boazsegev/iodine

Releases137

Frequency3 weeks 1 day

Last Release about 2 years ago

Stars937

iodine - HTTP / WebSockets Server for Ruby with Pub/Sub support

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-22050 ↗	Jan 4, 2024Thursday, 4 January 2024, 21:15	7.5 HIGH	—
Path traversal in the static file service in Iodine less than 0.7.33 allows an unauthenticated, remote attacker to read files outside the public folder via malicious URLs.