Sha256: d9613718089adf4a4231bd587741b33f541019dc36842e714980aaf06ae71a96
Contents?: true
Size: 524 Bytes
Versions: 1
Compression:
Stored size: 524 Bytes
Contents
--- gem: mini_magick cve: 2013-2616 osvdb: 91231 url: https://nvd.nist.gov/vuln/detail/CVE-2013-2616 title: MiniMagick Gem for Ruby URI Handling Arbitrary Command Injection date: 2013-03-12 description: | MiniMagick Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input from an untrusted source passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands. cvss_v2: 9.3 patched_versions: - ">= 3.6.0"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/mini_magick/CVE-2013-2616.yml |