Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2014/08/23 12:0 a.m.28 views

Fedora Update for rubygem-activerecord FEDORA-2014-8065

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.04181EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/03/12 12:0 a.m.43 views

Fedora Update for rubygem-activerecord FEDORA-2014-3169

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.3AI score0.04032EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/03/11 12:0 a.m.39 views

Fedora 20 : rubygem-actionpack-4.0.0-3.fc20 / rubygem-activerecord-4.0.0-2.fc20 (2014-3169)

This fixes Ruby on Rails 4.0.3 security CVEs : - CVE-2014-0080 - CVE-2014-0081 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

6.8CVSS7.2AI score0.04032EPSS
Exploits0References6
Cvelist
Cvelist
added 2014/02/20 11:0 a.m.29 views

CVE-2014-0080

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresql/cast.rb in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ backslash character...

7.7AI score0.01304EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2014/02/20 11:0 a.m.34 views

CVE-2014-0080

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresql/cast.rb in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ backslash character...

6.8CVSS7.9AI score0.01304EPSS
Exploits0
RubySec
RubySec
added 2014/02/18 12:0 a.m.30 views

CVE-2014-0080 rubygem-activerecord: PostgreSQL array data injection vulnerability

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresql/cast.rb in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ backslash character...

6.8CVSS7.9AI score0.01304EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder