-
Vulnerable Library - spring-boot-2.7.5.jar
Path to dependency file: /telegrambots-spring-boot-starter/pom.xml
Path to vulnerable library: /Users/alexmaybaum/.m2/repository/org/springframework/sprin…
-
Hey all,
I'm leaving this less as a feature request / bug report and more as a "this is something I've encountered that I'm sure other people will also suffer through". There's probably a minor cha…
-
Spring Web 6.1 uses Jetty 12. Jetty 12 changed the implementation of
org.springframework.http.client.reactive.JettyClientHttpRequest#applyHeaders
from (Jetty 11)
public Mutable add(Strin…
-
https://github.com/spring-projects/spring-statemachine/blob/3c38675eb031bc094602a9181d2c1f8074d2b4dc/spring-statemachine-core/src/main/java/org/springframework/statemachine/support/AbstractStateMachin…
-
My case was something like run this sample http://projects.spring.io/spring-boot/ as simple as maven does.
Theres lots of cases like that and migration or integration with maven projects to ceylon wi…
-
During a penetration test one finding was the information disclosure of using a Tomcat webserver.
If a request with an invalid URL (e.g. http://localhost:8080/[test ) is executed the configured cus…
patst updated
7 months ago
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Spring Web MVC
Description | Spring Web MVC
Language | JAVA
Vulnerabi…
-
Investigate after Spring Boot 3.2.1 by reenabling `pubsub-stream-sample` in the NativeTests: https://github.com/GoogleCloudPlatform/spring-cloud-gcp/blob/main/.github/workflows/NativeTests.yaml
The…
-
## CVE-2016-1000027 - High Severity Vulnerability
Vulnerable Libraries - spring-web-4.3.23.RELEASE.jar, spring-web-4.3.19.RELEASE.jar, spring-web-5.0.9.RELEASE.jar
spring-web-4.3.23.RELEASE.jar
Sp…
-
https://github.com/spring-projects/spring-boot/tree/41f66fa7ecbda136c4e87c33c1c217dc166dca86/spring-boot-project/spring-boot-tools/spring-boot-maven-plugin