Vulnerability Details CVE-2011-0448
Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the limit function specify integer values, which makes it easier for remote attackers to conduct SQL injection attacks via a non-numeric argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://groups.google.com/group/rubyonrails-security/msg/4e19864cf6ad40ad?dmode=source&output=gplain
- http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
- http://secunia.com/advisories/43278
- http://securitytracker.com/id?1025063
- http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
- http://www.vupen.com/english/advisories/2011/0877
- https://github.com/rails/rails/commit/354da43ab0a10b3b7b3f9cb0619aa562c3be8474
- http://groups.google.com/group/rubyonrails-security/msg/4e19864cf6ad40ad?dmode=source&output=gplain
- http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057650.html
- http://secunia.com/advisories/43278
- http://securitytracker.com/id?1025063
- http://weblog.rubyonrails.org/2011/2/8/new-releases-2-3-11-and-3-0-4
- http://www.vupen.com/english/advisories/2011/0877
- https://github.com/rails/rails/commit/354da43ab0a10b3b7b3f9cb0619aa562c3be8474
Products affected by CVE-2011-0448
-
cpe:2.3:a:rubyonrails:rails:3.0.0
-
cpe:2.3:a:rubyonrails:rails:3.0.1
-
cpe:2.3:a:rubyonrails:rails:3.0.2
-
cpe:2.3:a:rubyonrails:rails:3.0.3
-
cpe:2.3:a:rubyonrails:rails:3.0.4