CVE-2017-16670

The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt