Improper Control of Generation of Code ('Code Injection')
Duke v1.2 and below was discovered to contain a code injection vulnerability via the component no.priv.garshol.duke.server.CommonJTimer.init.
Advisories for Maven/No.priv.garshol.duke/Duke package
2023