VYPR

Maven package

cn.hippo4j/hippo4j-all

pkg:maven/cn.hippo4j/hippo4j-all

Vulnerabilities (2)

  • CVE-2023-27096Mar 27, 2023
    affected <= 1.4.3

    Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker to obtain sensitive information via the ConfigVerifyController function of the Tenant Management module.

  • CVE-2023-27094Mar 23, 2023
    affected <= 1.4.3

    An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.