Vulnerabilities found and flagged mainly on jackson-databind