com.squareup.retrofit2:retrofit@2.3.0 vulnerabilities
-
latest version
2.11.0
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
2 months ago
-
licenses detected
- [2.0.0-beta3,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.squareup.retrofit2:retrofit package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
com.squareup.retrofit2:retrofit is a Type-safe HTTP client for Android and Java by Square, Inc. Affected versions of this package are vulnerable to Directory Traversal.
How to fix Directory Traversal? Upgrade com.squareup.retrofit2:retrofit to version 2.5.0 or higher. |
[2.0.0,2.5.0)
|