CVE-2014-4991
CVE-2014-4991 affects the Ruby gem codders-dataset (version 1.3.2.1). The vulnerability is in two files, lib/dataset/database/mysql.rb and lib/dataset/database/postgresql.rb, where credentials are placed on the mysqldump command line. This allows a local user to obtain sensitive information by li...