CVE-2013-6417: Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)

December 6, 2013 (updated August 8, 2019)

Due to the way that Rack::Request and Rails::Request interact, it is possible for a 3rd party or custom rack middleware to parse the parameters insecurely and store them in the same key that Rails uses for its own parameters. In the event that happens the application will receive unsafe parameters and could be vulnerable to the earlier vulnerability: it would be possible for an attacker to issue unexpected database queries with IS NULL or empty where clauses.

References

seclists.org/oss-sec/2013/q4/403

Code Behaviors & Features

Detect and mitigate CVE-2013-6417 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →