Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:1 a.m.5 views

CVE-2023-28102

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

9.6CVSS7.6AI score0.02546EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/03/14 8:37 p.m.34 views

discordrb OS Command Injection vulnerability

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

9.6CVSS7.9AI score0.02546EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2023/03/27 10:15 p.m.32 views

CVE-2023-28102

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

9.6CVSS9.1AI score0.02546EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/03/27 9:23 p.m.6 views

CVE-2023-28102 Command injection in discordrb

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

8.3CVSS9.7AI score0.02546EPSS
Exploits1References2
OSV
OSV
added 2023/03/27 9:23 p.m.25 views

CVE-2023-28102 Command injection in discordrb

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

8.3CVSS9.5AI score0.02546EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/03/27 9:23 p.m.38 views

CVE-2023-28102 Command injection in discordrb

discordrb is an implementation of the Discord API using Ruby. In discordrb before commit 91e13043ffa the encoder.rb file unsafely constructs a shell string using the file parameter, which can potentially leave clients of discordrb vulnerable to command injection. The library is not directly...

8.3CVSS9.9AI score0.02546EPSS
Exploits1References2
RubySec
RubySec
added 2023/03/27 12:0 a.m.18 views

GHSL-2022-094: Remote Code Execution in discordrb

The encodefile method may lead to remote code execution RCE if invoked with untrusted user-controlled data...

9.6CVSS7.7AI score0.02546EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder