Moderate severityNVD Advisory· Published Dec 24, 2023· Updated Feb 23, 2026
CVE-2023-51763
CVE-2023-51763
Description
csv_builder.rb in ActiveAdmin (aka Active Admin) before 3.2.0 allows CSV injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
activeadminRubyGems | < 3.2.0 | 3.2.0 |
Affected products
2Patches
Vulnerability mechanics
References
10- github.com/advisories/GHSA-xhvv-3jww-c487ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-51763ghsaADVISORY
- github.com/activeadmin/activeadmin/commit/7af735cf657c73734fca1900cd6a5adac4ee706eghsaWEB
- github.com/activeadmin/activeadmin/pull/8167ghsaWEB
- github.com/activeadmin/activeadmin/releases/tag/v3.2.0ghsaWEB
- github.com/activeadmin/activeadmin/security/advisories/GHSA-xhvv-3jww-c487ghsaWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/activeadmin/CVE-2023-51763.ymlghsaWEB
- github.com/activeadmin/activeadmin/commit/697be2b183491beadc8f0b7d8b5bfb44f2387909mitre
- github.com/activeadmin/activeadmin/pull/8161mitre
- jzee-rx.medium.com/cve-2023-51763-csv-injection-in-activeadmin-a-security-research-breakdown-d5b0d3663aa4mitre
News mentions
0No linked articles in our index yet.