CVE-2013-6421 in sprout信息

摘要

由 VulDB • 2026-06-02

sprout gem 0.7.246 for Ruby 中 archive_unpacker.rb 的 unpack_zip 函数允许上下文相关的攻击者通过在 (1) 文件名或 (2) 路径中使用 shell 元字符执行任意命令。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!