E12-52v01
CVSS:
7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
False Positive:
f
Variants:
1
Year:
2012
Description
This strike exploits a SQL injection vulnerability Ruby on Rails. The vulnerability results from a lack of input validation while handling hash values.
A remote attacker could exploit this vulnerability by sending malicous SQL code.