github.com/SpectoLabs/hoverfly Security Advisories - Go | Ecosyste.ms: Advisories

github.com/SpectoLabs/hoverfly

View on github.com · View on proxy.golang.org

Security Advisories for github.com/SpectoLabs/hoverfly in go

High

27 days ago

WebSocket endpoint `/api/v2/ws/logs` reachable without authentication even when --auth is enabled GSA_kwCzR0hTQS1qeG1yLTJoNHEtcmh4cM4ABL8S

go github.com/SpectoLabs/hoverfly

Critical

28 days ago

Hoverfly is vulnerable to Remote Code Execution through an insecure middleware implementation GSA_kwCzR0hTQS1yNGg4LWhmcDItZ2dtZs4ABL8L

go github.com/SpectoLabs/hoverfly

High

about 1 year ago

Hoverfly allows an arbitrary file read in the `/api/v2/simulation` endpoint (`GHSL-2023-274`) GSA_kwCzR0hTQS02eHg0LXg0NmYtZjg5N84AA_QK

go github.com/spectolabs/hoverfly

Filter by Severity

High 2 Critical 1