GHSA-xgq8-jq9w-77r5, CVE-2022-40309
maven/org.apache.archiva/archiva-common
Apache Archiva subject to arbitrary directory deletion by users.
Users with write permissions to a repository can delete arbitrary directories.
All versions before 2.2.9
Upgrade to version 2.2.9 or above.
2022-11-22
source |