CVE-2021-28170
The CVE-2021-28170 issue affects Eclipse EE4J Jakarta Expression Language. A flaw in the ELParserTokenManager enables invalid EL expressions to be evaluated as valid, effectively bypassing input validation. This impacts Jakarta EL up to version 3.0.3 and earlier. The associated IBM/NVD entries de...