Vulnerabilities > Ruby Lang > Webrick

DATE CVE VULNERABILITY TITLE RISK
2020-10-06 CVE-2020-25613 HTTP Request Smuggling vulnerability in multiple products
An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1.
network
low complexity
ruby-lang fedoraproject CWE-444
7.5
2019-05-10 CVE-2019-11879 Link Following vulnerability in Ruby-Lang Webrick 1.4.2
The WEBrick gem 1.4.2 for Ruby allows directory traversal if the attacker once had local access to create a symlink to a location outside of the web root directory.
local
low complexity
ruby-lang CWE-59
5.5