Known exploited
Rails
CVE published 2025-07-07
CVE-2019-5418
CVE-2019-5418 is a Ruby on Rails path traversal vulnerability that CISA lists in its Known Exploited Vulnerabilities catalog. For defenders, the key takeaway is that this is not just a theoretical issue: CISA has treated it as actively exploited and set a remediation due date in the provided feed. Organizations running Rails applications should verify whether their deployed versions are covered by the ven [truncated]