Saturday, December 7, 2024

Ruby on Rails Development Team Rushes to Plug the Publicly Disclosed SQL Injection Hole

The Rails developers have rushed to table to fix last week’s publicly disclosed SQL injection vulnerability and thus have released versions 3.2.10, 3.1.9, and 3.0.18 of the popular programming language framework. The Ruby team has apologized for releasing a security update so close to the holidays, but indicated that they were in fact forced to do so with the vulnerability being publicly disclosed and in order to assist those users who aren’t able to immediately upgrade to the latest versions of the development framework, the have also published a workaround and released manual patches that can be easily applied to older versions. Read the details here.

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends & analysis

Popular Articles

Featured