Package impact
RubyGems / view_component
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44837 | high | 7.5 | 7.5 | 27d ago | view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the system test entrypoint canonicalizes a user-controlled file … | |||
| CVE-2026-44836 | medium | 6.5 | 6.5 | 8d ago | view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the preview route derives an example name from the URL and calls… | |||
| CVE-2024-21636 | unknown | — | — | 2y ago | view_component Cross-site Scripting vulnerability | |||
| CVE-2022-24722 | unknown | — | — | 4y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in view_component |