pkg:maven/cn.hutool/hutool-all
Type
maven
Namespace
cn.hutool
Name
hutool-all
Known advisories, vulnerabilities and fixes for cn.hutool/hutool-all package.
Critical
2
High
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | <= 5.8.11 |
CVE-2023-24163
|
 MAVEN:GHSA-6C25-CXCC-PMC4
|
Dromara hutool vulnerable to SQL Injection | critical |
2023-01-31T18:30:23
(19 months ago) |
|
| Fixed | = 5.8.21 |
CVE-2023-24163
|
MAVEN:GHSA-6C25-CXCC-PMC4
|
Dromara hutool vulnerable to SQL Injection | critical |
2023-01-31T18:30:23
(19 months ago) |
|
| Affected | <= 5.8.11 |
CVE-2023-24162
|
MAVEN:GHSA-77H8-5J3H-JCJF
|
Dromara Hutool Deserialization of Untrusted Data vulnerability | critical |
2023-01-31T18:30:23
(19 months ago) |
|
| Affected | < 4.1.12 |
CVE-2018-17297
|
MAVEN:GHSA-RHQ2-2574-78MC
|
Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via directory traversal | high |
2018-10-17T19:54:53
(6 years ago) |
|
| Fixed | = 4.1.12 |
CVE-2018-17297
|
MAVEN:GHSA-RHQ2-2574-78MC
|
Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via directory traversal | high |
2018-10-17T19:54:53
(6 years ago) |