Filtered by vendor Echor Project
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2014-1834 | 1 Echor Project | 1 Echor | 2018-02-14 | 4.6 MEDIUM | 7.8 HIGH |
The perform_request function in /lib/echor/backplane.rb in echor 0.1.6 Ruby Gem allows local users to inject arbitrary code by adding a semi-colon in their username or password. | |||||
CVE-2014-1835 | 1 Echor Project | 1 Echor | 2018-02-14 | 2.1 LOW | 7.8 HIGH |
The perform_request function in /lib/echor/backplane.rb in echor 0.1.6 Ruby Gem allows local users to steal the login credentials by watching the process table. |