Known Vulnerabilities for Active Storage by Rubyonrails
Listed below are 1 of the newest known vulnerabilities associated with "Active Storage" by "Rubyonrails".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-55778 json | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.9.1-alpha.... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-54309 json | n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, when @n8n/mcp-browser is run in HTTP transpor... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-53724 json | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6... | Not Provided | 2026-06-12 | 2026-06-12 |
| CVE-2026-49193 json | Overly permissive configuration settings on cloud storage containers expose active telemetry information publicly to the inte... | Not Provided | 2026-06-04 | 2026-06-04 |
| CVE-2026-33195 json | Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.... | Not Provided | 2026-03-24 | 2026-06-30 |
| CVE-2026-10635 json | On Xtensa targets with CONFIG_USERSPACE and CONFIG_XTENSA_MMU, the page-table code (arch/xtensa/core/ptables.c) maintains a g... | Not Provided | 2026-06-16 | 2026-06-16 |
| CVE-2025-24293 json | # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potential... | Not Provided | 2026-01-30 | 2026-06-30 |
| CVE-2022-21831 json | A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_... | 9.8 - CRITICAL | 2022-05-26 | 2023-03-14 |