SQL Injection in odata4j
Critical severity
GitHub Reviewed
Published
May 7, 2021
to the GitHub Advisory Database
•
Updated Jan 28, 2023
Description
Published by the National Vulnerability Database
Mar 30, 2020
Reviewed
May 6, 2021
Published to the GitHub Advisory Database
May 7, 2021
Last updated
Jan 28, 2023
odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
References