CVE-2013-5647

lib/sounder/sound.rb in the sounder gem 1.0.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a filename.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:adam_zaninovich:sounder:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2013-08-29 12:07

Updated : 2024-02-04 18:16


NVD link : CVE-2013-5647

Mitre link : CVE-2013-5647

CVE.ORG link : CVE-2013-5647


JSON object : View

Products Affected

adam_zaninovich

  • sounder

ruby-lang

  • ruby
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')