search

debricked / soot-wrapper

Analyses how you use your dependencies to figure out if you use the vulnerable parts of a vulnerable dependency
MIT License
4 stars 5 forks source link

A new vulnerability was discovered: CVE-2021-23337 #42

Closed debricked[bot] closed 2 years ago

debricked[bot] commented 3 years ago

All versions of package lodash; all versions of package org.fujion.webjars:lodash are vulnerable to Command Injection via template.

Read more at Debricked: https://app.debricked.com/en/service/vulnerability/210290