Timing Attack The advisory has been revoked - it doesn't affect any version of package sinatra (opens in a new tab)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk IDSNYK-RUBY-SINATRA-20470
published10 Jan 2018
disclosed24 May 2015
creditUnknown

Report a new vulnerability Found a mistake?

Introduced: 24 May 2015

CWE-208 (opens in a new tab)

Overview

Amendment

This issue was found to be a duplicate. The original vulnerability with details can be found here.

References

https://github.com/sinatra/sinatra/commit/8aa6c42ef724f93ae309fb7c5668e19ad547eceb