EUVD-2022-3096

Malicious code in bioql PyPI...

GHSA-83M8-7HJ8-FF5W Pebble Templates Improper Input Validation vulnerability

Pebble Templates prior to 3.1.4 allows attackers to bypass a protection mechanism intended to block access to instances of java.lang.Class because getClass is accessible via the public static java.lang.Class java.lang.Class.forNamejava.lang.Module,java.lang.String signature...

CVE-2019-19899

Pebble Templates 3.1.2 allows attackers to bypass a protection mechanism intended to block access to instances of java.lang.Class because getClass is accessible via the public static java.lang.Class java.lang.Class.forNamejava.lang.Module,java.lang.String signature...

Design/Logic Flaw

Pebble Templates 3.1.2 allows attackers to bypass a protection mechanism intended to block access to instances of java.lang.Class because getClass is accessible via the public static java.lang.Class java.lang.Class.forNamejava.lang.Module,java.lang.String signature...

CVE-2019-19899

Pebble Templates 3.1.2 exposes a security bypass: attackers can bypass the protection that blocks access to java.lang.Class via the public static java.lang.Class.forName(java.lang.Module, java.lang.String) signature. Affected component is Pebble Templates (Java template engine) and the root cause...

IBM Java Multiple Packages Sandbox Breach (CVE-2012-4822)

A sandbox breach vulnerability has been reported in IBM Java. The vulnerability is due to insecure use of certain methods in java.lang.class by IBM Java packages. An unauthenticated remote attacker can exploit this vulnerability by enticing the target user to open a crafted web page. Successful...