VulnerableCode Package Details - pkg:gem/activerecord@4.2.9

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:gem/activerecord@4.2.9

Essentials
History (11)

purl	pkg:gem/activerecord@4.2.9

Next non-vulnerable version	7.1.5.2
Latest non-vulnerable version	8.0.2.1
Risk	4.5

Vulnerabilities affecting this package (9)

Vulnerability	Summary	Fixed by
VCID-1ua6-6a16-9fde Aliases: CVE-2025-55193 GHSA-76r7-hhxj-r776		7.1.5.2 Affected by 0 other vulnerabilities. 7.2.0.beta1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 7.2.2.2 Affected by 0 other vulnerabilities. 8.0.0.beta1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 8.0.2.1 Affected by 0 other vulnerabilities.
VCID-8ajf-ebxr-7bgf Aliases: CVE-2021-22880 GHSA-8hc4-xxm3-5ppp		5.2.4.5 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.3.5 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.1.2.1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-c7qj-hcu8-p7hc Aliases: CVE-2022-32224 GHSA-3hhc-qp5v-9p2j GMS-2022-3029		5.2.8.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.0.beta1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.5.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.1.0.rc1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.1.6.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 7.0.0.alpha1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 7.0.3.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cgfh-yfn7-7ke9 Aliases: CVE-2008-4094 GHSA-xf96-32q2-9rw2	Multiple vulnerabilities have been discovered in Rails, the worst of which leading to the execution of arbitrary SQL statements.	There are no reported fixed by versions.
VCID-cvs8-ejdv-uqhy Aliases: CVE-2022-44566 GHSA-579w-22j4-4749 GMS-2023-59		6.1.7.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 7.0.4.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-fbrw-bbm6-fbhp Aliases: CVE-2011-0448 GHSA-jmm9-2p29-vh2w	Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code.	There are no reported fixed by versions.
VCID-rd4z-yncp-qkfu Aliases: CVE-2012-2695 GHSA-76wq-xw4h-f8wj	activerecord vulnerable to SQL Injection	There are no reported fixed by versions.
VCID-sfaa-e8am-x7gn Aliases: CVE-2010-3933 GHSA-gjxw-5w2q-7grf	Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code.	There are no reported fixed by versions.
VCID-u2gv-wvdc-tfbs Aliases: CVE-2011-2930 GHSA-h6w6-xmqv-7q78	Multiple vulnerabilities were found in Ruby on Rails, the worst of which allowing for execution of arbitrary code.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T09:26:37.416579+00:00	Ruby Importer	Affected by	VCID-1ua6-6a16-9fde	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2025-55193.yml	38.6.0
2026-06-13T09:22:17.959708+00:00	Ruby Importer	Affected by	VCID-c7qj-hcu8-p7hc	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2022-32224.yml	38.6.0
2026-06-13T09:19:45.169547+00:00	Ruby Importer	Affected by	VCID-fbrw-bbm6-fbhp	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2011-0448.yml	38.6.0
2026-06-13T09:19:35.802863+00:00	Ruby Importer	Affected by	VCID-sfaa-e8am-x7gn	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2010-3933.yml	38.6.0
2026-06-13T09:19:20.043455+00:00	Ruby Importer	Affected by	VCID-rd4z-yncp-qkfu	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2012-2695.yml	38.6.0
2026-06-13T09:19:12.202210+00:00	Ruby Importer	Affected by	VCID-u2gv-wvdc-tfbs	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2011-2930.yml	38.6.0
2026-06-13T09:18:52.141019+00:00	Ruby Importer	Affected by	VCID-cgfh-yfn7-7ke9	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activerecord/CVE-2008-4094.yml	38.6.0
2026-06-12T20:09:28.767450+00:00	GitLab Importer	Affected by	VCID-1ua6-6a16-9fde	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activerecord/CVE-2025-55193.yml	38.6.0
2026-06-12T18:44:24.895050+00:00	GitLab Importer	Affected by	VCID-cvs8-ejdv-uqhy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activerecord/CVE-2022-44566.yml	38.6.0
2026-06-12T18:27:48.023751+00:00	GitLab Importer	Affected by	VCID-c7qj-hcu8-p7hc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activerecord/CVE-2022-32224.yml	38.6.0
2026-06-12T17:33:28.055667+00:00	GitLab Importer	Affected by	VCID-8ajf-ebxr-7bgf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activerecord/CVE-2021-22880.yml	38.6.0