Search for packages
| purl | pkg:gem/sinatra@2.0.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-sd1a-671k-ryaa
Aliases: CVE-2025-61921 GHSA-mr3q-g2mv-mr4q |
sinatra: Sinatra has ReDoS vulnerability in ETag header value generation |
Affected by 0 other vulnerabilities. |
|
VCID-vrjy-djh2-p7cs
Aliases: CVE-2018-7212 GHSA-h29f-7f56-j8wh |
Sinatra Path Traversal vulnerability An issue was discovered in `rack-protection/lib/rack/protection/path_traversal.rb` in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash characters. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-vrjy-djh2-p7cs | Sinatra Path Traversal vulnerability An issue was discovered in `rack-protection/lib/rack/protection/path_traversal.rb` in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash characters. |
CVE-2018-7212
GHSA-h29f-7f56-j8wh |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-05-30T00:01:53.454986+00:00 | Ruby Importer | Affected by | VCID-sd1a-671k-ryaa | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sinatra/CVE-2025-61921.yml | 38.6.0 |
| 2026-05-29T17:30:00.262584+00:00 | GitLab Importer | Affected by | VCID-vrjy-djh2-p7cs | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/sinatra/CVE-2018-7212.yml | 38.6.0 |
| 2026-05-29T14:21:47.248288+00:00 | GHSA Importer | Fixing | VCID-vrjy-djh2-p7cs | https://github.com/advisories/GHSA-h29f-7f56-j8wh | 38.6.0 |
| 2026-05-29T09:19:33.988633+00:00 | GithubOSV Importer | Fixing | VCID-vrjy-djh2-p7cs | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/02/GHSA-h29f-7f56-j8wh/GHSA-h29f-7f56-j8wh.json | 38.6.0 |