Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
Fix problems reported by Snyk.io
H | Arbitrary File Write via Archive Extraction (Zip Slip) in org.codehaus.plexus:plexus-archiver |
H | Arbitrary Code Execution in commons-beanutils:commons-beanutils |
H | Arbitrary Code Execution in commons-collections:commons-collections |
H | XML External Entity (XXE) Injection in dom4j:dom4j |
H | Denial of Service (DoS) in org.apache.pdfbox:fontbox |
H | Arbitrary Code Injection in org.apache.struts:struts-core |
H | Arbitrary Command Execution in org.mortbay.jetty:jetty |
M | Denial of Service (DoS) in org.apache.commons:commons-compress |
M | Directory Traversal in org.apache.commons:commons-compress |
M | Man-in-the-Middle (MitM) in org.apache.httpcomponents:httpclient |
M | Directory Traversal in org.apache.httpcomponents:httpclient |
M | Improper Input Validation in org.apache.httpcomponents:httpclient |
M | Information Exposure in org.apache.httpcomponents:httpclient |
M | Denial of Service (DoS) in org.apache.httpcomponents:httpclient |
M | Denial of Service (DoS) in org.apache.pdfbox:pdfbox |
L | Denial of Service (DoS) in org.apache.commons:commons-compress |