CVEs (1)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Bibtex Ruby Project 1Bibtex Ruby Nov 21, 2024 Jan 22, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open. |