WireMock before 2.16.0 contains a vulnerability that allows a remote unauthenticated attacker to access local files beyond the application directory via a specially crafted XML request, aka Directory Traversal.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NWiremock
APPWiremock< 2.16.0
Powiązane podatności
An XXE vulnerability within WireMock before 2.16.0 allows a remote unauthenticated attacker to access local fi...
WireMock with GUI versions 3.2.0.0 through 3.0.4.0 are vulnerable to stored cross-site scripting (SXSS) throug...
WireMock is a tool for mocking HTTP services. WireMock can be configured to only permit proxying (and therefor...
WireMock is a tool for mocking HTTP services. The proxy mode of WireMock, can be protected by the network rest...
WireMock is a tool for mocking HTTP services. When certain request URLs like “@127.0.0.1:1234" are used in Wir...