Launch Week Day 1: Announcing Security Design Review
Start for Free
rubygems

activerecord

View on rubygems registry
26 Total advisories
26 Vulnerabilities
0 Malware

Vulnerabilities

CRITICAL 9.8
RubyGems

CVE-2022-32224

Active Record RCE bug with Serialized Columns
UNKNOWN
RubyGems

CVE-2025-55193

Active Record logging vulnerable to ANSI escape injection
UNKNOWN
RubyGems

CVE-2013-3221

Active Record component in Ruby on Rails has a data-type injection vulnerability
HIGH 7.5
RubyGems

CVE-2022-44566

Denial of Service Vulnerability in ActiveRecord's PostgreSQL adapter
UNKNOWN
RubyGems

CVE-2011-2930

activerecord vulnerable to SQL Injection
UNKNOWN
RubyGems

CVE-2014-3482

SQL Injection in Active Record
UNKNOWN
RubyGems

CVE-2012-6496

Active Record contains SQL Injection
UNKNOWN
RubyGems

CVE-2012-2695

activerecord vulnerable to SQL Injection
UNKNOWN
RubyGems

CVE-2014-0080

Array data injection vulnerability in activerecord
UNKNOWN
RubyGems

CVE-2010-3933

Rails activerecord gem has Improper Input Validation vulnerability
UNKNOWN
RubyGems

CVE-2008-4094

Rails ActiveRecord gem vulnerable to SQL injection
UNKNOWN
RubyGems

CVE-2012-2661

Active Record vulnerable to SQL Injection via nested query parameters
UNKNOWN
RubyGems

CVE-2013-0277

Active Record contains deserialization of arbitrary YAML
UNKNOWN
RubyGems

GHSA-7phj-gmgx-2r66

Moderate severity vulnerability that affects activerecord
UNKNOWN
RubyGems

GHSA-m8h6-m9p5-p2f8

Moderate severity vulnerability that affects activerecord
UNKNOWN
RubyGems

GHSA-hm48-76wh-q86v

High severity vulnerability that affects activerecord
UNKNOWN
RubyGems

CVE-2014-3514

Active Record subject to strong parameters protection bypass
UNKNOWN
RubyGems

CVE-2013-1854

Active Record Improper Input Validation
UNKNOWN
RubyGems

CVE-2013-0276

ActiveRecord vulnerable to modification of protected model attributes
UNKNOWN
RubyGems

CVE-2013-0155

Active Record allows bypassing of database-query restrictions
UNKNOWN
RubyGems

CVE-2014-3483

Active Record contains SQL Injection via improper range quoting
UNKNOWN
RubyGems

CVE-2011-0448

activerecord vulnerable to SQL Injection
HIGH 8.8
RubyGems

CVE-2023-22794

SQL Injection Vulnerability via ActiveRecord comments
HIGH 7.5
RubyGems

CVE-2016-6317

ActiveRecord in Ruby on Rails allows database-query bypass
HIGH 7.5
RubyGems

CVE-2021-22880

Active Record subject to Regular Expression Denial-of-Service (ReDoS)
MEDIUM 5.3
RubyGems

CVE-2015-7577

Active Record Improper Access Control

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes