Vulnerabilities > Uplawski > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-27 | CVE-2013-2090 | OS Command Injection vulnerability in Uplawski Creme Fraiche The set_meta_data function in lib/cremefraiche.rb in the Creme Fraiche gem before 0.6.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the file name of an email attachment. | 9.3 |