flyway | Snyk

Direct Vulnerabilities

Known vulnerabilities in the flyway package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
C HTTP Request Smuggling	<12.9.0-r0
L GHSA-v8h7-rr48-vmmv	<12.9.0-r0
L Resource Exhaustion	<12.9.0-r0
L GHSA-xxqh-mfjm-7mv9	<12.9.0-r0
L GHSA-38f8-5428-x5cv	<12.9.0-r0
L GHSA-45q3-82m4-75jr	<12.9.0-r0
L CRLF Injection	<12.9.0-r0
H HTTP Request Smuggling	<12.9.0-r0
L Resource Exhaustion	<12.9.0-r0
L GHSA-mj4r-2hfc-f8p6	<12.9.0-r0
L GHSA-57rv-r2g8-2cj3	<12.9.0-r0
C HTTP Request Smuggling	<12.9.0-r0
L GHSA-f6hv-jmp6-3vwv	<12.9.0-r0
L GHSA-m4cv-j2px-7723	<12.9.0-r0
L Integer Overflow or Wraparound	<12.9.0-r0
H HTTP Response Splitting	<12.9.0-r0
L GHSA-w573-9ffj-6ff9	<12.8.1-r5
L Information Exposure	<12.8.1-r5
L GHSA-5pvg-856g-cp85	<12.8.1-r4
L Use of Insufficiently Random Values	<12.8.1-r4
C Insufficient Verification of Data Authenticity	<12.8.1-r4
L GHSA-xmv7-r254-6q78	<12.8.1-r4
C Insufficient Verification of Data Authenticity	<12.8.1-r4
L GHSA-676x-f7gg-47vc	<12.8.1-r4
L GHSA-337m-mw94-2v6g	<12.8.1-r1
L Uncontrolled Recursion	<12.8.1-r1
L GHSA-cm33-6792-r9fm	<12.6.0-r0
L GHSA-rwm7-x88c-3g2p	<12.6.0-r0
C Improper Input Validation	<12.6.0-r0
L Missing Release of Resource after Effective Lifetime	<12.6.0-r0
L GHSA-72hv-8253-57qq	<12.6.0-r0
L GHSA-84h7-rjj3-6jx4	<12.5.0-r0
L GHSA-w9fj-cfpg-grvv	<12.5.0-r0
L CRLF Injection	<12.5.0-r0
H Allocation of Resources Without Limits or Throttling	<12.5.0-r0
L GHSA-pwqr-wmgm-9rr8	<12.5.0-r0
L Allocation of Resources Without Limits or Throttling	<12.5.0-r0
L GHSA-98qh-xjc8-98pq	<12.5.0-r0
L HTTP Request Smuggling	<12.5.0-r0
L GHSA-2m67-wjpj-xhg9	<12.7.0-r0
H Allocation of Resources Without Limits or Throttling	<12.1.0-r0
L GHSA-6v53-7c9g-w56r	<12.1.0-r0
L GHSA-33g6-495w-v8j2	<11.2.0-r1
L GHSA-7hpq-3g6w-pvhf	<11.2.0-r1
L GHSA-fghv-69vj-qj49	<11.12.0-r1
H HTTP Request Smuggling	<11.12.0-r1
L GHSA-4g8c-wm8x-jfhw	<11.3.1-r1
L CVE-2025-24970	<11.3.1-r1
L GHSA-q298-375f-5q63	<11.4.1-r0
L Information Exposure Through Log Files	<11.4.1-r0
L GHSA-3p8m-j85q-pgmj	<11.11.2-r1
L Uncontrolled Recursion	<11.16.0-r0
L GHSA-4q2v-9p7v-3v22	<11.10.3-r0
L Uncontrolled Recursion	<11.16.0-r0
L Incorrect Default Permissions	<11.2.0-r1
L Untrusted Search Path	<11.2.0-r1
H Improper Handling of Highly Compressed Data (Data Amplification)	<11.11.2-r1
L CVE-2025-22227	<11.10.3-r0
L GHSA-xwmg-2g98-w7v9	<11.16.0-r0
L GHSA-prj3-ccx8-p6x4	<11.11.0-r1
H Allocation of Resources Without Limits or Throttling	<11.11.0-r1
L GHSA-j288-q9x7-2f5v	<11.16.0-r0

Vulnerability

Vulnerable Version

HTTP Request Smuggling

<12.9.0-r0