CVE-2019-5418CISA KEV: Actively Exploited

Rails Ruby on Rails Path Traversal Vulnerability

Published Jul 7, 2025·Updated Jul 7, 2025

Description

Rails Ruby on Rails contains a path traversal vulnerability in Action View. Specially crafted accept headers in combination with calls to `render file:` can cause arbitrary files on the target server to be rendered, disclosing the file contents.

Public Exploits & PoCs8 found

PoC: CVE-2019-5418

CVE-2019-5418 - File Content Disclosure on Ruby on Rails

182

PoC: Rails-doubletap-RCE

RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)

121

PoC: CVE-2019-5418-Scanner

A multi-threaded Golang scanner to identify Ruby endpoints vulnerable to CVE-2019-5418

34

PoC: CVE-2019-5418

File Content Disclosure on Rails Test Case - CVE-2019-5418

5

PoC: CVE-2019-5418

WHS 3기 장대혁 취약한(CVE) Docker 환경 구성 과제입니다.

PoC: CVE-2019-5418

Ruby on Rails是一个 Web 应用程序框架,是一个相对较新的 Web 应用程序框架,构建在 Ruby 语言之上。这个漏洞主要是由于Ruby on Rails使用了指定参数的render file来渲染应用之外的视图,我们可以通过修改访问某控制器的请求包,通过“…/…/…/…/”来达到路径穿越的目的,然后再通过“{{”来进行模板查询路径的闭合,使得所要访问的文件被当做外部模板来解析。

PoC: CVE-2019-5418-Rails3

Rails 3 PoC of CVE-2019-5418

PoC: RailroadBandit

a demo for Ruby on Rails CVE-2019-5418

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free