THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
You were though still at risk if you use RMI, JNDI, JMX or Spring and maybe other Java classes we don't use OOTB in OFBiz. We (PMC) decided to comment out RMI OOTB
Jira | ||||||
---|---|---|---|---|---|---|
|
We also decided to provide a simple way to protect yourself from all possible Java serialize vulnerabilities.
...