RubygemsResearch

Sha256: 9cb8d784d3c7bf301995dbbd3c8358a1e4aba4f2aa91d54004fa443c888aa39d

Contents?: true

Size: 454 Bytes

Versions: 5

Compression:

Stored size: 454 Bytes

---
gem: Arabic-Prawn
cve: 2014-2322
osvdb: 104365
url: http://osvdb.org/show/osvdb/104365
title: Arabic Prawn Gem for Ruby lib/string_utf_support.rb User Input Handling Remote Command Injection
date: 2014-03-10
description: |
  Arabic Prawn Gem for Ruby contains a flaw in the lib/string_utf_support.rb
  file. The issue is due to the program failing to sanitize user input. This may
  allow a remote attacker to inject arbitrary commands.
cvss_v2: 7.5

Version data entries

5 entries across 5 versions & 2 rubygems

Version	Path
bundler-budit-0.6.2	data/ruby-advisory-db/gems/Arabic-Prawn/OSVDB-104365.yml
bundler-budit-0.6.1	data/ruby-advisory-db/gems/Arabic-Prawn/OSVDB-104365.yml
bundler-audit-0.6.1	data/ruby-advisory-db/gems/Arabic-Prawn/OSVDB-104365.yml
bundler-audit-0.6.0	data/ruby-advisory-db/gems/Arabic-Prawn/OSVDB-104365.yml
bundler-audit-0.5.0	data/ruby-advisory-db/gems/Arabic-Prawn/OSVDB-104365.yml