iSharkFly-Docs
/
java-tutorials
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

BAEL-4946 moved deserialization vulnerabilities code to a new package

This commit is contained in:
Liam Garvie 2021-05-19 08:47:02 +01:00
parent 06aa7787bf
commit ef8ca20541
3 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

0
core-java-modules/core-java/src/main/java/com/baeldung/deserialization/vulnerabilities/BadThing.java → core-java-modules/core-java-io-4/src/main/java/com/baeldung/deserialization/vulnerabilities/BadThing.java
View File

0
core-java-modules/core-java/src/main/java/com/baeldung/deserialization/vulnerabilities/MyCustomAttackObject.java → core-java-modules/core-java-io-4/src/main/java/com/baeldung/deserialization/vulnerabilities/MyCustomAttackObject.java
View File

2
core-java-modules/core-java/src/test/java/com/baeldung/deserialization/vulnerabilities/BadThingUnitTest.java → core-java-modules/core-java-io-4/src/test/java/com/baeldung/deserialization/vulnerabilities/BadThingUnitTest.java
View File

@ -13,7 +13,7 @@ public class BadThingUnitTest {
@Test @Test
@DisplayName("When a BadThing object is deserialized, then code execution in MyCustomAttackObject is run.") @DisplayName("When a BadThing object is deserialized, then code execution in MyCustomAttackObject is run.")
public void testCodeExecution() throws Exception { public void givenABadThingObject_whenItsDeserialized_thenExecutionIsRun() throws Exception {
BadThing bt = new BadThing(); BadThing bt = new BadThing();
bt.looselyDefinedThing = new MyCustomAttackObject(); bt.looselyDefinedThing = new MyCustomAttackObject();