OSVDB-76011 (spree): Spree Search ProductScope Class search[send][] Parameter Arbitrary Command Execution

October 5th, 2011

ADVISORIES

OSVDB-76011
Vendor Advisory

GEM

PATCHED VERSIONS

>= 0.60.2

DESCRIPTION

The ProductScope class fails to properly sanitize user-supplied input via the ‘search[send][]’ parameter resulting in arbitrary command execution. With a specially crafted request, a remote attacker can potentially cause arbitrary command execution.

https://web.archive.org/web/20121124215359/https://spreecommerce.com/blog/remote-command-product-group

RubySec

OSVDB-76011 (spree): Spree Search ProductScope Class search[send][] Parameter Arbitrary Command Execution

ADVISORIES

GEM

PATCHED VERSIONS

DESCRIPTION

RELATED

Recent Advisories