CVE-2014-0130CISA KEV: Actively Exploited

Ruby on Rails Directory Traversal Vulnerability

Published Mar 25, 2022·Updated Mar 25, 2022

Description

Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted request.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free