com.ibeetl:beetl
Maven3 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting com.ibeetl:beetlpage 1 of 1
- CVE-2023-30331CRITICALCVSS 9.8EG 9.82023-05-04
vulnerable: 2.2.10 ... 3.9.3.RELEASE (133 versions)
An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection (SSTI) via a crafted payload.
- CVE-2024-22490MEDIUMCVSS 6.1EG 6.12024-01-23
Cross Site Scripting (XSS) vulnerability in beetl-bbs 2.0 allows attackers to run arbitrary code via the /index keyword parameter.
- CVE-2024-22491MEDIUMCVSS 5.4EG 5.42024-01-16
A Stored Cross Site Scripting (XSS) vulnerability in beetl-bbs 2.0 allows attackers to run arbitrary code via the post/save content parameter.
Check whether com.ibeetl:beetl is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for com.ibeetl:beetl CVEs against the assets you own.
Start Free Scan →