| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-14683 | 6.8 |
geminabox (aka Gem in a Box) before 0.13.7 has CSRF, as demonstrated by an unintended gem upload.
|
17-10-2019 - 12:31 | 25-09-2017 - 08:29 | |
| CVE-2017-14506 | 3.5 |
geminabox (aka Gem in a Box) before 0.13.6 has XSS, as demonstrated by uploading a gem file that has a crafted gem.homepage value in its .gemspec file.
|
17-10-2019 - 12:30 | 25-09-2017 - 08:29 |