CVE-2018-3769

CVE-2018-3769

Vendor Ruby Grape

Product ruby-grape ruby gem

Weakness CWE-79 · XSS

Published July 5, 2018

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

ruby-grape ruby gem suffers from a cross-site scripting (XSS) vulnerability via "format" parameter.

Key dates

02Disclosure timeline

July 5, 2018 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-3769 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2024-7677 SourceCodester Car Driving School Management System SystemSettings.php update_settings_info cross site scripting CVE-2023-33962 JStachio XSS vulnerability: Unescaped single quotes CVE-2025-46239 WordPress Theme Switcha plugin <= 3.4 - Cross Site Scripting (XSS) Vulnerability CVE-2025-67855 Mooodle: mooodle: information disclosure and script execution via reflected cross-site scripting CVE-2025-62095 WordPress Bootstrap Modals plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability