Feb 8, 2024 · Backend Development

Mastering Spring Data REST: Quick Guide to Auto-Generated CRUD APIs

This article explains how Spring Data REST automatically exposes Spring Data repositories as RESTful endpoints, covering setup, entity and repository definitions, exposure strategies, custom base paths, CRUD operations, field projection, event handling, and visual tools for Spring Boot 3.0.5 with JDK 17.

CRUDJavaREST API

0 likes · 10 min read

Mastering Spring Data REST: Quick Guide to Auto-Generated CRUD APIs

Meituan Technology Team

Sep 28, 2017 · Information Security

Analysis and Exploitation of Spring Data REST CVE-2017-8046 Remote Code Execution Vulnerability

The article examines Spring Data REST’s CVE‑2017‑8046 remote‑code‑execution flaw, showing how a malicious JSON Patch path is turned into an unchecked SpEL expression that can run arbitrary commands, reproduces the exploit on a sample Spring Boot app, and advises upgrading to versions that include the path‑verification fix.

Backend SecurityCVE-2017-8046Exploit

0 likes · 17 min read

Analysis and Exploitation of Spring Data REST CVE-2017-8046 Remote Code Execution Vulnerability