Ruby on Rails vulnerable to mass assignment and SQL injection During the last weeks Ruby on Rails has been hit by several security vulnerabilites. As with all bigger open source projects, it is up to the community to spot and fix such issues. Last week I notified the Ruby on Rails security team about a huge vulnerability that I spotted in the latest stable release of Rails and its related gems. As
![Ruby on Rails vulnerable to mass assignment and SQL injection - Zweitag](https://cdn-ak-scissors.b.st-hatena.com/image/square/abc8c4b15b4c828c5589ce857f99a2690a535c49/height=288;version=1;width=512/https%3A%2F%2Fwww.datocms-assets.com%2F57902%2F1641401570-ruby-on-rails-vulnerable-to-mass-assignment-and-sql-injection.jpg)