Lucene search
MitreCVELIST:CVE-2010-3933HistoryOct 03, 2022 - 4:20 p.m.
CVE-2010-3933
2022-10-0316:20:54
mitre
www.cve.org
cve-2010-3933
remote attackers
arbitrary records
form inputs
Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested attributes, which allows remote attackers to modify arbitrary records by changing the names of parameters for form inputs.
Related
github
github
Rails activerecord gem has Improper Input Validation vulnerability
2017-10-24 18:33:38
openvas
openvas
Ruby on Rails Security Bypass Vulnerability
2010-12-09 00:00:00
Gentoo Security Advisory GLSA 201412-28
2015-09-29 00:00:00
nvd
nvd
CVE-2010-3933
2010-10-28 00:00:05
osv
osv
Rails activerecord gem has Improper Input Validation vulnerability
2017-10-24 18:33:38
cve
cve
CVE-2010-3933
2022-10-03 16:20:54
prion
prion
Design/Logic Flaw
2010-10-28 00:00:00
ubuntucve
ubuntucve
CVE-2010-3933
2010-10-28 00:00:00
gitlab
gitlab
Improper Input Validation
2017-10-24 00:00:00
debiancve
debiancve
CVE-2010-3933
2022-10-03 16:20:54
nessus
nessus
openSUSE Security Update : rubygem-actionmailer (openSUSE-SU-2011:1305-1)
2014-06-13 00:00:00
openSUSE Security Update : rubygem-actionmailer (openSUSE-SU-2011:1305-1)
2014-06-13 00:00:00
GLSA-201412-28 : Ruby on Rails: Multiple vulnerabilities
2014-12-15 00:00:00
gentoo
gentoo
Ruby on Rails: Multiple vulnerabilities
2014-12-14 00:00:00