PT-2026-40566

Hitachi Vantara Pentaho Data Integration & Analytics of all versions contain a JDBC driver for H2 databases which is vulnerable to external script execution when a new connection is created by a data source administrator...

EUVD-2021-2477

Malware in sbrugna...

EUVD-2022-54255

Malicious code in bioql PyPI...

africa.absa:inception-application (>=1.0.0 <=1.2.0), africa.absa:inception-test (>=1.0.0 <=1.2.0) +4066 more potentially affected by CVE-2022-45868 via com.h2database:h2 (>=1.4.198 <=2.1.214)

com.h2database:h2 MAVEN version =1.4.198, =1.0.0, =1.0.0, =0.5.2, =0.5.2, =0.1.0, =0.2.0, =0.2.0, =0.9.6, =1.2.0, =1.0, =1.0.12 - br.com.caiquejh:spring-sample =1.0.0 and more Source cves: CVE-2022-45868 Source advisory: OSV:GHSA-22WJ-VF5F-WRVJ...

SpringBootVulExploit

This repository is an offensive tool for Spring Boot exploitation. It contains various modules and scripts that can be used to exploit vulnerabilities in Spring Boot applications. The primary vulnerability being targeted is a deserialization vulnerability in the Spring Boot framework, which can b...