11 matches found
CVE-2021-33473
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
GHSA-FJ34-JHJX-XMVV Arbitrary file write in dragonfly
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
Arbitrary file write in dragonfly
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
CVE-2021-33473
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
CVE-2021-33473
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
Design/Logic Flaw
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
CVE-2021-33473
CVE-2021-33473 concerns the Dragonfly Ruby Gem (v1.3.0) where an argument injection flaw lets an attacker read and write arbitrary files when the verify_url option is disabled. The vulnerability is triggered by a crafted URL, enabling unauthorized file access or modification on affected deploymen...
CVE-2021-33473
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verifyurl option is disabled. This vulnerability is exploited via a crafted URL...
PT-2022-10265 · Unknown · Dragonfly Ruby Gem
Name of the Vulnerable Software and Affected Versions: Dragonfly Ruby Gem version 1.3.0 Description: An argument injection issue allows attackers to read and write arbitrary files when the verify url option is disabled. This issue is exploited via a crafted URL. Recommendations: For Dragonfly Rub...
Dragonfly Ruby Gem < 1.4.0 Argument Injection Vulnerability
Dragonfly is a popular ruby library used for handling images on websites to generate image thumbnails, text images or managing attachments. When the verifyurls option is disabled, an attacker can leverage the vulnerability to inject malicious arguments to shell commands and achieve file read and...
Exploit for Argument Injection in Dragonfly_Project Dragonfly
CVE-2021-33564 PoC Exploit script for CVE-2021-33564 Argument...