VYPR

Maven package

org.apache.streampark/streampark-common_2.11

pkg:maven/org.apache.streampark/streampark-common_2.11

Vulnerabilities (1)

  • CVE-2022-45802May 1, 2023
    affected < 2.0.0fixed 2.0.0

    Streampark allows any users to upload a jar as application, but there is no mandatory verification of the uploaded file type, causing users to upload some high-risk files, and may upload them to any directory, Users of the affected versions should upgrade to Apache StreamPark 2.0