title: SQL injection vulnerability via Marginalia::Comment
description: "The 'marginalia' gem is affected by a SQL Injection vulnerability. All
SQL \nqueries are affected when a user controller argument is added as a component.\n\nThis
affects users that add a component that is user controller, for instance\na parameter
or a header.\n\nThe issue is resolved in version 1.6.\n"
- ">= 1.6"