Lucene search
K

5 matches found

NVD
NVD
added 2013/03/20 10:55 p.m.16 views

CVE-2013-2617

lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

7.5CVSS7.5AI score0.0442EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/03/20 10:0 p.m.22 views

CVE-2013-2617

lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

7.5AI score0.0442EPSS
Exploits0References4
CVE
CVE
added 2013/03/20 10:0 p.m.91 views

CVE-2013-2617

The CVE-2013-2617 issue affects the Ruby Curl Gem (lib/curl.rb). The vulnerability allows remote attackers to execute arbitrary commands by supplying a URL containing shell metacharacters, due to insufficient URL escaping. This is documented in multiple sources (RubyGems advisory for CVE-2013-261...

7.5CVSS7.7AI score0.0442EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2013/03/20 6:55 p.m.11 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-2617. Reason: This candidate is a duplicate of CVE-2013-2617. Notes: All CVE users should reference CVE-2013-2617 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.8AI score0.0442EPSS
Exploits0
RubySec
RubySec
added 2013/03/12 12:0 a.m.15 views

CVE-2013-2617 rubygem-curl: insufficient URL escaping command injection

lib/curl.rb in the Curl Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

7.5CVSS7.9AI score0.0442EPSS
Exploits0References1
Rows per page
Query Builder