Low severity vulnerability that affects show_in_browser

2017-10-24T18:33:37
ID GHSA-9HX9-W2J6-RW76
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:00

Description

The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.