Lucene search
+L

8 matches found

susecve
susecve
added 2023/02/15 6:10 a.m.6 views

SUSE CVE-2007-5379

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS7AI score0.03969EPSS
Exploits0References3
osv
osv
added 2017/10/24 6:33 p.m.24 views

GHSA-FJFG-Q662-GM6J Moderate severity vulnerability that affects rails

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS9.3AI score0.03969EPSS
Exploits0References12
github
github
added 2017/10/24 6:33 p.m.32 views

Moderate severity vulnerability that affects rails

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS4.3AI score0.03969EPSS
Exploits0References12Affected Software1
rubygems
rubygems
added 2017/10/24 12:0 a.m.25 views

Moderate severity vulnerability that affects rails

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS7.1AI score0.03969EPSS
Exploits0References1Affected Software1
ubuntucve
ubuntucve
added 2007/10/19 11:17 p.m.34 views

CVE-2007-5379

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS6.1AI score0.03969EPSS
Exploits0References3
prion
prion
added 2007/10/19 11:17 p.m.26 views

Design/Logic Flaw

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS6.8AI score0.03969EPSS
Exploits0References13Affected Software1
nvd
nvd
added 2007/10/19 11:17 p.m.21 views

CVE-2007-5379

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

5CVSS6.6AI score0.03969EPSS
Exploits0References13
cvelist
cvelist
added 2007/10/19 11:0 p.m.28 views

CVE-2007-5379

Rails before 1.2.4, as used for Ruby on Rails, allows remote attackers and ActiveResource servers to determine the existence of arbitrary files and read arbitrary XML files via the Hash.fromxml Hashfromxml method, which uses XmlSimple XML::Simple unsafely, as demonstrated by reading passwords fro...

9.3AI score0.03969EPSS
Exploits0References13
Rows per page
Query Builder