---
gem: gyazo
cve: 2014-4994
osvdb: 108563
url: http://osvdb.org/show/osvdb/108563
title: gyazo Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
date: 2014-06-30
description: gyazo Gem for Ruby contains a flaw in client.rb that is triggered when handling metacharacters. This may allow a remote attacker to execute arbitrary commands.
patched_versions:
  - ">= 2.0.0"