exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2016-2097

почти 10 лет назад

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.

CVSS3: 5.3

EPSS: Низкий

CVE-2016-2097

почти 10 лет назад

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.

CVSS2: 6.8

EPSS: Низкий

CVE-2016-2097

почти 10 лет назад

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.

CVSS3: 5.3

EPSS: Низкий

CVE-2016-2097

почти 10 лет назад

Directory traversal vulnerability in Action View in Ruby on Rails befo ...

CVSS3: 5.3

EPSS: Низкий

GHSA-vx9j-46rh-fqr8

больше 8 лет назад

actionview contains Path Traversal vulnerability

CVSS3: 5.3

EPSS: Низкий

SUSE-SU-2016:0967-1

почти 10 лет назад

Security update for rubygem-actionpack-3_2

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2016-2097 Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.	CVSS3: 5.3	2% Низкий	почти 10 лет назад
CVE-2016-2097 Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.	CVSS2: 6.8	2% Низкий	почти 10 лет назад
CVE-2016-2097 Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.	CVSS3: 5.3	2% Низкий	почти 10 лет назад
CVE-2016-2097 Directory traversal vulnerability in Action View in Ruby on Rails befo ...	CVSS3: 5.3	2% Низкий	почти 10 лет назад
GHSA-vx9j-46rh-fqr8 actionview contains Path Traversal vulnerability	CVSS3: 5.3	2% Низкий	больше 8 лет назад
SUSE-SU-2016:0967-1 Security update for rubygem-actionpack-3_2			почти 10 лет назад

Уязвимостей на страницу