-
**Description**
The framework Apache Commons Collections before 4.3 is vulnerable to Stack Overflow. The function `add()` in the file `list/SetUniqueList.java` throws a StackOverflowError when the …
-
Following with our effort to reduce dependencies, the Apache Commons Lang doesn't add much value and thus must be removed
To remove from `build.gradle`: `org.apache.commons:commons-lang3:3.5`
**…
diega updated
5 years ago
-
Vulnerable Library - commons-text-1.9.jar
Apache Commons Text is a library focused on algorithms working on strings.
Library home page: https://www.apache.org/
Path to dependency file: /pom.xml
Path…
-
Hello. I was recently looking into some messages logged by this library and I noticed that they were in a completely different format than our other log messages. After looking at the source code I re…
-
**Is your feature request related to a problem? Please describe.**
Checking whether a string is null is easy. Checking whether a string is blank is much harder. One could start replacing spaces and…
-
## WS-2019-0379 - Medium Severity Vulnerability
Vulnerable Library - commons-codec-1.11.jar
The Apache Commons Codec package contains simple encoder and decoders for
various formats such as Bas…
-
Vulnerable Library - spring-cloud-starter-openfeign-4.0.3.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/commons-fileupload/commons-fileupload/1.…
-
```
cjwizard depends on org.apache.commons.logging.LogFactory which is pretty bad
for a wizard library which could otherwise be used in a variety of projects not
using apache commons logging.
Thus,…
-
Vulnerable Library - esapi-2.1.0.1.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/commons-io/commons-io/2.2/commons-io-2.2.jar
Found in HEAD c…
-
## CVE-2024-25710 - High Severity Vulnerability
Vulnerable Library - commons-compress-1.24.0.jar
Apache Commons Compress defines an API for working with
compression and archive formats. These inclu…