The vulnerability of the `check_forbidden` function in the rack/directory.rb module interface between web servers and Rack web applications allows a violator to access confidential data.

The vulnerability of the checkforbidden function in the rack/directory.rb module of the Rack framework, which is used between web servers and web applications, relates to an incorrect restriction on the path to the directory. Exploiting this vulnerability could allow a malicious actor to gain...