Lucene search
Veracode Vulnerability DatabaseVERACODE:7689HistoryNov 07, 2018 - 2:13 a.m.
Cross-site Scripting (XSS)
2018-11-0702:13:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.008 Low
EPSS
Percentile
81.7%
rack is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the lack of sanitization on the data returned by the scheme method in Rack::Request, allowing XSS attacks.
Related
openvas
openvas
Fedora Update for rubygem-rack FEDORA-2018-5743ef02a1
2018-12-04 00:00:00
openSUSE: Security Advisory for rubygem-rack (openSUSE-SU-2019:1553-1)
2019-06-14 00:00:00
Debian: Security Advisory (DLA-1585-1)
2018-11-20 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: rubygem-rack-2.0.3-4.fc27
2018-11-28 02:22:39
[SECURITY] Fedora 29 Update: rubygem-rack-2.0.4-4.fc29
2018-11-28 02:43:12
[SECURITY] Fedora 28 Update: rubygem-rack-2.0.4-4.fc28
2018-11-28 02:46:19
ubuntucve
ubuntucve
CVE-2018-16471
2018-11-13 00:00:00
nessus
nessus
Debian DLA-1585-1 : ruby-rack security update
2018-11-23 00:00:00
openSUSE Security Update : rubygem-rack (openSUSE-2019-1553)
2019-06-14 00:00:00
Fedora 27 : 1:rubygem-rack (2018-5743ef02a1)
2018-11-28 00:00:00
ubuntu
ubuntu
Rack vulnerability
2019-08-07 00:00:00
redhatcve
redhatcve
CVE-2018-16471
2018-11-06 04:49:06
osv
osv
ruby-rack - security update
2018-11-21 00:00:00
CVE-2018-16471
2018-11-13 23:29:00
Rack vulnerable to Cross-site Scripting
2018-11-15 15:59:08
cve
cve
CVE-2018-16471
2018-11-13 23:29:00
debiancve
debiancve
CVE-2018-16471
2018-11-13 23:29:00
mageia
mageia
Updated ruby-rack packages fix security vulnerability
2018-11-16 01:04:32
prion
prion
Design/Logic Flaw
2018-11-13 23:29:00
nvd
nvd
CVE-2018-16471
2018-11-13 23:29:00
cvelist
cvelist
CVE-2018-16471
2018-11-13 23:00:00
suse
suse
Security update for rubygem-rack (moderate)
2019-06-13 00:00:00
Security update for rubygem-rack (moderate)
2020-02-12 00:00:00
debian
debian
[SECURITY] [DLA 1585-1] ruby-rack security update
2018-11-21 13:27:56
github
github
Rack vulnerable to Cross-site Scripting
2018-11-15 15:59:08
rubygems
rubygems
Possible XSS vulnerability in Rack
2018-11-04 21:00:00