← Back

Odata4j

odata4j

Vendor: Odata4j Project • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2016-11024
1Odata4j Project
1Odata4j
Nov 21, 2024
Mar 30, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
odata4j 0.7.0 allows ExecuteJPQLQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
CVE-2016-11023
1Odata4j Project
1Odata4j
Nov 21, 2024
Mar 30, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
odata4j 0.7.0 allows ExecuteCountQueryCommand.java SQL injection. NOTE: this product is apparently discontinued.
CVE-2014-0171
2Odata4j Project
Redhat
2Jboss Data Virtualization
Odata4j
May 6, 2026
Jan 15, 2015
N/A· v4
N/A· v3
5.0 MEDIUM· v2
XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization before 6.0.0 patch 4, allows remote attackers to read arbitrary files via a crafted request to a...Show more
XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization before 6.0.0 patch 4, allows remote attackers to read arbitrary files via a crafted request to a REST endpoint.Show less