CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Rubygems: >> Mail Gem >> 2.4.1 Security Vulnerabilities

CVE-2012-2139

Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the to parameter.

CVSS Score

5.0

EPSS Score

0.027

Published

2012-07-18

Page 1

Vulnerabilities

Vulnerable Software

Rubygems: >> Mail Gem >> 2.4.1 Security Vulnerabilities

Products

Pricing

Contact Us