advisory-database icon indicating copy to clipboard operation
advisory-database copied to clipboard

Published 20 hours ago verified publisher icon github

[GHSA-rrpm-pj7p-7j9q] Spring Security OAuth vulnerable to remote code execution (RCE)

Open MarkLee131 opened this issue 1 year ago • 1 comments

Updates

  • References
  • Source code location

Comments Add a patch https://github.com/spring-projects/spring-security-oauth/commit/1c6815ac1b26fb2f079adbe283c43a7fd0885f3, of which the commit message claims Remove SpelView in WhitelabelApprovalEndpoint Fixes gh-1340

Add a patch https://github.com/spring-projects/spring-security-oauth/commit/adb1e6d19c681f394c9513799b81b527b0cb007, of which the commit message claims Remove SpelView in WhitelabelApprovalEndpoint Fixes gh-1340

Add a patch https://github.com/spring-projects/spring-security-oauth/commit/8e9792c1963f1aeea81ca618785eb8d71d1cd1d, of which the commit message claims Remove SpelView in WhitelabelApprovalEndpoint Fixes gh-1340

"Add a patch https://github.com/spring-projects/spring-security-oauth/commit/6b1791179c1092553aa0690da22dac4dff2fc58, of which the commit message claims Remove SpelView in WhitelabelApprovalEndpoint Fixes gh-1340

MarkLee131 avatar Mar 04 '24 04:03 MarkLee131