Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/activemodel@3.1.11
purl pkg:gem/activemodel@3.1.11
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-hbtn-7423-m3gb Circumvention of attr_protected The attr_protected method allows developers to specify a denylist of model attributes which users should not be allowed to assign to. By using a specially crafted request, attackers could circumvent this protection and alter values that were meant to be protected. CVE-2013-0276
GHSA-gr44-7grc-37vq
OSV-90072

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:30:21.523540+00:00 GitLab Importer Fixing VCID-hbtn-7423-m3gb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activemodel/CVE-2013-0276.yml 38.4.0
2026-04-11T21:40:48.366137+00:00 GitLab Importer Fixing VCID-hbtn-7423-m3gb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activemodel/CVE-2013-0276.yml 38.3.0
2026-04-02T21:54:56.140000+00:00 GitLab Importer Fixing VCID-hbtn-7423-m3gb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activemodel/CVE-2013-0276.yml 38.1.0
2026-04-01T12:46:48.137808+00:00 GitLab Importer Fixing VCID-hbtn-7423-m3gb https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activemodel/CVE-2013-0276.yml 38.0.0