summaryrefslogtreecommitdiff
path: root/eaaf-springboot-utils/src/main/resources
diff options
context:
space:
mode:
authorThomas <>2022-03-31 11:40:59 +0200
committerThomas <>2022-03-31 11:40:59 +0200
commitbb7d93d64e05ca0ee982205d996c25dfe60887b1 (patch)
treeae9e74ff29dc305c91a7c48c435c780151b941bf /eaaf-springboot-utils/src/main/resources
parenta27486899dcabd12623c645c481b98a4817a05ed (diff)
downloadEAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.tar.gz
EAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.tar.bz2
EAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.zip
feature(spring): add Spring controller advice to set default set of disallowed files for DataBinder
This code protects Spring Core from a "Remote Code Execution" attack (dubbed "Spring4Shell").This is a midigation for For more details, see this post: https://www.lunasec.io/docs/blog/spring-rce-vulnerabilities/
Diffstat (limited to 'eaaf-springboot-utils/src/main/resources')
0 files changed, 0 insertions, 0 deletions