CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Debian OracleRuby Lang3Debian Linux Jd Edwards Enterpriseone ToolsRdocNov 21, 2024 Jul 30, 2021 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename. |
2Canonical Ruby Lang3Rdoc RubyUbuntu LinuxApr 29, 2026 Mar 1, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1, as used in Ruby, does not properly generate documents, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL...Show more |