TL;DR: Catalogue of Java methods reachable from request handlers that lead to bug classes — Runtime.exec, ObjectInputStream, reflection, JNDI lookups.
Stub — to be filled in.
What it is
TODO
Preconditions / where it applies
TODO
Technique
TODO
Detection and defence
TODO
References