Описание
rgpg Code Injection vulnerability
The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.
Пакеты
Наименование
rgpg
rubygems
Затронутые версииВерсия исправления
< 0.2.3
0.2.3
Связанные уязвимости
nvd
больше 12 лет назад
The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.