---
gem: fastreader
cve: 2013-1876
osvdb: 91232
url: http://osvdb.org/show/osvdb/91232
title: fastreader Gem for Ruby URI Handling Arbitrary Command Injection 
date: 2013-03-13

description: fastreader Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands.

cvss_v2: 9.3