Lucene search
Redhat.comRH:CVE-2023-22794HistoryJan 26, 2023 - 2:05 p.m.
CVE-2023-22794
2023-01-2614:05:25
redhat.com
access.redhat.com
17
0.001 Low
EPSS
Percentile
47.4%
A flaw was found in RubyGem’s activerecord gem, which is vulnerable to SQL injection. This flaw allows a remote attacker to send specially-crafted SQL statements to the comments, allowing the attacker to view, add, modify, or delete information in the back-end database.
Related
veracode
veracode
SQL Injection
2023-01-25 04:39:20
prion
prion
Design/Logic Flaw
2023-02-09 20:15:00
cvelist
cvelist
CVE-2023-22794
2023-02-09 00:00:00
debiancve
debiancve
CVE-2023-22794
2023-02-09 20:15:11
github
github
SQL Injection Vulnerability via ActiveRecord comments
2023-01-18 18:20:19
osv
osv
CVE-2023-22794
2023-02-09 20:15:11
SQL Injection Vulnerability via ActiveRecord comments
2023-01-18 18:20:19
rails - security update
2023-03-13 00:00:00
gitlab
gitlab
cve
cve
CVE-2023-22794
2023-02-09 20:15:11
ubuntucve
ubuntucve
CVE-2023-22794
2023-02-09 00:00:00
rubygems
rubygems
SQL Injection Vulnerability via ActiveRecord comments
2023-01-17 21:00:00
nessus
nessus
Debian DSA-5372-1 : rails - security update
2023-03-14 00:00:00
Rocky Linux 8 : Satellite 6.14 (RLSA-2023:6818)
2023-11-11 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5372-1)
2023-03-14 00:00:00
debian
debian
[SECURITY] [DSA 5372-1] rails security update
2023-03-13 03:07:12
rocky
rocky
Satellite 6.14 security and bug fix update
2023-11-11 22:58:57
redhat
redhat
(RHSA-2023:6818) Important: Satellite 6.14 security and bug fix update
2023-11-08 14:10:25