Ruby on Rails Development Team Rushes to Plug the Publicly Disclosed SQL Injection Hole

By HTMLGoodies Staff

The Rails developers have rushed to table to fix last week’s publicly disclosed SQL injection vulnerability and thus have released versions 3.2.10, 3.1.9, and 3.0.18 of the popular programming language framework. The Ruby team has apologized for releasing a security update so close to the holidays, but indicated that they were in fact forced to do so with the vulnerability being publicly disclosed and in order to assist those users who aren’t able to immediately upgrade to the latest versions of the development framework, the have also published a workaround and released manual patches that can be easily applied to older versions. Read the details here.



Make a Comment

Loading Comments...

  • Web Development Newsletter Signup

    Invalid email
    You have successfuly registered to our newsletter.
  •  
  •