CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Lawn-Login Project: >> Lawn-Login Security Vulnerabilities

CVE-2014-5000

The login function in lib/lawn.rb in the lawn-login gem 0.0.7 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process.

CVSS Score

7.8

EPSS Score

0.001

Published

2018-01-10

Page 1

Vulnerabilities

Vulnerable Software

Lawn-Login Project: >> Lawn-Login Security Vulnerabilities

Products

Pricing

Contact Us