Search for packages
| purl | pkg:gem/activerecord@2.3.11 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-18n5-8cur-m7ae
Aliases: CVE-2012-2661 GHSA-fh39-v733-mxfr OSV-82403 |
Active Record vulnerable to SQL Injection via nested query parameters |
Affected by 20 other vulnerabilities. Affected by 18 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 19 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 19 other vulnerabilities. |
|
VCID-1ua6-6a16-9fde
Aliases: CVE-2025-55193 GHSA-76r7-hhxj-r776 |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
|
VCID-2b1z-1k24-kfb8
Aliases: CVE-2013-3221 GHSA-f57c-hx33-hvh8 |
The Active Record component in Ruby on Rails 2.3.x, 3.0.x, 3.1.x, and 3.2.x does not ensure that the declared data type of a database column is used during comparisons of input values to stored values in that column, which makes it easier for remote attackers to conduct data-type injection attacks against Ruby on Rails applications via a crafted value, as demonstrated by unintended interaction between the "typed XML" feature and a MySQL database. |
Affected by 13 other vulnerabilities. |
|
VCID-34kh-7cbr-s7b9
Aliases: CVE-2014-3483 GHSA-r8fh-hq2p-7qhq OSV-108665 |
security update |
Affected by 12 other vulnerabilities. Affected by 15 other vulnerabilities. Affected by 12 other vulnerabilities. |
|
VCID-39m4-12ms-skh2
Aliases: CVE-2013-0277 GHSA-fhj9-cjjh-27vm OSV-90073 |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 14 other vulnerabilities. Affected by 21 other vulnerabilities. |
|
VCID-3ser-nhqn-mbar
Aliases: CVE-2013-0155 GHSA-gppp-5xc5-wfpx OSV-89025 |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 16 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 17 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 17 other vulnerabilities. |
|
VCID-72jm-58dq-mub5
Aliases: CVE-2012-2660 GHSA-hgpp-pp89-4fgf OSV-82610 |
Action Pack contains database-query restrictions bypass |
Affected by 18 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 19 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 19 other vulnerabilities. |
|
VCID-74g9-svkp-h3f1
Aliases: CVE-2014-3482 GHSA-mhwp-qhpc-h3jm OSV-108664 |
security update |
Affected by 11 other vulnerabilities. Affected by 17 other vulnerabilities. |
|
VCID-c7qj-hcu8-p7hc
Aliases: CVE-2022-32224 GHSA-3hhc-qp5v-9p2j |
Affected by 2 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 3 other vulnerabilities. |
|
|
VCID-cgfh-yfn7-7ke9
Aliases: CVE-2008-4094 GHSA-xf96-32q2-9rw2 |
Multiple vulnerabilities have been discovered in Rails, the worst of which leading to the execution of arbitrary SQL statements. | There are no reported fixed by versions. |
|
VCID-cvs8-ejdv-uqhy
Aliases: CVE-2022-44566 GHSA-579w-22j4-4749 GMS-2023-59 |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
|
|
VCID-fbrw-bbm6-fbhp
Aliases: CVE-2011-0448 GHSA-jmm9-2p29-vh2w |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 20 other vulnerabilities. Affected by 20 other vulnerabilities. |
|
VCID-hh3w-dxkg-8ygx
Aliases: CVE-2013-0276 GHSA-gr44-7grc-37vq OSV-90072 |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 14 other vulnerabilities. Affected by 15 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 15 other vulnerabilities. |
|
VCID-mxkb-wz2d-1kb5
Aliases: CVE-2014-0080 GHSA-hqf9-rc9j-5fmj OSV-103438 |
Array data injection vulnerability in activerecord |
Affected by 21 other vulnerabilities. Affected by 14 other vulnerabilities. Affected by 15 other vulnerabilities. Affected by 14 other vulnerabilities. |
|
VCID-pbgu-3zaj-ukay
Aliases: CVE-2012-6496 GHSA-gh2w-j7cx-2664 OSV-88661 |
A vulnerability in Active Record could allow a remote attacker to inject SQL commands. |
Affected by 17 other vulnerabilities. Affected by 17 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 18 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 18 other vulnerabilities. |
|
VCID-rd4z-yncp-qkfu
Aliases: CVE-2012-2695 GHSA-76wq-xw4h-f8wj |
activerecord vulnerable to SQL Injection |
Affected by 17 other vulnerabilities. Affected by 18 other vulnerabilities. Affected by 19 other vulnerabilities. Affected by 19 other vulnerabilities. |
|
VCID-rhyd-xbpb-wufa
Aliases: CVE-2013-1854 GHSA-3crr-9vmg-864v OSV-91453 |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 14 other vulnerabilities. Affected by 22 other vulnerabilities. Affected by 15 other vulnerabilities. Affected by 15 other vulnerabilities. |
|
VCID-sfaa-e8am-x7gn
Aliases: CVE-2010-3933 GHSA-gjxw-5w2q-7grf |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 20 other vulnerabilities. |
|
VCID-sth3-da79-67bt
Aliases: CVE-2014-3514 GHSA-9rf5-jm6f-2fmm |
Active Record subject to strong parameters protection bypass |
Affected by 11 other vulnerabilities. Affected by 15 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-u2gv-wvdc-tfbs
Aliases: CVE-2011-2930 GHSA-h6w6-xmqv-7q78 |
Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
Affected by 0 other vulnerabilities. Affected by 20 other vulnerabilities. Affected by 20 other vulnerabilities. Affected by 21 other vulnerabilities. Affected by 21 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-fbrw-bbm6-fbhp | Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code. |
CVE-2011-0448
GHSA-jmm9-2p29-vh2w |