We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
检测到 damingerdai/hoteler 一共引入了13个开源组件,存在53个漏洞
漏洞标题:FasterXML jackson-databind 代码问题漏洞 缺陷组件:com.fasterxml.jackson.core:[email protected] 漏洞编号:CVE-2019-16943 漏洞描述:FasterXML jackson-databind是一个基于JAVA可以将XML和JSON等数据格式与JAVA对象进行转换的库。Jackson可以轻松的将Java对象转换成json对象和xml文档,同样也可以将json、xml转换成Java对象。 FasterXML jackson-databind 2.0.0版本至2.9.10版本中存在代码问题漏洞。该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。攻击者可利用该漏洞执行任意代码。 国家漏洞库信息:https://www.cnvd.org.cn/flaw/show/CNVD-2019-41721 影响范围:[2.9.0, 2.9.10.1) 最小修复版本:2.9.10.1 缺陷组件引入路径:org.daming:[email protected]>io.jsonwebtoken:[email protected]>com.fasterxml.jackson.core:[email protected]
另外还有53个漏洞,详细报告:https://mofeisec.com/jr?p=iaa1e9
The text was updated successfully, but these errors were encountered:
No branches or pull requests
检测到 damingerdai/hoteler 一共引入了13个开源组件,存在53个漏洞
另外还有53个漏洞,详细报告:https://mofeisec.com/jr?p=iaa1e9
The text was updated successfully, but these errors were encountered: