Sha256: 90e8369261546a0d9f980002c3bec702b470a8f02ce3e51d3da9029930946825
Contents?: true
Size: 451 Bytes
Versions: 1
Compression:
Stored size: 451 Bytes
Contents
--- gem: multi_xml cve: 2013-0175 url: http://osvdb.org/show/osvdb/89148 title: multi_xml Gem for Ruby XML Parameter Parsing Remote Command Execution description: | The multi_xml Gem for Ruby contains a flaw that is triggered when an error occurs during the parsing of the 'XML' parameter. With a crafted request containing arbitrary symbol and yaml types, a remote attacker can execute arbitrary commands. patched_versions: - ">= 0.5.2"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.1.2 | data/ruby-advisory-db/gems/multi_xml/2013-0175.yml |