Medium severity5.3NVD Advisory· Published Feb 18, 2018· Updated Jun 17, 2026
CVE-2018-7212
CVE-2018-7212
Description
An issue was discovered in rack-protection/lib/rack/protection/path_traversal.rb in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash characters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
sinatraRubyGems | >= 2.0.0.beta1, < 2.0.1 | 2.0.1 |
Affected products
1Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-h29f-7f56-j8whghsaADVISORY
- github.com/sinatra/sinatra/commit/6ad721abcfe36334108dcdd05d046c361e1b7a9cnvdThird Party AdvisoryWEB
- github.com/sinatra/sinatra/pull/1379nvdIssue TrackingThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2018-7212ghsaADVISORY
News mentions
0No linked articles in our index yet.