RubyGems - bundler-audit - Versions diffs - 0.4.0 → 0.5.0 - Mend

bundler-audit 0.4.0 → 0.5.0

Files changed (313) hide show

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-110439.yml ADDED

@@ -0,0 +1,13 @@
+---
+gem: dragonfly
+osvdb: 110439
+url: http://osvdb.org/show/osvdb/110439
+title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
+date: 2014-08-25
+description: |
+  Dragonfly Gem for Ruby contains a flaw in Uploading & Processing that is due
+  to the gem failing to restrict arbitrary commands to imagemagicks convert.
+  This may allow a remote attacker to gain read/write access to the filesystem
+  and execute arbitrary commands.
+patched_versions:
+  - ">= 1.0.7"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml CHANGED

@@ -1,19 +1,16 @@
----
+---
 gem: dragonfly
 cve: 2013-1756
 osvdb: 90647
-url: http://www.osvdb.com/show/osvdb/90647
-title: Dragonfly Gem Remote Code Execution
+url: http://www.osvdb.org/show/osvdb/90647
+title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
 date: 2013-02-19
 description: |
-  The Dragonfly gem contains a flaw that allows an attacker to run arbitrary code
-  on a host machine using carefully crafted requests.
-cvss_v2:
-patched_versions:
+  Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
+  of a specially crafted request. This may allow a remote attacker to execute
+  arbitrary code.
+cvss_v2: 7.5
+patched_versions:
   - ">= 0.9.13"
 unaffected_versions:
   - "< 0.7.0"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-96798.yml ADDED

@@ -0,0 +1,14 @@
+---
+gem: dragonfly
+cve: 2013-5671
+osvdb: 96798
+url: http://osvdb.org/show/osvdb/96798
+title: fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution
+date: 2013-09-03
+description: |
+  fog-dragonfly Gem for Ruby contains a flaw that is due to the program
+  failing to properly sanitize input passed via the imagemagickutils.rb script.
+  This may allow a remote attacker to execute arbitrary commands.
+cvss_v2: 7.5
+patched_versions:
+  - ">= 0.8.4"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-97854.yml ADDED

@@ -0,0 +1,12 @@
+---
+gem: dragonfly
+osvdb: 97854
+url: http://osvdb.org/show/osvdb/97854
+title: Dragonfly Gem for Ruby on Windows Shell Escaping Weakness
+date: 2011-09-01
+description: |
+  Dragonfly Gem for Ruby contains a flaw that is due to the program failing to
+  properly escape a shell that contains injected characters. This may allow a
+  context-dependent attacker to potentially execute arbitrary commands.
+patched_versions:
+  - ">= 0.9.6"

data/data/ruby-advisory-db/gems/echor/OSVDB-102129.yml CHANGED

@@ -1,11 +1,12 @@
 ---
 gem: echor
+cve: 2014-1834
 osvdb: 102129
 url: http://osvdb.org/show/osvdb/102129
-title: Echor Gem for Ruby contains a flaw
+title: echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command Execution
 date: 2014-01-14
-description: Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request function that is triggered when
-  a semi-colon (;) is injected into a username or password. This may allow a context-dependent attacker to inject
-  arbitrary commands if the gem is used in a rails application.
-cvss_v2:
-patched_versions:
+description: |
+  Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request
+  function that is triggered when a semi-colon (;) is injected into a username
+  or password. This may allow a context-dependent attacker to inject arbitrary
+  commands if the gem is used in a rails application.

data/data/ruby-advisory-db/gems/echor/OSVDB-102130.yml CHANGED

@@ -1,10 +1,11 @@
 ---
 gem: echor
+cve: 2014-1835
 osvdb: 102130
 url: http://osvdb.org/show/osvdb/102130
-title: Echor Gem for Ruby contains a flaw
+title: echor Gem for Ruby Process Listing Local Plaintext Credential Disclosure
 date: 2014-01-14
-description: Echor Gem for Ruby contains a flaw that is due to the program exposing credential information in the
-  system process listing. This may allow a local attacker to gain access to plaintext credential information.
-cvss_v2:
-patched_versions:
+description: |
+  echor Gem for Ruby contains a flaw that is due to the program exposing
+  credential information in the system process listing. This may allow a local
+  attacker to gain access to plaintext credential information.

data/data/ruby-advisory-db/gems/ember-source/CVE-2013-4170.yml ADDED

@@ -0,0 +1,25 @@
+---
+gem: ember-source
+cve: 2013-4170
+url: https://groups.google.com/forum/#!topic/ember-security/dokLVwwxAdM
+title: |
+  Ember.js Potential XSS Exploit When Binding `tagName` to User-Supplied Data
+date: 2013-07-25
+description: |
+  In general, Ember.js escapes or strips any user-supplied content
+  before inserting it in strings that will be sent to innerHTML.
+  However, the `tagName` property of an `Ember.View` was inserted into
+  such a string without being sanitized. This means that if an
+  application assigns a view's `tagName` to user-supplied data, a
+  specially-crafted payload could execute arbitrary JavaScript in the
+  context of the current domain ("XSS").
+  This vulnerability only affects applications that assign or bind
+  user-provided content to `tagName`.
+patched_versions:
+  - ~> 1.0.0.rc1.1
+  - ~> 1.0.0.rc2.1
+  - ~> 1.0.0.rc3.1
+  - ~> 1.0.0.rc4.1
+  - ~> 1.0.0.rc5.1
+  - ">= 1.0.0.rc6.1"

data/data/ruby-advisory-db/gems/ember-source/CVE-2014-0013.yml ADDED

@@ -0,0 +1,33 @@
+---
+gem: ember-source
+cve: 2014-0013
+url: https://groups.google.com/forum/#!topic/ember-security/2kpXXCxISS4
+title: |
+  Ember.js Potential XSS Exploit With User-Supplied Data When Binding
+  Primitive Values
+date: 2014-01-14
+description: |
+  In general, Ember.js escapes or strips any user-supplied content before
+  inserting it in strings that will be sent to innerHTML.  However, we have
+  identified a vulnerability that could lead to unescaped content being inserted
+  into the innerHTML string without being sanitized.
+  When a primitive value is used as the Handlebars context, that value is not
+  properly escaped.  An example of this would be using the `{{each}}` helper to
+  iterate over an array of user-supplied strings and using `{{this}}` inside the
+  block to display each string.
+  In applications that contain templates whose context is a primitive value and
+  use the `{{this}}` keyword to display that value, a specially-crafted payload
+  could execute arbitrary JavaScript in the context of the current domain
+  ("XSS").
+  This vulnerability affects applications that contain templates whose context is
+  set to a user-supplied primitive value (such as a string or number) and also
+  contain the `{{this}}` special Handlebars variable to display the value.
+patched_versions:
+  - ~> 1.0.1
+  - ~> 1.1.3
+  - ~> 1.2.1
+  - ~> 1.3.1
+  - ">= 1.4.0.beta.2"

data/data/ruby-advisory-db/gems/ember-source/CVE-2014-0014.yml ADDED

@@ -0,0 +1,30 @@
+---
+gem: ember-source
+cve: 2014-0014
+url: https://groups.google.com/forum/#!topic/ember-security/PSE4RzTi6l4
+title: |
+  Ember.js Potential XSS Exploit With User-Supplied Data When Using {{group}}
+  Helper
+date: 2014-01-14
+description: |
+  In general, Ember.js escapes or strips any user-supplied content before
+  inserting it in strings that will be sent to innerHTML.  However, we have
+  identified a vulnerability that could lead to unescaped content being inserted
+  into the innerHTML string without being sanitized.
+  When using the `{{group}}` helper, user supplied content in the template was not
+  being sanitized. Though the vulnerability exists in Ember.js proper, it is only
+  exposed via the use of an experimental plugin.
+  In applications that use the `{{group}}` helper, a specially-crafted payload
+  could execute arbitrary JavaScript in the context of the current domain
+  ("XSS").
+  This vulnerability only affects applications that use the `{{group}}` helper
+  to display user-provided content.
+patched_versions:
+  - ~> 1.0.1
+  - ~> 1.1.3
+  - ~> 1.2.1
+  - ~> 1.3.1
+  - ">= 1.4.0.beta.2"

data/data/ruby-advisory-db/gems/ember-source/CVE-2014-0046.yml ADDED

@@ -0,0 +1,26 @@
+---
+gem: ember-source
+cve: 2014-0046
+url: https://groups.google.com/forum/#!topic/ember-security/1h6FRgr8lXQ
+title: Ember.js XSS Vulnerability With {{link-to}} Helper in Non-block Form
+date: 2014-02-07
+description: |
+  In general, Ember.js escapes or strips any user-supplied content before
+  inserting it in strings that will be sent to innerHTML.  However, a change made
+  to the implementation of the {{link-to}} helper means that any user-supplied
+  data bound to the {{link-to}} helper's title attribute will not be escaped
+  correctly.
+  In applications that use the {{link-to}} helper in non-block form and bind
+  the title attribute to user-supplied content, a specially-crafted payload
+  could execute arbitrary JavaScript in the context of the current domain
+  ("XSS").
+  All users running an affected release and binding user-supplied data to the
+  {{link-to}} helper's title attribute should either upgrade or use one of the
+  workarounds immediately.
+patched_versions:
+  - ~> 1.2.2
+  - ">= 1.3.2"
+unaffected_versions:
+  - "< 1.2.0"

data/data/ruby-advisory-db/gems/ember-source/CVE-2015-1866.yml ADDED

@@ -0,0 +1,26 @@
+---
+gem: ember-source
+cve: 2015-1866
+url: https://groups.google.com/forum/#!topic/ember-security/nbntfs2EbRU
+title: Ember.js XSS Vulnerability With {{view "select"}} Options
+date: 2015-04-14
+description: |
+  In general, Ember.js escapes or strips any user-supplied content before
+  inserting it in strings that will be sent to innerHTML.  However, a
+  change made to the implementation of the select view means that any
+  user-supplied data bound to an option's label will not be escaped
+  correctly.
+  In applications that use Ember's select view and pass user-supplied
+  content to the label, a specially-crafted payload could execute
+  arbitrary JavaScript in the context of the current domain ("XSS").
+  All users running an affected release and binding user-supplied data to
+  the select options should either upgrade or use one of the workarounds
+  immediately.
+patched_versions:
+  - ~> 1.10.1
+  - ~> 1.11.2
+  - ">= 1.12.0"
+unaffected_versions:
+  - "< 1.10.0"

data/data/ruby-advisory-db/gems/ember-source/CVE-2015-7565.yml ADDED

@@ -0,0 +1,30 @@
+---
+gem: ember-source
+cve: 2015-7565
+url: https://groups.google.com/forum/#!topic/ember-security/OfyQkoSuppY
+title: Ember.js XSS Vulnerability with User-Supplied JSON
+date: 2016-01-14
+description: |
+  By default, Ember will escape any values in Handlebars templates that
+  use double curlies (`{{value}}`). Developers can specifically opt out of
+  this escaping behavior by passing an instance of `SafeString` rather
+  than a raw string, which tells Ember that it should not escape the
+  string because the developer has taken responsibility for escapement.
+  It is possible for an attacker to create a specially-crafted payload
+  that causes a non-sanitized string to be treated as a `SafeString`, and
+  thus bypass Ember's normal escaping behavior. This could allow an
+  attacker to execute arbitrary JavaScript in the context of the current
+  domain ("XSS").
+  All users running an affected release should either upgrade or use of
+  the workarounds immediately.
+patched_versions:
+  - ~> 1.11.4
+  - ~> 1.12.2
+  - ~> 1.13.12
+  - ~> 2.0.3
+  - ~> 2.1.2
+  - ">= 2.2.1"
+unaffected_versions:
+  - "< 1.8.0"

data/data/ruby-advisory-db/gems/fastreader/OSVDB-91232.yml CHANGED

@@ -1,12 +1,13 @@
 ---
 gem: fastreader
-cve: 2013-1876
+cve: 2013-2615
 osvdb: 91232
 url: http://osvdb.org/show/osvdb/91232
 title: fastreader Gem for Ruby URI Handling Arbitrary Command Injection
 date: 2013-03-13
-description: fastreader Gem for Ruby contains a flaw that is triggered during the handling of specially crafted input passed via a URL that contains a ';' character. This may allow a context-dependent attacker to potentially execute arbitrary commands.
+description: |
+  fastreader Gem for Ruby contains a flaw that is triggered during the handling
+  of specially crafted input passed via a URL that contains a ';' character.
+  This may allow a context-dependent attacker to potentially execute arbitrary
+  commands.
 cvss_v2: 9.3

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-101445.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: fat_free_crm
+osvdb: 101445
+cve: 2013-7222
+url: http://osvdb.org/show/osvdb/101445
+title: Fat Free CRM Gem for Ruby lack of support for cycling the Rails
+  session secret
+date: 2013-12-24
+description: |
+  Fat Free CRM contains a flaw that is due to the application defining a static
+  security session token in config/initialiers/secret_token.rb. If a remote
+  attacker has explicit knowledge of this token, they can potentially execute
+  arbitrary code.
+cvss_v2: 5.0
+patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-101446.yml ADDED

@@ -0,0 +1,19 @@
+---
+gem: fat_free_crm
+osvdb: 101446
+cve: 2013-7223
+url: http://osvdb.org/show/osvdb/101446
+title: Fat Free CRM Gem for Ruby contains multiple cross-site request forgery
+  (CSRF) vulnerabilities
+date: 2013-12-24
+description: |
+  Fat Free CRM contains a flaw as the application is missing the protect_from_forgery
+  statement, therefore HTTP requests to app/controllers/application_controller.rb
+  do not require multiple steps, explicit confirmation, or a unique token when
+  performing certain sensitive actions. By tricking a user into following a specially
+  crafted link, a context-dependent attacker can perform a Cross-Site Request Forgery
+  (CSRF / XSRF) attack causing the victim to perform unspecified actions.
+cvss_v2: 6.8
+patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-101447.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: fat_free_crm
+osvdb: 101447
+cve: 2013-7224
+url: http://osvdb.org/show/osvdb/101447
+title: Fat Free CRM Gem for Ruby allows remote attackers to obtain
+  sensitive informations
+date: 2013-12-24
+description: |
+  Fat Free CRM contains a flaw in user controllers that is triggered as JSON
+  requests are rendered with a full JSON object. This may allow a remote
+  attacker to gain access to potentially sensitive information e.g. other
+  users password hashes.
+cvss_v2: 5.0
+patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-101448.yml ADDED

@@ -0,0 +1,19 @@
+---
+gem: fat_free_crm
+osvdb: 101448
+cve: 2013-7225
+url: http://osvdb.org/show/osvdb/101448
+title: Fat Free CRM Gem for Ruby allows remote attackers to inject or
+  manipulate SQL queries
+date: 2013-12-24
+description: |
+  Fat Free CRM contains a flaw that may allow carrying out an SQL injection
+  attack. The issue is due to the app/controllers/home_controller.rb script
+  not properly sanitizing user-supplied input to the 'state' parameter or
+  input passed via comments and emails. This may allow a remote attacker to
+  inject or manipulate SQL queries in the back-end database, allowing for
+  the manipulation or disclosure of arbitrary data.
+cvss_v2: 6.5
+patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-101700.yml ADDED

@@ -0,0 +1,16 @@
+---
+gem: fat_free_crm
+osvdb: 101700
+cve: 2013-7249
+url: http://osvdb.org/show/osvdb/101700
+title: Fat Free CRM Gem for Ruby allows remote attackers to obtain
+  sensitive informations
+date: 2013-12-24
+description: |
+  Fat Free CRM contains a flaw that is triggered when the attacker sends a
+  direct request for XML data. This may allow a remote attacker to gain
+  access to potentially sensitive information.
+cvss_v2: 5.0
+patched_versions:
+  - ">= 0.13.0"
+  - "~> 0.12.1"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-110420.yml ADDED

@@ -0,0 +1,19 @@
+---
+gem: fat_free_crm
+osvdb: 110420
+cve: 2014-5441
+url: http://osvdb.org/show/osvdb/110420
+title: Fat Free CRM Gem contains a javascript cross-site scripting (XSS)
+  vulnerability
+date: 2014-08-22
+description: |
+  Fat Free CRM Gem contains a javascript cross-site scripting (XSS)
+  vulnerability. When a user is created/updated using a specifically
+  crafted username, first name or last name, it is possible for
+  arbitrary javascript to be executed on all Fat Free CRM pages.
+  This code would be executed for all logged in users.
+cvss_v2: 4.3
+unaffected_versions:
+  - "<= 0.11.0"
+patched_versions:
+  - ">= 0.13.3"

data/data/ruby-advisory-db/gems/fat_free_crm/OSVDB-118465.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: fat_free_crm
+osvdb: 118465
+cve: 2015-1585
+url: http://osvdb.org/show/osvdb/118465
+title: Fat Free CRM Gem being vulnerable to CSRF-type attacks
+date: 2015-02-16
+description: |
+  Fat Free CRM contains a flaw as HTTP requests to /admin/users do not require
+  multiple steps, explicit confirmation, or a unique token when performing
+  certain sensitive actions. By tricking a user into following a specially
+  crafted link, a context-dependent attacker can perform a Cross-Site Request
+  Forgery (CSRF / XSRF) attack causing the victim to creating administrative
+  users.
+cvss_v2: 6.8
+patched_versions:
+  - ">= 0.13.6"

data/data/ruby-advisory-db/gems/features/OSVDB-96975.yml ADDED

@@ -0,0 +1,8 @@
+---
+gem: features
+cve: 2013-4318
+osvdb: 96975
+url: http://osvdb.org/show/osvdb/96975
+title: Features Gem for Ruby /tmp/out.html Local XSS
+date: 2013-09-01
+description: Features Gem for Ruby contains a flaw that allows a local cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain input upon submission to /tmp/out.html. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.