Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2026/04/01 12:0 a.m.5 views

Mageia: Security Advisory (MGASA-2026-0075)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.00665EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.3 views

Debian dsa-6180 : ruby-rack - security update

The remote Debian 12 / 13 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-6180 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6180-1 [email protected]...

7.5CVSS5.9AI score0.00665EPSS
Exploits2References7
Debian
Debian
added 2026/03/22 9:30 p.m.6 views

[SECURITY] [DLA 4505-1] ruby-rack security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-4505-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta March 23, 2026 https://wiki.debian.org/LTS -...

7.5CVSS5.8AI score0.00665EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.3 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Rack vulnerabilities (USN-8066-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8066-1 advisory. Minh Pham Quang discovered that Rack did not correctly handle parsing certain paths, which could lead to a path traversal...

7.5CVSS6.2AI score0.00665EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.2 views

Ubuntu: Security Advisory (USN-8066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.00665EPSS
Exploits2References2
NVD
NVD
added 2026/02/18 8:18 p.m.8 views

CVE-2026-25500

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory generates an HTML directory index where each file entry is rendered as a clickable link. If a file exists on disk whose basename starts with the javascript: scheme e.g. javascript:alert1, the...

5.4CVSS0.00224EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/02/18 6:59 p.m.5 views

CVE-2026-25500

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory generates an HTML directory index where each file entry is rendered as a clickable link. If a file exists on disk whose basename starts with the javascript: scheme e.g. javascript:alert1, the...

5.4CVSS6AI score0.00224EPSS
Exploits1
Rows per page
Query Builder