3464

больше 13 лет назад

Cross-site scripting (XSS) vulnerability in activesupport/lib/active_s ...

CVSS2: 4.3

EPSS: Низкий

GHSA-h835-75hw-pj89

больше 8 лет назад

activesupport Cross-site Scripting vulnerability

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-3464 Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.	CVSS2: 4.3	0% Низкий	больше 13 лет назад
CVE-2012-3464 Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.	CVSS2: 4.3	0% Низкий	больше 13 лет назад
CVE-2012-3464 Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might allow remote attackers to inject arbitrary web script or HTML via vectors involving a ' (quote) character.	CVSS2: 4.3	0% Низкий	больше 13 лет назад
CVE-2012-3464 Cross-site scripting (XSS) vulnerability in activesupport/lib/active_s ...	CVSS2: 4.3	0% Низкий	больше 13 лет назад
GHSA-h835-75hw-pj89 activesupport Cross-site Scripting vulnerability		0% Низкий	больше 8 лет назад

Уязвимостей на страницу