You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@openmeetings.apache.org by "Maxim Solodovnik (JIRA)" <ji...@apache.org> on 2014/06/02 06:35:03 UTC

[jira] [Closed] (OPENMEETINGS-948) SQL Injection: Hibernate

     [ https://issues.apache.org/jira/browse/OPENMEETINGS-948?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Maxim Solodovnik closed OPENMEETINGS-948.
-----------------------------------------


> SQL Injection: Hibernate
> ------------------------
>
>                 Key: OPENMEETINGS-948
>                 URL: https://issues.apache.org/jira/browse/OPENMEETINGS-948
>             Project: Openmeetings
>          Issue Type: Test
>    Affects Versions: 3.0.0, 3.1.0
>         Environment: Windows 8
>            Reporter: Kriti Gupta
>            Assignee: Maxim Solodovnik
>            Priority: Critical
>              Labels: security
>
> On line 69 of LocationService.java, findAtmByZip() uses Hibernate to execute a dynamic SQL statement built with input coming from an
> untrusted source. An attacker could modify the statement's meaning or execute arbitrary SQL commands. Using Hibernate to execute a dynamic
> SQL statement built with input coming from an untrusted source can allow an attacker to modify the statement's meaning or to execute arbitrary
> SQL commands.
> SQL Injection errors occur when:
> 1. Data enters a program from an untrusted source.
> In this case the data enters at in FindLocations.java at line 86.
> 2. The data is used to dynamically construct a SQL query.
> In this case the data is passed to in LocationService.java at line 69.



--
This message was sent by Atlassian JIRA
(v6.2#6252)