CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

92 matches found

Veracode•added 2026/05/23 5:51 a.m.•6 views

Improper Input Validation

com.ibeetl:beetl-spring-classic is vulnerable to Improper Input Validation. The vulnerability is due to improper neutralization of special elements in expression language statements within the SpELFunction component, which allows an attacker to inject and execute malicious expressions remotely...

7.5CVSS7.2AI score0.00026EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/05/19 1:58 a.m.•5 views

CVE-2026-8759

A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an unknown function of the file beetl-classic-integration/beetl-spring-classic/src/main/java/org/beetl/ext/spring/SpELFunction.java of the component SpELFunction. The manipulation leads to improper neutralization of specia...

7.5CVSS5.4AI score0.00026EPSS

Exploits0References1

Github Security Blog•added 2026/05/17 3:31 p.m.•7 views

Beetl's SpELFunction extension function has an expression injection risk

7.5CVSS6.7AI score0.00026EPSS

Exploits0References7Affected Software1

OSV•added 2026/05/17 3:31 p.m.•3 views

GHSA-FMMW-44RP-JCFP Beetl's SpELFunction extension function has an expression injection risk

7.3CVSS6.6AI score0.00026EPSS

Exploits0References6

NVD•added 2026/05/17 3:16 p.m.•7 views

CVE-2026-8759

7.5CVSS0.00026EPSS

Exploits0References5

Cvelist•added 2026/05/17 2:15 p.m.•33 views

CVE-2026-8759 xiandafu beetl SpELFunction SpELFunction.java expression language injection

7.5CVSS0.00026EPSS

Exploits0References5

EUVD•added 2026/05/17 2:15 p.m.•7 views

EUVD-2026-30704

7.5CVSS6.7AI score0.00026EPSS

Exploits0References5

CVE•added 2026/05/17 2:15 p.m.•9 views

CVE-2026-8759

Technical details are not publicly available in the provided documents; no affected versions, vectors, or fixes are specified beyond the description. Monitor for updates.

7.5CVSS6.7AI score0.00026EPSS

Exploits0References5

ATTACKERKB•added 2026/05/17 2:15 p.m.•4 views

CVE-2026-8759

7.5CVSS6.7AI score0.00026EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/17 2:15 p.m.•3 views

CVE-2026-8759 xiandafu beetl SpELFunction SpELFunction.java expression language injection

7.5CVSS6.7AI score0.00026EPSS

Exploits0References5

Positive Technologies•added 2026/05/17 12:0 a.m.•5 views

PT-2026-41572

Name of the Vulnerable Software and Affected Versions xiandafu beetl versions prior to 3.20.3 Description Improper neutralization of special elements in an expression language statement allows for remote exploitation. The issue exists within the SpELFunction component, specifically in an unknown...

7.5CVSS7.1AI score0.00026EPSS

Exploits0References12

CNNVD•added 2026/05/17 12:0 a.m.•5 views

Beetl 输入验证错误漏洞

Beetl is a high-speed template engine developed by xiandafu’s individual developers. Versions of Beetl 3.20.2 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from improper handling of special elements within expression language statements in th...

7.5CVSS7.1AI score0.00026EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-1575