Vulnerabilities > Pebbletemplates

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-27	CVE-2025-1686	Unspecified vulnerability in Pebbletemplates Pebble All versions of the package io.pebbletemplates:pebble are vulnerable to External Control of File Name or Path via the include tag. network low complexity pebbletemplates	4.9
2022-09-12	CVE-2022-37767	Incorrect Authorization vulnerability in Pebbletemplates Pebble Templates 3.1.5 Pebble Templates 3.1.5 allows attackers to bypass a protection mechanism and implement arbitrary code execution with springbok. network low complexity pebbletemplates CWE-863 critical	9.8
2019-12-19	CVE-2019-19899	Missing Authorization vulnerability in Pebbletemplates Pebble Templates 3.1.2 Pebble Templates 3.1.2 allows attackers to bypass a protection mechanism (intended to block access to instances of java.lang.Class) because getClass is accessible via the public static java.lang.Class java.lang.Class.forName(java.lang.Module,java.lang.String) signature. network low complexity pebbletemplates CWE-862 critical	9.8

Vulnerabilities > Pebbletemplates {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pebbletemplates"}]}