VYPR

Maven package

org.apache.sling/org.apache.sling.commons.log

pkg:maven/org.apache.sling/org.apache.sling.commons.log

Vulnerabilities (1)

  • CVE-2022-32549Jun 22, 2022
    affected <= 5.4.0

    Apache Sling Commons Log <= 5.4.0 and Apache Sling API <= 2.25.0 are vulnerable to log injection. The ability to forge logs may allow an attacker to cover tracks by injecting fake logs and potentially corrupt log files.