EUVD-2017-0318

Malware in sbrugna...

CVE-2013-2615

lib/entrycontroller.rb in the fastreader Gem 1.0.8 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

fastreader Gem for Ruby URI Handling Arbitrary Command Injection

fastreader Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands...

GHSA-W248-XR37-JX8M fastreader Gem for Ruby URI Handling Arbitrary Command Injection

fastreader Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands...

Remote command execution in fastreader ruby gem

Ruby gem fastreader-1.0.8 remote code exec 3/6/2013 if the url contains any ; characters code will be executed as the user. for example if fastreader is fed http://www.g;id;.com id will be executed. ./fastreader-1.0.8/lib/entrycontroller.rb .strip only removes whitespace before and after the URL...

CVE-2013-2615

lib/entrycontroller.rb in the fastreader Gem 1.0.8 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

Code injection

lib/entrycontroller.rb in the fastreader Gem 1.0.8 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

CVE-2013-2615

The CVE-2013-2615 entry affects the fastreader Ruby Gem, specifically lib/entry_controller.rb in version 1.0.8. The vulnerability enables remote code execution by passing shell metacharacters in a URL, allowing an attacker to execute arbitrary commands on the host. The NVD entry lists a base scor...

CVE-2013-2615

lib/entrycontroller.rb in the fastreader Gem 1.0.8 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

Ruby Gem Fastreader 1.0.8 Code Execution

Ruby gem fastreader-1.0.8 remote code exec 3/6/2013 if the url contains any ; characters code will be executed as the user. for example if fastreader is fed http://www.g;id;.com id will be executed. ./fastreader-1.0.8/lib/entrycontroller.rb .strip only removes whitespace before and after the URL...

RubyGems fastreader 'entry_controller.rb'远程命令执行漏洞

BUGTRAQ ID: 58450 RubyGems fastreader是基于终端的订阅器。 fastreader在entrycontroller.rb的实现上存在远程命令执行漏洞，攻击者可利用此漏洞在受影响应用上下文中执行任意代码。 0 rubygems fastreader 厂商补丁： rubygems -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://rubygems.org/gems/minimagick...

fastreader Gem for Ruby URI Handling Arbitrary Command Injection

fastreader Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands...

Ruby Gem Fastreader 1.0.8 Command Execution Vulnerability

Ruby Gem Fastreader version 1.0.8 suffers from a remote command execution vulnerability due to a lack of user input sanitization. Ruby gem fastreader-1.0.8 remote code exec 3/6/2013 https://rubygems.org/gems/fastreader if the url contains any ; characters code will be executed as the user when a...

Ruby Gem Fastreader 1.0.8 Command Execution

Ruby gem fastreader-1.0.8 remote code exec 3/6/2013 https://rubygems.org/gems/fastreader if the url contains any ; characters code will be executed as the user when a web browser is launched. for example if fastreader is fed http://www.g;id;.com id will be executed...

RubyGems fastreader - entry_controller.rb Remote Command Execution

RubyGems fastreader - entrycontroller.rb Remote Command Execution source: https://www.securityfocus.com/bid/58450/info fastreader is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to...

RubyGems fastreader - 'entry_controller.rb' Remote Command Execution

source: https://www.securityfocus.com/bid/58450/info fastreader is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary commands in the context of the affected...