Description
odata4j 0.7.0 allows ExecuteCountQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
Remediation
References
https://groups.google.com/d/msg/odata4j-discuss/_lBwwXP30g0/Av6zkZMdBwAJ
Related Vulnerabilities
CVE-2023-26126 Vulnerability in npm package m.static
CVE-2022-4244 Vulnerability in maven package org.codehaus.plexus:plexus-utils
CVE-2021-21293 Vulnerability in maven package org.http4s:blaze-core_2.13
CVE-2018-8034 Vulnerability in maven package org.apache.tomcat:tomcat-websocket
CVE-2020-2209 Vulnerability in maven package org.jenkins-ci.plugins:testcomplete