Download
| Alert*
|
oval:org.secpod.oval:def:610511
Brief introduction Two vulnerabilities were discovered in rails, the Ruby based server-side MVC web application framework, which could lead to XSS and DOM based cross-site scripting . This update also fixes a regression introduced in previous update that may block certain access for apps using devel ... oval:org.secpod.oval:def:93323 Brief introduction Two vulnerabilities were discovered in rails, the Ruby based server-side MVC web application framework, which could lead to XSS and DOM based cross-site scripting . This update also fixes a regression introduced in previous update that may block certain access for apps using devel ... oval:org.secpod.oval:def:125251 Structure many real-time application concerns into channels over a single WebSocket connection. oval:org.secpod.oval:def:125250 A toolkit for building modeling frameworks like Active Record. Rich support for attributes, callbacks, validations, serialization, internationalization, and testing. oval:org.secpod.oval:def:125249 Ruby on Rails is a full-stack web framework optimized for programmer happiness and sustainable productivity. It encourages beautiful code by favoring convention over configuration. oval:org.secpod.oval:def:125244 Email on Rails. Compose, deliver, and test emails using the familiar controller/view pattern. First-class support for multipart email and attachments. oval:org.secpod.oval:def:125255 Simple, battle-tested conventions and helpers for building web pages. oval:org.secpod.oval:def:125254 Attach cloud and local files in Rails applications. oval:org.secpod.oval:def:125253 Edit and display rich text in Rails applications. oval:org.secpod.oval:def:125252 A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. oval:org.secpod.oval:def:125248 Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. oval:org.secpod.oval:def:125247 Declare job classes that can be run by a variety of queueing backends. oval:org.secpod.oval:def:125257 Rails internals: application bootup, plugins, generators, and rake tasks. Railties is responsible to glue all frameworks together. Overall, it: * handles all the bootstrapping process for a Rails application; * manages rails command line interface; * provides Rails generators core; oval:org.secpod.oval:def:125246 Implements the ActiveRecord pattern for ORM. It ties database tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL. oval:org.secpod.oval:def:125245 Receive and process incoming emails in Rails applications. oval:org.secpod.oval:def:89048900 This update for rmt-server fixes the following issues: Updated to version 2.13: * CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency . * CVE-2023-27530: Fixed a denial of service issue in multipart request parsing . Non-security fixes: * Fixed transactional update on GCE . * Use H ... oval:org.secpod.oval:def:89048888 This update for rmt-server fixes the following issues: Updated to version 2.13: \- CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency . \- CVE-2023-27530: Fixed a denial of service issue in multipart request parsing . Non-security fixes: \- Fixed transactional update on GCE . \- U ... oval:org.secpod.oval:def:89048898 This update for rmt-server fixes the following issues: Updated to version 2.13: * CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency . * CVE-2023-27530: Fixed a denial of service issue in multipart request parsing . Non-security fixes: * Fixed transactional update on GCE . * Use H ... oval:org.secpod.oval:def:89048895 This update for rmt-server fixes the following issues: Updated to version 2.13: \- CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency . \- CVE-2023-27530: Fixed a denial of service issue in multipart request parsing . Non-security fixes: \- Fixed transactional update on GCE . \- U ... oval:org.secpod.oval:def:89049049 This update for rmt-server fixes the following issues: Update to version 2.13: * CVE-2023-28120: Fixed a possible XSS Security Vulnerability in bytesliced strings for html_safe . * CVE-2023-27530: Fixed a DoS in multipart mime parsing . * CVE-2022-31254: Fixed escalation vector bug from user _rmt to ... |
