Java/CWE-036: Calling openStream on URLs created from remote source can lead to file disclosure

Disclosed: 2020-04-17 17:17:00 By ulldma To github-security-lab

Medium

Vulnerability Details

This bug was reported directly to GitHub Security Lab.

Actions

View on HackerOne

Report Stats

Report ID: 844327
State: Closed
Substate: resolved
Upvotes: 52

Share this report