3 matches found
CVE-2013-1801
Technical details for CVE-2013-1801 are not publicly available in the provided documents. No vendor/product/version specifics or remediation are disclosed here. Monitor for updates from official sources to obtain concrete details and fixes.
CVE-2024-22049
CVE-2024-22049 affects the Ruby library ruby-httparty (pre-0.21.0) and allows a remote, unauthenticated attacker to tamper multipart/form-data uploads by supplying a crafted filename parameter, resulting in attacker-controlled filenames being written. This is described as an assumed-immutable web...
CVE-2025-68696
CVE-2025-68696 affects the httparty gem (versions ≤ 0.23.2). The vulnerability is SSRF that can lead to leakage of API keys and allow third parties to issue requests to internal servers. Details across connected sources confirm the affected component (httparty), the root cause (SSRF in SSRF-prone...