VYPR

ballcat-codegen

by ballcat-projects

Source repositories

CVEs (1)

  • CVE-2022-24881HigApr 26, 2022
    risk 0.50cvss 8.8epss 0.03

    Ballcat Codegen provides the function of online editing code to generate templates. In versions prior to 1.0.0.beta.2, attackers can implement remote code execution through malicious code injection of the template engine. This happens because Velocity and freemarker templates…