[
https://issues.apache.org/jira/browse/JSPWIKI-1218?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18036372#comment-18036372
]
Alex O'Ree commented on JSPWIKI-1218:
-------------------------------------
definitely not exploitable. it is a dependency of a build plugin and it was
used in exactly one location in the jspwiki war file, spam filtering capabilty.
seeĀ JSPWIKI-1219
Considering this capability hasn't worked in 10 years, it's a pretty low risk
regardless.
> update depedencies for commons-httpclient
> -----------------------------------------
>
> Key: JSPWIKI-1218
> URL: https://issues.apache.org/jira/browse/JSPWIKI-1218
> Project: JSPWiki
> Issue Type: Improvement
> Reporter: Alex O'Ree
> Assignee: Alex O'Ree
> Priority: Major
>
> potential security issue flagged by github. investigation pending
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
