cpe:/a:hubspot:jinjava:1.0.0 cpe:/a:hubspot:jinjava:1.0.1 cpe:/a:hubspot:jinjava:1.0.2 cpe:/a:hubspot:jinjava:1.0.3 cpe:/a:hubspot:jinjava:1.0.4 cpe:/a:hubspot:jinjava:1.0.5 cpe:/a:hubspot:jinjava:1.0.6 cpe:/a:hubspot:jinjava:1.0.7 cpe:/a:hubspot:jinjava:1.0.8 cpe:/a:hubspot:jinjava:1.0.9 cpe:/a:hubspot:jinjava:2.0.0 cpe:/a:hubspot:jinjava:2.0.1 cpe:/a:hubspot:jinjava:2.0.2 cpe:/a:hubspot:jinjava:2.0.3 cpe:/a:hubspot:jinjava:2.0.4 cpe:/a:hubspot:jinjava:2.0.5 CVE-2018-18893 2019-01-02T20:29:00.380-05:00 2019-10-02T20:03:26.223-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2019-01-10T14:16:57.473-05:00 MISC https://github.com/HubSpot/jinjava/blob/master/CHANGES.md MISC https://github.com/HubSpot/jinjava/pull/230 Jinjava before 2.4.6 does not block the getClass method, related to com/hubspot/jinjava/el/ext/JinjavaBeanELResolver.java.