The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning about an actively exploited path traversal vulnerability in the Ruby on Rails framework. Tracked as CVE-2019-5418, this flaw allows attackers to access arbitrary files on target servers. Given the active exploitation, CISA has added this vulnerability to its Known Exploited Vulnerabilities (KEV) catalog and […]
The post CISA Issues Warning: Ongoing Attacks Exploiting Ruby on Rails Path Traversal Bug appeared first on SecPod Blog.