CVE-2025-56769

An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution RCE via the QLExpressEngine class...

art.rightbrain.tool.vega:vega_api (>=1.0.0 <=1.0.3), cc.autoapi.pucong:auto-flow-core-flow (>=2.0.0 <=2.0.9) +6345 more potentially affected by CVE-2023-24163 via cn.hutool:hutool-all (>=4.0.1 <=5.8.20)

cn.hutool:hutool-all MAVEN version =4.0.1, =1.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.5.0, =0.1.0, =0.3.0, =0.5.0, =0.3.0, =0.3.0, =0.2.0, =0.2.0, =0.4.0, =0.8.0 and more Source cves: CVE-2023-24163 Source advisory: OSV:GHSA-6C25-CXCC-PMC4...