Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties databa se tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL.

OSVersionArchitecturePackageVersionFilename
Fedora17anyrubygem-activerecord< 3.0.11UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	17	any	rubygem-activerecord	< 3.0.11	UNKNOWN

openvas 58

fedora 20

osv 9

cve 9

debiancve 7

github 9

prion 8

nessus 26

gitlab 7

ubuntucve 7

rubygems 6

suse 9

redhat 4

seebug 5

gentoo 1

veracode 2

ibm 1

checkpoint_advisories 1

debian 2

freebsd 3

securityvulns 2

ics 1

threatpost 1

hackerone 1

openvas

Fedora Update for rubygem-activerecord FEDORA-2013-2351

2013-02-22 00:00:00

Fedora Update for rubygem-activerecord FEDORA-2013-2351

2013-02-22 00:00:00

Fedora Update for rubygem-activerecord FEDORA-2013-0245

2013-01-15 00:00:00

fedora

[SECURITY] Fedora 17 Update: rubygem-activerecord-3.0.11-4.fc17

2013-01-15 02:31:35

[SECURITY] Fedora 17 Update: rubygem-activerecord-3.0.11-5.fc17

2013-01-23 01:53:38

[SECURITY] Fedora 16 Update: rubygem-activerecord-3.0.10-4.fc16

2013-01-15 02:22:33

osv

activerecord vulnerable to SQL Injection

2017-10-24 18:33:38

Active Record vulnerable to SQL Injection via nested query parameters

2017-10-24 18:33:38

Active Record contains SQL Injection

2017-10-24 18:33:37

cve

CVE-2012-2661

2012-06-22 14:55:00

CVE-2012-2695

2012-06-22 14:55:00

CVE-2012-6496

2013-01-04 04:46:00

debiancve

CVE-2012-2661

2012-06-22 14:55:00

CVE-2012-6496

2013-01-04 04:46:00

CVE-2013-0277

2013-02-13 01:55:00

github

Active Record vulnerable to SQL Injection via nested query parameters

2017-10-24 18:33:38

activerecord vulnerable to SQL Injection

2017-10-24 18:33:38

Active Record contains SQL Injection

2017-10-24 18:33:37

prion

Sql injection

2012-06-22 14:55:00

Sql injection

2012-06-22 14:55:00

Sql injection

2013-01-04 04:46:00

nessus

Fedora 17 : rubygem-activerecord-3.0.11-3.fc17 (2012-9635)

2012-07-01 00:00:00

Fedora 16 : rubygem-activerecord-3.0.10-3.fc16 (2012-9639)

2012-07-01 00:00:00

openSUSE Security Update : ruby (openSUSE-SU-2013:0278-1)

2014-06-13 00:00:00

gitlab

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

2017-10-24 00:00:00

Ruby on Rails find_by_* Methods Authlogic SQL Injection Bypass

2013-01-03 00:00:00

SQL injection vulnerability in Active Record

2012-06-22 00:00:00

ubuntucve

CVE-2012-2661

2012-06-22 00:00:00

CVE-2012-2695

2012-06-22 00:00:00

CVE-2013-0277

2013-02-13 00:00:00

rubygems

CVE-2012-2661 rubygem-activerecord: SQL injection when processing nested query paramaters

2012-05-30 20:00:00

SQL Injection Vulnerability in Ruby on Rails

2017-10-23 21:00:00

CVE-2013-0277 rubygem-activerecord: Serialized Attributes YAML Vulnerability with Rails 2.3 and 3.0

2013-02-10 20:00:00

suse

Security update for rubygem-actionpack (important)

2012-08-21 19:08:38

Security update for rubygem-activerecord (important)

2012-08-21 20:08:28

ruby on rails to 2.3.16 (important)

2013-02-12 10:10:39

redhat

(RHSA-2013:0154) Critical: Ruby on Rails security update

2013-01-10 20:37:00

(RHSA-2013:0582) Moderate: Red Hat OpenShift Enterprise 1.1.1 update

2013-02-28 00:00:00

(RHSA-2013:1794) Important: ruby193-rubygem-actionpack security update

2013-12-05 00:00:00

seebug

Ruby on Rails Active Record组件SQL注入漏洞(CVE-2012-6496)

2013-01-05 00:00:00

SQL Injection Vulnerability in Ruby on Rails

2012-06-01 00:00:00

Ruby on Rails 远程代码执行漏洞(CVE-2013-0277)

2013-03-07 00:00:00

gentoo

Active Record: SQL injection

2014-01-21 00:00:00

veracode

SQL Command Injection

2019-01-15 08:53:39

Database Authorization Bypass

2019-01-15 09:01:52

ibm

Security Bulletin: IBM Security Network Intrusion Prevention System can be affected by vulnerabilities in Ruby on Rails (CVE-2012-2660, CVE-2012-2694, CVE-2013-0156, CVE-2012-6496, CVE-2012-3424, and CVE-2012-2695)

2021-01-25 20:13:51

checkpoint_advisories

Ruby on Rails Hash SQL Injection (CVE-2012-2695)

2012-10-14 00:00:00

debian

[SECURITY] [DSA 2609-1] rails security update

2013-01-16 21:17:01

[SECURITY] [DSA 2620-1] rails security update

2013-02-12 21:09:50

freebsd

rubygem-activerecord -- multiple vulnerabilities

2012-05-31 00:00:00

rubygem-rails -- multiple vulnerabilities

2013-01-08 00:00:00

Rails 4 -- Unsafe Query Generation Risk in Active Record

2016-08-11 00:00:00

securityvulns

[SECURITY] [DSA 2620-1] rails security update

2013-02-18 00:00:00

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

2013-02-18 00:00:00

ics

Wonderware Intelligence Tableau Server Ruby on Rails Improper Input Validation (Update A)

2013-02-21 00:00:00

threatpost

Ruby on Rails Patches DoS, Remote Execution Flaws

2013-02-13 17:51:57

hackerone

Ruby on Rails: Unsafe Query Generation (CVE-2012-2660, CVE-2012-2694 and CVE-2013-0155) mitigation bypass

2016-05-17 13:38:03

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Related for FEDORA:A683320E82