Filter
Exclude
Time range
-
Near
RUBYLAND@rubylandnews
Mar 26
RubySec ➜ CVE-2026-33658 (activestorage): Rails Active Storage has a possible DoS vulnerability in proxy mode via multi-range requests rubysec.com/advisories/CVE-2…
2
93
RUBYLAND@rubylandnews
14 Aug 2025
RubySec ➜ CVE-2025-55193 (activerecord): Active Record logging vulnerable to ANSI escape injection rubysec.com/advisories/CVE-2…
2
202
RUBYLAND@rubylandnews
14 Aug 2025
RubySec ➜ CVE-2025-24293 (activestorage): Active Storage allowed transformation methods that were potentially unsafe rubysec.com/advisories/CVE-2…
2
185
RUBYLAND@rubylandnews
3 Dec 2024
RubySec ➜ CVE-2024-53986 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability with certain configurations rubysec.com/advisories/CVE-2…
2
163
Yukihiro Matz
@yukihiro_matz
25 Jul 2024
Stuck on Ruby 2.7? Need to Upgrade to Ruby 3.3 on a Budget? Try Bonsai: Battle-tested, #Ruby upgrade service by @FastRubyIO 👉 Stop postponing your upgrade! 🚀 fastruby.io/monthly-ruby-mai… #UpgradeRuby #TechDebt #Maintenance #RubySec [from my GitHub sponsor]

Bonsai: Fixed-cost, Monthly Ruby Maintenance by FastRuby.io

Fixed-cost, maintenance services for Ruby applications: Make your application more maintainable, secure, and efficient every month

fastruby.io
3
7
3,656
RUBYLAND@rubylandnews
9 Jul 2024
RubySec ➜ CVE-2024-39308 (rails_admin): RailsAdmin Cross-site Scripting vulnerability in the list view rubysec.com/advisories/CVE-2…
2
142
RUBYLAND@rubylandnews
30 May 2024
RubySec ➜ CVE-2024-32978 (kaminari): Insecure File Permissions vulnerability in kaminari rubysec.com/advisories/CVE-2…
3
277
RUBYLAND@rubylandnews
19 Apr 2024
RubySec ➜ CVE-2024-32463 (phlex): Cross-site Scripting (XSS) possible due to improper sanitisation of `href`… rubysec.com/advisories/CVE-2…
2
250
RubyOnRails.BA@RubyOnRailsBa
26 Mar 2024
Advisory Archive - RubySec (from 08/03/2024) #ruby #rubyonrails #programming rubyonrails.ba/single/adviso…
1
3
41
FastRuby.io | #TechDebt Services@fastrubyio
12 Mar 2024
💣 Is your #Ruby app vulnerable? Is it a ticking time bomb or is it safe in production? If you don’t know, you need a security audit. Find out how many vulnerabilities are present in your code and dependencies. Let's talk! go.fastruby.io/wbw #RubySec #InfoSec #DevSecOps
4
175
RUBYLAND@rubylandnews
14 Feb 2024
RubySec ➜ CVE-2024-25122 (sidekiq-unique-jobs): sidekiq-unique-jobs UI server vulnerable to XSS & RCE in Redis rubysec.com/advisories/CVE-2…
2
240
RUBYLAND@rubylandnews
9 Jan 2024
RubySec ➜ CVE-2024-21647 (puma): Puma HTTP Request/Response Smuggling vulnerability rubysec.com/advisories/CVE-2…
1
311
RUBYLAND@rubylandnews
28 Dec 2023
RubySec ➜ CVE-2023-51763 (activeadmin): ActiveAdmin vulnerable to CSV injection rubysec.com/advisories/CVE-2…
1
278
motakasoft@motakasoft
28 Dec 2023
GitHub Trending Archive, 26 Dec 2023, Ruby. primer/view_components, rubyforgood/human-essentials, rubysec/ruby-advisory-db, Shopify/ruby-lsp, otwcode/otwarchive, danbooru/danbooru, d12frosted/homebrew-emacs-plus, Homebrew/homebrew-cask-fonts github.motakasoft.com/trendi…
68
RUBYLAND@rubylandnews
16 Dec 2023
RubySec ➜ CVE-2023-50448 (activeadmin): Potential CSV export data leak rubysec.com/advisories/CVE-2…
1
368
RUBYLAND@rubylandnews
26 Oct 2023
RubySec ➜ GHSA-3px7-jm2p-6h2c (encoded_id-rails): encoded_id-rails potential DOS vulnerability due to URIs with… rubysec.com/advisories/GHSA-…
2
273
RUBYLAND@rubylandnews
7 Oct 2023
RubySec ➜ CVE-2023-26153 (geokit-rails): geokit-rails Command Injection vulnerability rubysec.com/advisories/CVE-2…
3
355
RUBYLAND@rubylandnews
6 Oct 2023
RubySec ➜ CVE-2023-36465 (decidim): Decidim has broken access control in templates rubysec.com/advisories/CVE-2…
2
279
RUBYLAND@rubylandnews
16 Sep 2023
RubySec ➜ CVE-2023-26141 (sidekiq): sidekiq Denial of Service vulnerability rubysec.com/advisories/CVE-2…
2
373
RUBYLAND@rubylandnews
23 Aug 2023
RubySec ➜ CVE-2023-38037 (activesupport): Possible File Disclosure of Locally Encrypted Files rubysec.com/advisories/CVE-2…
1
311
Load more