mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 03:02:30 +00:00
688 B
688 B
CVE-2013-2105
Description
The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.
POC
Reference
- http://vapid.dhs.org/advisories/show_in_browser.html
- http://www.openwall.com/lists/oss-security/2013/05/18/4
Github
No PoCs found on GitHub currently.