Ehackingnews.Com Site Info - OpenRuby.com

Follow @openruby

#NA

ehackingnews.com

http://openruby.com/sites/ehackingnews.com

CVE-2012-5664 :All Ruby on Rails versions vulnerable to SQL Injection vulnerability | Hacking News | Security updates

ehackingnews.com 04 Jan '13, 1am

A SQL Injection vulnerability has been discovered in Ruby on Rails that affects all current versions of the web framework. According to the advisory , due to the way dynamic finders in Active Record extract options from method parameters, a method parameter can mistakenly be used as a...
Related:
1. SQL injection vulnerability hits all Ruby on Rails versions - The H Securit... h-online.com 03 Jan '13, 9am
2. SQL injection vulnerability hits all Ruby on Rails versions - The H Open: N... h-online.com 03 Jan '13, 9am
3. SQL Injection Vulnerability in Ruby on Rails; affects all versions news.ycombinator.com 02 Jan '13, 9pm
4. SQL Injection Vulnerability in Ruby on Rails (CVE-2012-5664) permalink.gmane.org 02 Jan '13, 9pm
5. SQL Injection Flaw Haunts All Ruby on Rails Versions | threatpost threatpost.com 03 Jan '13, 3pm
6. All Ruby on Rails versions affected by SQL injection flaw net-security.org 03 Jan '13, 3pm
7. All Ruby On Rails Versions Suffer SQL Injection Flaw - Slashdot it.slashdot.org 03 Jan '13, 4pm
8. Ruby on Rails security updates address SQL injection flaw networkworld.com 03 Jan '13, 7pm

Related