Questions tagged [hibernate]

Hibernate is an ORM library for Java.

Hibernate ORM (Hibernate in short) is an object-relational mapping tool for the Java programming language. It provides a framework for mapping an object-oriented domain model to a relational database. Hibernate handles object-relational impedance mismatch problems by replacing direct, persistent database accesses with high-level object handling functions.

source Wikipedia:

2 questions
18
votes
3 answers

Does an ORM framework such as Hibernate completely mitigate SQL injection?

I know that to prevent all or most SQL injection attacks that you should use parametrized queries. I've been using Hibernate for a while instead of hand writing my SQL statements. Are there any known attacks or research that is directed toward…
Casey
  • 895
  • 5
  • 18
5
votes
3 answers

Hibernate SQL Injection - Fortify 360

I am using Fortify 360 to analyze my code's security. Fortify has identified a Hibernate based delete method to perform a delete based on an object that has been passed in. My understanding of hibernate is that hibernate will delete a row in the…
Seneca James
  • 71
  • 1
  • 3