CVE-2008-4094

Multiple SQL injection vulnerabilities in Ruby on Rails before 2.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 :limit and 2 :offset parameters, related to ActiveRecord, ActiveSupport, ActiveResource, ActionPack, and ActionMailer...

[SECURITY] Fedora 9 Update: rubygem-activesupport-2.1.1-1.fc9

Utility library which carries commonly used classes and goodies from the Rails framework...

FreeBSD Ports: rubygem-rails

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

openSUSE 10 Security Update : rubygem-activesupport (rubygem-activesupport-4568)

A cross site scripting XSS bug allowed attackers to execute JavaScript code in the context of other websites CVE-2007-3227. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE 10 Security Update : rubygem-activesupport (rubygem-activesupport-4565)

A cross site scripting XSS bug allowed attackers to execute JavaScript code in the context of other websites CVE-2007-3227. Specially crafted requests could crash an application when processing XML data CVE-2007-5379. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...