修复CVE-2023-3276漏洞，XmlUtil.readBySax问题

2025-07-21 15:09:48 +08:00 · 2023-06-16 20:23:13 +08:00
parent 638a058b20
commit f901c9419d
11 changed files with 55 additions and 42 deletions
--- a/hutool-http/src/main/java/org/dromara/hutool/http/html/HtmlUtil.java
+++ b/hutool-http/src/main/java/org/dromara/hutool/http/html/HtmlUtil.java
@@ -17,7 +17,7 @@ import org.dromara.hutool.core.regex.ReUtil;
 import org.dromara.hutool.core.text.StrUtil;
 import org.dromara.hutool.core.text.escape.EscapeUtil;
 import org.dromara.hutool.core.util.CharsetUtil;
-import org.dromara.hutool.core.util.XmlUtil;
+import org.dromara.hutool.core.xml.XmlUtil;

 import java.io.InputStream;
 import java.nio.charset.Charset;
--- a/hutool-http/src/main/java/org/dromara/hutool/http/webservice/SoapClient.java
+++ b/hutool-http/src/main/java/org/dromara/hutool/http/webservice/SoapClient.java
@@ -19,7 +19,7 @@ import org.dromara.hutool.core.text.StrUtil;
 import org.dromara.hutool.core.text.split.SplitUtil;
 import org.dromara.hutool.core.util.CharsetUtil;
 import org.dromara.hutool.core.util.ObjUtil;
-import org.dromara.hutool.core.util.XmlUtil;
+import org.dromara.hutool.core.xml.XmlUtil;
 import org.dromara.hutool.http.client.HeaderOperation;
 import org.dromara.hutool.http.client.Request;
 import org.dromara.hutool.http.client.Response;
--- a/hutool-http/src/main/java/org/dromara/hutool/http/webservice/SoapUtil.java
+++ b/hutool-http/src/main/java/org/dromara/hutool/http/webservice/SoapUtil.java
@@ -22,7 +22,7 @@ import javax.xml.soap.SOAPMessage;

 import org.dromara.hutool.core.exception.HutoolException;
 import org.dromara.hutool.core.util.CharsetUtil;
-import org.dromara.hutool.core.util.XmlUtil;
+import org.dromara.hutool.core.xml.XmlUtil;

 /**
 * SOAP相关工具类