activesupport vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-33176Mediumactivesupport: Rails Active Support has a possible DoS vulnerability in its number helpersCVE-2026-33170Mediumactivesupport: Rails Active Support has a possible XSS vulnerability in SafeBuffer#%CVE-2026-33169Mediumactivesupport: Rails Active Support has a possible ReDoS vulnerability in number_to_delimitedCVE-2023-38037Mediumactivesupport: Active Support Possibly Discloses Locally Encrypted FilesCVE-2023-28120Mediumactivesupport: Possible XSS Security Vulnerability in SafeBuffer#bytespliceCVE-2023-22796Lowactivesupport: ReDoS based DoS vulnerability in Active Support's underscoreCVE-2020-8165Criticalactivesupport: ActiveSupport potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStoreCVE-2009-3009Mediumactionpack: Cross site scripting that affects railsCVE-2009-3086Mediumactionpack: actionpack and activesupport vulnerable to information leaksCVE-2011-2197Mediumactionpack: rails Cross-site Scripting vulnerabilityCVE-2011-2932Mediumactivesupport: activesupport Cross-site Scripting vulnerabilityCVE-2012-1098Mediumactivesupport: activesupport Cross-site Scripting vulnerabilityCVE-2012-3464Mediumactivesupport: activesupport Cross-site Scripting vulnerabilityCVE-2013-0333Highactivesupport: activesupport in Rails vulnerable to incorrect data conversionCVE-2013-1856Mediumactivesupport: activesupport Improper Input Validation vulnerabilityCVE-2015-3226Mediumactivesupport: activesupport Cross-site Scripting vulnerabilityCVE-2015-3227Mediumactivesupport: activesupport vulnerable to Denial of Service via large XML document depth

Stop the waste.
Protect your environment with Kodem.