6 matches found
CVE-2013-1875
commandwrap.rb in the commandwrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename...
GHSA-P673-HJF2-PWFR Shell command injection in command_wrap
commandwrap.rb in the commandwrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename...
Shell command injection in command_wrap
commandwrap.rb in the commandwrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename...
CVE-2013-1875
The CVE-2013-1875 issue affects the Ruby gem command_wrap (command_wrap.rb). The connected documents confirm a remote arbitrary command execution vulnerability via shell metacharacters in a URL or filename, enabling an attacker to run commands in the context of the affected user. The root cause i...
CVE-2013-1875
commandwrap.rb in the commandwrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename...
command_wrap Gem for Ruby URI Handling Arbitrary Command Injection
commandwrap Gem for Ruby contains a flaw that is triggered during the handling of input passed via the URL that contains a semicolon character ;. This will allow a remote attacker to inject arbitrary commands and have them executed in the context of the user clicking it...