Improper Control of Generation of Code ('Code Injection')
The WSDL/WADL import functionality in SoapUI before 4.6.4 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL file.
Advisories for Maven/Com.smartbear.soapui/Soapui package
2022