Homepage
About Snyk

com.webank.wedatasphere.linkis:linkis-workspace@0.9.3 vulnerabilities

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the com.webank.wedatasphere.linkis:linkis-workspace package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Path Traversal

com.webank.wedatasphere.linkis:linkis-workspace is a package that easily connect to various back-end computation/storage engines(Spark, Python, TiDB...), exposes various interfaces(REST, JDBC, Java ...), with multi-tenancy, high performance, and resource control.

Affected versions of this package are vulnerable to Path Traversal via the getDirFileTrees function.

How to fix Path Traversal?

A fix was pushed into the master branch but not yet published.

[0,)
  • H
CRLF Injection

com.webank.wedatasphere.linkis:linkis-workspace is a package that easily connect to various back-end computation/storage engines(Spark, Python, TiDB...), exposes various interfaces(REST, JDBC, Java ...), with multi-tenancy, high performance, and resource control.

Affected versions of this package are vulnerable to CRLF Injection via the download function.

How to fix CRLF Injection?

A fix was pushed into the master branch but not yet published.

[0,)
Go back to all versions of this package