Description

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname.

Remediation

References

CVE-2016-0752

Related Vulnerabilities

Zenphoto Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-0993)

Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21030)

WordPress Plugin CallRail Phone Call Tracking Cross-Site Request Forgery (0.4.9)

WordPress Plugin Fonts-Google Fonts Typography Cross-Site Scripting (3.0.2)

WordPress Plugin Connections Business Directory CSV Injection (9.6)

Severity

High

Classification

CVE-2016-0752 CWE-22 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities