struts-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (WW-4983) Set private access modifier for HttpParameters.toMap
Date Tue, 20 Nov 2018 12:17:00 GMT

    [ https://issues.apache.org/jira/browse/WW-4983?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16693148#comment-16693148
] 

Hudson commented on WW-4983:
----------------------------

SUCCESS: Integrated in Jenkins build Struts-master-JDK7 #214 (See [https://builds.apache.org/job/Struts-master-JDK7/214/])
WW-4983 Set private access modifier for HttpParameters.toMap (Sebastian.Peters: rev c10d62209d4ca6502e9d2f056a76a48102ed5e31)
* (edit) core/src/main/java/org/apache/struts2/dispatcher/HttpParameters.java


> Set private access modifier for HttpParameters.toMap
> ----------------------------------------------------
>
>                 Key: WW-4983
>                 URL: https://issues.apache.org/jira/browse/WW-4983
>             Project: Struts 2
>          Issue Type: Task
>          Components: Core
>            Reporter: Sebastian Peters
>            Priority: Minor
>              Labels: easyfix, security
>             Fix For: 2.6
>
>
> As stated in WW-4710 by [~lukaszlenart] this method can be potentially dangerous as it
allows access to raw parameter values. It should only be used internally.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message