Ruby on Rails 'ActiveRecord' CVE-2014-3483 SQL Injection Vulnerability

Bugtraq ID: 68341
Class: Input Validation Error
CVE: CVE-2014-3483
Remote: Yes
Local: No
Published: Jul 02 2014 12:00AM
Updated: May 07 2015 05:08PM
Credit: Sean Griffin
Vulnerable: Ruby on Rails Ruby on Rails 4.1 rc1
Ruby on Rails Ruby on Rails 4.1 beta2
Ruby on Rails Ruby on Rails 4.1 beta1
Ruby on Rails Ruby on Rails 4.0.3
Ruby on Rails Ruby on Rails 4.0.2
Ruby on Rails Ruby on Rails 4.0.1
Ruby on Rails Ruby on Rails 4.0
Ruby on Rails Ruby on Rails 4.1.2
Ruby on Rails Ruby on Rails 4.1.1
Ruby on Rails Ruby on Rails 4.0.6
Ruby on Rails Ruby on Rails 4.0.5
Redhat Software Collections 1 for RHEL 6 0
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: Ruby on Rails Ruby on Rails 4.1.3
Ruby on Rails Ruby on Rails 4.0.7


 

Privacy Statement
Copyright 2010, SecurityFocus