HSQLDB is a relational database management system written in Java by The HSQL Development Group team. HSQLDB suffers from a code execution vulnerability that stems from its use of java.sql.Statement or java.sql.PreparedStatement to handle untrusted input, which by default allows calls to any Any static method of a Java class can be exploited by an attacker to execute code.