Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-0306

Malware in sbrugna...

7.5CVSS6.1AI score0.02214EPSS
Exploits0References16
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.44 views

Ruby on Rails vulnerable to code injection

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

7.5CVSS6.9AI score0.02214EPSS
Exploits0References10Affected Software1
RubySec
RubySec
added 2017/10/24 12:0 a.m.21 views

High severity vulnerability that affects rails

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

7.5CVSS7.4AI score0.02883EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/08/21 12:0 a.m.45 views

GLSA-200608-20 : Ruby on Rails: Several vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200608-20 Ruby on Rails: Several vulnerabilities The Ruby on Rails developers have corrected some weaknesses in actioncontroller/, relative to the handling of the user input and the LOADPATH variable. A remote attacker could injec...

7.5CVSS5.8AI score0.02883EPSS
Exploits0References5
OSV
OSV
added 2006/08/14 9:4 p.m.8 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

6.9AI score
Exploits0References10
Cvelist
Cvelist
added 2006/08/14 9:0 p.m.25 views

CVE-2006-4111

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

6.8AI score0.02214EPSS
Exploits0References9
Gentoo Linux
Gentoo Linux
added 2006/08/14 12:0 a.m.43 views

Ruby on Rails: Several vulnerabilities

Background Ruby on Rails is an open-source web framework. Description The Ruby on Rails developers have corrected some weaknesses in actioncontroller/, relative to the handling of the user input and the LOADPATH variable. A remote attacker could inject arbitrary entries into the LOADPATH variable...

7.5CVSS6.4AI score0.02883EPSS
Exploits0
Rows per page
Query Builder