VYPR

Maven package

org.apache.helix/helix

pkg:maven/org.apache.helix/helix

Vulnerabilities (2)

  • CVE-2024-22281Aug 20, 2024
    affected <= 1.4.0

    ** UNSUPPORTED WHEN ASSIGNED ** The Apache Helix Front (UI) component contained a hard-coded secret, allowing an attacker to spoof sessions by generating their own fake cookies. This issue affects Apache Helix Front (UI): all versions. As this project is retired, we do not plan

  • CVE-2022-47500Dec 19, 2022
    affected >= 0.8.0, < 1.1.0fixed 1.1.0

    URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4. Solution: removed the the forward component since it was improper designed for UI embeddi