All previously released versions of Sprockets, the software that powers the Rails asset pipeline, contain a directory traversal vulnerability. This vulnerability has been assigned CVE-2018-3760.
Read full news article on Dzone
Rails Asset Pipeline Directory Traversal Vulnerability (CVE-2018-3760)
Date:
Categorie(s):
Tag(s):
- China’s Volt Typhoon reportedly breached Singtel in ‘test-run’ for US telecom attacks
- Snowflake data theft suspect arrested in Canada
- Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale
- Canada arrests suspected hacker over breach of 160+ Snowflake users’ data
- Cyberthreats linked to foreign actors aim to hinder Election Day proceedings