śr., 24 wrz 2025 o 13:59 [email protected]
napisał(a):
>
> In Standalone artifacts
> https://dist.apache.org/repos/dist/dev/struts/7.1.0/ there are
>
> * commons-logging-1.3.4
> * commons-io-2.18.0 (CVE-2025-48924)
>
>
> Maybe we should use
>
> * commons-logging-1.3.5
> * commo
śr., 24 wrz 2025 o 13:19 [email protected]
napisał(a):
>
> Am 24.09.25 um 12:36 schrieb Kusal Kithul-Godage:
> > I've the same logging issue. It's occurring within both
> > #cleanUpDiskFileItems and #cleanUpTemporaryFiles. The method
> > Files#deleteIfExists returns false if the file d
czw., 25 wrz 2025 o 09:59 Rahul Kumar napisał(a):
> Hi all,
>
Hi, you must subscribe to the mailing list to get notifications
> I noticed that struts2-core 7.0.3 still ships with some dependencies that
> contain known vulnerabilities. From what I can see, the upstream projects
> have already a
Hi all,
I noticed that struts2-core 7.0.3 still ships with some dependencies that
contain known vulnerabilities. From what I can see, the upstream projects
have already addressed these CVEs in their latest releases.
Are there plans to update these dependencies in an upcoming Struts release?
If he
