mysql-binuuid-rails is a Store UUIDs in binary MySQL database columns.
Affected versions of this package are vulnerable to SQL Injection. It used a data type that is derived from the base Binary type, except, it did not convert the value to hex. Instead, it assumed the string value provided is a valid hex string without conducting any checks on it.
mysql-binuuid-rails to version 1.1.1 or higher.
Do your applications use this vulnerable package?