💻
Secure Code Review Fundamentals
  • Start Here
  • Java
    • Common Sinks
    • Gadget Hunting
    • JRMP
    • Spring [todo]
    • JPA [todo]
    • JDBC [todo]
    • RMI [todo]
    • JNDI [todo]
    • Servlets [todo]
    • Tomcat [todo]
    • JavaServer Faces [todo]
    • JBoss [todo]
    • JavaBean
    • Remote Debugging Tomcat Web Applications
    • Expression Language
      • CVE-2020-9297
      • Exploitation
  • PHP
    • Classic Deserialization (POP) [todo]
    • Common Sinks [todo]
    • PHAR Deserialization [todo]
  • Ruby
    • Common Sinks
    • YAML deserialization [todo]
    • Rails Active Record SQL Injection
  • Python
    • Common Sinks
    • YAML deserialization [todo]
  • Tools
    • CodeQL [todo]
  • Code Review Fundamentals
    • Techniques
  • Untitled
  • CodeQL
    • Common Classes [Java]
    • Useful Classes [Java]
    • Compiling Databases
  • Semgrep
    • About
    • Real World Examples
      • Java == String Equality
Powered by GitBook
On this page

Was this helpful?

  1. Ruby

Rails Active Record SQL Injection

PreviousYAML deserialization [todo]NextCommon Sinks

Last updated 3 years ago

Was this helpful?

https://rorsecurity.info/portfolio/ruby-on-rails-sql-injection-cheat-sheet