Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:26 a.m.4 views

SUSE CVE-2014-7818

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when servestaticassets is enabled, allows remote attackers to determine the existence o...

4.3CVSS7AI score0.03457EPSS
Exploits0References6
OSV
OSV
added 2017/10/24 6:33 p.m.25 views

GHSA-H56M-VWXC-3QPW Directory traversal vulnerability in actionpack

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when servestaticassets is enabled, allows remote attackers to determine the existence o...

5CVSS7.4AI score0.04162EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.44 views

Directory traversal vulnerability in actionpack

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when servestaticassets is enabled, allows remote attackers to determine the existence o...

5CVSS6.2AI score0.04162EPSS
Exploits1References8Affected Software1
OpenVAS
OpenVAS
added 2015/03/06 12:0 a.m.44 views

Fedora Update for rubygem-actionpack FEDORA-2014-15371

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.53703EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2015/02/16 12:0 a.m.26 views

Fedora Update for rubygem-actionpack FEDORA-2014-15342

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.04162EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/02/16 12:0 a.m.27 views

Fedora 21 : rubygem-actionpack-4.1.5-2.fc21 (2014-15342)

Fixes for CVE-2014-7818 rhbz1163511 and CVE-2014-7829 rhbz1165077 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5CVSS7.2AI score0.04162EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.28 views

openSUSE Security Update : rubygem-actionpack-3_2 (openSUSE-SU-2014:1515-1)

rubygem-actionpack-32 was updated to fix two security issues. These security issues were fixed : - Arbitrary file existence disclosure CVE-2014-7829. - Arbitrary file existence disclosure CVE-2014-7818. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...

5CVSS7.6AI score0.04162EPSS
Exploits1References5
Prion
Prion
added 2014/11/18 11:59 p.m.30 views

Directory traversal

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when servestaticassets is enabled, allows remote attackers to determine the existence o...

5CVSS6.7AI score0.04162EPSS
Exploits1References4Affected Software3
OSV
OSV
added 2014/11/08 11:55 a.m.11 views

CVE-2014-7818

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when servestaticassets is enabled, allows remote attackers to determine the existence o...

5CVSS6.2AI score0.04162EPSS
Exploits1References3
CVE
CVE
added 2014/11/08 11:0 a.m.104 views

CVE-2014-7818

CVE-2014-7818 affects Ruby on Rails Action Pack, with a directory traversal in actionpack/lib/action_dispatch/middleware/static.rb when serve_static_assets is enabled. Affected: Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3. The underlying flaw all...

4.3CVSS6.4AI score0.03457EPSS
Exploits0References3Affected Software2
Debian CVE
Debian CVE
added 2014/11/08 11:0 a.m.26 views

CVE-2014-7818

Directory traversal vulnerability in actionpack/lib/actiondispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when servestaticassets is enabled, allows remote attackers to determine the existence o...

4.3CVSS6.3AI score0.03457EPSS
Exploits0
Rows per page
Query Builder