You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Vulnerable Package issue exists @ Maven-commons-fileupload:commons-fileupload-1.2.2 in branch main
Apache Commons FileUpload through 1.4 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configuration option (FileUploadBase#setFileCountMax) is not enabled by default and must be explicitly configured.
Vulnerable Package issue exists @ Maven-commons-fileupload:commons-fileupload-1.2.2 in branch main
Apache Commons FileUpload through 1.4 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. Note that, like all of the file upload limits, the new configuration option (FileUploadBase#setFileCountMax) is not enabled by default and must be explicitly configured.
Namespace: cxronen
Repository: BookStore
Repository Url: https://github.com/cxronen/BookStore
CxAST-Project: cxronen/BookStore
CxAST platform scan: 207c1944-f9e8-4bbb-a51e-1235c29a4b44
Branch: main
Application: BookStore
Severity: HIGH
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-770
Additional Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
References
Advisory
Commit
Mail Thread
Pull request
Release Note
The text was updated successfully, but these errors were encountered: