Carrierwaveuploader Carrierwave
4 CVEs affecting Carrierwaveuploader Carrierwave. Latest disclosed: 2024-03-24. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-21305 | High | 7.4 | 2021-02-08 | CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. In CarrierWave before versions 1.3.2 and… |
CVE-2024-29034 | Medium | 6.8 | 2024-03-24 | CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. The vulnerability CVE-2023-49090 wasn't fully addressed. This vuln… |
CVE-2023-49090 | Medium | 6.8 | 2023-11-29 | CarrierWave is a solution for file uploads for Rails, Sinatra and other Ruby web frameworks. CarrierWave has a Content-Type allowlist bypass vulnerability, pos… |
CVE-2021-21288 | Medium | 4.3 | 2021-02-08 | CarrierWave is an open-source RubyGem which provides a simple and flexible way to upload files from Ruby applications. In CarrierWave before versions 1.3.2 and… |