Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:14 a.m.6 views

CVE-2013-4203

The self.rungpg function in lib/rgpg/gpghelper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...

7.5CVSS8AI score0.02075EPSS
Exploits3References1
Cvelist
Cvelist
added 2013/10/11 10:0 p.m.27 views

CVE-2013-4203

The self.rungpg function in lib/rgpg/gpghelper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...

7.5AI score0.02075EPSS
Exploits3References2
CVE
CVE
added 2013/10/11 10:0 p.m.67 views

CVE-2013-4203

The CVE-2013-4203 issue affects the Ruby gem rgpg (self.run_gpg in lib/rgpg/gpg_helper.rb). It allows remote command execution via shell metacharacters because user input is not sanitized before passing to system(), affecting versions up to 0.2.2. The vulnerability can enable arbitrary commands o...

7.5CVSS7.7AI score0.02075EPSS
Exploits3References2Affected Software1
securityvulns
securityvulns
added 2013/08/12 12:0 a.m.79 views

Rgpg 0.2.2 Ruby Gem Remote Command Injection

Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper around gpg command for file encryption. rgpg is a simple API for interacting with the g...

7.5CVSS0.1AI score0.02075EPSS
Exploits3
Packet Storm
Packet Storm
added 2013/08/05 12:0 a.m.38 views

Ruby Gem Rgpg 0.2.2 Command Injection

Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper around gpg command for file encryption. rgpg is a simple API for interacting with the g...

7.5CVSS0.2AI score0.02075EPSS
Exploits3
0day.today
0day.today
added 2013/08/05 12:0 a.m.41 views

Ruby Gem Rgpg 0.2.2 Command Injection Vulnerability

Ruby Gem Rgpg version 0.2.2 suffers from a remote command injection vulnerability. Title: Rgpg 0.2.2 Ruby Gem Remote Command Injection Date: 7/31/2013 Advisory Author: Larry W. Cashdollar, @larry0 CVE: CVE-2013-4203 Download: https://rubygems.org/gems/rgpg Description: "A simple Ruby wrapper arou...

7.5CVSS0.5AI score0.02075EPSS
Exploits3
Rows per page
Query Builder