Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2022/02/21 6:22 p.m.8 views

jakarta-el: ELParserTokenManager enables invalid EL expressions to be evaluate

In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid...

5.3CVSS7.1AI score0.02132EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/09/14 12:37 p.m.5 views

jakarta-el: ELParserTokenManager enables invalid EL expressions to be evaluate

In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid...

5.3CVSS7.1AI score0.02132EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/08/17 1:28 p.m.15 views

hibernate-validator: Improper input validation in the interpolation of constraint error messages

A flaw was found in Hibernate Validator version 6.1.2.Final. A bug in the message interpolation processor enables invalid EL expressions to be evaluated as if they were valid. This flaw allows attackers to bypass input sanitation escaping, stripping controls that developers may have put in place...

5.3CVSS7.3AI score0.02294EPSS
Exploits0References4
OSV
OSV
added 2018/07/19 1:29 p.m.3 views

DEBIAN-CVE-2018-14404

A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATHOPAND or XPATHOPOR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerab...

7.5CVSS6.2AI score0.03681EPSS
Exploits0References1
Rows per page
Query Builder