Vulnerabilities

    GMS-2017-147 Hijacked Environment Variables

    GMS-2017-161 Hijacked Environment Variables

    CVE-2011-2730 EL expressions double evaluation

    CVE-2016-7191 Authentication bypass

    CWE-201 Error clearly exposes the database credentials

    CVE-2017-6379 Cross Site Request Forgery

    CVE-2017-6379 Cross Site Request Forgery

    GMS-2017-140 Downloads Resources over HTTP

    GMS-2017-139 Downloads Resources over HTTP

    CVE-2015-9097 SMTP Injection via to/from addresses