Download
| Alert*
|
oval:org.secpod.oval:def:708350
velocity: A general purpose template engine written in Java Velocity Engine could be made to run arbitrary code if it opened a specially crafted file. oval:org.secpod.oval:def:94997 velocity: A general purpose template engine written in Java Velocity Engine could be made to run arbitrary code if it opened a specially crafted file. oval:org.secpod.oval:def:1700680 A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as ... oval:org.secpod.oval:def:3300910 SUSE Security Update: Security update for snakeyaml |
