Lucene search

K
gitlabHttps://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-5DA0BB57E5E828C6786AA56102D10D80
HistoryJul 07, 2014 - 12:00 a.m.

SQL Injection Vulnerabilities Affecting PostgreSQL

2014-07-0700:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
36

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.009

Percentile

82.6%

SQLi vulnerability in activerecord.

Affected configurations

Vulners
Node
gemactiverecordRange4.0.0>
OR
gemactiverecordRange<4.0.7
OR
gemactiverecordRange4.1.0>
OR
gemactiverecordRange<4.1.3

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.009

Percentile

82.6%