Home > Vulnerability Database > WS-2020-0167

Mend.io Vulnerability Database

WS-2020-0167

Date: August 19, 2025

Validation bypass vulnerability in personnummer/ruby Back in min June a security vulnerability was reported to the team, the reason for the slow response was due to ownership of some packages was locked and we wanted to be sure to update all packages before any disclosure was released.

Language: PHP

Severity Score

5.3

Related Resources (4)

Url: https://github.com/personnummer/ruby

Url: https://github.com/personnummer/ruby/security/advisories/GHSA-vp9c-fpxx-744v

Url: https://github.com/personnummer/ruby/commit/a7a2ceb1fa6b6d4a6a3ff077ee58c587bac7da5d

Url: https://www.mend.io/vulnerability-database/WS-2020-0167

Severity Score

5.3

Weakness Type (CWE)

Authentication Bypass Using an Alternate Path or Channel

CWE-288

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

WS-2020-0167

Date: August 19, 2025

Language: PHP

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?