Package impact
RubyGems / httparty
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-68696 | high | 8.2 | 8.2 | 5mo ago | httparty is an API tool. In versions 0.23.2 and prior, httparty is vulnerable to SSRF. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to interna… | |
| CVE-2013-1801 | high | — | 7.5 | 14y ago | HTTParty does not restrict casts of string values | |
| CVE-2024-22049 | unknown | — | — | 3y ago | httparty before 0.21.0 is vulnerable to an assumed-immutable web parameter vulnerability. A remote and unauthenticated attacker can provide a crafted filename parameter during multipart/form-data upl… |