normal security vulnerabilities: our proxy has slightly different URL handling behavior from our internal server which we can exploit for arbitrary directory traversal java security vulnerabilities: this enterprise software library just sort of runs eval on whatever. sorry!