Vulnerabilities > Documentcloud > Karteek Docsplit > 0.5.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-04-25 | CVE-2013-1933 | OS Command Injection vulnerability in Documentcloud Karteek-Docsplit 0.5.4 The extract_from_ocr function in lib/docsplit/text_extractor.rb in the Karteek Docsplit (karteek-docsplit) gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a PDF filename. | 9.3 |