Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0236

Malware in sbrugna...

7.8CVSS7.7AI score0.00522EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2018/07/23 7:50 p.m.29 views

Kcapifony gem for Ruby places database user passwords on the command line

lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the 1 mysqldump, 2 pgdump, 3 mysql, and 4 psql command lines, which allows local users to obtain sensitive information by listing the processes...

7.8CVSS6.9AI score0.00522EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2018/07/23 7:50 p.m.17 views

GHSA-6FCQ-3CM2-J3J5 Kcapifony gem for Ruby places database user passwords on the command line

lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the 1 mysqldump, 2 pgdump, 3 mysql, and 4 psql command lines, which allows local users to obtain sensitive information by listing the processes...

7.8CVSS7.4AI score0.00522EPSS
Exploits1References6
Prion
Prion
added 2018/01/10 6:29 p.m.9 views

Command injection

lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the 1 mysqldump, 2 pgdump, 3 mysql, and 4 psql command lines, which allows local users to obtain sensitive information by listing the processes...

2.1CVSS6.4AI score0.00522EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2018/01/10 6:29 p.m.12 views

CVE-2014-5001

lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the 1 mysqldump, 2 pgdump, 3 mysql, and 4 psql command lines, which allows local users to obtain sensitive information by listing the processes...

7.8CVSS7.4AI score0.00522EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/01/10 6:0 p.m.14 views

CVE-2014-5001

lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the 1 mysqldump, 2 pgdump, 3 mysql, and 4 psql command lines, which allows local users to obtain sensitive information by listing the processes...

7.4AI score0.00522EPSS
Exploits1References3
CVE
CVE
added 2018/01/10 6:0 p.m.84 views

CVE-2014-5001

CVE-2014-5001 affects the Ruby gem kcapifony (version 2.1.6) via the file lib/ksymfony1.rb . The underlying issue is that the program places database user passwords on the command line for the tools mysqldump , pg_dump , mysql , and psql , which allows local users to obtain sensitive information ...

7.8CVSS7.3AI score0.00522EPSS
Exploits1References3Affected Software1
RubySec
RubySec
added 2014/06/30 12:0 a.m.13 views

kcapifony Gem for Ruby /lib/ksymfony1.rb Process List Local Plaintext Password Disclosure

kcapifony Gem for Ruby contains a flaw in /lib/ksymfony1.rb that is triggered as the program displays password information in plaintext in the process list. This may allow a local attacker to gain access to password information...

7.8CVSS6.8AI score0.00522EPSS
Exploits1References1
Rows per page
Query Builder