VYPR

RubyGems package

cocaine

pkg:gem/cocaine

Vulnerabilities (1)

  • CVE-2013-4457Nov 2, 2013
    affected >= 0.4.0, < 0.5.3fixed 0.5.3

    The Cocaine gem 0.4.0 through 0.5.2 for Ruby allows context-dependent attackers to execute arbitrary commands via a crafted has object, related to recursive variable interpolation.