Vulnerabilities > Rails Admin Project > Rails Admin > 1.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-12 | CVE-2020-36190 | Cross-site Scripting vulnerability in Rails Admin Project Rails Admin RailsAdmin (aka rails_admin) before 1.4.3 and 2.x before 2.0.2 allows XSS via nested forms. | 4.3 |
| 2018-01-19 | CVE-2017-12098 | Cross-site Scripting vulnerability in Rails Admin Project Rails Admin 1.2.0 An exploitable cross site scripting (XSS) vulnerability exists in the add filter functionality of the rails_admin rails gem version 1.2.0. | 6.1 |