{
  "canonical_id": "rails--CVE-2008-4094",
  "system_id": "rails",
  "title": "CVE-2008-4094",
  "reasons": [
    "missing affected/fixed version details"
  ],
  "candidate_count": 1,
  "references": [
    "http://blog.innerewut.de/2008/6/16/why-you-should-upgrade-to-rails-2-1",
    "http://gist.github.com/8946",
    "http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html",
    "http://rails.lighthouseapp.com/projects/8994/tickets/288",
    "http://rails.lighthouseapp.com/projects/8994/tickets/964",
    "http://secunia.com/advisories/31875",
    "http://secunia.com/advisories/31909",
    "http://secunia.com/advisories/31910",
    "http://www.openwall.com/lists/oss-security/2008/09/13/2",
    "http://www.openwall.com/lists/oss-security/2008/09/16/1",
    "http://www.rorsecurity.info/2008/09/08/sql-injection-issue-in-limit-and-offset-parameter/",
    "http://www.securityfocus.com/bid/31176",
    "http://www.securitytracker.com/id?1020871",
    "http://www.vupen.com/english/advisories/2008/2562",
    "https://exchange.xforce.ibmcloud.com/vulnerabilities/45109"
  ]
}