TASKPM

History

Oscar Gonzalez Fernandez 9576e135ad Use ProcessBuilder to construct program calls Avoid potential remote code execution through the `parameters` parameter. They were concatenated to the capture command String directly, which could lead to the injection of malicious code. Currently the problem isn't exposed because the potential attacker can't control the contents of the `parameters` map, since their contents are chosen from a limited set of values.	2013-06-21 14:51:56 +02:00
..
src	Use ProcessBuilder to construct program calls	2013-06-21 14:51:56 +02:00
pom.xml	Use a connection data pool when running tests	2013-06-05 12:33:57 +02:00

Oscar Gonzalez Fernandez 9576e135ad Use ProcessBuilder to construct program calls

Avoid potential remote code execution through the `parameters`
parameter. They were concatenated to the capture command String
directly, which could lead to the injection of malicious code.

Currently the problem isn't exposed because the potential attacker
can't control the contents of the `parameters` map, since their
contents are chosen from a limited set of values.

2013-06-21 14:51:56 +02:00

src

Use ProcessBuilder to construct program calls

2013-06-21 14:51:56 +02:00

pom.xml

Use a connection data pool when running tests

2013-06-05 12:33:57 +02:00