Posts Tagged Spring Framework

2 results.

Debian: 2857-1: libspring-java: Multiple vulnerabilities

Feb11
by Ike on February 11, 2014 at 5:09 pm
Posted In: Uncategorized

(Feb 8) It was discovered by the Spring development team that the fix for the XML External Entity (XXE) Injection (CVE-2013-4152) in the Spring Framework was incomplete. [More…]

 Comment 

Debian: 2842-1: libspring-java: denial of service

Jan14
by Ike on January 14, 2014 at 1:38 pm
Posted In: Uncategorized

(Jan 13) Alvaro Munoz discovered a XML External Entity (XXE) injection in the Spring Framework which can be used for conducting CSRF and DoS attacks on other sites. [More…]

 Comment 

60 queries. 8.25 mb Memory usage. 0.498 seconds.