CVE-2007-2759
Adempiere is affected by multiple SQL injection vulnerabilities in the insert function of ValuePreference.java (grid/ed/ValuePreference.java) prior to version 3.1.6. The issue allows remote attackers to execute arbitrary SQL commands via the m_Attribute or m_Value parameters. The vulnerability is...