CVE-2026-44566

creationtimestamp| type| source ---|---|--- 2026-05-05 15:44:20+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-9pgh-j74g-qj6m...

EUVD-2025-44566

Malicious code in wati-rangi79-sukiwir npm...

ruby3.4-rubygem-activerecord-7.0-7.0.8.6-1.3 on GA media (moderate)

ruby3.4-rubygem-activerecord-7.0-7.0.8.6-1.3 on GA media Announcement ID: openSUSE-SU-2025:15112-1 Rating: moderate Cross-References: CVE-2022-32224 CVE-2022-44566 CVE-2023-22794 CVE-2023-38037 CVSS scores: CVE-2022-32224 SUSE : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-44566 SUSE :...

SUSE-SU-2023:0587-1 Security update for rubygem-activerecord-4_2

This update for rubygem-activerecord-42 contains the following fixes: - CVE-2022-44566: Fixed a potential denial of service due to an inefficient comparison between integer and numeric values. bsc1207450 - fixed regression caused by fix for CVE-2022-44566. bsc1207450...

OESA-2023-1132 rubygem-activerecord security update

Implements the ActiveRecord pattern Fowler, PoEAA for ORM. It ties database tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL. Security Fixes: A denial of service vulnerability present in...

SUSE-SU-2023:0518-1 Security update for rubygem-activerecord-4_2

This update for rubygem-activerecord-42 fixes the following issues: - CVE-2022-44566: Fixed a potential denial of service due to an inefficient comparison between integer and numeric values bsc1207450...

SUSE SLES15 / openSUSE 15 Security Update : rubygem-activerecord-5_1 (SUSE-SU-2023:0492-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0492-1 advisory. - A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a...

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

CVE-2022-44566

CVE-2022-44566 affects Rails’ ActiveRecord PostgreSQL adapter when a value outside the 64-bit signed integer range is provided, causing PostgreSQL to treat the column as numeric and potentially trigger a slow sequential scan leading to DoS. Public details confirm the vulnerability and its impact;...

Fedora 38 : rubygem-actioncable / rubygem-actionmailbox / rubygem-actionmailer / etc (2023-f60cca0686)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-f60cca0686 advisory. Upgrade to Ruby on Rails 7.0.4.2. Fixes numerous CVEs: https://rubyonrails.org/2023/1/17/Rails- Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released...

Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter

There is a potential denial of service vulnerability present in ActiveRecord’s PostgreSQL adapter. This has been assigned the CVE identifier CVE-2022-44566. Versions Affected: All. Not affected: None. Fixed Versions: 6.1.7.1, 7.0.4.1 Impact In ActiveRecord 7.0.4.1 and 6.1.7.1, when a value outsid...

CVE-2021-44566

creationtimestamp| type| source ---|---|--- 2022-02-24 18:14:50+00:00| seen| https://t.me/cibsecurity/37997...

CVE-2021-44566

A Cross Site Scripting XSS vulnerability exists in RosarioSIS before 4.3 via the SanitizeMarkDown function in ProgramFunctions/MarkDownHTML.fnc.php...

CVE-2021-44566

RosarioSIS contains a Cross-Site Scripting (XSS) vulnerability in the SanitizeMarkDown function (ProgramFunctions/MarkDownHTML.fnc.php) affecting versions before 4.3. The issue is documented in CVE-2021-44566 with an XSS vector via the markdown sanitization routine. Public references corroborate ...