Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-XR4V-28RM-PVGW
HistoryMay 17, 2022 - 2:37 a.m.

Improper Neutralization of Special Elements used in an SQL Command Pivotal Spring Data JPA

2022-05-1702:37:09
CWE-89
GitHub Advisory Database
github.com
9

0.002 Low

EPSS

Percentile

58.0%

JSON

SQL injection vulnerability in Pivotal Spring Data JPA before 1.9.6 (Gosling SR6) and 1.10.x before 1.10.4 (Hopper SR4), when used with a repository that defines a String query using the @Query annotation, allows attackers to execute arbitrary JPQL commands via a sort instance with a function call.

Related

osv 1
cve 1
cvelist 1
seebug 1
prion 1
nessus 1
gentoo 1
osv
osv
Improper Neutralization of Special Elements used in an SQL Command Pivotal Spring Data JPA
2022-05-17 02:37:09
cve
cve
CVE-2016-6652
2016-10-05 16:59:00
cvelist
cvelist
CVE-2016-6652
2016-10-05 16:00:00
seebug
seebug
Spring Data JPA Blind SQL Injection Vulnerability
2016-11-11 00:00:00
prion
prion
Sql injection
2016-10-05 16:59:00
nessus
nessus
GLSA-201701-01 : MariaDB and MySQL: Multiple vulnerabilities
2017-01-03 00:00:00
gentoo
gentoo
MariaDB and MySQL: Multiple vulnerabilities
2017-01-01 00:00:00

0.002 Low

EPSS

Percentile

58.0%

JSON
Related for GHSA-XR4V-28RM-PVGW
osv1cve1cvelist1seebug1prion1nessus1gentoo1