Ruby on Rails developers issued a patch for a SQL Injection flaw. According to Akamai, the two vulnerabilities affect Rails applications that use PostgreSQL as a database system. The Rails developers released versions 3.2.19, 4.0.7 and 4.1.3 of the framework, and advised users to upgrade as soon as possible. Hours later they released versions 4.0.8 and 4.1.4 to fix a regression caused by the 4.0.7 and 4.1.3 updates. One of the two SQL injection vulnerabilities affects applications running...
Read more