VDB

GCVE-VVD-MAGEIA-2014-54

GCVE-VVD-MAGEIA-2014-54
Advisory Published
Vulnetix · Advisory published February 19, 2014
Updated ruby-will_paginate packages fix security vulnerability: Cross-Site Scripting (XSS) vulnerabilities were found in will_paginate gem for Ruby, where certain input related to generated pagination links were not properly sanitised before being returned. This could be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. (CVE-2013-6459).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiadesktop-common-data0 (affected), 3.6-1.mga4 (unaffected)
Mageiaruby-will_paginate0 (affected), 3.0.3-3.1.mga3 (unaffected), 0 (affected), 3.0.3-3.1.mga3 (unaffected)

References

Updated ruby-will_paginate package fixes CVE-2013-6459
advisory
Updated ruby-will_paginate package fixes CVE-2013-6459
issue
Updated ruby-will_paginate package fixes CVE-2013-6459
issue
Updated ruby-will_paginate package fixes CVE-2013-6459
issue
Updated desktop-common-data package provides updated translations
advisory
Updated desktop-common-data package provides updated translations
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›