Skip to content

Commit c31b968

Browse files
simiRubySec CI
authored andcommitted
Updated advisory posts against rubysec/ruby-advisory-db@d3a78ee
1 parent 47f885c commit c31b968

1 file changed

Lines changed: 5 additions & 4 deletions

File tree

advisories/_posts/2026-07-01-GHSA-mjgf-xj26-9qf9.md

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -45,16 +45,17 @@ advisory:
4545
4646
- Credit - Reported by tonghuaroot (https://github.com/tonghuaroot)
4747
cvss_v3: 7.4
48+
patched_versions:
49+
- ">= 11.6.2"
4850
related:
4951
url:
5052
- https://advisories.gitlab.com/gem/pay/GHSA-mjgf-xj26-9qf9
5153
- https://github.com/pay-rails/pay/security/advisories/GHSA-mjgf-xj26-9qf9
5254
- https://github.com/advisories/GHSA-mjgf-xj26-9qf9
5355
notes: |
54-
- Latest (unpatched) release as of 7/2/2026 is 11.6.1
55-
- `pay` (rubygem) ≤ v11.6.1 (latest release as of 2026-05-27).
56-
- https://github.com/pay-rails/pay/releases/tag/v11.6.1
57-
- https://rubygems.org/gems/pay/versions/11.6.1
56+
- Fixed in 11.6.2.
57+
- https://github.com/pay-rails/pay/releases/tag/v11.6.2
58+
- https://rubygems.org/gems/pay/versions/11.6.2
5859
- cvss_v3 value comes from project advisory.
5960
- No cve value, so missing cvss_v2 and cvss_v4 values.
6061
---

0 commit comments

Comments
 (0)