Maven package
org.jooby/jooby
pkg:maven/org.jooby/jooby
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-7647 | — | < 2.8.2 | 2.8.2 | May 11, 2020 | All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors. | ||
| CVE-2019-15477 | — | < 1.6.4 | 1.6.4 | Aug 23, 2019 | Jooby before 1.6.4 has XSS via the default error handler. |
- CVE-2020-7647May 11, 2020affected < 2.8.2fixed 2.8.2
All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors.
- CVE-2019-15477Aug 23, 2019affected < 1.6.4fixed 1.6.4
Jooby before 1.6.4 has XSS via the default error handler.