decidim-admin (RubyGems) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the RubyGems package decidim-admin, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2024-32034 — CVSS 6.8 (medium): decidim is a Free Open-Source participatory democracy, citizen participation and open government for cities and organizations. The admin…
CVE-2023-48220 — CVSS 5.7 (medium): Decidim is a participatory democracy framework. Starting in version 0.4.rc3 and prior to version 2.0.9 of the `devise_invitable` gem, the…
CVE-2024-27095 — CVSS 5.4 (medium): Decidim is a participatory democracy framework. The admin panel is subject to potential XSS attach in case the attacker manages to modify…