Crucible had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031

XMLWordPrintable

    • Severity 3 - Minor

      The DiskFileItem class from the Apache Commons FileUpload library before version 1.3.3 was vulnerable to CVE-2016-1000031.  Atlassian Crucible was using a vulnerable version of this library, although not the DiskFileItem class.  Crucible has been updated to use the safe version of the Apache Commons FileUpload library.

            Assignee:
            Unassigned
            Reporter:
            Erin Jensby
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: