Lucene search
PRIOn knowledge basePRION:CVE-2010-3933HistoryOct 28, 2010 - 12:00 a.m.
Design/Logic Flaw
2010-10-2800:00:00
PRIOn knowledge base
www.prio-n.com
6
7.1 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.002 Low
EPSS
Percentile
56.8%
Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested attributes, which allows remote attackers to modify arbitrary records by changing the names of parameters for form inputs.
Related
github
github
Rails activerecord gem has Improper Input Validation vulnerability
2017-10-24 18:33:38
osv
osv
Rails activerecord gem has Improper Input Validation vulnerability
2017-10-24 18:33:38
debiancve
debiancve
CVE-2010-3933
2010-10-28 00:00:00
gitlab
gitlab
Improper Input Validation
2017-10-24 00:00:00
openvas
openvas
Ruby on Rails Security Bypass Vulnerability
2010-12-09 00:00:00
Gentoo Security Advisory GLSA 201412-28
2015-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2010-3933
2010-10-28 00:00:00
cve
cve
CVE-2010-3933
2010-10-28 00:00:00
nessus
nessus
openSUSE Security Update : rubygem-actionmailer (openSUSE-SU-2011:1305-1)
2014-06-13 00:00:00
openSUSE Security Update : rubygem-actionmailer (openSUSE-SU-2011:1305-1)
2014-06-13 00:00:00
GLSA-201412-28 : Ruby on Rails: Multiple vulnerabilities
2014-12-15 00:00:00
gentoo
gentoo
Ruby on Rails: Multiple vulnerabilities
2014-12-14 00:00:00
7.1 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.002 Low
EPSS
Percentile
56.8%
Related for PRION:CVE-2010-3933