org.jolokia:jolokia-core@1.0.6 vulnerabilities
-
latest version
1.7.2
-
latest non vulnerable version
-
first published
13 years ago
-
latest version published
a year ago
-
licenses detected
- [1.0.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.jolokia:jolokia-core package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.jolokia:jolokia-core is a fresh way to access JMX MBeans remotely. Affected versions oft his package are vulnerable to Arbitrary Code Execution in the proxy mode. It allows a remote attacker to run arbitrary Java code on the server. How to fix Arbitrary Code Execution? Upgrade |
[,1.5.0)
|
org.jolokia:jolokia-core is a fresh way to access JMX MBeans remotely. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) in the HTTP servlet. It allows an attacker to execute malicious javascript in the victim's browser. How to fix Cross-site Scripting (XSS)? Upgrade |
[,1.5.0)
|
|
[,1.2.1)
|