Lucene search
+L

7 matches found

OSV
OSV
added 4 days ago7 views

CVE-2026-42049 jadx: RCE Via Groovy Code Injection in Gradle Export

jadx is a Dex to Java decompiler. Prior to 1.5.6, jadx inserts the android:versionName value from an AndroidManifest into the generated app/build.gradle Groovy template without proper sanitization when exporting a decompiled APK as an Android Gradle project. A malicious APK can break out of the...

8.4CVSS6.2AI score0.00151EPSS
Exploits0References5
Cvelist
Cvelist
added 4 days ago34 views

CVE-2026-42049 jadx: RCE Via Groovy Code Injection in Gradle Export

jadx is a Dex to Java decompiler. Prior to 1.5.6, jadx inserts the android:versionName value from an AndroidManifest into the generated app/build.gradle Groovy template without proper sanitization when exporting a decompiled APK as an Android Gradle project. A malicious APK can break out of the...

8.4CVSS0.00151EPSS
Exploits0References3
OSV
OSV
added 2025/10/20 3:30 p.m.2 views

GHSA-825G-MM5V-GGQ4 Apache Syncope allows malicious administrators to inject Groovy code

Apache Syncope offers the ability to extend / customize the base behavior on every deployment by allowing to provide custom implementations of a few Java interfaces; such implementations can be provided either as Java or Groovy classes, with the latter being particularly attractive as the machine...

7.2CVSS7AI score0.23107EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0603

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.06029EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 6:53 p.m.9 views

CVE-2021-45029

Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1...

9.8CVSS7.5AI score0.06029EPSS
Exploits0
OSV
OSV
added 2022/01/28 10:13 p.m.33 views

GHSA-GH38-X2WM-XMC8 Code injection in ShenYu

Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1...

9.8CVSS7.3AI score0.06029EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/01/25 1:0 p.m.23 views

CVE-2021-45029 Apache ShenYu 2.4.1 Groovy Code Injection & SpEL Injection

Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1...

10AI score0.06029EPSS
Exploits0References3
Rows per page
Query Builder