All of the current versions of the Ruby on Rails Web framework have a SQL injection vulnerability that could allow an attacker to inject code into Web applications. The vulnerability is a serious one given the widespread use of the popular framework for developing Web apps, and the maintainers of Ruby on Rails have released new versions that fixes the flaw, versions 3.2.10, 3.1.9 and 3.0.18.
January 3, 2013
SQL Injection Flaw Haunts All Ruby on Rails Versions | threatpost
About Michael MacKenna
Husband, dad, techie, aspiring rock star.... View all posts by Michael MacKenna
This entry was posted on Thursday, January 3rd, 2013 at 2:45 pm and posted in Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed.
- High Sierra's 'Secure Kernel Extension Loading' is Broken | Synack Blog | @scoopit sco.lt/7IWEhV 3 weeks ago
- Patch Tuesday: 80+ vulnerabilities fixed, one exploited in the wild - Help Net Security | @scoopit sco.lt/7N6kvR 1 month ago
- RT @TheNextWeb: Adobe is ending Flash support in 2020, tells everyone to jump ship tnw.me/LFTUWIW https://t.co/g08d9XZebK 2 months ago
- RT @SecMash: Microsoft commits to eliminating Flash support in Windows by 2020 Microsoft is going public with its step-by-step … https://t.… 2 months ago
- Back to school: Exclusive online course aimed at budding payment card fraudsters | @scoopit sco.lt/5BpTnt 3 months ago