CVE-2014-0130 — Actively Exploited: Ruby on Rails (Rails)
Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted request.
| CVE ID | CVE-2014-0130 |
|---|---|
| Vendor | Rails |
| Product | Ruby on Rails |
| Vulnerability name | Ruby on Rails Directory Traversal Vulnerability |
| Date added | 2022-03-25 |
| Remediation due | 2022-04-15 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted request. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →