Vulnerabilities > Yardoc > Yard > 0.9.17

DATE CVE VULNERABILITY TITLE RISK
2024-02-28 CVE-2024-27285 Cross-site Scripting vulnerability in multiple products
YARD is a Ruby Documentation tool.
network
low complexity
yardoc fedoraproject debian CWE-79
6.1
6.1
2019-07-29 CVE-2019-1020001 Path Traversal vulnerability in Yardoc Yard
yard before 0.9.20 allows path traversal.
network
low complexity
yardoc CWE-22
7.5
7.5