VYPR

View Component

by ViewComponent

Source repositories

CVEs (2)

  • CVE-2026-44837MedMay 26, 2026
    risk 0.31cvss 5.9epss 0.00

    view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the system test entrypoint canonicalizes a user-controlled file path with File.realpath, then checks whether the resolved path starts with the…

  • CVE-2024-21636Jan 4, 2024
    risk 0.00cvss epss 0.01

    view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. Versions prior to 3.9.0 and 2.83.0 have a cross-site scripting vulnerability that has the potential to impact anyone rendering a component directly from a controller…