JBoss Seam 'order' Parameter SQL Injection Vulnerability

Bugtraq ID: 26850
Class: Input Validation Error
CVE: CVE-2007-6433
Remote: Yes
Local: No
Published: Nov 01 2007 12:00AM
Updated: Apr 03 2008 05:49PM
Credit: Antoni Jakubiak discovered this vulnerability.
Vulnerable: Redhat JBoss Enterprise Application Platform 4.2 EL4
JBoss Group JBoss Seam 2.0 CR3
JBoss Group JBoss Seam 2.0 CR2
JBoss Group JBoss Seam 2.0 CR1
Not Vulnerable: JBoss Group JBoss Seam 2.0 GA


 

Privacy Statement
Copyright 2010, SecurityFocus