debian-mirror-gitlab/spec/fixtures/security-reports/master/gl-dependency-scanning-report.json

[
  {
    "priority": "Unknown",
    "file": "pom.xml",
    "cve": "CVE-2012-4386",
    "url": "http://struts.apache.org/docs/s2-010.html",
    "message": "CSRF protection bypass for org.apache.struts/struts2-core",
    "tools": [
      "gemnasium"
    ],
    "tool": "gemnasium"
  },
  {
    "priority": "Unknown",
    "file": "pom.xml",
    "cve": "CVE-2012-4387",
    "url": "http://struts.apache.org/docs/s2-011.html",
    "message": "Long parameter name DoS for org.apache.struts/struts2-core",
    "tools": [
      "gemnasium"
    ],
    "tool": "gemnasium"
  },
  {
    "priority": "Unknown",
    "file": "pom.xml",
    "cve": "CVE-2013-1966",
    "url": "http://struts.apache.org/docs/s2-014.html",
    "message": "Remote command execution due to flaw in the includeParams attribute of URL and Anchor tags for org.apache.struts/struts2-core",
    "tools": [
      "gemnasium"
    ],
    "tool": "gemnasium"
  }
]
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`[`
			`{`
New upstream version 11.6.0+dfsg 2018-12-23 12:14:25 +05:30			`"priority": "Unknown",`
New upstream version 11.5.6+dfsg 2019-01-03 12:48:30 +05:30			`"file": "pom.xml",`
			`"cve": "CVE-2012-4386",`
			`"url": "http://struts.apache.org/docs/s2-010.html",`
			`"message": "CSRF protection bypass for org.apache.struts/struts2-core",`
			`"tools": [`
			`"gemnasium"`
New upstream version 11.6.0+dfsg 2018-12-23 12:14:25 +05:30			`],`
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`"tool": "gemnasium"`
			`},`
			`{`
New upstream version 11.6.0+dfsg 2018-12-23 12:14:25 +05:30			`"priority": "Unknown",`
New upstream version 11.5.6+dfsg 2019-01-03 12:48:30 +05:30			`"file": "pom.xml",`
			`"cve": "CVE-2012-4387",`
			`"url": "http://struts.apache.org/docs/s2-011.html",`
			`"message": "Long parameter name DoS for org.apache.struts/struts2-core",`
			`"tools": [`
			`"gemnasium"`
			`],`
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`"tool": "gemnasium"`
New upstream version 11.6.0+dfsg 2018-12-23 12:14:25 +05:30			`},`
			`{`
New upstream version 11.5.6+dfsg 2019-01-03 12:48:30 +05:30			`"priority": "Unknown",`
			`"file": "pom.xml",`
			`"cve": "CVE-2013-1966",`
			`"url": "http://struts.apache.org/docs/s2-014.html",`
			`"message": "Remote command execution due to flaw in the includeParams attribute of URL and Anchor tags for org.apache.struts/struts2-core",`
			`"tools": [`
			`"gemnasium"`
New upstream version 11.6.0+dfsg 2018-12-23 12:14:25 +05:30			`],`
New upstream version 11.5.6+dfsg 2019-01-03 12:48:30 +05:30			`"tool": "gemnasium"`
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`}`
			`]`