pkg:gem/dragonfly
Type
gem
Name
dragonfly
Known advisories, vulnerabilities and fixes for dragonfly package.
- Repository
- https://rubygems.org/gems/dragonfly
Critical
2
High
2
None
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 1.0.7 |
 RUBYSEC:DRAGONFLY-110439
|
Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution |
2014-08-25T00:00:00
(10 years ago) |
|||
| Fixed | >= 1.0.7 |
RUBYSEC:DRAGONFLY-110439
|
Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution |
2014-08-25T00:00:00
(10 years ago) |
|||
| Affected | < 0.9.13 = 0.7.0 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756
|
Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
| Fixed | >= 0.9.13 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756
|
Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
| Unaffected | < 0.7.0 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756
|
Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
| Affected | < 0.8.4 |
CVE-2013-5671
|
RUBYSEC:DRAGONFLY-2013-5671
|
fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution | high |
2013-09-03T00:00:00
(11 years ago) |
|
| Fixed | >= 0.8.4 |
CVE-2013-5671
|
RUBYSEC:DRAGONFLY-2013-5671
|
fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution | high |
2013-09-03T00:00:00
(11 years ago) |
|
| Affected | < 1.4.0 |
CVE-2021-33473
|
RUBYSEC:DRAGONFLY-2021-33473
|
Arbitrary file write in dragonfly | critical |
2022-06-03T00:00:00
(2 years ago) |
|
| Fixed | >= 1.4.0 |
CVE-2021-33473
|
RUBYSEC:DRAGONFLY-2021-33473
|
Arbitrary file write in dragonfly | critical |
2022-06-03T00:00:00
(2 years ago) |
|
| Affected | < 1.4.0 |
CVE-2021-33564
|
RUBYSEC:DRAGONFLY-2021-33564
|
Remote code execution in Dragonfly | critical |
2021-06-02T00:00:00
(3 years ago) |
|
| Fixed | >= 1.4.0 |
CVE-2021-33564
|
RUBYSEC:DRAGONFLY-2021-33564
|
Remote code execution in Dragonfly | critical |
2021-06-02T00:00:00
(3 years ago) |
|
| Affected | < 0.9.6 |
RUBYSEC:DRAGONFLY-97854
|
Dragonfly Gem for Ruby on Windows Shell Escaping Weakness |
2011-09-01T00:00:00
(13 years ago) |
|||
| Fixed | >= 0.9.6 |
RUBYSEC:DRAGONFLY-97854
|
Dragonfly Gem for Ruby on Windows Shell Escaping Weakness |
2011-09-01T00:00:00
(13 years ago) |