Vulnerabilities

CVE-2014-3482

by Fred · 07/07/2014

SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql_adapter.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before 3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper bitstring quoting.

Date published : 2014-07-07

http://www.securityfocus.com/bid/68343

http://www.debian.org/security/2014/dsa-2982

Similar

Tags: Cybersecurity Alert