voyent
commons-fileupload security vunerability  XML
Forum Index -> General Help
Author Message
paulkray

Joined: 26/Jul/2011 08:31:02
Messages: 2
Offline


Is the ace fileUpload component contain the vulnerability found in commons-fileupload-1.3.2 and below?
artzambrano

Joined: 21/Mar/2007 00:00:00
Messages: 175
Offline


Thank you for pointing this out. One of the vulnerabilities was already fixed in this JIRA:

http://jira.icesoft.org/browse/ICE-10023

But the other, newer vulnerability wasn't. We investigated it, and it's now fixed, under this JIRA:

http://jira.icesoft.org/browse/ICE-11437

Art Zambrano
ICEsoft Technologies Inc.
 
Forum Index -> General Help
Go to:   
Powered by JForum 2.1.7ice © JForum Team