EUVD-2022-3027

Malicious code in bioql PyPI...

open-uri-cached Gem for Ruby Unsafe Temporary File Creation Enables Code Execution

The open-uri-cached rubygem allows local users to execute arbitrary Ruby code by creating a directory under /tmp containing "openuri-" followed by a crafted UID, and putting Ruby code in said directory once a metafile is created...

GHSA-7M2W-9GW7-C3XP open-uri-cached Gem for Ruby Unsafe Temporary File Creation Enables Code Execution

The open-uri-cached rubygem allows local users to execute arbitrary Ruby code by creating a directory under /tmp containing "openuri-" followed by a crafted UID, and putting Ruby code in said directory once a metafile is created...

Code injection

The open-uri-cached rubygem allows local users to execute arbitrary Ruby code by creating a directory under /tmp containing "openuri-" followed by a crafted UID, and putting Ruby code in said directory once a meta file is created...

CVE-2015-3649

The open-uri-cached rubygem allows local users to execute arbitrary Ruby code by creating a directory under /tmp containing "openuri-" followed by a crafted UID, and putting Ruby code in said directory once a meta file is created...

CVE-2015-3649

The CVE-2015-3649 entry concerns the Ruby gem open-uri-cached. Affected component: open-uri-cached Ruby gem; root cause: insecure/predictable temporary file handling in /tmp, where a directory named with openuri- and a meta/marker file is created, allowing a local attacker to place Ruby code and ...

CVE-2015-3649

The open-uri-cached rubygem allows local users to execute arbitrary Ruby code by creating a directory under /tmp containing "openuri-" followed by a crafted UID, and putting Ruby code in said directory once a meta file is created...

open-uri-cached Gem for Ruby Temporary File Creation Elevation of Privilege Vulnerability

open-uri-cached Gem for Ruby is a Ruby-based application. open-uri-cached Gem for Ruby insecurely creates temporary files when using YAML, allowing local attackers to exploit vulnerabilities for elevated privileges...

open-uri-cached Gem for Ruby Unsafe Temporary File Creation Local Privilege Escalation

open-uri-cached Gem for Ruby contains a flaw that is due to the program creating temporary files in a predictable, unsafe manner when using YAML. This may allow a local attacker to gain elevated privileges...

Oracle Forms and Reports 11.1 - Remote Exploit

No description provided by source. !/usr/bin/env ruby Exploit Title: Oracle Reports 11.1 About: Automated exploit for CVE-2012-3153/CVE-2012-3152 Google Dork: inurl:/reports/rwservlet/ Date: 01/28/2014 Exploit Author: Mekanismen [email protected] Credits to: @misssudo for initial disclosure...

CVE-2004-0760

Mozilla allows remote attackers to cause Mozilla to open a URI as a different MIME type than expected via a null character %00 in an FTP URI...

Tabnabbing when opening URI with menu "Open URI in a new tab"

More info at https://www.passbolt.com/incidents/20190807multiplevulnerabilities...