[jira] [Updated] (STR-3223) We are hit with CVE-2014-0050 for file Commons FileUpload 1.1.1 and same is fixed with version Commons FileUpload 1.3.1. But we would like to use Commons FileUpload 1.3.3 which is latest one with struts 1.0. Is that possible or recommend way to use.

Fri, 03 Nov 2017 04:29:30 -0700 

     [ 
https://issues.apache.org/jira/browse/STR-3223?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Bhanu Prathap updated STR-3223:
-------------------------------
    Summary: We are hit with CVE-2014-0050 for file Commons FileUpload 1.1.1 
and same is fixed with version Commons FileUpload 1.3.1. But we would like to 
use Commons FileUpload 1.3.3 which is latest one with struts 1.0. Is that 
possible or recommend way to use.   (was: We are hit with CVE-2014-0050 for 
file Commons FileUpload 1.1.1 and same is fixed with version Commons FileUpload 
1.3.1. )

> We are hit with CVE-2014-0050 for file Commons FileUpload 1.1.1 and same is 
> fixed with version Commons FileUpload 1.3.1. But we would like to use Commons 
> FileUpload 1.3.3 which is latest one with struts 1.0. Is that possible or 
> recommend way to use. 
> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: STR-3223
>                 URL: https://issues.apache.org/jira/browse/STR-3223
>             Project: Struts 1
>          Issue Type: Bug
>            Reporter: Bhanu Prathap
>            Priority: Critical
>




--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Reply via email to