03 Jan '13, 11am

Rails SQL injection vulnerability: hold your horses, here are the facts: This blog post explains the recent vuln...

Rails SQL injection vulnerability: hold your horses, here are the facts Posted by FooBarWidget on January 03, 2013 — 0 comments This blog post explains the recent vulnerability, how it works and what the facts and non-facts are. Comments “ ” Post a Comment Comment abilities for non registered users are currently deactivated, pending time to add a proper CAPTCHA to solve the escalating spam problem. Sorry!

Full article: http://www.rubyflow.com/items/8707-rails-sql-injection-vu...

Tweets

If you develop w/ Ruby on Rails, there's a SQL ...

blog.phusion.nl 04 Jan '13, 1pm

So to inject arbitrary SQL, you need to tamper with the cookie, which requires the HMAC key. The HMAC key is the so-called...

sql injection vulnerability in Active Record in...

permalink.gmane.org 02 Jan '13, 9pm

SQL Injection Vulnerability in Ruby on Rails There is a SQL injection vulnerability in Active Record in ALL versions. This...

SQL Injection Vulnerability in Ruby on Rails; a...

groups.google.com 02 Jan '13, 9pm

Dieser Browser wird nicht unterstützt.

SQL Injection Vulnerability in several versions...

rubyflow.com 02 Jan '13, 11pm

SQL Injection Vulnerability in several versions of Rails! Posted by bcardarella on January 02, 2013 — 0 comments Fixes alr...

SQL injection vulnerability hits all Ruby on Ra...

h-online.com 03 Jan '13, 9am

The Ruby on Rails developers are warning of an SQL injection vulnerability that affects all current versions of the web fr...

SQL injection vulnerability hits all Ruby on Ra...

h-online.com 03 Jan '13, 9am

The Ruby on Rails developers are warning of an SQL injection vulnerability that affects all current versions of the web fr...

SQL Injection Vulnerability in Ruby on Rails; a...

news.ycombinator.com 02 Jan '13, 9pm

You are going to have problems with this whenever you are composing SQL statement with any type of user-provided data as p...

Ruby on Rails has SQL injection vuln

theregister.co.uk 03 Jan '13, 10pm

The maintainers of Ruby on Rails are warning of an SQL injection vulnerability which affects all versions of the popular W...

SQL Injection Vulnerability in Ruby on Rails; a...

groups.google.com 02 Jan '13, 10pm

Dieser Browser wird nicht unterstützt.

Ruby on Rails 3.2.10 Released to Address SQL In...

news.softpedia.com 03 Jan '13, 12pm

Ruby on Rails 3.2.10, 3.1.9, and 3.0.18 have been released to address an SQL Injection vulnerability in Active Record that...

Oh shit : SQL Injection Vulnerability in Ruby o...

groups.google.com 02 Jan '13, 10pm

Dieser Browser wird nicht unterstützt.

SQL Injection Vulnerability in Ruby on Rails; a...

groups.google.com 02 Jan '13, 9pm

Dieser Browser wird nicht unterstützt.

Ruby on Rails updates address SQL injection fla...

computerworld.com 03 Jan '13, 3pm

IDG News Service - The developers of Ruby on Rails, a popular open source Web application development framework for the Ru...

All Ruby on Rails versions affected by SQL inje...

net-security.org 03 Jan '13, 3pm

Three new versions of popular open source web application framework Ruby on Rails have been released on Wednesday in order...