Sha256: 07a24b66ae5fdfc955ebd38e95f0a953ea0d21a77ab8a11ea18827bfb5b78a2c
Contents?: true
Size: 544 Bytes
Versions: 1
Compression:
Stored size: 544 Bytes
Contents
--- gem: codders-dataset cve: 2014-4991 osvdb: 108582 url: https://nvd.nist.gov/vuln/detail/CVE-2014-4991 title: codders-dataset Gem for Ruby lib/dataset/database/mysql.rb and lib/dataset/database/postgresql.rb Process Table Local Plaintext Credential Disclosure date: 2014-06-30 description: (1) lib/dataset/database/mysql.rb and (2) lib/dataset/database/postgresql.rb in the codders-dataset gem 1.3.2.1 for Ruby place credentials on the mysqldump command line, which allows local users to obtain sensitive information by listing the process.
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/codders-dataset/CVE-2014-4991.yml |