The host is installed with Ruby on rails 5.2.x before 5.2.2.1, 5.1.x before 5.1.6.2, 5.0.x before 5.0.7.2 or 4.2.x before 4.2.11.1 and is prone to a file content disclosure vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to send specially crafted accept headers which can cause contents of arbitrary files on the targe ...