GHSA-f489-655r-x6gr, CVE-2017-2096
gem/smalruby
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
All versions before 0.1.11
Upgrade to version 0.1.11 or above.
2023-01-27
source |