VDB
WID-SEC-W-2025-1467
WID-SEC-W-2025-1467
PUBLISHED
Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source Ruby on Rails <5.1.6.2 | ||
| Red Hat Enterprise Linux | ||
| Open Source Ruby on Rails <5.0.7.2 | ||
| SUSE Linux | ||
| Open Source Ruby on Rails <4.2.11.1 | ||
| Open Source Ruby on Rails <6.0.0.beta3 | ||
| Open Source Ruby on Rails <5.2.2.1 |
Exploit Intelligence
- CVE-2019-5418 - File Content Disclosure on Ruby on Rails (github-poc-repo)
- Ruby on Rails是一个 Web 应用程序框架,是一个相对较新的 Web 应用程序框架,构建在 Ruby 语言之上。这个漏洞主要是由于Ruby on Rails使用了指定参数的render file来渲染应用之外的视图,我们可以通过修改访问某控制器的请求包,通过“…/…/…/…/”来达到路径穿越的目的,然后再通过“{{”来进行模板查询路径的闭合,使得所要访问的文件被当做外部模板来解析。 (github-poc-repo)
- RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420) (github-poc-repo)
- Rails 3 PoC of CVE-2019-5418 (github-poc-repo)
- WHS 3기 장대혁 취약한(CVE) Docker 환경 구성 과제입니다. (github-poc-repo)
- 【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022-26134和DedeCMS v5.7.87 SQL注入 CVE-2022-23337。 (github-poc-repo)
- WHS 3기 장대혁 취약한(CVE) Docker 환경 구성 과제입니다. (github-poc)
- Ruby on Rails是一个 Web 应用程序框架,是一个相对较新的 Web 应用程序框架,构建在 Ruby 语言之上。这个漏洞主要是由于Ruby on Rails使用了指定参数的render file来渲染应用之外的视图,我们可以通过修改访问某控制器的请求包,通过“…/…/…/…/”来达到路径穿越的目的,然后再通过“{{”来进行模板查询路径的闭合,使得所要访问的文件被当做外部模板来解析。 (github-poc)
- random-robbie/CVE-2019-5418 (github-poc)
- melardev/CVE-2019-5418 (github-poc)
…and 43 more exploits
Timeline
- Mar 13, 2019 CVE Published
- Jul 7, 2025 CVE Updated
- Apr 2, 2026 Distribution Patch
- Apr 2, 2026 Distribution Patch
- Apr 2, 2026 Distribution Patch
- Apr 2, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2025-1467.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1467 advisory
- https://weblog.rubyonrails.org/2019/3/13/Rails-4-2-5-1-5-1-6-2-have-been-released/ url
- https://www.suse.com/support/update/announcement/2019/suse-su-20190915-1.html url
- https://access.redhat.com/errata/RHSA-2019:0796 url
- https://access.redhat.com/errata/RHSA-2019:1147 url
- https://access.redhat.com/errata/RHSA-2019:1149 url
- https://access.redhat.com/errata/RHSA-2019:1289 url
- https://www.suse.com/support/update/announcement/2019/suse-su-20191381-1.html url
- https://www.suse.com/support/update/announcement/2019/suse-su-20191973-1.html url
- http://lists.suse.com/pipermail/sle-security-updates/2020-October/007625.html url
- https://lists.suse.com/pipermail/sle-security-updates/2020-November/007691.html url
- https://lists.suse.com/pipermail/sle-security-updates/2020-November/007702.html url
- https://cisa.gov/known-exploited-vulnerabilities-catalog url