Ssssssss Spider-Flow vulnerabilities
2 known vulnerabilities affecting ssssssss/spider-flow.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2024-0195P2CRITICALCVSS 9.8PoCv0.4.32024-01-02
CVE-2024-0195 [CRITICAL] CWE-94 CVE-2024-0195: A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the f
A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and m
nvd
CVE-2023-5016P3CRITICALCVSS 9.8≤ 0.5.0v0.1+4 more2023-09-17
CVE-2023-5016 [CRITICAL] CWE-502 CVE-2023-5016: A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by
A vulnerability was found in spider-flow up to 0.5.0. It has been declared as critical. Affected by this vulnerability is the function DriverManager.getConnection of the file src/main/java/org/spiderflow/controller/DataSourceController.java of the component API. The manipulation leads to deserialization. The attack can be launched remotely. The explo
nvd