| Max CVSS | 4.3 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-5267 | 3.5 |
In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulnerability in ActionView's JavaScript literal escape helpers. Views that use the `j` or `escape_javascript` methods may be susceptible to XSS attacks. The issue is fixed in
|
03-02-2023 - 16:39 | 19-03-2020 - 18:15 | |
| CVE-2020-8185 | 4.0 |
A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.
|
21-10-2021 - 14:36 | 02-07-2020 - 19:15 | |
| CVE-2020-15169 | 4.3 |
In Action View before versions 5.2.4.4 and 6.0.3.3 there is a potential Cross-Site Scripting (XSS) vulnerability in Action View's translation helpers. Views that allow the user to control the default (not found) value of the `t` and `translate` helpe
|
08-12-2020 - 18:58 | 11-09-2020 - 16:15 | |
| CVE-2020-15169 | 4.3 |
In Action View before versions 5.2.4.4 and 6.0.3.3 there is a potential Cross-Site Scripting (XSS) vulnerability in Action View's translation helpers. Views that allow the user to control the default (not found) value of the `t` and `translate` helpe
|
25-09-2020 - 12:15 | 11-09-2020 - 16:15 |