Google Git
Sign in
apache / struts-examples / 86d3d9b950f1b80b5f61d0f5917ee04f431640c9^! / .
commit86d3d9b950f1b80b5f61d0f5917ee04f431640c9[log] [tgz]
authorLukasz Lenart <lukaszlenart@apache.org>Mon Jun 08 08:54:26 2020 +0200
committerLukasz Lenart <lukaszlenart@apache.org>Mon Jun 08 08:54:26 2020 +0200
treed90d582d3933cb852eae61d868cf8664c5293097
parent621a8dbe0d71cf221bc584b5b9c9001cf890397a [diff]
Suppresses outdated dependencies

diff --git a/src/etc/project-suppression.xml b/src/etc/project-suppression.xml
index c3016de..6190d0e 100644
--- a/src/etc/project-suppression.xml
+++ b/src/etc/project-suppression.xml

@@ -148,4 +148,49 @@
         <packageUrl regex="true">^pkg:maven/org\.codehaus\.plexus/plexus\-utils@.*$</packageUrl>
         <vulnerabilityName>Possible XML Injection</vulnerabilityName>
     </suppress>
+    <suppress>
+        <notes><![CDATA[file name: dwr-1.1.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/uk\.ltd\.getahead/dwr@.*$</packageUrl>
+        <cpe>cpe:/a:getahead:direct_web_remoting</cpe>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-collections-3.2.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-collections/commons\-collections@.*$</packageUrl>
+        <cpe>cpe:/a:apache:commons_collections</cpe>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-collections-3.2.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-collections/commons\-collections@.*$</packageUrl>
+        <vulnerabilityName>CVE-2015-6420</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-collections-3.2.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-collections/commons\-collections@.*$</packageUrl>
+        <vulnerabilityName>CVE-2017-15708</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-collections-3.2.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-collections/commons\-collections@.*$</packageUrl>
+        <vulnerabilityName>Remote code execution</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-beanutils-1.7.0.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-beanutils/commons\-beanutils@.*$</packageUrl>
+        <cpe>cpe:/a:apache:commons_beanutils</cpe>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-beanutils-1.7.0.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-beanutils/commons\-beanutils@.*$</packageUrl>
+        <vulnerabilityName>CVE-2014-0114</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: commons-beanutils-1.7.0.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/commons\-beanutils/commons\-beanutils@.*$</packageUrl>
+        <vulnerabilityName>CVE-2019-10086</vulnerabilityName>
+    </suppress>
+    <suppress>
+        <notes><![CDATA[file name: dom4j-1.1.jar]]></notes>
+        <packageUrl regex="true">^pkg:maven/dom4j/dom4j@.*$</packageUrl>
+        <cpe>cpe:/a:dom4j_project:dom4j</cpe>
+    </suppress>
 </suppressions>
\ No newline at end of file