Ruby on Rails Arbitrary File Read vulnerability in Action View with 'render file' in a controller. Vulnerable versions: < 5.2.2.1, < 5.1.6.2, < 5.0.7.2, < 4.2.11.1. Tested on Ubuntu 18.10, Rails 5.2.1
Reporter | Title | Published | Views | Family All 96 |
---|---|---|---|---|
Check Point Advisories | Rails Action View Information Disclosure (CVE-2019-5418) | 29 Jul 202000:00 | – | checkpoint_advisories |
Metasploit | Ruby On Rails File Content Disclosure ('doubletap') | 28 Mar 201901:13 | – | metasploit |
Prion | Design/Logic Flaw | 27 Mar 201914:29 | – | prion |
GithubExploit | Exploit for Vulnerability in Rubyonrails Rails | 19 Nov 201909:40 | – | githubexploit |
GithubExploit | Exploit for Vulnerability in Rubyonrails Rails | 4 Oct 201919:28 | – | githubexploit |
GithubExploit | Exploit for Vulnerability in Rubyonrails Rails | 16 Mar 201911:58 | – | githubexploit |
GithubExploit | Exploit for Vulnerability in Rubyonrails Rails | 23 Mar 201902:52 | – | githubexploit |
Debian CVE | CVE-2019-5418 | 27 Mar 201914:29 | – | debiancve |
AttackerKB | Ruby on Rails 5.2 "DoubleTap" Directory Traversal | 27 Mar 201900:00 | – | attackerkb |
Veracode | Information Disclosure | 14 Mar 201902:43 | – | veracode |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo