JoyChou93 java-sec-code issues

JoyChou93 / java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

2.42k stars 645 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Bump org.springframework.security:spring-security-web from 4.2.12.RELEASE to 5.7.13

#91 dependabot[bot] opened 1 week ago
0
Bump org.springframework.security:spring-security-web from 4.2.12.RELEASE to 5.4.11

#90 dependabot[bot] closed 1 week ago
1
Bump commons-io:commons-io from 2.5 to 2.14.0

#89 dependabot[bot] opened 1 month ago
0
登录不了怎么回事？

#88 tdtc7 opened 1 month ago
0
Bump io.springfox:springfox-swagger-ui from 2.9.2 to 2.10.0

#87 dependabot[bot] closed 1 month ago
1
Bump org.springframework:spring-expression from 4.3.16.RELEASE to 5.3.39

#86 dependabot[bot] closed 1 month ago
1
Java 21 support

#85 prabhu closed 8 months ago
0
Apologies!

#84 dtpoirot closed 10 months ago
0
Joshbnewton31080 patch 1

#83 joshbnewton31080 closed 10 months ago
0
Jwaizguy patch 3 1

#81 jwaizguy closed 1 year ago
0
test

#80 pkumarcoverity closed 1 year ago
0
Update Constants.java

#79 pkumarcoverity closed 1 year ago
0
[Bug] Codeinject的host部分由于pom.xml更新了tomcat 版本导致打不通

#78 ek1ng closed 10 months ago
0
Create main.yml

#77 bbrucesnell closed 1 year ago
0
Update index.html

#76 wzqs closed 1 year ago
0
Could sec:java-sec-code:1.0.0 drop off redundant dependencies?

#75 slimming-fat closed 1 year ago
1
Qwietdemouser patch 2

#74 qwietdemouser closed 1 year ago
0
Add SSRF Code

#73 qwietdemouser closed 1 year ago
0
Update pom.xml

#72 2402089054 closed 1 year ago
0
Modea sl patch 1

#71 modea-sl closed 1 year ago
0
Please update lombok

#70 danielpoirot closed 1 year ago
2
docker 安装启动后，端口访问不到。

#69 jielansudo closed 10 months ago
1
直接将该项目import进IDEA后，运行时报错

#68 hljlj closed 10 months ago
1
Bump commons-net from 3.6 to 3.9.0

#67 dependabot[bot] closed 3 months ago
1
Bump snakeyaml from 1.21 to 1.32

#66 dependabot[bot] closed 1 year ago
1
Fix CVE dependency issue

#65 CVEDetect closed 3 months ago
0
Dependency org.apache.httpcomponents:httpclient, leading to CVE problem

#64 CVEDetect closed 1 year ago
1
Dependency org.apache.tomcat.embed:tomcat-embed-core, leading to CVE problem

#63 CVEDetect closed 1 year ago
0
Dependency org.jolokia:jolokia-core, leading to CVE problem

#62 CVEDetect closed 1 year ago
0
极狐 GitLab DevSecOps

#61 sinkcup closed 1 year ago
0
Bump snakeyaml from 1.21 to 1.26

#60 dependabot[bot] closed 1 year ago
1
Bump jsoup from 1.10.2 to 1.15.3

#59 dependabot[bot] closed 3 months ago
1
Bump jolokia-core from 1.6.0 to 1.6.1

#58 dependabot[bot] closed 3 months ago
1
Bump poi from 3.10-FINAL to 4.1.1

#57 dependabot[bot] closed 3 months ago
1
Bump mysql-connector-java from 8.0.12 to 8.0.28

#56 dependabot[bot] closed 3 months ago
1
Bump fastjson from 1.2.24 to 1.2.83

#55 dependabot[bot] closed 3 months ago
1
Bump log4j-core from 2.9.1 to 2.17.1

#54 dependabot[bot] closed 1 year ago
1
Bump xlsx-streamer from 2.0.0 to 2.1.0

#53 dependabot[bot] closed 3 months ago
1
Feature dev

#52 blackduckron closed 2 years ago
0
Bump xstream from 1.4.10 to 1.4.19

#51 dependabot[bot] closed 3 months ago
1
Bump log4j-core from 2.8.2 to 2.16.0

#50 dependabot[bot] closed 2 years ago
1
Bump log4j-core from 2.8.2 to 2.15.0

#49 dependabot[bot] closed 2 years ago
1
CRLF无法复现？

#48 zack996 closed 2 years ago
2
sqli的url有点小问题，应当是jdbc/vuln?username=

#46 FeatherStark closed 3 years ago
1
Bump xstream from 1.4.10 to 1.4.18

#45 dependabot[bot] closed 2 years ago
1
Bump jsoup from 1.10.2 to 1.14.2

#44 dependabot[bot] closed 2 years ago
1
RCE的链接无法访问，其他的漏洞可以正常访问

#43 Catcheryp closed 3 years ago
1
RCE的链接无法访问，其他的漏洞可以正常访问

#42 Catcheryp closed 3 years ago
1
Bump httpclient from 4.5.12 to 4.5.13

#41 dependabot[bot] closed 3 months ago
1
Bump xstream from 1.4.10 to 1.4.17

#40 dependabot[bot] closed 3 years ago
1