← Back

Mark Evans

mark_evans

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Fog Dragonfly
fog-dragonfly
1 CVE
Dragonfly Gem
dragonfly_gem
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2013-1756
1Mark Evans
1Dragonfly Gem
May 6, 2026
Jun 9, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
The Dragonfly gem 0.7 before 0.8.6 and 0.9.x before 0.9.13 for Ruby, when used with Ruby on Rails, allows remote attackers to execute arbitrary code via a crafted request.
CVE-2013-5671
1Mark Evans
1Fog Dragonfly
May 6, 2026
May 12, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors.