Dropwizard v1.3.19 Release Notes
Release Date: 2020-02-24 // about 4 years ago-
🔒 Security
- Escape EL expressions in
ViolationCollector
to address CVE-2020-5245 (#3160)- Security Advisory: Remote Code Execution (RCE) vulnerability in dropwizard-validation <2.0.2
- Thanks to Alvaro Muñoz (@pwntester) and the GitHub Security Lab for the responsible disclosure!
- Escape EL expressions in