You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@struts.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2016/11/10 19:14:58 UTC
[jira] [Commented] (WW-4710) Disallow access to
HttpParameters.toMap
[ https://issues.apache.org/jira/browse/WW-4710?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15654861#comment-15654861 ]
ASF subversion and git services commented on WW-4710:
-----------------------------------------------------
Commit ab6750211ba8fc99bffdc156d3bb8f61031ed13d in struts's branch refs/heads/master from [~lukaszlenart]
[ https://git-wip-us.apache.org/repos/asf?p=struts.git;h=ab67502 ]
WW-4710 Restrict access to HttpParameters.toMap
> Disallow access to HttpParameters.toMap
> ---------------------------------------
>
> Key: WW-4710
> URL: https://issues.apache.org/jira/browse/WW-4710
> Project: Struts 2
> Issue Type: Improvement
> Components: Core
> Affects Versions: 2.5.5
> Reporter: Lukasz Lenart
> Priority: Minor
> Fix For: 2.5.6
>
>
> {{HttpParameters.toMap}} can be potentially danger as allow access raw parameters' values.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)