VDB
GCVE-110-MAGEIA-2026-75
GCVE-110-MAGEIA-2026-75
Advisory Published
Rack has a Directory Traversal via Rack:Directory. (CVE-2026-22860)
Rack's Stored XSS in Rack::Directory via javascript: filenames rendered
into anchor href. (CVE-2026-25500)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | ruby-rack | 2.2.22-1.mga9 (unaffected), 0 (affected) | — |
Aliases
Browse GCVE Records
73,734 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.