pkg:gem/dragonfly
Type
gem
Name
dragonfly
Known advisories, vulnerabilities and fixes for dragonfly package.
- Repository
- https://rubygems.org/gems/dragonfly
Critical
2
High
2
None
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 1.0.7 | RUBYSEC:DRAGONFLY-110439 | Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution |
2014-08-25T00:00:00
(10 years ago) |
|||
Fixed | >= 1.0.7 | RUBYSEC:DRAGONFLY-110439 | Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution |
2014-08-25T00:00:00
(10 years ago) |
|||
Affected | < 0.9.13 = 0.7.0 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756 | Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
Fixed | >= 0.9.13 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756 | Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
Unaffected | < 0.7.0 |
CVE-2013-1756
|
RUBYSEC:DRAGONFLY-2013-1756 | Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution | high |
2013-02-19T00:00:00
(11 years ago) |
|
Affected | < 0.8.4 |
CVE-2013-5671
|
RUBYSEC:DRAGONFLY-2013-5671 | fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution | high |
2013-09-03T00:00:00
(11 years ago) |
|
Fixed | >= 0.8.4 |
CVE-2013-5671
|
RUBYSEC:DRAGONFLY-2013-5671 | fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution | high |
2013-09-03T00:00:00
(11 years ago) |
|
Affected | < 1.4.0 |
CVE-2021-33473
|
RUBYSEC:DRAGONFLY-2021-33473 | Arbitrary file write in dragonfly | critical |
2022-06-03T00:00:00
(2 years ago) |
|
Fixed | >= 1.4.0 |
CVE-2021-33473
|
RUBYSEC:DRAGONFLY-2021-33473 | Arbitrary file write in dragonfly | critical |
2022-06-03T00:00:00
(2 years ago) |
|
Affected | < 1.4.0 |
CVE-2021-33564
|
RUBYSEC:DRAGONFLY-2021-33564 | Remote code execution in Dragonfly | critical |
2021-06-02T00:00:00
(3 years ago) |
|
Fixed | >= 1.4.0 |
CVE-2021-33564
|
RUBYSEC:DRAGONFLY-2021-33564 | Remote code execution in Dragonfly | critical |
2021-06-02T00:00:00
(3 years ago) |
|
Affected | < 0.9.6 | RUBYSEC:DRAGONFLY-97854 | Dragonfly Gem for Ruby on Windows Shell Escaping Weakness |
2011-09-01T00:00:00
(13 years ago) |
|||
Fixed | >= 0.9.6 | RUBYSEC:DRAGONFLY-97854 | Dragonfly Gem for Ruby on Windows Shell Escaping Weakness |
2011-09-01T00:00:00
(13 years ago) |