Vulnerabilities > Jboss > Seam

DATE CVE VULNERABILITY TITLE RISK
2007-12-18 CVE-2007-6433 Improper Input Validation vulnerability in Jboss Seam
The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.
network
low complexity
jboss CWE-20
7.5