[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2021-45029: Groovy Code Injection & SpEL Injection in Apache ShenYu 2.4.1
From:       Zhang Yonglun <zhangyonglun () apache ! org>
Date:       2022-01-25 11:53:03
Message-ID: CA+ZBtZ5dRpp15h_OExLFuaPR=dEBeB-VYRCjA+omzNq23p=9cQ () mail ! gmail ! com
[Download RAW message or body]


Description:

Groovy Code Injection & SpEL Injection which lead to Remote Code
Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1.

--

Zhang Yonglun
Apache ShenYu (Incubating)
Apache ShardingSphere


[prev in list] [next in list] [prev in thread] [next in thread]