8 matches found
CVE-2023-27849
rails-routes-to-json v1.0.0 was discovered to contain a remote code execution RCE vulnerability via the childprocess function...
CVE-2023-27849
rails-routes-to-json v1.0.0 was discovered to contain a remote code execution RCE vulnerability via the childprocess function...
Remote code execution
rails-routes-to-json v1.0.0 was discovered to contain a remote code execution RCE vulnerability via the childprocess function...
PT-2023-21374 · Unknown · Rails-Routes-To-Json
Name of the Vulnerable Software and Affected Versions: rails-routes-to-json version 1.0.0 Description: The issue is related to a remote code execution RCE vulnerability via the child process function. Recommendations: For rails-routes-to-json version 1.0.0, consider disabling the child process...
CVE-2023-27849
rails-routes-to-json v1.0.0 was discovered to contain a remote code execution RCE vulnerability via the childprocess function...
npm rails-routes-to-json 命令注入漏洞
npm rails-routes-to-json is a library from the US-based npm. A security vulnerability exists in npm rails-routes-to-json v1.0.0, which stems from the discovery of a remote code execution RCE vulnerability contained via the childprocess function...
CVE-2023-27849
CVE-2023-27849 affects rails-routes-to-json v1.0.0 and is described as a remote code execution (RCE) vulnerability triggered via the child_process function. Public entries consistently indicate network-based exploitation with high impact to confidentiality, integrity, and availability. No specifi...
rubygem-actionpack: directory traversal issue
A directory traversal flaw was found in the way Ruby on Rails handled wildcard segments in routes with implicit rendering. A remote attacker could use this flaw to retrieve arbitrary local files accessible to a Ruby on Rails application using the aforementioned routes via a specially crafted...