CVE-2018-7212

Published: Feb 18, 2018
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-7212" target="_blank" rel="noopener"> CVE-2018-7212
GHSA: <a href="https://github.com/advisories/GHSA-h29f-7f56-j8wh" target="_blank" rel="noopener"> GHSA-h29f-7f56-j8wh
Severity: Medium
Exploit:

An issue was discovered in rack-protection/lib/rack/protection/path_traversal.rb in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash characters.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10: