pkg:maven/cn.hutool/hutool-all
Type
maven
Namespace
cn.hutool
Name
hutool-all
Known advisories, vulnerabilities and fixes for cn.hutool/hutool-all package.
Critical
2
High
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 5.8.11 |
CVE-2023-24163
|
MAVEN:GHSA-6C25-CXCC-PMC4 | Dromara hutool vulnerable to SQL Injection | critical |
2023-01-31T18:30:23
(19 months ago) |
|
Fixed | = 5.8.21 |
CVE-2023-24163
|
MAVEN:GHSA-6C25-CXCC-PMC4 | Dromara hutool vulnerable to SQL Injection | critical |
2023-01-31T18:30:23
(19 months ago) |
|
Affected | <= 5.8.11 |
CVE-2023-24162
|
MAVEN:GHSA-77H8-5J3H-JCJF | Dromara Hutool Deserialization of Untrusted Data vulnerability | critical |
2023-01-31T18:30:23
(19 months ago) |
|
Affected | < 4.1.12 |
CVE-2018-17297
|
MAVEN:GHSA-RHQ2-2574-78MC | Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via directory traversal | high |
2018-10-17T19:54:53
(6 years ago) |
|
Fixed | = 4.1.12 |
CVE-2018-17297
|
MAVEN:GHSA-RHQ2-2574-78MC | Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via directory traversal | high |
2018-10-17T19:54:53
(6 years ago) |