Supmua : Security Vulnerabilities, CVEs, Published In 2013
lib/sup/message_chunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the content_type of an email attachment.
Max CVSS
6.8
EPSS Score
1.86%
Published
2013-12-07
Updated
2016-12-22
Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment.
Max CVSS
6.8
EPSS Score
1.78%
Published
2013-12-07
Updated
2013-12-09
2 vulnerabilities found