Home
Vendors
Rubyonrails
Actionpack

RadicalNotion.AI

We do not sell or share your personal information

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log inLog in

Home
Vendors
Rubyonrails
Actionpack

rubyonrails actionpack Vulnerabilities: CVEs, CISA KEV & Security Advisories

rubyonrails

2 CVEs

rubyonrails actionpack Vulnerabilities

CVE security advisories and vulnerability history for actionpack by rubyonrails.

Total CVEs

Published

In CISA KEV

Exploited in the wild

Public exploits

With known exploit

N/A

Avg CVSS

2022–2022

Last updated May 26, 2022

Overview

rubyonrails actionpack has 2 published CVE records since 2022, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit.

This page aggregates every publicly disclosed vulnerability (CVE) affecting rubyonrails actionpack, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Affected versions and CVEs

Browse every rubyonrails actionpack version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

5.2.7.12 CVEs
6.0.4.82 CVEs
6.1.5.12 CVEs
7.0.2.42 CVEs

Find a version

2 CVEs

Sort

Vulnerability · 2022-05-26
CVE-2022-27777
Patch
CWE-79
Unscored
EPSS 1.4% (81th pct)2022-05-26
Vulnerability · 2022-05-26
CVE-2022-22577
Patch
CWE-79
Unscored
EPSS 0.5% (66th pct)2022-05-26

Common weakness types

The CWE weakness categories most often found in rubyonrails actionpack CVEs. Follow any weakness for its full explanation.

CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')2 CVEs

Other rubyonrails products

Browse vulnerabilities for other products by rubyonrails.

rails123 CVEs ruby on rails50 CVEs rails html sanitizers10 CVEs html sanitizer4 CVEs actionpack page-caching2 CVEs actionview1 CVEs active record session store1 CVEs active resource1 CVEs

All rubyonrails vulnerabilities

Frequently asked questions

Common questions about rubyonrails actionpack vulnerabilities.

How many CVEs does rubyonrails actionpack have?

rubyonrails actionpack has 2 published CVE records since 2022.

How many rubyonrails actionpack CVEs are in CISA KEV?

None of rubyonrails actionpack's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for rubyonrails actionpack vulnerabilities?

No rubyonrails actionpack CVEs currently have a tracked public exploit in this dataset.

Which versions of rubyonrails actionpack are affected?

4 distinct rubyonrails actionpack versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in rubyonrails actionpack CVEs?

rubyonrails actionpack's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')).

References

All rubyonrails vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track rubyonrails actionpack vulnerabilities

Monitor new rubyonrails actionpack vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Affected versions and CVEs
Common weakness types
Other products
FAQ
References