Description
AviatorScript through 5.2.7 allows code execution via an expression that is encoded with Byte Code Engineering Library (BCEL).
Remediation
References
https://github.com/killme2008/aviatorscript/issues/421
Related Vulnerabilities
CVE-2020-7675 Vulnerability in npm package cd-messenger
CVE-2021-23337 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash
CVE-2021-40369 Vulnerability in maven package org.apache.jspwiki:jspwiki-main
CVE-2020-7663 Vulnerability in npm package websocket-extensions
CVE-2020-28277 Vulnerability in maven package org.webjars.npm:dset