Releases: LegacyKing/pcgen
Releases · LegacyKing/pcgen
Just a Test
Update due to security issue Access Restriction Bypass Vulnerable module: org.springframework:spring-core Introduced through: org.springframework:[email protected] and org.springframework:[email protected] Detailed paths Introduced through: javydreamercsw/pcgen@javydreamercsw/pcgen#29244ff1b5da381d0ac851a0b682d79c6f5392df › org.springframework:[email protected] › org.springframework:[email protected] Remediation: Upgrade to org.springframework:[email protected]. Introduced through: javydreamercsw/pcgen@javydreamercsw/pcgen#29244ff1b5da381d0ac851a0b682d79c6f5392df › org.springframework:[email protected] Remediation: Upgrade to org.springframework:[email protected]. Overview org.springframework:spring-core provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform. Affected versions of this package are vulnerable to Access Restriction Bypass. It does not consider URL path parameters when processing security constraints. By adding a URL path parameter with special encodings, an attacker may be able to bypass a security constraint. See here for details: https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-31650