Vulnerabilities > Jooby

DATE CVE VULNERABILITY TITLE RISK
2020-05-11 CVE-2020-7647 Path Traversal vulnerability in Jooby
All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors.
network
low complexity
jooby CWE-22
5.3
2020-04-06 CVE-2020-7622 Unspecified vulnerability in Jooby
This affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1.
network
low complexity
jooby
critical
9.8
2019-08-23 CVE-2019-15477 Cross-site Scripting vulnerability in Jooby
Jooby before 1.6.4 has XSS via the default error handler.
network
low complexity
jooby CWE-79
6.1