[Snyk] Fix for 135 vulnerabilities

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- pom.xml

Vulnerabilities that will be fixed

With an upgrade:

Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity	Reachability
390/1000 Why? Has a fix available, CVSS 4.8	Insufficient Hostname Verification SNYK-JAVA-CHQOSLOGBACK-1726923		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324		No	No Known Exploit	No Path Found
560/1000 Why? Has a fix available, CVSS 8.2	XML External Entity (XXE) Injection SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427		No	Proof of Concept	No Path Found
/1000 Why?	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931		No	No Known Exploit
/1000 Why?	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736		No	Proof of Concept
525/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-2421244		No	No Known Exploit	No Path Found
520/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424		No	Proof of Concept	No Path Found
520/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207		No	Proof of Concept	No Path Found
705/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917		No	Mature	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014		No	No Known Exploit	No Path Found
675/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015		No	Mature	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980		No	No Known Exploit	No Path Found
555/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106		No	Proof of Concept	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664		No	Proof of Concept	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72445		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72447		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883		No	No Known Exploit	No Path Found
563/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884		No	No Known Exploit	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Improper Input Validation SNYK-JAVA-COMFASTERXMLJACKSONDATATYPE-173759		No	No Known Exploit	No Path Found
630/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JAVA-COMH2DATABASE-2331071		Yes	Proof of Concept	No Path Found
715/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.8	Remote Code Execution (RCE) SNYK-JAVA-COMH2DATABASE-2348247		Yes	Proof of Concept	No Path Found
380/1000 Why? Mature exploit, Has a fix available, CVSS 2.2	Insecure Permissions SNYK-JAVA-COMH2DATABASE-3009896		No	Mature	No Path Found
335/1000 Why? Has a fix available, CVSS 3.7	Information Exposure SNYK-JAVA-COMMONSCODEC-561518	`org.apache.poi:poi:` `3.17 -> 4.1.1`	Yes	No Known Exploit	No Path Found
465/1000 Why? Has a fix available, CVSS 6.3	Privilege Escalation SNYK-JAVA-MYSQL-174574		Yes	No Known Exploit	No Path Found
520/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	XML External Entity (XXE) Injection SNYK-JAVA-MYSQL-1766958		Yes	Proof of Concept	No Path Found
480/1000 Why? Has a fix available, CVSS 6.6	Improper Authorization SNYK-JAVA-MYSQL-2386864		Yes	No Known Exploit	No Path Found
590/1000 Why? Has a fix available, CVSS 8.8	Access Control Bypass SNYK-JAVA-MYSQL-451464		Yes	No Known Exploit	No Path Found
400/1000 Why? Has a fix available, CVSS 5	XML External Entity (XXE) Injection SNYK-JAVA-ORGAPACHEPOI-548686	`org.apache.poi:poi-ooxml:` `3.17 -> 4.1.0`	Yes	No Known Exploit	No Path Found
430/1000 Why? Has a fix available, CVSS 5.6	HTTP Request Smuggling SNYK-JAVA-ORGAPACHETOMCATEMBED-1017119		No	No Known Exploit	No Path Found
490/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Information Exposure SNYK-JAVA-ORGAPACHETOMCATEMBED-1048292		No	Proof of Concept	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	Information Disclosure SNYK-JAVA-ORGAPACHETOMCATEMBED-1061939		No	No Known Exploit	No Path Found
500/1000 Why? Has a fix available, CVSS 7	Remote Code Execution (RCE) SNYK-JAVA-ORGAPACHETOMCATEMBED-1080637		No	No Known Exploit	No Path Found
445/1000 Why? Has a fix available, CVSS 5.9	HTTP Request Smuggling SNYK-JAVA-ORGAPACHETOMCATEMBED-1080638		No	No Known Exploit	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-1728264		No	No Known Exploit	No Path Found
390/1000 Why? Has a fix available, CVSS 4.8	Improper Input Validation SNYK-JAVA-ORGAPACHETOMCATEMBED-1728265		No	No Known Exploit	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	HTTP Request Smuggling SNYK-JAVA-ORGAPACHETOMCATEMBED-1728266		No	No Known Exploit	No Path Found
600/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-1728268		No	Proof of Concept	No Path Found
335/1000 Why? Has a fix available, CVSS 3.7	Information Exposure SNYK-JAVA-ORGAPACHETOMCATEMBED-3035793		No	No Known Exploit	No Path Found
335/1000 Why? Has a fix available, CVSS 3.7	HTTP Request Smuggling SNYK-JAVA-ORGAPACHETOMCATEMBED-3097829		No	No Known Exploit	No Path Found
475/1000 Why? Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-3326459		No	No Known Exploit	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	Unprotected Transport of Credentials SNYK-JAVA-ORGAPACHETOMCATEMBED-3369687		No	No Known Exploit	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-451342		No	No Known Exploit	No Path Found
675/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Remote Code Execution SNYK-JAVA-ORGAPACHETOMCATEMBED-451343		No	Mature	No Path Found
445/1000 Why? Mature exploit, Has a fix available, CVSS 3.5	Cross-site Scripting (XSS) SNYK-JAVA-ORGAPACHETOMCATEMBED-451458		No	Mature	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-451459		No	No Known Exploit	No Path Found
550/1000 Why? Mature exploit, Has a fix available, CVSS 5.6	Open Redirect SNYK-JAVA-ORGAPACHETOMCATEMBED-451503		No	Mature	No Path Found
445/1000 Why? Has a fix available, CVSS 5.9	Information Exposure SNYK-JAVA-ORGAPACHETOMCATEMBED-451504		No	No Known Exploit	No Path Found
640/1000 Why? Has a fix available, CVSS 9.8	Insecure Defaults SNYK-JAVA-ORGAPACHETOMCATEMBED-451505		No	No Known Exploit	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-451508		No	No Known Exploit	No Path Found
305/1000 Why? Has a fix available, CVSS 3.1	Session Fixation SNYK-JAVA-ORGAPACHETOMCATEMBED-538488		No	No Known Exploit	No Path Found
675/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Remote Code Execution (RCE) SNYK-JAVA-ORGAPACHETOMCATEMBED-570072		No	Mature	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCATEMBED-584427		No	No Known Exploit	No Path Found
565/1000 Why? Has a fix available, CVSS 8.3	XML External Entity (XXE) Injection SNYK-JAVA-ORGAPACHEXMLBEANS-1060048	`org.apache.poi:poi-ooxml:` `3.17 -> 4.1.0`	Yes	No Known Exploit	No Path Found
525/1000 Why? Has a fix available, CVSS 7.5	Information Exposure SNYK-JAVA-ORGBOUNCYCASTLE-1035561	`com.github.librepdf:openpdf:` `1.0.5 -> 1.1.0`	No	No Known Exploit	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	Timing Attack SNYK-JAVA-ORGBOUNCYCASTLE-1296075	`com.github.librepdf:openpdf:` `1.0.5 -> 1.1.0`	No	No Known Exploit	No Path Found
/1000 Why?	Cryptographic Issues SNYK-JAVA-ORGBOUNCYCASTLE-2841508	`com.github.librepdf:openpdf:` `1.0.5 -> 1.1.0`	No	Proof of Concept
/1000 Why?	Insecure Encryption SNYK-JAVA-ORGBOUNCYCASTLE-32369	`com.github.librepdf:openpdf:` `1.0.5 -> 1.1.0`	No	No Known Exploit
/1000 Why?	Deserialization of Untrusted Data SNYK-JAVA-ORGBOUNCYCASTLE-32412	`com.github.librepdf:openpdf:` `1.0.5 -> 1.1.0`	No	No Known Exploit
/1000 Why?	SQL Injection SNYK-JAVA-ORGHIBERNATE-1041788		No	No Known Exploit
/1000 Why?	SQL Injection SNYK-JAVA-ORGHIBERNATE-584563		No	No Known Exploit
/1000 Why?	Cross-site Scripting (XSS) SNYK-JAVA-ORGHIBERNATEVALIDATOR-541187		No	No Known Exploit
/1000 Why?	Improper Input Validation SNYK-JAVA-ORGHIBERNATEVALIDATOR-568163		No	No Known Exploit
/1000 Why?	Improper Input Validation SNYK-JAVA-ORGSPRINGFRAMEWORK-1009832		No	No Known Exploit
/1000 Why?	Privilege Escalation SNYK-JAVA-ORGSPRINGFRAMEWORK-1296829		No	No Known Exploit
/1000 Why?	Improper Output Neutralization for Logs SNYK-JAVA-ORGSPRINGFRAMEWORK-2329097		No	No Known Exploit
/1000 Why?	Improper Input Validation SNYK-JAVA-ORGSPRINGFRAMEWORK-2330878		No	No Known Exploit
/1000 Why?	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-2434828		No	No Known Exploit
/1000 Why?	Remote Code Execution SNYK-JAVA-ORGSPRINGFRAMEWORK-2436751		No	Mature
410/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Improper Handling of Case Sensitivity SNYK-JAVA-ORGSPRINGFRAMEWORK-2689634		No	Proof of Concept	No Path Found
415/1000 Why? Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-2823313		No	No Known Exploit	No Path Found
/1000 Why?	Access Restriction Bypass SNYK-JAVA-ORGSPRINGFRAMEWORK-31651		No	No Known Exploit
/1000 Why?	Information Exposure SNYK-JAVA-ORGSPRINGFRAMEWORK-31689		No	No Known Exploit
/1000 Why?	Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGSPRINGFRAMEWORK-3369749		No	No Known Exploit
445/1000 Why? Has a fix available, CVSS 5.9	Cross-Site Tracing (XST) SNYK-JAVA-ORGSPRINGFRAMEWORK-451604		No	No Known Exploit	No Path Found
445/1000 Why? Has a fix available, CVSS 5.9	Information Exposure SNYK-JAVA-ORGSPRINGFRAMEWORK-467268		No	No Known Exploit	No Path Found
/1000 Why?	Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGSPRINGFRAMEWORK-5422217		No	No Known Exploit
/1000 Why?	Reflected File Download (RFD) SNYK-JAVA-ORGSPRINGFRAMEWORK-559346		No	Proof of Concept
/1000 Why?	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-72470		No	No Known Exploit
/1000 Why?	Insecure Temporary File SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-2438287		No	No Known Exploit
/1000 Why?	Information Exposure SNYK-JAVA-ORGSPRINGFRAMEWORKDATA-174140		No	No Known Exploit
/1000 Why?	Information Exposure SNYK-JAVA-ORGSPRINGFRAMEWORKDATA-451633		No	No Known Exploit
/1000 Why?	Privilege Escalation SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-1078232		No	No Known Exploit
/1000 Why?	Timing Attack SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-1290497		No	No Known Exploit
/1000 Why?	Insecure Randomness SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-174111		No	No Known Exploit
635/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Authorization Bypass SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-2833359		No	Proof of Concept	No Path Found
/1000 Why?	Cryptographic Weakness SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-570204		No	No Known Exploit
/1000 Why?	Remote Code Execution SNYK-JAVA-ORGTHYMELEAF-1915389		No	No Known Exploit
/1000 Why?	Denial of Service (DoS) SNYK-JAVA-ORGYAML-2806360		No	No Known Exploit
/1000 Why?	Stack-based Buffer Overflow SNYK-JAVA-ORGYAML-3016888		No	Proof of Concept
/1000 Why?	Stack-based Buffer Overflow SNYK-JAVA-ORGYAML-3016889		No	No Known Exploit
/1000 Why?	Stack-based Buffer Overflow SNYK-JAVA-ORGYAML-3016891		No	Proof of Concept
/1000 Why?	Stack-based Buffer Overflow SNYK-JAVA-ORGYAML-3113851		No	No Known Exploit
/1000 Why?	Denial of Service (DoS) SNYK-JAVA-ORGYAML-537645		No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Vulnerabilities that could not be fixed

Upgrade:
- Could not upgrade com.h2database:h2@1.4.197 to com.h2database:h2@2.1.210; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade mysql:mysql-connector-java@5.1.46 to mysql:mysql-connector-java@8.0.28; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade org.springframework.boot:spring-boot-devtools@2.0.1.RELEASE to org.springframework.boot:spring-boot-devtools@2.5.13; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade org.springframework.boot:spring-boot-starter-data-jpa@2.0.1.RELEASE to org.springframework.boot:spring-boot-starter-data-jpa@2.7.11; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade org.springframework.boot:spring-boot-starter-security@2.0.1.RELEASE to org.springframework.boot:spring-boot-starter-security@2.7.11; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade org.springframework.boot:spring-boot-starter-thymeleaf@2.0.1.RELEASE to org.springframework.boot:spring-boot-starter-thymeleaf@2.5.8; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom
- Could not upgrade org.springframework.boot:spring-boot-starter-web@2.0.1.RELEASE to org.springframework.boot:spring-boot-starter-web@2.7.11; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/2.0.1.RELEASE/spring-boot-dependencies-2.0.1.RELEASE.pom

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

zeitgeist2018 / SpringBoot---Invoice-System

[Snyk] Fix for 135 vulnerabilities #4

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:

Vulnerabilities that could not be fixed