CVE-2014-0080

SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/cast.rb in Active Record in Ruby on Rails 4.0.x before 4.0.3, and 4.1.0.beta1, when PostgreSQL is used, allows remote attackers to execute "add data" SQL commands via vectors involving \ (backslash) characters that are not properly handled in operations on array columns.

Published: Feb 20, 2014
Updated: May 9, 2024
CVE: CVE-2014-0080
GHSA: GHSA-hqf9-rc9j-5fmj
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
rubyonrails / rails	4.0.0	4.0.0.x
rubyonrails / rails	4.0.1	4.0.1.x
rubyonrails / rails	4.0.2	4.0.2.x
rubyonrails / rails	4.1.0-beta1	4.1.0-beta1.x
rubyonrails / rails	4.0.0-beta	4.0.0-beta.x
rubyonrails / rails	4.0.0-rc1	4.0.0-rc1.x
rubyonrails / rails	4.0.0-rc2	4.0.0-rc2.x
rubyonrails / rails	4.0.1-rc1	4.0.1-rc1.x
rubyonrails / rails	4.0.1-rc2	4.0.1-rc2.x
rubyonrails / rails	4.0.1-rc3	4.0.1-rc3.x
rubyonrails / rails	4.0.1-rc4	4.0.1-rc4.x
activerecord	4.0.0	4.0.3
activerecord	4.1.0.beta1	4.1.0.beta1.x
activerecord	4.1.0.beta1	4.1.0.beta2

Vulnerability Database

289,697

CVE-2014-0080