Ruby on Rails安全限制绕过和SQL注入漏洞

BUGTRAQ ID: 46292 CVE ID: CVE-2011-0448,CVE-2011-0449 Ruby on Rails简称RoR 或Rails，是一个使用Ruby语言写的开源Web应用框架，它是严格按照MVC结构开发的。 Ruby on Rails在实现上存在安全限制绕过和SQL注入漏洞，攻击者可利用安全限制绕过漏洞绕过某些安全限制和执行未授权操作，利用SQL注入漏洞修改SQL请求，完全控制受影响软件，检索信息或修改数据。 Ruby on Rails Ruby on Rails 3.x 厂商补丁： Ruby on Rails -------------...

Fedora 15 : rubygem-actionmailer-3.0.5-1.fc15 / rubygem-actionpack-3.0.5-1.fc15 / etc (2011-4358)

Update to the Rails 3.0.5 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...

CVE-2011-0449

actionpack/lib/actionview/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action...

CVE-2011-0449

actionpack/lib/actionview/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action...

CVE-2011-0449

The CVE-2011-0449 vulnerability affects Ruby on Rails 3.0.x (before 3.0.4). It arises in actionpack’s template resolver logic on case-insensitive filesystems, where filters for the list of available templates are not properly enforced, allowing an attacker to bypass access restrictions by using a...