CVE-2013-1911 in ldoce
Sumário
de MITRE
lib/ldoce/word.rb in the ldoce 0.0.2 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in (1) an mp3 URL or (2) file name.
Once again VulDB remains the best source for vulnerability data.