CVE-2016-5019

CVE-2016-5019

CoreResponseStateManager in Apache MyFaces Trinidad 1.0.0 through 1.0.13, 1.2.x before 1.2.15, 2.0.x before 2.0.2, and 2.1.x before 2.1.2 might allow attackers to conduct deserialization attacks via a crafted serialized view state string.

Source: CVE-2016-5019

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다