Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn’t require a browser.

OSVersionArchitecturePackageVersionFilename
Fedora20anyrubygem-actionpack< 4.0.0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	20	any	rubygem-actionpack	< 4.0.0	UNKNOWN

openvas 53

nessus 22

freebsd 3

redhat 6

securityvulns 4

fedora 22

debian 2

osv 7

cve 7

github 8

prion 7

debiancve 7

veracode 2

gitlab 7

ubuntucve 7

seebug 1

rubygems 3

ics 1

hackerone 1

suse 5

ibm 1

gentoo 1

openvas

Fedora Update for rubygem-actionpack FEDORA-2013-23636

2014-03-12 00:00:00

Fedora Update for rubygem-actionpack FEDORA-2013-23636

2014-03-12 00:00:00

Fedora Update for rubygem-actionpack FEDORA-2014-6098

2014-05-26 00:00:00

nessus

Fedora 20 : rubygem-actionpack-4.0.0-2.fc20 (2013-23636)

2014-03-07 00:00:00

FreeBSD : rails -- multiple vulnerabilities (6a806960-3016-44ed-8575-8614a7cb57c7)

2013-12-09 00:00:00

openSUSE Security Update : rubygem-actionpack-3_2 (openSUSE-SU-2013:1907-1)

2014-06-13 00:00:00

freebsd

rails -- multiple vulnerabilities

2013-12-03 00:00:00

rubygem-rails -- multiple vulnerabilities

2013-01-08 00:00:00

Rails 4 -- Unsafe Query Generation Risk in Active Record

2016-08-11 00:00:00

redhat

(RHSA-2013:1794) Important: ruby193-rubygem-actionpack security update

2013-12-05 00:00:00

(RHSA-2014:0008) Important: ruby193-rubygem-actionpack security update

2014-01-06 00:00:00

(RHSA-2014:1863) Important: Subscription Asset Manager 1.4 security update

2014-11-17 00:00:00

securityvulns

[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update

2014-05-04 00:00:00

Ruby Actionpack / Actionmailer multiple security vulnerabilities

2014-05-04 00:00:00

Apple Mac OS X multiple security vulnerabilities

2013-06-17 00:00:00

fedora

[SECURITY] Fedora 19 Update: rubygem-actionpack-3.2.13-4.fc19

2014-01-24 07:50:26

[SECURITY] Fedora 20 Update: rubygem-actionpack-4.0.0-4.fc20

2014-05-23 18:56:34

[SECURITY] Fedora 20 Update: rubygem-actionpack-4.0.0-3.fc20

2014-03-11 04:00:14

debian

[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update

2014-03-27 15:04:16

[SECURITY] [DSA 2609-1] rails security update

2013-01-16 21:17:01

osv

actionpack allows bypass of database-query restrictions

2017-10-24 18:33:36

actionpack Improper Input Validation vulnerability

2017-10-24 18:33:37

actionpack Cross-site Scripting vulnerability

2017-10-24 18:33:36

cve

CVE-2013-6417

2013-12-07 00:55:00

CVE-2013-6415

2013-12-07 00:55:00

CVE-2013-6416

2013-12-07 00:55:00

github

actionpack allows bypass of database-query restrictions

2017-10-24 18:33:36

actionpack Improper Input Validation vulnerability

2017-10-24 18:33:37

actionpack Cross-site Scripting vulnerability

2017-10-24 18:33:36

prion

Design/Logic Flaw

2013-12-07 00:55:00

Code injection

2013-12-07 00:55:00

Cross site scripting

2013-12-07 00:55:00

debiancve

CVE-2013-6417

2013-12-07 00:55:00

CVE-2013-6415

2013-12-07 00:55:00

CVE-2013-6414

2013-12-07 00:55:00

veracode

Database Authorization Bypass

2019-01-15 09:01:52

Cross-site Scripting (XSS)

2019-01-15 08:52:53

gitlab

Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)

2013-12-06 00:00:00

XSS Vulnerability in simple_format helper

2013-12-06 00:00:00

Improper Input Validation

2013-12-07 00:00:00

ubuntucve

CVE-2013-6417

2013-12-07 00:00:00

CVE-2013-6415

2013-12-07 00:00:00

CVE-2013-6414

2013-12-07 00:00:00

seebug

Ruby on Rails不安全查询生成漏洞

2013-01-10 00:00:00

rubygems

Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)

2013-12-02 20:00:00

CVE-2013-0155 rubygem-actionpack, rubygem-activerecord: Unsafe Query Generation Risk in Ruby on Rails

2013-01-07 20:00:00

Unsafe Query Generation Risk in Active Record

2016-08-10 21:00:00

ics

Wonderware Intelligence Tableau Server Ruby on Rails Improper Input Validation (Update A)

2013-02-21 00:00:00

hackerone

Ruby on Rails: Unsafe Query Generation (CVE-2012-2660, CVE-2012-2694 and CVE-2013-0155) mitigation bypass

2016-05-17 13:38:03

suse

ruby on rails to 2.3.16 (important)

2013-02-12 10:10:39

ruby on rails to 2.3.16 (important)

2013-02-12 11:04:29

Security update for Ruby On Rails (important)

2013-03-19 18:04:46

ibm

Security Bulletin: IBM Security Network Intrusion Prevention System can be affected by vulnerabilities in Ruby on Rails (CVE-2012-2660, CVE-2012-2694, CVE-2013-0156, CVE-2012-6496, CVE-2012-3424, and CVE-2012-2695)

2021-01-25 20:13:51

gentoo

Ruby on Rails: Multiple vulnerabilities

2014-12-14 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

JSON

Related for FEDORA:B167C2162A