xmall
xmall copied to clipboard
Exrick
基于SOA架构的分布式电商购物商城 前后端分离 前台商城:Vue全家桶 后台管理系统:Dubbo/SSM/Elasticsearch/Redis/MySQL/ActiveMQ/Shiro/Zookeeper等
Bumps [spring-webmvc](https://github.com/spring-projects/spring-framework) from 4.3.12.RELEASE to 5.2.20.RELEASE. Release notes Sourced from spring-webmvc's releases. v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references #28262 Improve diagnostics in SpEL for...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
[Suggested description] Xmall was discovered to contain a SQL injection vulnerability via the orderDir parameter. [Vulnerability Type] SQLi [Vendor of Product] https://github.com/Exrick/xmall [Affected Product Code Base] all version [Affected Component]...
Bumps [spring-beans](https://github.com/spring-projects/spring-framework) from 4.3.12.RELEASE to 5.2.20.RELEASE. Release notes Sourced from spring-beans's releases. v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references #28262 Improve diagnostics in SpEL for...
Bumps commons-net from 3.3 to 3.9.0. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.9.1 to 2.12.7.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...