CVE-2021-32837
- EPSS 5.23%
- Published 17.01.2023 22:15:10
- Last modified 21.11.2024 06:07:51
mechanize, a library for automatically interacting with HTTP web servers, contains a regular expression that is vulnerable to regular expression denial of service (ReDoS) prior to version 0.4.6. If a web server responds in a malicious way, then mecha...
CVE-2022-31033
- EPSS 0.44%
- Published 09.06.2022 20:15:08
- Last modified 21.11.2024 07:03:45
The Mechanize library is used for automating interaction with websites. Mechanize automatically stores and sends cookies, follows redirects, and can follow links and submit forms. In versions prior to 2.8.5 the Authorization header is leaked after a ...
CVE-2021-21289
- EPSS 2.5%
- Published 02.02.2021 19:15:14
- Last modified 21.11.2024 05:47:56
Mechanize is an open-source ruby library that makes automated web interaction easy. In Mechanize from version 2.0.0 and before version 2.7.7 there is a command injection vulnerability. Affected versions of mechanize allow for OS commands to be inject...