com.ibeetl:beetl-core@3.15.0.RELEASE vulnerabilities
-
latest version
3.16.1.RELEASE
-
latest non vulnerable version
-
first published
2 years ago
-
latest version published
a month ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.ibeetl:beetl-core package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Improper Input Validation due to an issue in the render function which allows attackers to execute server-side template injection (SSTI) via a crafted payload. How to fix Improper Input Validation? Upgrade |
[,3.16.0.RELEASE)
|
Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine due to insufficient filtering in the How to fix Improper Neutralization of Special Elements Used in a Template Engine? Upgrade |
[,3.15.13.RELEASE)
|