Rubyonrails » Ruby On Rails : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.
Max CVSS
5.3
EPSS Score
1.10%
Published
2016-04-07
Updated
2019-08-08
CVE-2016-0752
Known exploited
Public exploit
Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname.
Max CVSS
7.5
EPSS Score
97.36%
Published
2016-02-16
Updated
2019-08-08
CISA KEV Added
2022-03-25
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \ (backslash) character, a similar issue to CVE-2014-7818.
Max CVSS
5.0
EPSS Score
0.53%
Published
2014-11-18
Updated
2019-08-08
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via a /..%2F sequence.
Max CVSS
4.3
EPSS Score
0.46%
Published
2014-11-08
Updated
2019-08-08
CVE-2014-0130
Known exploited
Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails before 3.2.18, 4.0.x before 4.0.5, and 4.1.x before 4.1.1, when certain route globbing configurations are enabled, allows remote attackers to read arbitrary files via a crafted request.
Max CVSS
4.3
EPSS Score
0.33%
Published
2014-05-07
Updated
2023-02-13
CISA KEV Added
2022-03-25
5 vulnerabilities found