JavaLearnVulnerability
JavaLearnVulnerability copied to clipboard
SummerSec
Java漏洞学习笔记 Deserialization Vulnerability
Bumps log4j-core from 2.12.1 to 2.17.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps commons-beanutils from 1.9.2 to 1.9.4. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps commons-collections4 from 4.0 to 4.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps commons-beanutils from 1.9.2 to 1.9.4. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps [jsoup](https://github.com/jhy/jsoup) from 1.8.3 to 1.14.2. Release notes Sourced from jsoup's releases. jsoup 1.14.2 Caught by the fuzz! jsoup 1.14.2 is out now, and includes a set of parser bug...
Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.10.0 to 2.12.6.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [jsoup](https://github.com/jhy/jsoup) from 1.8.3 to 1.15.3. Release notes Sourced from jsoup's releases. jsoup 1.15.3 jsoup 1.15.3 is out now, and includes a security fix for potential XSS attacks, along with...
Bumps [hutool-core](https://github.com/dromara/hutool) from 5.0.7 to 5.8.19. Release notes Sourced from hutool-core's releases. 5.8.19(2023-05-27) 🐣新特性 【db 】 优化HttpRequest.toString()内容打印(issue#3072@Github) 【poi 】 优化Sax方式读取时空白行返回0,修改为返回-1(issue#I6WYF6@Gitee) 【db 】 优化count查询兼容informix(issue#I713XQ@Gitee) 【core 】 去除Opt头部的GPL协议头(pr#995@Gitee) 【core 】 邮箱校验添加对中文的支持(pr#997@Gitee) 【core...
Bumps tomcat-catalina from 9.0.20 to 9.0.72. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...