exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2014-3514

больше 11 лет назад

activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.

CVSS2: 7.5

EPSS: Низкий

CVE-2014-3514

больше 11 лет назад

activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.

CVSS2: 5.8

EPSS: Низкий

CVE-2014-3514

больше 11 лет назад

activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.

CVSS2: 7.5

EPSS: Низкий

CVE-2014-3514

больше 11 лет назад

activerecord/lib/active_record/relation/query_methods.rb in Active Rec ...

CVSS2: 7.5

EPSS: Низкий

GHSA-9rf5-jm6f-2fmm

больше 8 лет назад

Active Record subject to strong parameters protection bypass

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2014-3514 activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.	CVSS2: 7.5	0% Низкий	больше 11 лет назад
CVE-2014-3514 activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.	CVSS2: 5.8	0% Низкий	больше 11 лет назад
CVE-2014-3514 activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection mechanism via crafted input to an application that makes create_with calls.	CVSS2: 7.5	0% Низкий	больше 11 лет назад
CVE-2014-3514 activerecord/lib/active_record/relation/query_methods.rb in Active Rec ...	CVSS2: 7.5	0% Низкий	больше 11 лет назад
GHSA-9rf5-jm6f-2fmm Active Record subject to strong parameters protection bypass		0% Низкий	больше 8 лет назад

Уязвимостей на страницу