Description
An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.
Remediation
References
Related Vulnerabilities
WordPress Plugin Login No Captcha reCAPTCHA Security Bypass (1.6.11)
WordPress Plugin The Events Calendar Unspecified Vulnerability (4.0.4)
MySQL CVE-2018-2810 Vulnerability (CVE-2018-2810)
WordPress Plugin Include Me Remote Code Execution (1.2.1)
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3167)