CVE-2017-1000037
CVE-2017-1000037 (RVM) : The connected sources document a code-execution/command-injection vulnerability in the Ruby Version Manager (RVM) where environment variables are automatically loaded from files in the current working directory ($PWD). This behavior allows arbitrary code execution when im...