Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
12 Aug 2022
11 Aug 2022
How to fix?
update_by_case to version 0.1.3 or higher.
update_by_case is an a package that allows you to update multiple ActiveRecord records based on case values on a single database hit
Affected versions of this package are vulnerable to SQL Injection in the
Utils classes, which accept and process SQL strings without sanitization.