CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Codders-Dataset Project: Security Vulnerabilities

CVE-2014-4991

(1) lib/dataset/database/mysql.rb and (2) lib/dataset/database/postgresql.rb in the codders-dataset gem 1.3.2.1 for Ruby place credentials on the mysqldump command line, which allows local users to obtain sensitive information by listing the process.

CVSS Score

7.8

EPSS Score

0.001

Published

2018-01-10

Page 1

Vulnerabilities

Vulnerable Software

Codders-Dataset Project: Security Vulnerabilities

Products

Pricing

Contact Us