CVE-2020-13936: Apache Velocity Sandbox Bypass Vulnerability Alert
Velocity is a Java-based template engine. It permits anyone to use a simple yet powerful template language to reference objects defined in Java code. Recently, Apache Velocity discloses a remote code execution vulnerability (CVE-2020-13936)...