Add CVE-2019-13574 for mini_magick (#403)

Author: mrtc0

gems/mini_magick/CVE-2019-13574.yml

@@ -0,0 +1,10 @@
+gem: mini_magick
+cve: 2019-13574
+url: https://github.com/minimagick/minimagick/releases/tag/v4.9.4
+title: Remote command execution via filename
+date: 2019-07-12
+description: |
+  A remote shell execution vulnerability when using MiniMagick::Image.open with URL coming from unsanitized user input.
+  e.g. `MiniMagick::Image.open("| touch.txt")`
+patched_versions:
+  - ">= 4.9.4"