search

bytedance / AabResGuard

The tool of obfuscated aab resources.(Android app bundle资源混淆工具)
Apache License 2.0
1.3k stars 179 forks source link

There is a vulnerability in dom4j 2.1.0,upgrade recommended #62

Open QiAnXinCodeSafe opened 2 years ago

QiAnXinCodeSafe commented 2 years ago

https://github.com/bytedance/AabResGuard/blob/e8f3a5d361ce61a3d4fa8bafb9d030bbe459c400/core/build.gradle#L42

CVE-2020-10683 CVE-2018-1000632

Recommended upgrade version:2.1.1-4