cve/CVE-2013-1933.md at 48a00929accbe24477052d164512463a2824377a

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

The extract_from_ocr function in lib/docsplit/text_extractor.rb in the Karteek Docsplit (karteek-docsplit) gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a PDF filename.

POC

Reference

No PoCs from references.

Github

https://github.com/0xCyberY/CVE-T4PDF
https://github.com/ARPSyndicate/cvemon

723 B Raw Blame History

CVE-2013-1933

Description

POC

Reference

Github

723 B

Raw Blame History