Mr Martin
upgrade to commons.fileupload.version 1.3 in both
modules/fastinfoset/pom.xml and
modules/parent/pom.xml
will mitigate CVE-2013-0248
modules/fastinfoset/pom.xml:
commons-fileupload
commons-fileupload
1.3
modules/parent/pom.xml:
1.3
Hi,
The current (v1.6.3) and previous releases of Axis2 contain the apache
commons-fileupload-1.2.jar.
This jar is flagged as being vulnerable to CVE-2013-0248
Could anyone confirm if either:
This vulnerability is not applicable to the use of the jar in Axis2
If an update is planned
Details o
