CVE-2015-10096
CVE-2015-10096 affects Zarthus IRC Twitter Announcer Bot up to version 1.1.0. The issue is a command injection in the function get_tweets (file lib/twitterbot/plugins/twitter_announcer.rb) caused by manipulation of the tweet argument. It can be triggered remotely; attack complexity is described a...