CVE-2018-18476

mysql-binuuid-rails 1.1.0 and earlier allows SQL Injection because it removes default string escaping for affected database columns.

Date published : 2018-10-24

https://github.com/nedap/mysql-binuuid-rails/pull/18

https://gist.github.com/viraptor/881276ea61e8d56bac6e28454c79f1e6