CVE-2016-4442 (rack-mini-profiler): rack-mini-profiler may disclose information to unauthorized users

rack-mini-profiler may disclose information to unauthorized users

Published: May 18, 2016

CVE: CVE-2016-4442 (NVD)
GHSA: GHSA-j5hj-fhc9-g24m
Vendor Advisory: https://github.com/MiniProfiler/rack-mini-profiler/commit/4273771d65f1a7411e3ef5843329308d0e2d257c

CVSS v3.x: 5.3 (Medium)

>= 0.10.1

Carefully crafted requests can expose information about strings and objects allocated during the request for unauthorised users.