JBoss List Archives
Sign In
Sign Up
Sign In
Sign Up
Manage this list
2024
June
May
April
March
February
January
2023
December
November
October
September
August
July
June
May
April
March
February
January
2022
December
November
October
September
August
July
June
May
April
March
February
January
2021
December
November
October
September
August
July
June
May
April
March
February
January
2020
December
November
October
September
August
July
June
May
April
March
February
January
2019
December
November
October
September
August
July
June
May
April
March
February
January
2018
December
November
October
September
August
July
June
May
April
March
February
January
2017
December
November
October
September
August
July
June
May
April
March
February
January
2016
December
November
October
September
August
July
June
May
April
March
February
January
2015
December
November
October
September
August
July
June
May
April
March
February
January
2014
December
November
October
September
August
July
June
May
April
March
February
January
2013
December
November
October
September
August
July
June
May
April
March
February
January
2012
December
November
October
September
August
July
June
May
April
March
February
January
2011
December
November
October
September
August
July
June
May
April
March
February
January
2010
December
November
October
September
August
July
June
May
April
March
February
January
2009
December
November
October
September
August
July
June
May
April
March
February
January
2008
December
November
October
September
August
July
June
May
April
March
February
January
2007
December
November
October
September
August
July
June
May
April
March
February
January
2006
December
November
October
September
August
List overview
Download
thread
[hibernate-issues] [JIRA] (HHH-15496) Code is Vulnerable to SQL Injection
Dareen Fadul (JIRA)
Friday, 9 September 2022
Fri, 9 Sep '22
6:33 p.m.
Dareen Fadul (
https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=631b656...
) *created* an issue Hibernate ORM (
https://hibernate.atlassian.net/browse/HHH?atlOrigin=eyJpIjoiOTQ3OTU5Mzdk...
) / Bug (
https://hibernate.atlassian.net/browse/HHH-15496?atlOrigin=eyJpIjoiOTQ3OT...
) HHH-15496 (
https://hibernate.atlassian.net/browse/HHH-15496?atlOrigin=eyJpIjoiOTQ3OT...
) Code is Vulnerable to SQL Injection (
https://hibernate.atlassian.net/browse/HHH-15496?atlOrigin=eyJpIjoiOTQ3OT...
) Issue Type: Bug Assignee: Unassigned Components: hibernate-testing Created: 09/Sep/2022 09:33 AM Labels: security Priority: Critical Reporter: Dareen Fadul (
https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=631b656...
) Hi, I noticed in hibernate-testing the following: In OracleDatabaseCleaner.java *,* in clearSchema method, PreparedStatement is not used, and no input validation for variables used in the SQL command at line 101.
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
(
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
) For example, if the user, passed (XX' OR '1'='1';--) for schemaName , then DROP TABLE statements for all schemas in the database will be generated and executed in clearSchema0. Similar issues in other files like AbstractMySQLDatabaseCleaner.java, and DB2DatabaseCleaner.java
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
(
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
)
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
(
https://github.com/hibernate/hibernate-orm/blob/fa8b78d345e01d980a6046f22...
) (
https://hibernate.atlassian.net/browse/HHH-15496#add-comment?atlOrigin=ey...
) Add Comment (
https://hibernate.atlassian.net/browse/HHH-15496#add-comment?atlOrigin=ey...
) Get Jira notifications on your phone! Download the Jira Cloud app for Android (
https://play.google.com/store/apps/details?id=com.atlassian.android.jira....
) or iOS (
https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=Em...
) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100206- sha1:d8a7a40 )
Attachments:
attachment.html
(text/html — 20.0 KB)
0
/
0
Reply
Back to the thread
Back to the list