Product
thoughtbot administrate
2 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2016-3098
CVE-2020-5257
< 0.1.5
Cross-site request forgery (CSRF) vulnerability in administrate 0.1.4 and earlier allows remote attackers to hijack the user's OAu
< 0.13.0
In Administrate (rubygem) before version 0.13.0, when sorting by attributes on a dashboard, the direction parameter was not valida