Unrated severityNVD Advisory· Published Dec 18, 2007· Updated Jun 16, 2026
CVE-2007-6433
CVE-2007-6433
Description
The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
9- jira.jboss.com/jira/browse/JBSEAM-2084nvdExploit
- secunia.com/advisories/28077nvdVendor Advisory
- osvdb.org/42631nvd
- sourceforge.net/project/shownotes.phpnvd
- www.redhat.com/support/errata/RHSA-2008-0151.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0158.htmlnvd
- www.redhat.com/support/errata/RHSA-2008-0213.htmlnvd
- www.securityfocus.com/bid/26850nvd
- www.vupen.com/english/advisories/2007/4215nvd
News mentions
0No linked articles in our index yet.