GHSA-GCFH-36X4-MGJ6 Hutool allows remote code execution (RCE) via the QLExpressEngine class
An issue was discovered in chinabugotech hutool before 5.8.40 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution RCE via the QLExpressEngine class...