Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-5249

Malicious code in bioql PyPI...

5CVSS6.2AI score0.00397EPSS
Exploits2References10
OSV
OSVadded 2013/01/04 4:46 a.m.6 views

CVE-2012-6497

The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe findbyid method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL injection attacks via a crafted parameter in environments that have a known secrettoken value, as...

7.2AI score
Exploits0References7
NVD
NVDadded 2013/01/04 4:46 a.m.18 views

CVE-2012-6497

The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe findbyid method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL injection attacks via a crafted parameter in environments that have a known secrettoken value, as...

5CVSS7.2AI score0.00397EPSS
Exploits2References4
OSV
OSVadded 2013/01/04 4:46 a.m.2 views

DEBIAN-CVE-2012-6497

The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe findbyid method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL injection attacks via a crafted parameter in environments that have a known secrettoken value, as...

5CVSS8AI score0.00397EPSS
Exploits2References1
Debian CVE
Debian CVEadded 2013/01/04 2:0 a.m.43 views

CVE-2012-6497

The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe findbyid method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL injection attacks via a crafted parameter in environments that have a known secrettoken value, as...

5CVSS7.4AI score0.00397EPSS
Exploits2
CVE
CVEadded 2013/01/04 2:0 a.m.90 views

CVE-2012-6497

Technical details about CVE-2012-6497 are not publicly provided in the supplied documents. Monitoring for updates is recommended as no concrete affected products, versions, root cause, or fixes are included here.

5CVSS7.2AI score0.00397EPSS
Exploits2References4Affected Software1
Positive Technologies
Positive Technologiesadded 2013/01/04 12:0 a.m.2 views

PT-2013-1961 · Ruby On Rails · Authlogic

Name of the Vulnerable Software and Affected Versions: Authlogic gem for Ruby on Rails versions prior to 3.3.0 Description: The issue allows remote attackers to conduct SQL injection attacks via a crafted parameter in environments with a known secret token value. This is demonstrated by a value...

5CVSS7.2AI score0.00397EPSS
Exploits2References14
seebug.org
seebug.orgadded 2012/12/28 12:0 a.m.42 views

Ruby on Rails Authlogic gem SQL注入漏洞

CVE ID: CVE-2012-5664 Ruby on Rails是一款Web应用程序框架,构建在Ruby语言之上 AuthLogic gem实现存在一个SQL注入漏洞,如果Ruby on Rails应用使用AuthLogic gem进行验证,并且攻击者在能访问Rails应用的私钥的情况下,可绕过安全限制进行未授权访问 0 Ruby on Rails 厂商补丁: Ruby on Rails ---------- 目前没有详细解决方案提供: http://rubygems.org/gems/authlogic...

0.5AI score
Exploits2
Rows per page
Query Builder