Uploaded image for project: 'Commons JEXL'
  1. Commons JEXL
  2. JEXL-223

Apache Commons JEXL Expression Execute Command Vulnerabilitity

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 3.1
    • 3.3
    • None

    Description

      0x01 Summary
      Apache Commons JEXL Expression Execute Command Vulnerabilitity throught groovy.

      0x02 POC
      POC Report to Apache Security Email Address security@apache.org.

      Attachments

        Issue Links

          is fixed by

          Improvement - An improvement or enhancement to an existing feature or task. JEXL-357 Configure accessible packages/classes/methods/fields

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. JEXL-381 Change default JEXL configuration to a more security-friendly behaviour

          • Major - Major loss of function.
          • Closed

          Activity

            People

              henrib Henri Biestro
              cnbird cnbird
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: