diff options
author | Thomas <> | 2022-03-31 11:40:59 +0200 |
---|---|---|
committer | Thomas <> | 2022-03-31 11:40:59 +0200 |
commit | bb7d93d64e05ca0ee982205d996c25dfe60887b1 (patch) | |
tree | ae9e74ff29dc305c91a7c48c435c780151b941bf /eaaf_core/checks/spotbugs-exclude.xml | |
parent | a27486899dcabd12623c645c481b98a4817a05ed (diff) | |
download | EAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.tar.gz EAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.tar.bz2 EAAF-Components-bb7d93d64e05ca0ee982205d996c25dfe60887b1.zip |
feature(spring): add Spring controller advice to set default set of disallowed files for DataBinder
This code protects Spring Core from a "Remote Code Execution" attack (dubbed "Spring4Shell").This is a midigation for
For more details, see this post: https://www.lunasec.io/docs/blog/spring-rce-vulnerabilities/
Diffstat (limited to 'eaaf_core/checks/spotbugs-exclude.xml')
0 files changed, 0 insertions, 0 deletions