Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0250

Malware in sbrugna...

7.5CVSS6.1AI score0.02188EPSS
Exploits3References7
OSV
OSV
added 2017/10/24 6:33 p.m.24 views

GHSA-HGMW-X865-HF9X Arabic Prawn allows remote attackers to execute arbitrary commands via shell metacharacters

lib/stringutfsupport.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 downloadedfile or 2 url variable...

7.5CVSS7.4AI score0.02188EPSS
Exploits3References5
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.34 views

Arabic Prawn allows remote attackers to execute arbitrary commands via shell metacharacters

lib/stringutfsupport.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 downloadedfile or 2 url variable...

7.5CVSS7.3AI score0.02188EPSS
Exploits3References5Affected Software1
securityvulns
securityvulns
added 2014/05/04 12:0 a.m.63 views

Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem

Title: Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem Author: Larry W. Cashdollar, @larry0 Download Site: http://rubygems.org/gems/Arabic-Prawn CVE: 2014-2322 Date: 12/17/2013 In Arabic-Prawn-0.0.1/lib/stringutfsupport.rb, the following lines pass unsanitized input to the shell. 426 var ...

7.5AI score
Exploits0
NVD
NVD
added 2014/05/02 2:55 p.m.17 views

CVE-2014-2322

lib/stringutfsupport.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 downloadedfile or 2 url variable...

7.5CVSS7.6AI score0.02188EPSS
Exploits3References3
Prion
Prion
added 2014/05/02 2:55 p.m.19 views

Code injection

lib/stringutfsupport.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 downloadedfile or 2 url variable...

7.5CVSS8.1AI score0.02188EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2014/05/02 2:0 p.m.25 views

CVE-2014-2322

lib/stringutfsupport.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 downloadedfile or 2 url variable...

7.6AI score0.02188EPSS
Exploits3References3
0day.today
0day.today
added 2014/03/13 12:0 a.m.53 views

Ruby Gem Arabic Prawn 0.0.1 Command Injection Vulnerability

Arabic Prawn Ruby gem version 0.0.1 suffers from a remote command injection vulnerability. Title: Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem Author: Larry W. Cashdollar, @larry0 Download Site: http://rubygems.org/gems/Arabic-Prawn CVE: 2014-2322 Date: 12/17/2013 In...

7.5CVSS0.7AI score0.02188EPSS
Exploits3
Packet Storm
Packet Storm
added 2014/03/12 12:0 a.m.45 views

Ruby Gem Arabic Prawn 0.0.1 Command Injection

Title: Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem Author: Larry W. Cashdollar, @larry0 Download Site: http://rubygems.org/gems/Arabic-Prawn CVE: 2014-2322 Date: 12/17/2013 In Arabic-Prawn-0.0.1/lib/stringutfsupport.rb, the following lines pass unsanitized input to the shell. 426 var ...

7.5CVSS0.5AI score0.02188EPSS
Exploits3
RubySec
RubySec
added 2014/03/10 12:0 a.m.21 views

Arabic Prawn Gem for Ruby lib/string_utf_support.rb User Input Handling Remote Command Injection

Arabic Prawn Gem for Ruby contains a flaw in the lib/stringutfsupport.rb file. The issue is due to the program failing to sanitize user input. This may allow a remote attacker to inject arbitrary commands. "lib/stringutfsupport.rb" in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to...

7.5CVSS7.6AI score0.02188EPSS
Exploits3References1
Rows per page
Query Builder