RSS   Vulnerabilities for 'Ldoce'   RSS

2013-04-02
 
CVE-2013-1911

CWE-20
 

 
lib/ldoce/word.rb in the ldoce 0.0.2 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in (1) an mp3 URL or (2) file name.

 


Copyright 2024, cxsecurity.com

 

Back to Top