8 matches found
CVE-2020-7647
All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors...
io.github.juspay.hyperswitchplugin:hyperswitch-killbill-plugin (=0.1.0), org.jooby:coverage-report (>=0.5.0 <=1.1.2) +113 more potentially affected by CVE-2020-7647 via org.jooby:jooby (>=0.1.0 <=1.6.9)
org.jooby:jooby MAVEN version =0.1.0, =0.5.0, =1.0.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.6.9 and more Source cves: CVE-2020-7647 Source advisory: OSV:GHSA-PX9H-X66R-8MPC...
com.github.philippefichet:asciidoc4netbeans (>=1.0.0 <=1.0.1), com.macdservices:jmacd-server (>=1.1.1.1 <=1.1.1.7) +52 more potentially affected by CVE-2020-7647 via io.jooby:jooby (>=2.0.0 <=2.8.10)
io.jooby:jooby MAVEN version =2.0.0, =1.0.0, =1.1.1.1, =1.1.1.1, =2.7.0, =2.7.0, =2.7.0, =2.1.0, =2.6.0, =2.0.6, =2.8.10, =2.8.10, =2.10.0, =2.6.1, =2.0.0, =2.17.0 and more Source cves: CVE-2020-7647 Source advisory: OSV:GHSA-PX9H-X66R-8MPC...
CVE-2020-7647
All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors...
CVE-2020-7647
All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors...
CVE-2020-7647
CVE-2020-7647 affects io.jooby:jooby and org.jooby:jooby. Two directory traversal vectors exist: (1) when sharing a File System directory (assets("/static/**", Paths.get("static"))) the loader may fall back to classpath resources, enabling access to files outside the web root (e.g., configuration...
com.github.philippefichet:asciidoc4netbeans (>=1.0.0 <=1.0.1), com.macdservices:jmacd-server (>=1.1.1.1 <=1.1.1.7) +52 more potentially affected by CVE-2020-7647 via io.jooby:jooby (>=2.0.0.M1 <=2.8.10)
io.jooby:jooby MAVEN version =2.0.0.M1, =1.0.0, =1.1.1.1, =1.1.1.1, =2.7.0, =2.7.0, =2.7.0, =2.1.0, =2.6.0, =2.0.6, =2.8.10, =2.8.10, =2.10.0, =2.6.1, =2.0.1, =2.17.0 and more Source cves: CVE-2020-7647 Source advisory: SNYK:JAVA-IOJOOBY-568806...
org.jooby:coverage-report (>=1.0.0.CR1 <=1.1.2), org.jooby:jooby-akka (>=1.0.0 <=1.6.6) +98 more potentially affected by CVE-2020-7647 via org.jooby:jooby (>=1.0.0 <=1.6.6)
org.jooby:jooby MAVEN version =1.0.0, =1.0.0.CR1, =1.0.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.6.6 and more Source cves: CVE-2020-7647 Source advisory: SNYK:JAVA-ORGJOOBY-568807...