Vulnerabilities > Carrierwave Project > Carrierwave > 0.2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-11-29 | CVE-2023-49090 | Cross-site Scripting vulnerability in Carrierwave Project Carrierwave CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. | 6.1 |
2021-02-08 | CVE-2021-21305 | Code Injection vulnerability in Carrierwave Project Carrierwave CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. | 7.5 |
2021-02-08 | CVE-2021-21288 | Server-Side Request Forgery (SSRF) vulnerability in Carrierwave Project Carrierwave CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. | 4.0 |