You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@openmeetings.apache.org by "Maxim Solodovnik (JIRA)" <ji...@apache.org> on 2014/06/02 06:35:02 UTC

[jira] [Closed] (OPENMEETINGS-946) SQL Injection

     [ https://issues.apache.org/jira/browse/OPENMEETINGS-946?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Maxim Solodovnik closed OPENMEETINGS-946.
-----------------------------------------


> SQL Injection
> -------------
>
>                 Key: OPENMEETINGS-946
>                 URL: https://issues.apache.org/jira/browse/OPENMEETINGS-946
>             Project: Openmeetings
>          Issue Type: Test
>    Affects Versions: 3.0.0, 3.1.0
>            Reporter: Kriti Gupta
>            Priority: Critical
>              Labels: security
>
> SQL Injection errors occur when:
> 1. Data enters a program from an untrusted source.
> In this case the data enters at in FindLocations.java at line 86.
> 2. The data is used to dynamically construct a SQL query.
> In this case the data is passed to in LocationService.java at line 69.



--
This message was sent by Atlassian JIRA
(v6.2#6252)