5 Total advisories
5 Vulnerabilities
0 Malware
Vulnerabilities
MEDIUM 4.7
CVE-2026-44587
CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters
MEDIUM 4.3
CVE-2021-21288
Server-side request forgery in CarrierWave
HIGH 7.4
CVE-2021-21305
Code Injection vulnerability in CarrierWave::RMagick
MEDIUM 6.8
CVE-2024-29034
CarrierWave content-Type allowlist bypass vulnerability which possibly leads to XSS remained
MEDIUM 6.8
CVE-2023-49090
CarrierWave Content-Type allowlist bypass vulnerability, possibly leading to XSS
Ready to move
Start Securing
Free, no credit card | First findings in minutes