Sha256: 853eda5a0e8eab5d063b184a16bbd08828ce00a5f390d4c7ef6fccf671f4d179
Contents?: true
Size: 514 Bytes
Versions: 1
Compression:
Stored size: 514 Bytes
Contents
--- gem: thumbshooter cve: 2013-1898 osvdb: 91839 url: https://nvd.nist.gov/vuln/detail/CVE-2013-1898 title: Thumbshooter Gem for Ruby thumbshooter.rb URL Shell Metacharacter Injection Arbitrary Command Execution date: 2013-03-26 description: Thumbshooter Gem for Ruby contains a flaw that is due to the program failing to properly sanitize input passed to thumbshooter.rb. With a specially crafted URL that contains shell metacharacters, a context-dependent attacker can execute arbitrary commands. cvss_v2: 7.5
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/thumbshooter/CVE-2013-1898.yml |