Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-0758

Malware in sbrugna...

5.3CVSS5.2AI score0.02462EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-18978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the rack-cors aka Rack CORS Middleware gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources becau...

5.3CVSS5.6AI score0.02462EPSS
Exploits0References2
OSV
OSV
added 2024/02/26 6:30 p.m.14 views

GHSA-785G-282Q-PWVX Rack CORS Middleware has Insecure File Permissions

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

9.1CVSS8.5AI score0.00771EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2024/02/26 6:30 p.m.46 views

Rack CORS Middleware has Insecure File Permissions

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

9.1CVSS7.2AI score0.00771EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2024/02/26 4:28 p.m.15 views

CVE-2024-27456

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

9.1CVSS7.1AI score0.00771EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.16 views

CVE-2024-27456

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

9.3AI score0.00771EPSS
Exploits1References1
CVE
CVE
added 2024/02/26 12:0 a.m.3657 views

CVE-2024-27456

CVE-2024-27456 concerns rack-cors 2.0.1 with insecure file permissions: .rb files shipped as 0666, potentially impacting integrity, confidentiality, and availability. Root cause: default permissive file permissions. Public exposure documented by Red Hat and other sources; exploitation details are...

9.1CVSS6.6AI score0.00771EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.40 views

CVE-2024-27456

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

6.8AI score0.00771EPSS
Exploits1References1
RubySec
RubySec
added 2024/02/26 12:0 a.m.29 views

Rack CORS Middleware has Insecure File Permissions

rack-cors aka Rack CORS Middleware 2.0.1 has 0666 permissions for the .rb files...

9.1CVSS7.1AI score0.00771EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/11/14 9:15 p.m.2 views

DEBIAN-CVE-2019-18978

An issue was discovered in the rack-cors aka Rack CORS Middleware gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format...

5.3CVSS6.9AI score0.02462EPSS
Exploits0References1
Prion
Prion
added 2019/11/14 9:15 p.m.20 views

Directory traversal

An issue was discovered in the rack-cors aka Rack CORS Middleware gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format...

5CVSS5.3AI score0.02462EPSS
Exploits0References6Affected Software3
ATTACKERKB
ATTACKERKB
added 2019/11/14 9:15 p.m.1 views

CVE-2019-18978

An issue was discovered in the rack-cors aka Rack CORS Middleware gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format...

5.3CVSS5.6AI score0.02462EPSS
Exploits0References7
Rows per page
Query Builder