The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Adds an abstract layer to allow easily handle API change
by
Randy the Sloth 2017-08-02 12:58:15 UTC
commit 3bd072ca053aed787f3a16865266d8832fcd18b0
Struts
Fix
RESTless CVE-2017-9793
Fix
overtrusting xml handler CVE-2017-9805
plugins/rest/src/main/java/org/apache/struts2/rest/handler/AbstractContentTypeHandler.java
-44
plugins/rest/src/main/java/org/apache/struts2/rest/handler/FormUrlEncodedHandler.java
+3
-5
plugins/rest/src/main/java/org/apache/struts2/rest/handler/HtmlHandler.java
+3
-5
plugins/rest/src/main/java/org/apache/struts2/rest/handler/JacksonLibHandler.java
+3
-4
plugins/rest/src/main/java/org/apache/struts2/rest/handler/JsonLibHandler.java
+3
-4
plugins/rest/src/main/java/org/apache/struts2/rest/handler/MultipartFormDataHandler.java
+3
-5
plugins/rest/src/main/java/org/apache/struts2/rest/handler/XStreamHandler.java
+3
-4
expand_less
The Vulnerability History Project