Sha256: fad39e3080f2a08cce6cb1795e990823588548d269a1a25ff7b80ac36431725b
Contents?: true
Size: 494 Bytes
Versions: 1
Compression:
Stored size: 494 Bytes
Contents
--- gem: multi_xml cve: 2013-0175 osvdb: 89148 url: https://nvd.nist.gov/vuln/detail/CVE-2013-0175 title: multi_xml Gem for Ruby XML Parameter Parsing Remote Command Execution date: 2013-01-11 description: | The multi_xml Gem for Ruby contains a flaw that is triggered when an error occurs during the parsing of the 'XML' parameter. With a crafted request containing arbitrary symbol and yaml types, a remote attacker can execute arbitrary commands. patched_versions: - ">= 0.5.2"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/multi_xml/CVE-2013-0175.yml |