CVE-2016-11024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in maven/org.odata4j/odata4j-parent
Identifiers
GHSA-f96g-24cg-f24w, CVE-2016-11024
Package Slug
maven/org.odata4j/odata4j-parent
Vulnerability
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
Affected Versions
All versions up to 0.7.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2022-11-18
| source |