From 50e66c0f4849295fe184b86a2886648fa9ca908b Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Mon, 16 Jun 2025 08:30:16 +0000
Subject: [PATCH] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-10332631
- https://snyk.io/vuln/SNYK-JAVA-COMMONSIO-8161190
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-10345766
---
 pom.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pom.xml b/pom.xml
index 4af6d87744..7fbd00bb20 100644
--- a/pom.xml
+++ b/pom.xml
@@ -285,7 +285,7 @@
         <commons.configuration.version>1.10</commons.configuration.version>
         <commons.csv.version>1.0</commons.csv.version>
         <commons.digester.version>2.1</commons.digester.version>
-        <commons.fileupload.version>1.3.1</commons.fileupload.version>
+        <commons.fileupload.version>1.6.0</commons.fileupload.version>
         <commons.httpclient.version>3.1</commons.httpclient.version>
         <commons.io.version>2.4</commons.io.version>
         <commons.lang.version>3.3.2</commons.lang.version>
@@ -311,7 +311,7 @@
         <servlet-api.version>3.1.0</servlet-api.version>
         <sitemesh.version>2.4.2</sitemesh.version>
         <slf4j.version>1.7.10</slf4j.version>
-        <spring.version>6.1.14</spring.version>
+        <spring.version>6.1.21</spring.version>
         <spring-ldap.version>2.0.2.RELEASE</spring-ldap.version>
         <springsecurity.version>6.4.6</springsecurity.version>
         <javax-el.version>2.2.4</javax-el.version>
@@ -329,7 +329,7 @@
         <easymock.version>3.0</easymock.version>
         <hsqldb.version>1.8.0.10</hsqldb.version>
         <mysql.version>5.1.38</mysql.version>
-        <jackson-2-version>2.5.1</jackson-2-version>
+        <jackson-2-version>2.13.0</jackson-2-version>
         <junit.version>4.11</junit.version>
         <selenium-client.version>1.0.2</selenium-client.version>