Spring Eval injection check

Created by: aabashkin

Let's create a check for Spring Eval injection, which is a high risk vuln that results in Remote Code Execution:

https://www.owasp.org/index.php/Expression_Language_Injection

I have created a testbed for dynamic testing:

https://github.com/aabashkin/web-security-testbed

http://localhost:8080/websecuritytestbed/code-injection/spring-eval-jsp?input=T%28java.lang.Runtime%29.getRuntime%28%29.exec%28%22cmd.exe%22%29.toString%28%29