Michelle let us know about the following story on techtarget
"A recent security assessment of an application by Ounce Labs has
resulted in the discovery of two vulnerabilities that can affect Java
Web applications that use the Spring Framework.
Spring has been downloaded more than 5 million times to date, which
means the security vulnerabilities identified could affect countless
companies that use this framework.
SpringSource has also posted an FAQ on its site to help users determine if they're at risk and what to do to prevent exploitation.
"
Article Link: http://searchsoftwarequality.techtarget.com/news/article/0,289142,sid92_gci1321417,00.html
