CVE-2014-125033

CVSS V2 None CVSS V3 None
Description
A vulnerability was found in rails-cv-app. It has been rated as problematic. Affected by this issue is some unknown functionality of the file app/controllers/uploaded_files_controller.rb. The manipulation with the input ../../../etc/passwd leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be used. The name of the patch is 0d20362af0a5f8a126f67c77833868908484a863. It is recommended to apply a patch to fix this issue. VDB-217178 is the identifier assigned to this vulnerability.
Overview
  • CVE ID
  • CVE-2014-125033
  • Assigner
  • cna@vuldb.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-02T08:15:09
  • Last Modified Date
  • 2023-01-09T17:50:38
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:rails-cv-app_project:rails-cv-app:*:*:*:*:*:*:*:* 1 OR 2014-11-16
History
Created Old Value New Value Data Type Notes
2023-01-02 09:14:17 Added to TrackCVE
2023-01-02 09:14:17 Weakness Enumeration new
2023-01-02 17:14:56 2023-01-02T16:16:53 CVE Modified Date updated
2023-01-02 17:14:56 Received Awaiting Analysis Vulnerability Status updated
2023-01-02 17:15:00 CVSS V3 information new
2023-01-02 17:15:00 CVSS V2 information new
2023-01-06 11:19:52 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-06 11:19:54 CVSS V3 information new
2023-01-06 11:19:54 CVSS V2 information new
2023-01-09 18:24:14 2023-01-09T17:50:38 CVE Modified Date updated
2023-01-09 18:24:14 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-09 18:24:19 Weakness Enumeration update
2023-01-09 18:24:21 CPE Information updated
2023-01-09 18:24:21 CVSS V3 information new
2023-01-09 18:24:21 CVSS V2 information new