Suyog Narkhede

#13772of 53,635
19.6Total CVSS
Vulnerabilities · 2
Critical
2
PT-2020-7952
9.8
2020-03-30
Odata4J · Odata4J · CVE-2016-11023
Name of the Vulnerable Software and Affected Versions: odata4j version 0.7.0 Description: The issue allows SQL injection through the ExecuteCountQueryCommand.java file. It is noted that the product odata4j is apparently discontinued. Recommendations: For odata4j version 0.7.0, consider disabling the ExecuteCountQueryCommand.java function to prevent SQL injection until further action can be taken, however, since the product is discontinued, there is no information about a newer version that contains a fix for this issue.
PT-2020-7953
9.8
2020-03-30
Odata4J · Odata4J · CVE-2016-11024
Name of the Vulnerable Software and Affected Versions: odata4j version 0.7.0 Description: The issue allows SQL injection through the ExecuteJPQLQueryCommand.java file. The product odata4j is apparently discontinued. Recommendations: For odata4j version 0.7.0, consider disabling the ExecuteJPQLQueryCommand.java function to minimize the risk of SQL injection until further guidance is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.