sql injection

Question

sql injection

Closed this issue 8 years ago · 3 comments

There is a sql injection in core/src/main/java/fr/gael/dhus/database/dao/ProductDao.java:364: getProductByUuid does not verify the parameter uuid (eg /odata/v1/Products(''')). I think I've seen another unsafe query where the username could be used.

Answer 1 · 2017-01-20T10:08:55.000Z

Fixed in DHuS version 0.12.5-6-osf.

Answer 2 · 2017-01-20T16:22:25.000Z

Still not fixed in 0.12.5-6-osf.

Answer 3 · 2017-01-20T18:34:52.000Z

The tag 0.12.5-6-osf is still vulnerable (0.12.5-6-osf/…/ProductDao.java). This isn't surprising as the method body wasn't touched for ten months.