Security bypass using Java imports
An attacker can Import Java classes to circumvent the security protections and execute arbitrary code outside the sandboxed environment.
Advisories for Gem/Jruby_sandbox package
2014
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in jruby-sandbox.