com.graphhopper:graphhopper-web-bundle@feature_1850_02 vulnerabilities
-
latest version
8.0
-
latest non vulnerable version
-
first published
6 years ago
-
latest version published
7 months ago
-
licenses detected
- [client_hc_no_vehicle,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.graphhopper:graphhopper-web-bundle package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
com.graphhopper:graphhopper-web-bundle is a GraphHopper routing engine as a web-service Affected versions of this package are vulnerable to Prototype Pollution. The URL parser could be tricked into adding or modifying properties of PoC by Snyk:
How to fix Prototype Pollution? Upgrade |
[,3.2)
[4.0-pre1,4.0)
|