4 matches found
CVE-2013-2616
lib/minimagick.rb in the MiniMagick Gem 1.3.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...
CVE-2013-2616
lib/minimagick.rb in the MiniMagick Gem 1.3.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...
CVE-2013-2616
The CVE-2013-2616 entry affects the MiniMagick Ruby gem, specifically lib/mini_magick.rb in version 1.3.1. The vulnerability arises when handling a URL containing shell metacharacters, enabling a context-dependent attacker to execute arbitrary commands, i.e., an arbitrary command injection via cr...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-2616. Reason: This candidate is a duplicate of CVE-2013-2616. Notes: All CVE users should reference CVE-2013-2616 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...