Sign in Subscribe

← All vendors

Vendor

Activeadmin

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

Activeadmin
1 CVE

Recent CVEs

1

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-37031	Activeadmin Activeadmin	Med	0.33	6.1	0.00		Jun 3, 2024	The Active Admin (aka activeadmin) framework before 3.2.2 for Ruby on Rails allows stored XSS in certain situations where users can create entities (to be later edited in forms) with arbitrary names, aka a "dynamic form legends" issue. 4.0.0.beta7 is also a fixed version.

CVE-2024-37031MedJun 3, 2024
Activeadmin
Activeadmin
risk 0.33cvss 6.1epss 0.00
The Active Admin (aka activeadmin) framework before 3.2.2 for Ruby on Rails allows stored XSS in certain situations where users can create entities (to be later edited in forms) with arbitrary names, aka a "dynamic form legends" issue. 4.0.0.beta7 is also a fixed version.