CVE-2012-6496
Ruby on Rails < 3.0.18, 3.1.x < 3.1.9, 3.2.x < 3.2.10 - SQL Injection via Dynamic Finders
Title source: llmDescription
SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x before 3.1.9, and 3.2.x before 3.2.10 allows remote attackers to execute arbitrary SQL commands via a crafted request that leverages incorrect behavior of dynamic finders in applications that can use unexpected data types in certain find_by_ method calls.
References (9)
Core 9
Core References
Exploit, Patch x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=889649
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0155.html
Various Sources x_refsource_misc
http://blog.phusion.nl/2013/01/03/rails-sql-injection-vulnerability-hold-your-horses-here-are-the-facts/
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0220.html
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201401-22.xml
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0154.html
Mailing List mailing-list
x_refsource_mlist
https://groups.google.com/group/rubyonrails-security/msg/23daa048baf28b64?dmode=source&output=gplain
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/57084
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0544.html
Scores
EPSS
0.0102
EPSS Percentile
77.4%
Details
CWE
CWE-89
Status
published
Products (19)
rubygems/activerecord
3.0.0.beta - 3.0.18RubyGems
rubyonrails/rails
3.1.0 (10 CPE variants)
rubyonrails/rails
3.1.1 (4 CPE variants)
rubyonrails/rails
3.1.2 (3 CPE variants)
rubyonrails/rails
3.1.3
rubyonrails/rails
3.1.4 (2 CPE variants)
rubyonrails/rails
3.1.5 (2 CPE variants)
rubyonrails/rails
3.1.6
rubyonrails/rails
3.1.7
rubyonrails/rails
3.1.8
... and 9 more
Published
Jan 04, 2013
Tracked Since
Feb 18, 2026