Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and
privacy statement. We’ll occasionally send you account related emails.
Already on GitHub?
to your account
honnel opened DATAREST-1370 and commented
The Spring Data Rest HAL Browser uses hal-browser which bundles jquery in very old version with CVE:
The webjar uses following version of hal-browser with jquery in version 1.10.2
The CVE for this jquery version is:
Affects: 3.1.6 (Lovelace SR6)
Reference URL: https://github.com/mikekelly/hal-browser/blob/ad9b865f6439652a8a7c683731a45d4fb997477f/vendor/js/jquery-1.10.2.min.js
The text was updated successfully, but these errors were encountered:
Oliver Drotbohm commented
I've filed a ticket in the HAL browser project's issue tracker
Sorry, something went wrong.
No branches or pull requests