Description
lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors.
References (5)
Core 5
Core References
Exploit mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2013/Sep/18
Exploit mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2013/q3/528
Exploit x_refsource_misc
http://www.vapid.dhs.org/advisories/fog-dragonfly-0.8.2-cmd-inj.html
Exploit mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2013/q3/526
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/96798
Scores
EPSS
0.0216
EPSS Percentile
84.5%
Details
Status
published
Products (3)
mark_evans/fog-dragonfly
0.8.2
rubygems/dragonfly
0 - 1.0.0RubyGems
rubygems/fog-dragonfly
0RubyGems
Published
May 12, 2014
Tracked Since
Feb 18, 2026