Spring Framework suffers from an arbitrary code execution vulnerability. Versions affected include 3.0.0 to 3.0.2, 2.5.0 to 2.5.6SEC01 (community releases) and 2.5.0 to 2.5.7 (subscription customers).
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90808/springframework-exec.txt
Source: https://packetstormsecurity.com/files/90808/Spring-Framework-Code-Execution.html