VYPR

RubyGems package

rack-contrib

pkg:gem/rack-contrib

Vulnerabilities (1)

  • CVE-2024-35231HigMay 27, 2024
    affected < 2.5.0fixed 2.5.0

    rack-contrib provides contributed rack middleware and utilities for Rack, a Ruby web server interface. Versions of rack-contrib prior to 2.5.0 are vulnerable to denial of service due to the fact that the user controlled data `profiler_runs` was not constrained to any limitation.