rack News Articles

Recent news articles refferecing the vendors vulnerabilities.

CVE-2025-27610 CVE-2025-25184

Rack Ruby Framework vulnerabilities Let Attackers inject and manipulate log content

Researchers Thai Do and Minh Pham have exposed multiple critical vulnerabilities in the Rack Ruby framework, a cornerstone of Ruby-based web applications.

2 weeks ago

Help Net Security

CVE-2025-27610

Rack Ruby vulnerability could reveal secrets to attackers (CVE-2025-27610) - Help Net Security

Researchers found vulnerabilities in the Rack Ruby interface, including CVE-2025-27610, potentially leading to disclosure of sensitive info.

2 weeks ago

The Hacker News

CVE-2025-27610

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

CVE-2025-27610 allows unauthenticated access to sensitive files in Rack Ruby apps due to root misconfig.

2 weeks ago

Cybernews

CVE-2025-27610

Serving files in Ruby? You might be serving up secrets too

Critical vulnerabilities in Ruby's Rack framework allow attackers to access sensitive files through path traversal attacks when using default settings.

3 weeks ago

No more news articles to load.