Description

The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.

Remediation

References

http://jira.jboss.com/jira/browse/JBSEAM-2084

http://sourceforge.net/project/shownotes.php?release_id=549490&group_id=22866

http://secunia.com/advisories/28077

http://www.redhat.com/support/errata/RHSA-2008-0158.html

http://www.redhat.com/support/errata/RHSA-2008-0151.html

http://www.redhat.com/support/errata/RHSA-2008-0213.html

http://www.securityfocus.com/bid/26850

http://osvdb.org/42631

http://www.vupen.com/english/advisories/2007/4215

Related Vulnerabilities

CVE-2023-34238 Vulnerability in npm package gatsby-plugin-mdx

CVE-2022-41249 Vulnerability in maven package com.meowlomo.jenkins:scm-httpclient

CVE-2021-21179 Vulnerability in npm package electron

CVE-2018-1000615 Vulnerability in maven package org.onosproject:onos-ovsdb

CVE-2021-23395 Vulnerability in npm package nedb

Severity

Critical

Classification

CWE-20

Tags

Exploit Vendor Advisory