You neglected to mention what the problems were. em: davelnew...@gmail.com mo: 908-380-8699 gh: davelnewton <https://github.com/davelnewton> so: Dave Newton <http://stackoverflow.com/users/438992/dave-newton>
On Wed, Apr 16, 2025 at 01:30 Shivam Agrahari <shivamagrahari2...@gmail.com> wrote: > Hi, > > I am currently developing a Java web application using the Struts 7.0.3 > framework, JDK 23, and Tomcat 11.0.5, with a Dynamic Web Module version > 6.1. Although the application is intended for an intranet environment, VA > (Vulnerability Assessment) clearance is still required. > > To address security concerns, I have implemented a CspInterceptor class. > However, after scanning the application with OWASP ZAP, several > vulnerabilities were reported. > > Could you please advise on how to resolve these issues? For your > reference, I have attached the WAR file of the test project along with a > few relevant pages. > > Thanks and regards, > Shivam > > > > > > > > test.war > <https://drive.google.com/open?id=1ChtdOQKVdehi27j0Q-xth0w_9H7qD3wg> > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: user-unsubscr...@struts.apache.org > For additional commands, e-mail: user-h...@struts.apache.org
