Lucene search
K

20 matches found

OSV
OSV
added 2024/06/24 10:8 a.m.1 views

USN-6845-1 libhibernate3-java vulnerability

It was discovered that Hibernate incorrectly handled certain inputs with unsanitized literals. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information...

7.4CVSS7.2AI score0.02907EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/06/24 10:8 a.m.23 views

USN-6845-1: Hibernate vulnerability

It was discovered that Hibernate incorrectly handled certain inputs with unsanitized literals. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information...

5.5AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.6 views

SUSE CVE-2020-25638

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.4CVSS7.6AI score0.02907EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/05/19 8:1 a.m.2 views

hibernate-core: SQL injection vulnerability when both hibernate.use_sql_comments and JPQL String literals are used

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.4CVSS7.2AI score0.02907EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/12/16 12:11 p.m.4 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
NVD
NVD
added 2020/12/02 3:15 p.m.21 views

CVE-2020-25638

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.4CVSS7.8AI score0.02907EPSS
Exploits0References8
OSV
OSV
added 2020/12/02 3:15 p.m.16 views

UBUNTU-CVE-2020-25638

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.4CVSS7.2AI score0.02907EPSS
Exploits0References4
Prion
Prion
added 2020/12/02 3:15 p.m.31 views

Sql injection

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

5.8CVSS7.5AI score0.02907EPSS
Exploits0References8Affected Software5
Cvelist
Cvelist
added 2020/12/02 2:36 p.m.29 views

CVE-2020-25638

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.7AI score0.02907EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2020/11/05 6:48 p.m.3 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/11/05 6:47 p.m.3 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/14 11:16 a.m.3 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/09/16 12:0 a.m.4 views

PT-2020-6584 · Unknown +4 · Hibernate-Core +4

Name of the Vulnerable Software and Affected Versions: hibernate-core versions prior to and including 5.4.23.Final Description: A flaw was found in the implementation of the JPA Criteria API, which can permit unsanitized literals when a literal is used in the SQL comments of the query, allowing a...

8.8CVSS8.3AI score0.02907EPSS
Exploits0References96
RedHat Linux
RedHat Linux
added 2020/09/07 12:58 p.m.2 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/09/07 12:57 p.m.4 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/31 3:40 p.m.4 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/17 1:28 p.m.4 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/17 1:28 p.m.4 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/17 1:25 p.m.3 views

hibernate: SQL injection issue in Hibernate ORM

A flaw was found in Hibernate ORM. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further...

6.5CVSS5.9AI score0.02126EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/07/06 6:35 p.m.34 views

CVE-2019-14900

A flaw was found in Hibernate ORM in versions before 5.3.18, 5.4.18 and 5.5.0.Beta1. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access...

7.5AI score0.02126EPSS
Exploits0References3
Rows per page
Query Builder