-
## WS-2018-0125 - Medium Severity Vulnerability
Vulnerable Library - jackson-core-2.6.6.jar
Core Jackson abstractions, basic JSON streaming API implementation
Library home page: https://github.com/F…
-
## CVE-2018-19361 - Medium Severity Vulnerability
Vulnerable Library - jackson-databind-2.6.6.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http:…
-
## CVE-2018-11307 - Critical Severity Vulnerability
Vulnerable Library - jackson-databind-2.6.6.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: htt…
-
## CVE-2018-14721 - Medium Severity Vulnerability
Vulnerable Library - jackson-databind-2.6.6.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http:…
-
## Issue Description
We have a spring boot REST interface that reads the payload of an HTTP request as follows:
```java
@ResponseStatus(value = HttpStatus.OK)
@PostMapping(value = FESR…
-
## CVE-2016-1000339 - Medium Severity Vulnerability
Vulnerable Library - bcprov-jdk15on-1.50.jar
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar conta…
-
어드민 서비스를 기획하면서 필요한 기능을 토대로 사용할 세부적인 기술들을 미리 구상한다.
필요 기능
* 어드민 회원, 방문자 수 집계 도메인의 설계
* 도메인 데이터를 DB 에 저장
* 사용자에게 웹 화면으로 서비스 제공 + 디자인 요소
* 게시판 서비스와 API 통신
* 부가 기능
* 다크모드, todo list, 방문자 수 집계, 채팅
* 인증 기능 …
-
## CVE-2022-1471 - Critical Severity Vulnerability
Vulnerable Libraries - snakeyaml-1.17.jar, snakeyaml-1.16.jar
snakeyaml-1.17.jar
YAML 1.1 parser and emitter for Java
Library home page: http://w…
-
org.springframework.security:spring-security-jwt was last released on May 28, 2020.
For example `spring-xsuaa-test` still uses `spring-security-jwt`. This should be replaced by `nimbus-jose-jwt`.
…
-
## CVE-2021-43980 - Low Severity Vulnerability
Vulnerable Library - tomcat-embed-core-8.5.43.jar
Core Tomcat implementation
Library home page: https://tomcat.apache.org/
Path to vulnerable library: …