JavaQuarkBBS
JavaQuarkBBS copied to clipboard
ChinaLHR
基于Spring Boot实现的一个简易的Java社区
Bumps [fastjson](https://github.com/alibaba/fastjson) from 1.2.23 to 1.2.83. Release notes Sourced from fastjson's releases. FASTJSON 1.2.83版本发布(安全修复) 这是一个安全修复版本,修复最近收到在特定场景下可以绕过autoType关闭限制的漏洞,建议fastjson用户尽快采取安全措施保障系统安全。 安全修复方案 :https://github.com/alibaba/fastjson/wiki/security_update_20220523 Issues 安全加固 修复JDK17下setAccessible报错的问题 #4077 下载 https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.83/ 文档 https://github.com/alibaba/fastjson/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98 源码 https://github.com/alibaba/fastjson/tree/1.2.83 fastjson 1.2.79版本发布,BUG修复 这又是一个bug...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [fastjson](https://github.com/alibaba/fastjson) from 1.2.16 to 1.2.83. Release notes Sourced from fastjson's releases. FASTJSON 1.2.83版本发布(安全修复) 这是一个安全修复版本,修复最近收到在特定场景下可以绕过autoType关闭限制的漏洞,建议fastjson用户尽快采取安全措施保障系统安全。 安全修复方案 :https://github.com/alibaba/fastjson/wiki/security_update_20220523 Issues 安全加固 修复JDK17下setAccessible报错的问题 #4077 下载 https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.83/ 文档 https://github.com/alibaba/fastjson/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98 源码 https://github.com/alibaba/fastjson/tree/1.2.83 fastjson 1.2.79版本发布,BUG修复 这又是一个bug...
Bumps [shiro-web](https://github.com/apache/shiro) from 1.3.2 to 1.7.1. Changelog Sourced from shiro-web's changelog. 1.7.1 ########################################################### Bug [SHIRO-797] - Shiro 1.7.0 is lower than using springboot version 2.0.7 dependency error ########################################################### 1.7.0 ###########################################################...
Bumps shiro-spring from 1.3.2 to 1.7.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
【Vulnerability Description】 There is a Cross Site Scripting attack (XSS) vulnerability in the full version of JavaQuarkBBS. By entering specific statements into the background tag management module, the attack statement...
Bumps `shiro.version` from 1.3.2 to 1.7.1. Updates `shiro-spring` from 1.3.2 to 1.7.1 Updates `shiro-web` from 1.3.2 to 1.7.1 Changelog Sourced from shiro-web's changelog. 1.7.1 ########################################################### Bug [SHIRO-797] - Shiro 1.7.0...
Dear Maintainers, I hope this message finds you well. First and foremost, thank you for your hard work and dedication to maintaining this valuable project. I am reaching out to...
