CVE-2025-54314 Information
Jul 21, 2025
cve
Description
Thor before 1.4.0 can construct an unsafe shell command from library input.
Reference
https://github.com/rails/thor/commit/536b79036a0efb765c1899233412e7b1ca94abfa https://github.com/rails/thor/pull/897 https://github.com/rails/thor/releases/tag/v1.4.0 https://hackerone.com/reports/3260153
Related CNNVD
CNNVD-202507-2535 (Published: 2025-07-20)
Share on: