My Oracle Support Banner

Is the P6 REST API or P6 Web Services Vulnerable to SQL Injection? (Doc ID 2995365.1)

Last updated on DECEMBER 29, 2023

Applies to:

Primavera P6 Enterprise Project Portfolio Management - Version 21.12 and later
Primavera Web Services - Version 21.12 and later
Primavera P6 Enterprise Project Portfolio Management Cloud Service - Version 21.9 and later
Information in this document applies to any platform.

Goal

Is the P6 REST API or P6 Web Services vulnerable to SQL Injection since the Filter parameter uses SQL query format.

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.