Vulnerabilities > Dragonfly Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-02	CVE-2021-33473	Argument Injection or Modification vulnerability in Dragonfly Project Dragonfly 1.3.0 An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verify_url option is disabled. network low complexity dragonfly-project CWE-88 critical	9.1
2021-05-29	CVE-2021-33564	Argument Injection or Modification vulnerability in Dragonfly Project Dragonfly An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write to arbitrary files via a crafted URL when the verify_url option is disabled. network low complexity dragonfly-project CWE-88 critical	9.8

Vulnerabilities > Dragonfly Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dragonfly Project"}]}