Vulnerability Database
Blog
About
GHSA-m44r-gv6q-9j9r
Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-m44r-gv6q-9j9r/GHSA-m44r-gv6q-9j9r.json
Aliases
CVE-2015-2784
Published
2022-05-24T17:06:56Z
Modified
2023-01-31T02:38:18.912695Z
Details
The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input.
References
https://nvd.nist.gov/vuln/detail/CVE-2015-2784
https://github.com/rsantamaria/papercrop/commit/b4ecd95debaf0a8712bd1d34def83f41fc6b3579
https://github.com/rsantamaria/papercrop
https://github.com/rsantamaria/papercrop/blob/master/CHANGELOG.md
Affected packages
RubyGems
/
papercrop
papercrop
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Fixed
0.3.0
Affected versions
0.*
0.0.2
0.0.5
0.0.7
0.1.0
0.1.1
0.2.0
GHSA-m44r-gv6q-9j9r - OSV