kelredd-pruview gem 0.3.8 for Ruby allows context-dependent malicious users to execute arbitrary commands via shell metacharacters in a filename argument to (1) document.rb, (2) video.rb, or (3) video_image.rb.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kelly_d._redding kelredd-pruview 0.3.8 |