Описание
Remote code execution in rwiki
The editing form in RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to execute arbitrary Ruby code via unknown attack vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2582
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26668
- https://github.com/advisories/GHSA-wwmf-6p58-6vj2
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rwiki/CVE-2006-2582.yml
- https://web.archive.org/web/20090501134922/http://www2a.biglobe.ne.jp/~seki/ruby/rwiki.html
- http://secunia.com/advisories/20264
- http://www.vupen.com/english/advisories/2006/1949
Пакеты
Наименование
rwiki
rubygems
Затронутые версииВерсия исправления
>= 2.1.0pre1, < 2.1.1
2.1.1
EPSS
Процентиль: 72%
0.00717
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
The editing form in RWiki 2.1.0pre1 through 2.1.0 allows remote attackers to execute arbitrary Ruby code via unknown attack vectors.
EPSS
Процентиль: 72%
0.00717
Низкий