VYPR

Sounder

by Adam Zaninovich

gem: sounder

CVEs (2)

  • CVE-2026-28092HigMar 5, 2026
    risk 0.53cvss 8.1epss 0.00

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Sounder sounder allows PHP Local File Inclusion.This issue affects Sounder: from n/a through <= 1.3.11.

  • CVE-2013-5647Aug 29, 2013
    risk 0.00cvss epss 0.02

    lib/sounder/sound.rb in the sounder gem 1.0.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a filename.