chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2020-8167 Upstream summary: pkgsrc audit-packages flagged ruby{22,24,25,26,27}-actionview52<5.2.4.3 for vulnerability class 'cross-site-request-forgery'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-8167 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2020-8167 Upstream summary: pkgsrc audit-packages flagged ruby{22,24,25,26,27}-actionview60<6.0.3.1 for vulnerability class 'cross-site-request-forgery'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-8167 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2013-0155 CVE-2013-0276 CVE-2014-3482 Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-activerecord>=3<3.0.13 for vulnerability class 'sql-injection'. Reference: http://secunia.com/advisories/49297/ Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage […]