Rails · Mysql-Binuuid-Rails · CVE-2018-18476
**Name of the Vulnerable Software and Affected Versions**
mysql-binuuid-rails versions 1.1.0 and earlier
**Description**
The issue allows SQL Injection because it removes default string escaping for affected database columns.
**Recommendations**
For versions 1.1.0 and earlier, update to a version that reinstates default string escaping for database columns to prevent SQL Injection.