Lucene search
K

6 matches found

RubySec
RubySec
added 2017/10/24 12:0 a.m.30 views

High severity vulnerability that affects rails.

Unspecified vulnerability in the "dependency resolution mechanism" in Ruby on Rails 1.1.0 through 1.1.5 allows remote attackers to execute arbitrary Ruby code via a URL that is not properly handled in the routing code, which leads to a denial of service application hang or "data loss," a differen...

7.5CVSS7.5AI score0.02883EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2006/08/14 9:4 p.m.22 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

7.5CVSS6.9AI score0.02214EPSS
Exploits0References9
OSV
OSV
added 2006/08/14 9:4 p.m.9 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

6.9AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2006/08/14 9:4 p.m.23 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

7.5CVSS6AI score0.02214EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/08/14 9:0 p.m.26 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

6.8AI score0.02214EPSS
Exploits0References9
CVE
CVE
added 2006/08/14 9:0 p.m.108 views

CVE-2006-4111

CVE-2006-4111 affects the Ruby on Rails framework prior to version 1.1.5. The vulnerability arises from a File Upload request that supplies an HTTP header which modifies the LOAD_PATH variable, enabling a remote attacker to execute Ruby code with substantial impact. The issue is distinct from CVE...

7.5CVSS6.8AI score0.02214EPSS
Exploits0References9Affected Software2
Rows per page
Query Builder