Mu grails web framework, yopangidwira kupanga mapulogalamu a pa intaneti molingana ndi MVC paradigm ku Java, Groovy ndi zilankhulo zina za JVM, chiopsezo chadziwika chomwe chimakulolani kuti mugwiritse ntchito code yanu kutali ndi malo omwe intaneti ili nayo. ntchito ikuyenda. Chiwopsezochi chimagwiritsidwa ntchito potumiza pempho lopangidwa mwapadera lomwe limapatsa wowukirayo mwayi wa ClassLoader. Vutoli limayamba chifukwa cha kulakwitsa kwa malingaliro omangirira deta, omwe amagwiritsidwa ntchito popanga zinthu komanso pomanga pamanja pogwiritsa ntchito bindData. Nkhaniyi idathetsedwa muzotulutsa 3.3.15, 4.1.1, 5.1.9, ndi 5.2.1.
Kuphatikiza apo, titha kuzindikira chiwopsezo mu gawo la Ruby tzinfo, lomwe limakupatsani mwayi wotsitsa zomwe zili mufayilo iliyonse, momwe ufulu wofikira wa pulogalamu yowukiridwayo umalola. Chiwopsezo chachitika chifukwa chosowa kuwunika koyenera kwa zilembo zapadera m'dzina la nthawi yotchulidwa mu TZinfo::Timezone.get njira. Vutoli likukhudza mapulogalamu omwe amatumiza data yakunja yosavomerezeka kupita ku TZInfo::Timezone.get. Mwachitsanzo, kuti muwerenge fayilo /tmp/payload, mungatchule mtengo ngati "foo\n/../../../tmp/payload".
Source: opennet.ru