This project is archived and is in readonly mode.

#964 ✓resolved
Jon Leighton

Fix for SQL injection on :limit and :offset should be backported

Reported by Jon Leighton | September 3rd, 2008 @ 03:51 PM | in 2.0.3

The fix in #288 is a serious security vulnerability and should be backported to all stable branches.

Comments and changes to this ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2 style="font-size: 14px">Tickets have moved to Github</h2>

The new ticket tracker is available at <a href="https://github.com/rails/rails/issues">https://github.com/rails/rails/issues</a>

Pages