search

amaybaum-dev / verademo

A deliberately insecure Java web application
MIT License
0 stars 3 forks source link

Update dependency org.apache.commons:commons-collections4 to v4.1 #6

Open dev-mend-for-github-com[bot] opened 1 year ago

dev-mend-for-github-com[bot] commented 1 year ago

This PR contains the following updates:

Package Type Update Change
org.apache.commons:commons-collections4 (source) compile minor 4.0 -> 4.1

By merging this PR, the issue #14 will be automatically resolved and closed:

Severity CVSS Score CVE Reachability
Critical Critical 9.8 CVE-2015-4852
Critical Critical 9.8 CVE-2015-7501
High High 7.3 CVE-2015-6420