CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

EUVD-2020-0472

Malware in sbrugna...

Malicious code in maplink-geocoder (npm)

The package maplink-geocoder was found to contain malicious code...

MAL-2025-25927 Malicious code in maplink-geocoder (npm)

The package maplink-geocoder was found to contain malicious code...

SQL Injection in Geocoder

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

GHSA-864J-6QPP-CMRR SQL Injection in Geocoder

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

SQL Injection

geocoder is vulnerable to SQL injection. The vulnerability exists in sql.rb as the unvalidated values of swlat, swlng, nelat, nelng could be used in conjunction with withinboundingbox to inject and execute arbitrary SQL statements...

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

DEBIAN-CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

UBUNTU-CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

Sql injection

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

CVE-2020-7981

The CVE-2020-7981 issue affects Geocoder (Geocoder gem) and is caused by a Boolean-based SQL injection in sql.rb prior to version 1.6.1 when within_bounding_box is used with untrusted sw_lat, sw_lng, ne_lat, or ne_lng data. Concretely, vulnerable in Geocoder up to 1.6.0; update to 1.6.1 or newer ...

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

Geocoder gem for Ruby contains possible SQL injection vulnerability

sql.rb in Geocoder allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...