201 matches found
JetBrains Ktor framework 安全漏洞
JetBrains Ktor framework is a web application framework from the Czech company JetBrains. A security vulnerability exists in JetBrains Ktor framework versions prior to 2.3.1, which stems from a header for authentication data that can be added to an exception message...
CVE-2022-48476
In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...
Path traversal
In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...
CVE-2022-48476
In JetBrains Ktor, prior to version 2.3.0, there is a path traversal vulnerability in the resolveResource method. Affected software is Ktor (JetBrains’ framework); root cause per sources is a path traversal flaw in resolveResource. The CVE is linked across multiple feeds (NVD/Red Hat/OSV/etc.). I...
CVE-2022-48476
In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...
CVE-2022-48476
In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...
CVE-2022-48476
In JetBrains Ktor before 2.3.0 path traversal in the resolveResource method was possible...
JetBrains Ktor framework 路径遍历漏洞
JetBrains Ktor framework is a web application framework from the Czech company JetBrains. A security vulnerability exists in JetBrains Ktor framework versions prior to 2.3.0, which stems from the discovery of a contained path traversal vulnerability in the resolveResource method...
PT-2023-15809 · Jetbrains · Jetbrains Ktor
Name of the Vulnerable Software and Affected Versions: JetBrains Ktor versions prior to 2.3.0 Description: The issue allows path traversal in the resolveResource method. Recommendations: For versions prior to 2.3.0, update to version 2.3.0 or later to resolve the issue. As a temporary workaround,...
org.kodein.di:kodein-di-framework-ktor-server-controller-jvm (>=6.2.0 <=7.11.0), org.kodein.di:kodein-di-framework-ktor-server-jvm (>=6.2.0 <=7.11.0) potentially affected by CVE-2022-38180 via io.ktor:ktor (>=1.1.1 <=1.5.4)
io.ktor:ktor MAVEN version =1.1.1, =6.2.0, =6.2.0, =7.11.0 Source cves: CVE-2022-38180 Source advisory: OSV:GHSA-HCCX-CG4V-HRJX...
org.kodein.di:kodein-di-framework-ktor-server-controller-jvm (>=6.2.0 <=7.11.0), org.kodein.di:kodein-di-framework-ktor-server-jvm (>=6.2.0 <=7.11.0) potentially affected by CVE-2022-38179 via io.ktor:ktor (>=1.1.1 <=1.5.4)
io.ktor:ktor MAVEN version =1.1.1, =6.2.0, =6.2.0, =7.11.0 Source cves: CVE-2022-38179 Source advisory: OSV:GHSA-V866-GWF5-W92F...
JetBrain Ktor before 2.1.0 vulnerable to selection of wrong authentication provider
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...
JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack
JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack...
GHSA-V866-GWF5-W92F JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack
JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack...
GHSA-HCCX-CG4V-HRJX JetBrain Ktor before 2.1.0 vulnerable to selection of wrong authentication provider
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...
CVE-2022-38180
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...
CVE-2022-38179
JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...
CVE-2022-38179
JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...
CVE-2022-38180
In JetBrains Ktor before 2.1.0 the wrong authentication provider could be selected in some cases...
Design/Logic Flaw
JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack...