Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

rack-session — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in rack-session, with AI-generated Chinese analysis, references, and POCs.

Vendor: rack

CVE IDTitleCVSSSeverityPublished
CVE-2026-39324 Rack::Session::Cookie secrets: decrypt failure fallback enables secretless session forgery and Marshal deserialization CWE-287 7.4AIHighAI2026-04-07
CVE-2025-46336 Rack session gets restored after deletion CWE-362 4.2 Medium2025-05-08

All 2 known CVE vulnerabilities affecting rack-session with full Chinese analysis, references, and POCs where available.