Sha256: 05883f68fd89ec1affc46cc7a83d87c76dc1c5de37b3480337ad98b238b06655
Contents?: true
Size: 495 Bytes
Versions: 1
Compression:
Stored size: 495 Bytes
Contents
--- gem: command_wrap cve: 2013-1875 osvdb: 91450 url: https://nvd.nist.gov/vuln/detail/CVE-2013-1875 title: command_wrap Gem for Ruby URI Handling Arbitrary Command Injection date: 2013-03-18 description: command_wrap Gem for Ruby contains a flaw that is triggered during the handling of input passed via the URL that contains a semicolon character (;). This will allow a remote attacker to inject arbitrary commands and have them executed in the context of the user clicking it. cvss_v2: 7.5
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/command_wrap/CVE-2013-1875.yml |