Crumbledwall

**Name of the Vulnerable Software and Affected Versions** DataGear versions 5.0.0 and earlier **Description** A SpEL (Spring Expression Language) expression injection issue was found in the Data Viewing interface. This allows for potential malicious activity via the injection of expressions. **Recommendations** For versions 5.0.0 and earlier, consider restricting access to the Data Viewing interface until a fix is available. As a temporary workaround, disabling the use of SpEL expressions in this interface may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.