Sha256: e45ff2e57631f33e1029936de3482689693b05a13e499e5b36ed30d5319ad3d8
Contents?: true
Size: 508 Bytes
Versions: 1
Compression:
Stored size: 508 Bytes
Contents
--- gem: echor cve: 2014-1834 osvdb: 102129 url: https://nvd.nist.gov/vuln/detail/CVE-2014-1834 title: echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command Execution date: 2014-01-14 description: | Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request function that is triggered when a semi-colon (;) is injected into a username or password. This may allow a context-dependent attacker to inject arbitrary commands if the gem is used in a rails application.
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/echor/CVE-2014-1834.yml |