GHSA-HGRR-935X-PQ79 Apache Tomcat Vulnerable to Improper Resource Shutdown or Release

If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to delete. Depending on JVM settings, application memory usage and...

Winter 跨站脚本漏洞

Winter is a free, open source, self-hosted CMS platform based on the Laravel PHP framework. A cross-site scripting vulnerability exists in Winter prior to version 1.2.3, which stems from an uncleaned SVG upload, which could lead to a stored cross-site scripting XSS attack...