io.vertx:vertx-web-api-contract@3.5.2.CR3 vulnerabilities
-
latest version
4.5.7
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
a month ago
-
licenses detected
- (Apache-2.0 OR EPL-1.0)[3.5.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the io.vertx:vertx-web-api-contract package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
io.vertx:vertx-web-api-contract is a HTTP web applications for Vert.x. Affected versions of this package are vulnerable to XML External Entity (XXE) Injection
via the How to fix XML External Entity (XXE) Injection? Upgrade io.vertx:vertx-web-api-contract to version 3.5.4 or higher. |
[,3.5.4)
|