4 matches found
CVE-2017-2096
smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...
CVE-2017-2096
smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...
CVE-2017-2096
CVE-2017-2096 affects smalruby-editor before 0.4.1 and smalruby before 0.1.11, enabling remote arbitrary OS command execution. Root cause cited across sources: improper handling/sanitization in command execution (e.g., Open3.capture3) leading to command injection. Affected products: smalruby-edit...
CVE-2017-2096
smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...