Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-2930
HistoryAug 29, 2011 - 12:00 a.m.

CVE-2011-2930

2011-08-2900:00:00
ubuntu.com
ubuntu.com
18

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.9%

JSON

Multiple SQL injection vulnerabilities in the quote_table_name method in
the ActiveRecord adapters in
activerecord/lib/active_record/connection_adapters/ in Ruby on Rails before
2.3.13, 3.0.x before 3.0.10, and 3.1.x before 3.1.0.rc5 allow remote
attackers to execute arbitrary SQL commands via a crafted column name.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchrails< 2.2.3-2ubuntu0.1UNKNOWN
ubuntu10.10noarchrails< 2.3.5-1.1ubuntu0.1UNKNOWN
ubuntu11.04noarchrails< 2.3.5-1.2ubuntu1.1UNKNOWN

Related

prion 1
osv 3
gitlab 1
cve 1
github 1
debiancve 1
openvas 24
fedora 8
securityvulns 2
nessus 5
debian 2
gentoo 1
prion
prion
Sql injection
2011-08-29 18:55:00
osv
osv
activerecord vulnerable to SQL Injection
2017-10-24 18:33:38
rails - several
2012-01-23 00:00:00
rails - several
2012-01-23 00:00:00
gitlab
gitlab
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
2017-10-24 00:00:00
cve
cve
CVE-2011-2930
2011-08-29 18:55:00
github
github
activerecord vulnerable to SQL Injection
2017-10-24 18:33:38
debiancve
debiancve
CVE-2011-2930
2011-08-29 18:55:00
openvas
openvas
FreeBSD Ports: rubygem-rails
2011-09-21 00:00:00
FreeBSD Ports: rubygem-rails
2011-09-21 00:00:00
Fedora Update for rubygem-activeresource FEDORA-2011-11386
2012-04-02 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: rubygem-activerecord-3.0.10-1.fc16
2011-09-07 03:23:00
[SECURITY] Fedora 16 Update: rubygem-activemodel-3.0.10-1.fc16
2011-09-07 03:23:00
[SECURITY] Fedora 16 Update: rubygem-activesupport-3.0.10-1.fc16
2011-09-07 03:23:00
securityvulns
securityvulns
[SECURITY] [DSA 2301-1] rails security update
2011-09-09 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2011-09-09 00:00:00
nessus
nessus
Debian DSA-2301-2 : rails - several vulnerabilities
2011-09-06 00:00:00
Fedora 16 : rubygem-actionmailer-3.0.10-1.fc16 / rubygem-actionpack-3.0.10-1.fc16 / etc (2011-11386)
2011-09-07 00:00:00
openSUSE Security Update : rubygem-actionmailer (openSUSE-SU-2011:1305-1)
2014-06-13 00:00:00
debian
debian
[SECURITY] [DSA 2301-1] rails security update
2011-09-05 20:25:54
[SECURITY] [DSA 2301-2] rails regression
2012-01-23 18:35:53
gentoo
gentoo
Ruby on Rails: Multiple vulnerabilities
2014-12-14 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

71.9%

JSON
Related for UB:CVE-2011-2930
prion1osv3gitlab1cve1github1debiancve1openvas24fedora8securityvulns2nessus5debian2gentoo1