Search for packages
| purl | pkg:gem/activerecord@8.0.0.rc2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-zqzx-avvt-wkhm
Aliases: CVE-2025-55193 GHSA-76r7-hhxj-r776 |
Active Record logging vulnerable to ANSI escape injection This vulnerability has been assigned the CVE identifier CVE-2025-55193 ### Impact The ID passed to `find` or similar methods may be logged without escaping. If this is directly to the terminal it may include unescaped ANSI sequences. ### Releases The fixed releases are available at the normal locations. ### Credits Thanks to [lio346](https://hackerone.com/lio346) from Unit 515 of OPSWAT for reporting this vulnerability |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T17:41:29.761953+00:00 | Ruby Importer | Affected by | VCID-zqzx-avvt-wkhm | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2025-55193.yml | 38.4.0 |
| 2026-04-11T21:39:23.237160+00:00 | Ruby Importer | Affected by | VCID-zqzx-avvt-wkhm | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2025-55193.yml | 38.3.0 |
| 2026-04-02T19:36:55.679826+00:00 | Ruby Importer | Affected by | VCID-zqzx-avvt-wkhm | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2025-55193.yml | 38.1.0 |
| 2026-04-01T15:54:29.679052+00:00 | Ruby Importer | Affected by | VCID-zqzx-avvt-wkhm | https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2025-55193.yml | 38.0.0 |