force scan
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue | Reachability |
|---|---|---|---|---|---|---|
CVE-2022-23305Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
 Critical |
9.8 | log4j-1.2.17.jar | Upgrade to version: ch.qos.reload4j:reload4j:1.2.18.2 | #7 | |
CVE-2021-23383Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
Critical |
9.8 | handlebars-2.0.0.min.js | Upgrade to version: handlebars - 4.7.7 | #9 | |
CVE-2021-23369Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
Critical |
9.8 | handlebars-2.0.0.min.js | Upgrade to version: com.github.jknack:handlebars:4.2.0, handlebars - 4.7.7 | #9 | |
CVE-2020-9493Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
Critical |
9.8 | log4j-1.2.17.jar | Upgrade to version: ch.qos.reload4j:reload4j:1.2.18.1 | #7 | |
CVE-2019-19919Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
Critical |
9.8 | handlebars-2.0.0.min.js | Upgrade to version: handlebars - 4.3.0 | #9 | |
CVE-2019-17571Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
Critical |
9.8 | log4j-1.2.17.jar | Upgrade to version: log4j-manual - 1.2.17-16;log4j-javadoc - 1.2.17-16;log4j - 1.2.17-16,1.2.17-16 | #7 | |
CVE-2012-2400Path to dependency file: /WebContent/bank/stocks.jsp Path to vulnerable library: /WebContent/util/swfobject.js,/WebContent/bank/../util/swfobject.js Dependency Hierarchy: -> ❌ swfobject-2.2.js (Vulnerable Library) |
Critical |
9.8 | swfobject-2.2.js | Upgrade to version: 3.3.2 | #6 | |
CVE-2015-1832Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.derby/derby/10.8.2.2/5a9efbb610bd0dbf0ea404523319211f0603e4dc/derby-10.8.2.2.jar Dependency Hierarchy: -> ❌ derby-10.8.2.2.jar (Vulnerable Library) |
Critical |
9.1 | derby-10.8.2.2.jar | Upgrade to version: 10.12.1.1 | #4 | |
CVE-2022-23307Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
 High |
8.8 | log4j-1.2.17.jar | Upgrade to version: ch.qos.reload4j:reload4j:1.2.18.1 | #7 | |
CVE-2022-23302Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
High |
8.8 | log4j-1.2.17.jar | Upgrade to version: ch.qos.reload4j:reload4j:1.2.18.1 | #7 | |
CVE-2019-20920Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
High |
8.1 | handlebars-2.0.0.min.js | Upgrade to version: handlebars - 4.5.3 | #9 | |
WS-2020-0450Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
High |
7.5 | handlebars-2.0.0.min.js | Upgrade to version: handlebars - 4.6.0 | #9 | |
CVE-2023-5072Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.json/json/20220924/5aa95e7688f76c664af205c5937620f02688dfbc/json-20220924.jar Dependency Hierarchy: -> ❌ json-20220924.jar (Vulnerable Library) |
High |
7.5 | json-20220924.jar | Upgrade to version: org.json:json:20231013 | #5 | |
CVE-2023-26464Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
High |
7.5 | log4j-1.2.17.jar | Upgrade to version: org.apache.logging.log4j:log4j-core:2.0 | #7 | |
CVE-2022-45688Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.json/json/20220924/5aa95e7688f76c664af205c5937620f02688dfbc/json-20220924.jar Dependency Hierarchy: -> ❌ json-20220924.jar (Vulnerable Library) |
High |
7.5 | json-20220924.jar | Upgrade to version: org.json:json:20230227 | #5 | |
CVE-2021-4104Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
High |
7.5 | log4j-1.2.17.jar | Upgrade to version: uom-parent - 1.0.3-3.module,1.0.3-3.module;uom-se-javadoc - 1.0.4-3.module;parfait-examples - 0.5.4-4.module;log4j-manual - 1.2.17-16;si-units-javadoc - 0.6.5-2.module;unit-api - 1.0-5.module,1.0-5.module;unit-api-javadoc - 1.0-5.module;parfait - 0.5.4-4.module,0.5.4-4.module;log4j-javadoc - 1.2.17-16;uom-systems-javadoc - 0.7-1.module;uom-lib-javadoc - 1.0.1-6.module;uom-systems - 0.7-1.module,0.7-1.module;log4j - 1.2.17-16,1.2.17-16;uom-se - 1.0.4-3.module,1.0.4-3.module;uom-lib - 1.0.1-6.module,1.0.1-6.module;parfait-javadoc - 0.5.4-4.module;pcp-parfait-agent - 0.5.4-4.module;si-units - 0.6.5-2.module,0.6.5-2.module | #7 | |
WS-2019-0064Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
High |
7.3 | handlebars-2.0.0.min.js | Upgrade to version: 3.0.7,4.0.14,4.1.2 | #9 | |
WS-2016-0034Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
High |
7.3 | swagger-ui-2.1.2.min.js | Upgrade to version: v2.1.5 | #8 | |
CVE-2021-23358Path to vulnerable library: /WebContent/swagger/lib/underscore-min.js Dependency Hierarchy: -> ❌ underscore-min-1.7.0.js (Vulnerable Library) |
High |
7.2 | underscore-min-1.7.0.js | Upgrade to version: underscore - 1.12.1,1.13.0-2 | #2 | |
WS-2019-0379Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/commons-codec/commons-codec/1.6/b7f0fc8f61ecadeb3695f0b9464755eee44374d4/commons-codec-1.6.jar Dependency Hierarchy: -> ❌ commons-codec-1.6.jar (Vulnerable Library) |
 Medium |
6.5 | commons-codec-1.6.jar | Upgrade to version: commons-codec:commons-codec:1.13 | #3 | |
CVE-2016-1000233Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
Medium |
6.5 | swagger-ui-2.1.2.min.js | Upgrade to version: 2.2.1 | #8 | |
WS-2019-0234Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
Medium |
6.1 | swagger-ui-2.1.2.min.js | Upgrade to version: 2.2.1 | #8 | |
CVE-2020-7656Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jquery - 1.9.0 | #11 | |
CVE-2020-11023Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #11 | |
CVE-2020-11022Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jQuery - 3.5.0 | #11 | |
CVE-2019-11358Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jquery - 3.4.0 | #11 | |
CVE-2016-1000229Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
Medium |
6.1 | swagger-ui-2.1.2.min.js | Upgrade to version: 2.2.1 | #8 | |
CVE-2015-9251Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jQuery - 3.0.0 | #11 | |
CVE-2015-8861Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
Medium |
6.1 | handlebars-2.0.0.min.js | Upgrade to version: 4.0.0 | #9 | |
CVE-2012-6708Path to vulnerable library: /WebContent/swagger/lib/jquery-1.8.0.min.js Dependency Hierarchy: -> ❌ jquery-1.8.0.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.8.0.min.js | Upgrade to version: jQuery - v1.9.0 | #11 | |
WS-2019-0103Path to vulnerable library: /WebContent/swagger/lib/handlebars-2.0.0.js Dependency Hierarchy: -> ❌ handlebars-2.0.0.min.js (Vulnerable Library) |
Medium |
5.6 | handlebars-2.0.0.min.js | Upgrade to version: 4.1.0 | #9 | |
CVE-2022-46337Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.derby/derby/10.8.2.2/5a9efbb610bd0dbf0ea404523319211f0603e4dc/derby-10.8.2.2.jar Dependency Hierarchy: -> ❌ derby-10.8.2.2.jar (Vulnerable Library) |
Medium |
5.5 | derby-10.8.2.2.jar | Upgrade to version: org.apache.derby:derby:10.14.3,10.15.2.1,10.16.1.2,10.17.1.0 | #4 | |
WS-2017-0143Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
Medium |
5.4 | swagger-ui-2.1.2.min.js | Upgrade to version: 2.2.3 | #8 | |
CVE-2018-1313Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.derby/derby/10.8.2.2/5a9efbb610bd0dbf0ea404523319211f0603e4dc/derby-10.8.2.2.jar Dependency Hierarchy: -> ❌ derby-10.8.2.2.jar (Vulnerable Library) |
Medium |
5.3 | derby-10.8.2.2.jar | Upgrade to version: org.apache.derby:derbynet:10.14.2.0;org.apache.derby:derby:10.14.2.0;org.apache.derby:derbytools:10.14.2.0;org.apache.derby:derbyclient:10.14.2.0 | #4 | |
CVE-2018-25031Path to vulnerable library: /WebContent/swagger/swagger-ui.js Dependency Hierarchy: -> ❌ swagger-ui-3.19.3.js (Vulnerable Library) |
Medium |
4.3 | swagger-ui-3.19.3.js | Upgrade to version: swagger-ui - 4.1.3;swagger-ui-dist - 4.1.3 | #12 | |
CVE-2018-25031Path to dependency file: /WebContent/swagger/index.html Path to vulnerable library: /WebContent/swagger/swagger-ui-bundle.js,/WebContent/swagger/./swagger-ui-bundle.js Dependency Hierarchy: -> ❌ swagger-ui-bundle-3.19.3.js (Vulnerable Library) |
Medium |
4.3 | swagger-ui-bundle-3.19.3.js | Upgrade to version: swagger-ui - 4.1.3;swagger-ui-dist - 4.1.3 | #10 | |
CVE-2018-25031Path to vulnerable library: /WebContent/swagger/swagger-ui.min.js Dependency Hierarchy: -> ❌ swagger-ui-2.1.2.min.js (Vulnerable Library) |
Medium |
4.3 | swagger-ui-2.1.2.min.js | Upgrade to version: swagger-ui - 4.1.3;swagger-ui-dist - 4.1.3 | #8 | |
CVE-2020-9488Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/log4j/log4j/1.2.17/5af35056b4d257e4b64b9e8069c0746e8b08629f/log4j-1.2.17.jar Dependency Hierarchy: -> ❌ log4j-1.2.17.jar (Vulnerable Library) |
 Low |
3.7 | log4j-1.2.17.jar | Upgrade to version: ch.qos.reload4j:reload4j:1.2.18.3 | #7 |
Total libraries scanned: 43
Scan token: 3fd64d973e8e49668cb304a83959ec9a