Lucene search
MitreCVELIST:CVE-2019-18978HistoryNov 14, 2019 - 8:21 p.m.
CVE-2019-18978
2019-11-1420:21:24
mitre
www.cve.org
1
An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem before 1.0.4 for Ruby. It allows …/ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format.
References
Related
cve
cve
CVE-2019-18978
2019-11-14 21:15:12
ubuntucve
ubuntucve
CVE-2019-18978
2019-11-14 00:00:00
osv
osv
ruby-rack-cors - security update
2020-10-01 00:00:00
ruby-rack-cors - security update
2021-05-18 00:00:00
The rack-cors rubygem may allow directory traveral
2019-11-15 20:26:59
nessus
nessus
Debian DLA-2389-1 : ruby-rack-cors security update
2020-10-05 00:00:00
Ubuntu 16.04 LTS : rack-cors vulnerability (USN-4571-1)
2020-10-05 00:00:00
Debian DLA-2096-1 : ruby-rack-cors security update
2020-02-07 00:00:00
debian
debian
[SECURITY] [DSA 4918-1] ruby-rack-cors security update
2021-05-18 14:42:40
[SECURITY] [DSA 4918-1] ruby-rack-cors security update
2021-05-18 14:42:40
[SECURITY] [DLA 2389-1] ruby-rack-cors security update
2020-10-01 12:17:34
openvas
openvas
Debian: Security Advisory (DSA-4918-1)
2021-05-19 00:00:00
Debian: Security Advisory (DLA-2096-1)
2020-02-07 00:00:00
Debian: Security Advisory (DLA-2389-1)
2020-10-02 00:00:00
ubuntu
ubuntu
rack-cors vulnerability
2020-10-05 00:00:00
debiancve
debiancve
CVE-2019-18978
2019-11-14 21:15:12
veracode
veracode
Directory Traversal
2019-11-15 03:08:48
prion
prion
Directory traversal
2019-11-14 21:15:00
nvd
nvd
CVE-2019-18978
2019-11-14 21:15:12
github
github
The rack-cors rubygem may allow directory traveral
2019-11-15 20:26:59
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2020-01-30 00:00:00