2 matches found
CVE-2013-5036
The CVE-2013-5036 issue pertains to Square Squash’s YAML processing, allowing remote code execution via a YAML document in (1) the namespace parameter to the deobfuscation function or (2) the sourcemap parameter to the sourcemap function in app/controllers/api/v1_controller.rb. Connected advisori...
CVE-2013-5036
creationtimestamp| type| source ---|---|--- 2013-08-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/27530 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/squashyamlexec.rb 2025-02-06 03:13:41+00:00| seen|...