CVE-2018-18893

Jinjava before 2.4.6 does not block the getClass method, related to com/hubspot/jinjava/el/ext/JinjavaBeanELResolver.java.
References
Link Resource
https://github.com/HubSpot/jinjava/pull/230 Patch Third Party Advisory
https://github.com/HubSpot/jinjava/blob/master/CHANGES.md Release Notes Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:hubspot:jinjava:*:*:*:*:*:*:*:*

Information

Published : 2019-01-02 17:29

Updated : 2019-10-02 17:03


NVD link : CVE-2018-18893

Mitre link : CVE-2018-18893


JSON object : View

Advertisement

dedicated server usa

Products Affected

hubspot

  • jinjava