1.2.1

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-22	CVE-2019-10780	OS Command Injection vulnerability in Bibtex-Ruby Project Bibtex-Ruby BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open. network low complexity bibtex-ruby-project CWE-78 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.