3 matches found
CVE-2022-30123
Rack contains a sequence injection vulnerability (CVE-2022-30123) affecting Rack <2.0.9.1, <2.1.4.1, and
CVE-2020-8184
The CVE-2020-8184 entry concerns a vulnerability in rack where a reliance on cookies without validation or integrity checks allows forging a secure or host-only cookie prefix. Affected are rack versions older than 2.2.3 and older than 2.1.4. The underlying issue is insufficient cookie validation/...
CVE-2020-8161
Summary of risk : CVE-2020-8161 is a directory-traversal vulnerability in Rack (