SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/quoting.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 4.x prior to 4.0.7 and 4.1.x prior to 4.1.3 allows remote malicious users to execute arbitrary SQL commands by leveraging improper range quoting.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rubyonrails rails 4.0.5 |
||
rubyonrails rails 4.0.1 |
||
rubyonrails rails 4.0.6 |
||
rubyonrails rails 4.1.0 |
||
rubyonrails rails 4.0.4 |
||
rubyonrails rails 4.0.3 |
||
rubyonrails rails 4.0.2 |
||
rubyonrails rails 4.1.2 |
||
rubyonrails rails 4.1.1 |
||
rubyonrails rails 4.0.0 |