[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2013-4389":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":38,"duplicate_of":9,"upstream":39,"downstream":40,"duplicates":49,"related":50,"reserved_at":9,"published_at":51,"modified_at":52,"state":53,"summary":54,"references_raw":62,"kevs":95,"epss":96,"epss_history":99,"metrics":353,"affected":358},"CVE-2013-4389","Multiple format string vulnerabilities in log_subscriber.rb files in the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15 allow remote attackers to cause a denial of service via a crafted e-mail address that is improperly handled during construction of a log message.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-134","Use of Externally-Controlled Format String","The product uses a function that accepts a format string as an argument, but the format string originates from an external source.","weakness","Draft","Base","High",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-135","Format String Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-67","String Format Overflow in syslog()",[],[29],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_70D06FB97D172389","Exploit Reference (groups.google.com)","reference","https://groups.google.com/forum/message/raw?msg=ruby-security-ann/yvlR1Vx44c8/elKJkpO2KVgJ","unknown",0.2,false,[],[],[],[41,43,45,47],{"_key":42},"UBUNTU-CVE-2013-4389",{"_key":44},"DSA-2887-1",{"_key":46},"DSA-2888-1",{"_key":48},"RHBA-2015:1100",[],[],"2013-10-17T00:00:00.000Z","2024-08-06T16:45:13.235Z","Modified",{"cisa_kev":36,"cisa_ransomware":36,"cisa_vendor":9,"epss_severity":55,"epss_score":56,"severity":57,"severity_score":58,"severity_version":59,"severity_source":60,"severity_vector":61,"severity_status":53},"low",0.01333,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:N/A:P",[63,71,77,83,87,91],{"url":64,"sources":65,"tags":67},"http://www.debian.org/security/2014/dsa-2887",[66,60],"cve.org",[68,69,70],"Vendor Advisory","X Refsource DEBIAN","Third Party Advisory",{"url":72,"sources":73,"tags":74},"http://lists.opensuse.org/opensuse-updates/2014-01/msg00003.html",[66,60],[68,75,76,70],"X Refsource SUSE","Mailing List",{"url":33,"sources":78,"tags":79},[66,60],[76,80,81,82],"X Refsource MLIST","Broken Link","Exploit",{"url":84,"sources":85,"tags":86},"http://lists.opensuse.org/opensuse-updates/2013-12/msg00094.html",[66,60],[68,75,76,70],{"url":88,"sources":89,"tags":90},"http://lists.opensuse.org/opensuse-updates/2013-12/msg00091.html",[66,60],[68,75,76,70],{"url":92,"sources":93,"tags":94},"http://www.debian.org/security/2014/dsa-2888",[66,60],[68,69,70],[],{"date":97,"score":56,"percentile":98},"2026-06-04",0.80304,[100,103,106,109,112,115,118,120,123,126,129,132,135,137,140,143,146,149,152,155,158,161,164,167,169,172,175,177,180,183,185,187,190,193,195,198,201,204,207,210,213,216,218,221,224,227,230,233,236,238,240,243,246,249,252,255,257,260,262,265,268,271,274,277,279,282,285,288,291,294,297,300,302,304,307,310,313,316,319,321,324,327,330,333,336,339,342,345,347,350],{"date":101,"score":56,"percentile":102},"2025-11-04",0.79319,{"date":104,"score":56,"percentile":105},"2025-11-05",0.79318,{"date":107,"score":56,"percentile":108},"2025-11-06",0.79315,{"date":110,"score":56,"percentile":111},"2025-11-07",0.79329,{"date":113,"score":56,"percentile":114},"2025-11-08",0.79335,{"date":116,"score":56,"percentile":117},"2025-11-09",0.79331,{"date":119,"score":56,"percentile":105},"2025-11-10",{"date":121,"score":56,"percentile":122},"2025-11-11",0.7932,{"date":124,"score":56,"percentile":125},"2025-11-12",0.79337,{"date":127,"score":56,"percentile":128},"2025-11-13",0.79345,{"date":130,"score":56,"percentile":131},"2025-11-14",0.79352,{"date":133,"score":56,"percentile":134},"2025-11-15",0.79351,{"date":136,"score":56,"percentile":131},"2025-11-16",{"date":138,"score":56,"percentile":139},"2025-11-17",0.79347,{"date":141,"score":56,"percentile":142},"2025-11-18",0.78253,{"date":144,"score":56,"percentile":145},"2025-11-19",0.78262,{"date":147,"score":56,"percentile":148},"2025-11-20",0.7827,{"date":150,"score":56,"percentile":151},"2025-11-21",0.7937,{"date":153,"score":56,"percentile":154},"2025-11-22",0.79374,{"date":156,"score":56,"percentile":157},"2025-11-23",0.79365,{"date":159,"score":56,"percentile":160},"2025-11-24",0.79364,{"date":162,"score":56,"percentile":163},"2025-11-25",0.79367,{"date":165,"score":56,"percentile":166},"2025-11-26",0.79368,{"date":168,"score":56,"percentile":151},"2025-11-27",{"date":170,"score":56,"percentile":171},"2025-11-28",0.79363,{"date":173,"score":56,"percentile":174},"2025-11-29",0.79369,{"date":176,"score":56,"percentile":163},"2025-11-30",{"date":178,"score":56,"percentile":179},"2025-12-01",0.79462,{"date":181,"score":56,"percentile":182},"2025-12-02",0.79463,{"date":184,"score":56,"percentile":182},"2025-12-03",{"date":186,"score":56,"percentile":166},"2025-12-04",{"date":188,"score":56,"percentile":189},"2025-12-05",0.79372,{"date":191,"score":56,"percentile":192},"2025-12-06",0.79373,{"date":194,"score":56,"percentile":154},"2025-12-07",{"date":196,"score":56,"percentile":197},"2025-12-08",0.79378,{"date":199,"score":56,"percentile":200},"2025-12-09",0.79396,{"date":202,"score":56,"percentile":203},"2025-12-10",0.79421,{"date":205,"score":56,"percentile":206},"2025-12-11",0.79435,{"date":208,"score":56,"percentile":209},"2025-12-12",0.79454,{"date":211,"score":56,"percentile":212},"2025-12-13",0.79453,{"date":214,"score":56,"percentile":215},"2025-12-14",0.79451,{"date":217,"score":56,"percentile":215},"2025-12-15",{"date":219,"score":56,"percentile":220},"2025-12-16",0.7946,{"date":222,"score":56,"percentile":223},"2025-12-17",0.7947,{"date":225,"score":56,"percentile":226},"2025-12-18",0.79489,{"date":228,"score":56,"percentile":229},"2025-12-19",0.795,{"date":231,"score":56,"percentile":232},"2025-12-20",0.79495,{"date":234,"score":56,"percentile":235},"2025-12-21",0.79487,{"date":237,"score":56,"percentile":235},"2025-12-22",{"date":239,"score":56,"percentile":235},"2025-12-23",{"date":241,"score":56,"percentile":242},"2025-12-24",0.79501,{"date":244,"score":56,"percentile":245},"2025-12-25",0.79522,{"date":247,"score":56,"percentile":248},"2025-12-26",0.79517,{"date":250,"score":56,"percentile":251},"2025-12-27",0.79562,{"date":253,"score":56,"percentile":254},"2025-12-28",0.79506,{"date":256,"score":56,"percentile":242},"2025-12-29",{"date":258,"score":56,"percentile":259},"2025-12-30",0.79508,{"date":261,"score":56,"percentile":245},"2025-12-31",{"date":263,"score":56,"percentile":264},"2026-01-01",0.79616,{"date":266,"score":56,"percentile":267},"2026-01-02",0.79614,{"date":269,"score":56,"percentile":270},"2026-01-03",0.79613,{"date":272,"score":56,"percentile":273},"2026-01-04",0.79516,{"date":275,"score":56,"percentile":276},"2026-01-05",0.79513,{"date":278,"score":56,"percentile":273},"2026-01-06",{"date":280,"score":56,"percentile":281},"2026-01-07",0.79521,{"date":283,"score":56,"percentile":284},"2026-01-08",0.7953,{"date":286,"score":56,"percentile":287},"2026-01-09",0.79532,{"date":289,"score":56,"percentile":290},"2026-01-10",0.79533,{"date":292,"score":56,"percentile":293},"2026-01-11",0.79526,{"date":295,"score":56,"percentile":296},"2026-01-12",0.79512,{"date":298,"score":56,"percentile":299},"2026-01-13",0.79509,{"date":301,"score":56,"percentile":284},"2026-01-14",{"date":303,"score":56,"percentile":290},"2026-01-15",{"date":305,"score":56,"percentile":306},"2026-01-16",0.79541,{"date":308,"score":56,"percentile":309},"2026-01-17",0.7955,{"date":311,"score":56,"percentile":312},"2026-01-18",0.79544,{"date":314,"score":56,"percentile":315},"2026-01-19",0.79536,{"date":317,"score":56,"percentile":318},"2026-01-20",0.79537,{"date":320,"score":56,"percentile":312},"2026-01-21",{"date":322,"score":56,"percentile":323},"2026-01-22",0.79555,{"date":325,"score":56,"percentile":326},"2026-01-23",0.79584,{"date":328,"score":56,"percentile":329},"2026-01-24",0.79597,{"date":331,"score":56,"percentile":332},"2026-01-25",0.79588,{"date":334,"score":56,"percentile":335},"2026-01-26",0.79586,{"date":337,"score":56,"percentile":338},"2026-01-27",0.79583,{"date":340,"score":56,"percentile":341},"2026-01-28",0.79582,{"date":343,"score":56,"percentile":344},"2026-01-29",0.7958,{"date":346,"score":56,"percentile":341},"2026-01-30",{"date":348,"score":56,"percentile":349},"2026-01-31",0.79587,{"date":351,"score":56,"percentile":352},"2026-02-01",0.79682,[354],{"source":60,"cvss_v2_0":355,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":58,"baseSeverity":9,"vectorString":61,"impactScore":356,"exploitabilityScore":357},2.9,8.6,[359,368,377],{"ecosystem":9,"name":360,"vendor":361,"product":362,"cpe_part":363,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":364},"debian linux","debian","debian_linux","o",[365],{"version":366,"is_range":36,"range_type":367,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0","cpe",{"ecosystem":9,"name":369,"vendor":369,"product":369,"cpe_part":363,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":370},"opensuse",[371,373,375],{"version":372,"is_range":36,"range_type":367,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2",{"version":374,"is_range":36,"range_type":367,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.3",{"version":376,"is_range":36,"range_type":367,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1",{"ecosystem":9,"name":378,"vendor":379,"product":378,"cpe_part":380,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":381},"rails","rubyonrails","a",[382],{"version":383,"is_range":384,"range_type":367,"version_start":385,"version_start_type":386,"version_end":387,"version_end_type":388,"fixed_in":9},"gte3.0.0_lt3.2.15",true,"3.0.0","including","3.2.15","excluding"]