The vulnerability of the Ruby interpreter’s methods Dir.open, Dir.new, Dir.entries, and Dir.empty allows attackers to gain unauthorized access to protected data or compromise the integrity of protected information.

The vulnerability of the Dir.open, Dir.new, Dir.entries, and Dir.empty methods in the Ruby programming language exists due to incorrect path name restrictions for restricted-access directories. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected data or...

Ruby Directory Traversal Vulnerability

Ruby is a simple and fast object-oriented object-oriented programming scripting language. Ruby suffers from a directory traversal vulnerability. The vulnerability occurs because the Dir.open, Dir.new, Dir.entries, and Dir.empty? methods do not check for null characters. An attacker can exploit th...