RSS   Vulnerabilities for 'Colorscore'   RSS

2016-01-08
 
CVE-2015-7541

 

 
The initialize method in the Histogram class in lib/colorscore/histogram.rb in the colorscore gem before 0.0.5 for Ruby allows context-dependent attackers to execute arbitrary code via shell metacharacters in the (1) image_path, (2) colors, or (3) depth variable.

 


Copyright 2024, cxsecurity.com

 

Back to Top