| 0 |
|
| 1 |
| url |
VCID-2b1z-1k24-kfb8 |
| vulnerability_id |
VCID-2b1z-1k24-kfb8 |
| summary |
The Active Record component in Ruby on Rails 2.3.x, 3.0.x, 3.1.x, and 3.2.x does not ensure that the declared data type of a database column is used during comparisons of input values to stored values in that column, which makes it easier for remote attackers to conduct data-type injection attacks against Ruby on Rails applications via a crafted value, as demonstrated by unintended interaction between the "typed XML" feature and a MySQL database. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-3221 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00483 |
| scoring_system |
epss |
| scoring_elements |
0.65651 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00483 |
| scoring_system |
epss |
| scoring_elements |
0.65749 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.00483 |
| scoring_system |
epss |
| scoring_elements |
0.65763 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00483 |
| scoring_system |
epss |
| scoring_elements |
0.65759 |
| published_at |
2026-06-14T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-3221 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@4.2.0 |
| purl |
pkg:gem/activerecord@4.2.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 2 |
| vulnerability |
VCID-8ajf-ebxr-7bgf |
|
| 3 |
| vulnerability |
VCID-a78m-qhav-13dm |
|
| 4 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 5 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 6 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 7 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 8 |
| vulnerability |
VCID-nex8-cvgj-f7bc |
|
| 9 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 10 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 11 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 12 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.2.0 |
|
|
| aliases |
CVE-2013-3221, GHSA-f57c-hx33-hvh8
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2b1z-1k24-kfb8 |
|
| 2 |
| url |
VCID-34kh-7cbr-s7b9 |
| vulnerability_id |
VCID-34kh-7cbr-s7b9 |
| summary |
security update |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3483 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00924 |
| scoring_system |
epss |
| scoring_elements |
0.7646 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00924 |
| scoring_system |
epss |
| scoring_elements |
0.7654 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00924 |
| scoring_system |
epss |
| scoring_elements |
0.76545 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00924 |
| scoring_system |
epss |
| scoring_elements |
0.7653 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3483 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@4.0.7 |
| purl |
pkg:gem/activerecord@4.0.7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 3 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 4 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 5 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 6 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 7 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 8 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 9 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 10 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 11 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.0.7 |
|
| 1 |
| url |
pkg:gem/activerecord@4.1.0.beta1 |
| purl |
pkg:gem/activerecord@4.1.0.beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.1.0.beta1 |
|
| 2 |
| url |
pkg:gem/activerecord@4.1.3 |
| purl |
pkg:gem/activerecord@4.1.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 3 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 4 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 5 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 6 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 7 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 8 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 9 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 10 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 11 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.1.3 |
|
|
| aliases |
CVE-2014-3483, GHSA-r8fh-hq2p-7qhq, OSV-108665
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-34kh-7cbr-s7b9 |
|
| 3 |
| url |
VCID-39m4-12ms-skh2 |
| vulnerability_id |
VCID-39m4-12ms-skh2 |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0277 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.06742 |
| scoring_system |
epss |
| scoring_elements |
0.91527 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.06742 |
| scoring_system |
epss |
| scoring_elements |
0.91491 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.06742 |
| scoring_system |
epss |
| scoring_elements |
0.91522 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.06742 |
| scoring_system |
epss |
| scoring_elements |
0.91529 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0277 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.1.0 |
| purl |
pkg:gem/activerecord@3.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.0 |
|
|
| aliases |
CVE-2013-0277, GHSA-fhj9-cjjh-27vm, OSV-90073
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-39m4-12ms-skh2 |
|
| 4 |
| url |
VCID-3ser-nhqn-mbar |
| vulnerability_id |
VCID-3ser-nhqn-mbar |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0155 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.18174 |
| scoring_system |
epss |
| scoring_elements |
0.95362 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.18174 |
| scoring_system |
epss |
| scoring_elements |
0.95341 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.18174 |
| scoring_system |
epss |
| scoring_elements |
0.95355 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.18174 |
| scoring_system |
epss |
| scoring_elements |
0.9536 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0155 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.0.19 |
| purl |
pkg:gem/activerecord@3.0.19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 10 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 11 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 12 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 13 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 14 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 15 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.0.19 |
|
| 1 |
| url |
pkg:gem/activerecord@3.1.0.beta1 |
| purl |
pkg:gem/activerecord@3.1.0.beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.0.beta1 |
|
| 2 |
| url |
pkg:gem/activerecord@3.1.10 |
| purl |
pkg:gem/activerecord@3.1.10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 4 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 5 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 6 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 7 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 8 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 9 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 10 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 11 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 12 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 13 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 14 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 15 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 16 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.10 |
|
| 3 |
| url |
pkg:gem/activerecord@3.2.0.rc1 |
| purl |
pkg:gem/activerecord@3.2.0.rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.0.rc1 |
|
| 4 |
| url |
pkg:gem/activerecord@3.2.11 |
| purl |
pkg:gem/activerecord@3.2.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 4 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 5 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 6 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 7 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 8 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 9 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 10 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 11 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 12 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 13 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 14 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 15 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 16 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.11 |
|
|
| aliases |
CVE-2013-0155, GHSA-gppp-5xc5-wfpx, OSV-89025
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3ser-nhqn-mbar |
|
| 5 |
| url |
VCID-74g9-svkp-h3f1 |
| vulnerability_id |
VCID-74g9-svkp-h3f1 |
| summary |
security update |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3482 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01531 |
| scoring_system |
epss |
| scoring_elements |
0.81783 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.01531 |
| scoring_system |
epss |
| scoring_elements |
0.8172 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.01531 |
| scoring_system |
epss |
| scoring_elements |
0.81782 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.01531 |
| scoring_system |
epss |
| scoring_elements |
0.81791 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3482 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:gem/activerecord@4.0.0 |
| purl |
pkg:gem/activerecord@4.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-a78m-qhav-13dm |
|
| 6 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 7 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 8 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 9 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 10 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 11 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 12 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 13 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 14 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 15 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
| 16 |
| vulnerability |
VCID-xa3t-2av7-zqe4 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.0.0 |
|
|
| aliases |
CVE-2014-3482, GHSA-mhwp-qhpc-h3jm, OSV-108664
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-74g9-svkp-h3f1 |
|
| 6 |
|
| 7 |
| url |
VCID-cgfh-yfn7-7ke9 |
| vulnerability_id |
VCID-cgfh-yfn7-7ke9 |
| summary |
Multiple vulnerabilities have been discovered in Rails, the worst of which
leading to the execution of arbitrary SQL statements. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2008-4094 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03119 |
| scoring_system |
epss |
| scoring_elements |
0.8718 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.03119 |
| scoring_system |
epss |
| scoring_elements |
0.87183 |
| published_at |
2026-06-13T12:55:00Z |
|
| 2 |
| value |
0.03119 |
| scoring_system |
epss |
| scoring_elements |
0.87177 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.03119 |
| scoring_system |
epss |
| scoring_elements |
0.87131 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2008-4094 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
|
| fixed_packages |
|
| aliases |
CVE-2008-4094, GHSA-xf96-32q2-9rw2
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cgfh-yfn7-7ke9 |
|
| 8 |
|
| 9 |
| url |
VCID-fbrw-bbm6-fbhp |
| vulnerability_id |
VCID-fbrw-bbm6-fbhp |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0448 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00689 |
| scoring_system |
epss |
| scoring_elements |
0.72247 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00689 |
| scoring_system |
epss |
| scoring_elements |
0.72337 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00689 |
| scoring_system |
epss |
| scoring_elements |
0.72343 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00689 |
| scoring_system |
epss |
| scoring_elements |
0.7233 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-0448 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2011-0448, GHSA-jmm9-2p29-vh2w
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fbrw-bbm6-fbhp |
|
| 10 |
| url |
VCID-hh3w-dxkg-8ygx |
| vulnerability_id |
VCID-hh3w-dxkg-8ygx |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0276 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00606 |
| scoring_system |
epss |
| scoring_elements |
0.70224 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00606 |
| scoring_system |
epss |
| scoring_elements |
0.70236 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00606 |
| scoring_system |
epss |
| scoring_elements |
0.70134 |
| published_at |
2026-06-11T12:55:00Z |
|
| 3 |
| value |
0.00606 |
| scoring_system |
epss |
| scoring_elements |
0.70238 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-0276 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.1.11 |
| purl |
pkg:gem/activerecord@3.1.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.11 |
|
| 1 |
| url |
pkg:gem/activerecord@3.2.0.rc1 |
| purl |
pkg:gem/activerecord@3.2.0.rc1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.0.rc1 |
|
| 2 |
| url |
pkg:gem/activerecord@3.2.12 |
| purl |
pkg:gem/activerecord@3.2.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.12 |
|
|
| aliases |
CVE-2013-0276, GHSA-gr44-7grc-37vq, OSV-90072
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hh3w-dxkg-8ygx |
|
| 11 |
| url |
VCID-mxkb-wz2d-1kb5 |
| vulnerability_id |
VCID-mxkb-wz2d-1kb5 |
| summary |
Array data injection vulnerability in activerecord |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-0080 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48338 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48479 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48494 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48475 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-0080 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.2.0 |
| purl |
pkg:gem/activerecord@3.2.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.0 |
|
| 1 |
| url |
pkg:gem/activerecord@4.0.3 |
| purl |
pkg:gem/activerecord@4.0.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 10 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 11 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 12 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 13 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.0.3 |
|
| 2 |
| url |
pkg:gem/activerecord@4.1.0.beta1 |
| purl |
pkg:gem/activerecord@4.1.0.beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.1.0.beta1 |
|
| 3 |
| url |
pkg:gem/activerecord@4.1.0.beta2 |
| purl |
pkg:gem/activerecord@4.1.0.beta2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 10 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 11 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 12 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 13 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.1.0.beta2 |
|
|
| aliases |
CVE-2014-0080, GHSA-hqf9-rc9j-5fmj, OSV-103438
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mxkb-wz2d-1kb5 |
|
| 12 |
| url |
VCID-rd4z-yncp-qkfu |
| vulnerability_id |
VCID-rd4z-yncp-qkfu |
| summary |
activerecord vulnerable to SQL Injection |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2012-2695 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.71068 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70968 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.71058 |
| published_at |
2026-06-12T12:55:00Z |
|
| 3 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.7107 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2012-2695 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.1.6 |
| purl |
pkg:gem/activerecord@3.1.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 4 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 5 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 6 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 7 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 8 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 9 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 10 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 11 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 12 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 13 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 14 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 15 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 16 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 17 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 18 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.6 |
|
| 1 |
| url |
pkg:gem/activerecord@3.2.6 |
| purl |
pkg:gem/activerecord@3.2.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 4 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 5 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 6 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 7 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 8 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 9 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 10 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 11 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 12 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 13 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 14 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 15 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 16 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 17 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 18 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.6 |
|
|
| aliases |
CVE-2012-2695, GHSA-76wq-xw4h-f8wj
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rd4z-yncp-qkfu |
|
| 13 |
| url |
VCID-rhyd-xbpb-wufa |
| vulnerability_id |
VCID-rhyd-xbpb-wufa |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1854 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01795 |
| scoring_system |
epss |
| scoring_elements |
0.83171 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.01795 |
| scoring_system |
epss |
| scoring_elements |
0.83232 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.01795 |
| scoring_system |
epss |
| scoring_elements |
0.83237 |
| published_at |
2026-06-14T12:55:00Z |
|
| 3 |
| value |
0.01795 |
| scoring_system |
epss |
| scoring_elements |
0.83241 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2013-1854 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.1.12 |
| purl |
pkg:gem/activerecord@3.1.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.12 |
|
| 1 |
| url |
pkg:gem/activerecord@3.2.13 |
| purl |
pkg:gem/activerecord@3.2.13 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.2.13 |
|
|
| aliases |
CVE-2013-1854, GHSA-3crr-9vmg-864v, OSV-91453
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rhyd-xbpb-wufa |
|
| 14 |
| url |
VCID-sfaa-e8am-x7gn |
| vulnerability_id |
VCID-sfaa-e8am-x7gn |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2010-3933 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00712 |
| scoring_system |
epss |
| scoring_elements |
0.72837 |
| published_at |
2026-06-12T12:55:00Z |
|
| 1 |
| value |
0.00712 |
| scoring_system |
epss |
| scoring_elements |
0.72761 |
| published_at |
2026-06-11T12:55:00Z |
|
| 2 |
| value |
0.00712 |
| scoring_system |
epss |
| scoring_elements |
0.72851 |
| published_at |
2026-06-14T12:55:00Z |
|
| 3 |
| value |
0.00712 |
| scoring_system |
epss |
| scoring_elements |
0.72853 |
| published_at |
2026-06-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2010-3933 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2010-3933, GHSA-gjxw-5w2q-7grf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sfaa-e8am-x7gn |
|
| 15 |
| url |
VCID-sth3-da79-67bt |
| vulnerability_id |
VCID-sth3-da79-67bt |
| summary |
Active Record subject to strong parameters protection bypass |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3514 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00331 |
| scoring_system |
epss |
| scoring_elements |
0.56418 |
| published_at |
2026-06-11T12:55:00Z |
|
| 1 |
| value |
0.00331 |
| scoring_system |
epss |
| scoring_elements |
0.56541 |
| published_at |
2026-06-14T12:55:00Z |
|
| 2 |
| value |
0.00331 |
| scoring_system |
epss |
| scoring_elements |
0.56551 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00331 |
| scoring_system |
epss |
| scoring_elements |
0.56537 |
| published_at |
2026-06-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2014-3514 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:gem/activerecord@4.1.0.beta1 |
| purl |
pkg:gem/activerecord@4.1.0.beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 1 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 2 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 3 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 4 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 5 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 6 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 7 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 8 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 9 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 10 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 11 |
| vulnerability |
VCID-runz-vm7e-a3fs |
|
| 12 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 13 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 14 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@4.1.0.beta1 |
|
| 2 |
|
|
| aliases |
CVE-2014-3514, GHSA-9rf5-jm6f-2fmm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sth3-da79-67bt |
|
| 16 |
| url |
VCID-u2gv-wvdc-tfbs |
| vulnerability_id |
VCID-u2gv-wvdc-tfbs |
| summary |
Multiple vulnerabilities were found in Ruby on Rails, the worst of
which allowing for execution of arbitrary code. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2011-2930 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76938 |
| published_at |
2026-06-14T12:55:00Z |
|
| 1 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76929 |
| published_at |
2026-06-12T12:55:00Z |
|
| 2 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.76944 |
| published_at |
2026-06-13T12:55:00Z |
|
| 3 |
| value |
0.00955 |
| scoring_system |
epss |
| scoring_elements |
0.7686 |
| published_at |
2026-06-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2011-2930 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:gem/activerecord@3.1.0.rc5 |
| purl |
pkg:gem/activerecord@3.1.0.rc5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.0.rc5 |
|
| 1 |
| url |
pkg:gem/activerecord@3.1.0 |
| purl |
pkg:gem/activerecord@3.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-18n5-8cur-m7ae |
|
| 1 |
| vulnerability |
VCID-1ua6-6a16-9fde |
|
| 2 |
| vulnerability |
VCID-2b1z-1k24-kfb8 |
|
| 3 |
| vulnerability |
VCID-34kh-7cbr-s7b9 |
|
| 4 |
| vulnerability |
VCID-39m4-12ms-skh2 |
|
| 5 |
| vulnerability |
VCID-3qsf-qm7w-y7be |
|
| 6 |
| vulnerability |
VCID-3ser-nhqn-mbar |
|
| 7 |
| vulnerability |
VCID-72jm-58dq-mub5 |
|
| 8 |
| vulnerability |
VCID-74g9-svkp-h3f1 |
|
| 9 |
| vulnerability |
VCID-c7qj-hcu8-p7hc |
|
| 10 |
| vulnerability |
VCID-cgfh-yfn7-7ke9 |
|
| 11 |
| vulnerability |
VCID-cvs8-ejdv-uqhy |
|
| 12 |
| vulnerability |
VCID-fbrw-bbm6-fbhp |
|
| 13 |
| vulnerability |
VCID-hh3w-dxkg-8ygx |
|
| 14 |
| vulnerability |
VCID-mxkb-wz2d-1kb5 |
|
| 15 |
| vulnerability |
VCID-pbgu-3zaj-ukay |
|
| 16 |
| vulnerability |
VCID-rd4z-yncp-qkfu |
|
| 17 |
| vulnerability |
VCID-rhyd-xbpb-wufa |
|
| 18 |
| vulnerability |
VCID-sfaa-e8am-x7gn |
|
| 19 |
| vulnerability |
VCID-sth3-da79-67bt |
|
| 20 |
| vulnerability |
VCID-u2gv-wvdc-tfbs |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:gem/activerecord@3.1.0 |
|
|
| aliases |
CVE-2011-2930, GHSA-h6w6-xmqv-7q78
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u2gv-wvdc-tfbs |
|