CISA Known Exploited Vulnerability
CVE-2014-0130
Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted req
CISA catalog entry
Product
Ruby on Rails
Vendor
Rails
Added to KEV
2022-03-25
Remediation due
2022-04-15
CVE-2014-0130 is tracked in the CISA Known Exploited Vulnerabilities catalog. WebPulse monitors it as part of its framework security intelligence.
Related vulnerabilities