OSVDB-97854

Published almost 9 years ago
Category: Command Injection
Source: GitHub
Severity: Critical

Vulnerability in dragonfly

Dragonfly Gem for Ruby contains a flaw that is due to the program failing to properly escape a shell that contains injected characters. This may allow a context-dependent attacker to potentially execute arbitrary commands.

CVSS Metrics
Access Vector Access Complexity Authentication Confidentiality Impact Integrity Impact Availability Impact
n/a n/a n/a n/a n/a n/a
Patched Versions

>= 0.9.6

Unaffected Versions

n/a

References

n/a