CVE-2016-11024

CVE-2016-11024

EPSS 1.4%

odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://groups.google.com/d/msg/odata4j-discuss/_lBwwXP30g0/Av6zkZMdBwAJ