Update .whitesource
Security Report
Partial results (81 vulnerabilities) are displayed below due to a content size limitation in GitHub. To view information on the remaining vulnerabilities, navigate to the Mend Application.
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue | Reachability |
|---|---|---|---|---|---|---|
CVE-2021-21345Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
 Critical |
9.9 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
WS-2022-0080Path to dependency file: /webgoat-server/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/postgresql/postgresql/42.2.8/postgresql-42.2.8.jar Dependency Hierarchy: -> ❌ postgresql-42.2.8.jar (Vulnerable Library) |
Critical |
9.8 | postgresql-42.2.8.jar | Upgrade to version: org.postgresql:postgresql:42.3.3 | #7 | |
CVE-2022-41853Path to dependency file: /webgoat-container/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/hsqldb/hsqldb/2.5.0/hsqldb-2.5.0.jar Dependency Hierarchy: -> ❌ hsqldb-2.5.0.jar (Vulnerable Library) |
Critical |
9.8 | hsqldb-2.5.0.jar | #15 | ||
CVE-2022-26520Path to dependency file: /webgoat-server/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/postgresql/postgresql/42.2.8/postgresql-42.2.8.jar Dependency Hierarchy: -> ❌ postgresql-42.2.8.jar (Vulnerable Library) |
Critical |
9.8 | postgresql-42.2.8.jar | Upgrade to version: org.postgresql:postgresql:42.3.3 | #7 | |
CVE-2022-21724Path to dependency file: /webgoat-server/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/postgresql/postgresql/42.2.8/postgresql-42.2.8.jar Dependency Hierarchy: -> ❌ postgresql-42.2.8.jar (Vulnerable Library) |
Critical |
9.8 | postgresql-42.2.8.jar | Upgrade to version: org.postgresql:postgresql:42.2.25,42.3.2 | #7 | |
CVE-2021-21350Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21347Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21346Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21344Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2013-7285Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.8 | xstream-1.4.5.jar | Upgrade to version: 1.4.7,1.4.11 | #5 | |
CVE-2021-21351Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.1 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21342Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Critical |
9.1 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-39139Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
 High |
8.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-29505Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.17 | #5 | |
CVE-2020-26217Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.14 | #5 | |
CVE-2021-21349Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.6 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-39154Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39153Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39152Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39151Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39150Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39149Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39148Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39147Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39146Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39145Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39144Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2021-39141Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
8.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2022-31197Path to dependency file: /webgoat-server/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/postgresql/postgresql/42.2.8/postgresql-42.2.8.jar Dependency Hierarchy: -> ❌ postgresql-42.2.8.jar (Vulnerable Library) |
High |
8.0 | postgresql-42.2.8.jar | Upgrade to version: org.postgresql:postgresql:42.2.26,42.4.1 | #7 | |
CVE-2020-26258Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.7 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.15 | #5 | |
CVE-2020-13692Path to dependency file: /webgoat-server/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/postgresql/postgresql/42.2.8/postgresql-42.2.8.jar Dependency Hierarchy: -> ❌ postgresql-42.2.8.jar (Vulnerable Library) |
High |
7.7 | postgresql-42.2.8.jar | Upgrade to version: org.postgresql:postgresql:42.2.13 | #7 | |
CVE-2022-41966Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.20 | #5 | |
CVE-2022-40151Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.20 | #5 | |
CVE-2021-43859Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.19 | #5 | |
CVE-2021-37714Path to dependency file: /webgoat-lessons/cross-site-scripting/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/jsoup/jsoup/1.11.3/jsoup-1.11.3.jar Dependency Hierarchy: -> ❌ jsoup-1.11.3.jar (Vulnerable Library) |
High |
7.5 | jsoup-1.11.3.jar | Upgrade to version: org.jsoup:jsoup:1.14.2 | #6 | |
CVE-2021-21348Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21343Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2021-21341Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.16 | #5 | |
CVE-2020-11979Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/ant/ant/1.6.2/ant-1.6.2.jar Dependency Hierarchy: -> ❌ ant-1.6.2.jar (Vulnerable Library) |
High |
7.5 | ant-1.6.2.jar | Upgrade to version: org.apache.ant:ant:1.10.9 | #22 | |
CVE-2017-7957Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: 1.4.10 | #5 | |
CVE-2016-3674Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
High |
7.5 | xstream-1.4.5.jar | Upgrade to version: 1.4.9 | #5 | |
CVE-2021-23358Path to vulnerable library: /webgoat-container/target/classes/static/js/libs/underscore-min.js,/webgoat-container/src/main/resources/static/js/libs/underscore-min.js Dependency Hierarchy: -> ❌ underscore-min-1.10.2.js (Vulnerable Library) |
High |
7.2 | underscore-min-1.10.2.js | Upgrade to version: underscore - 1.12.1,1.13.0-2 | #4 | |
CVE-2023-2976Path to dependency file: /webwolf/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/google/guava/guava/18.0/guava-18.0.jar Dependency Hierarchy: -> ❌ guava-18.0.jar (Vulnerable Library) |
High |
7.1 | guava-18.0.jar | Upgrade to version: com.google.guava:guava:32.0.1-android,32.0.1-jre | #8 | |
CVE-2020-26259Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
 Medium |
6.8 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.15 | #5 | |
WS-2017-0141Path to vulnerable library: /webgoat-container/target/classes/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js,/webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js Dependency Hierarchy: -> ❌ wysihtml5-0.3.0.js (Vulnerable Library) |
Medium |
6.5 | wysihtml5-0.3.0.js | Upgrade to version: 0.4.0-beta2 | #20 | |
CVE-2021-39140Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/com/thoughtworks/xstream/xstream/1.4.5/xstream-1.4.5.jar Dependency Hierarchy: -> ❌ xstream-1.4.5.jar (Vulnerable Library) |
Medium |
6.3 | xstream-1.4.5.jar | Upgrade to version: com.thoughtworks.xstream:xstream:1.4.18 | #5 | |
CVE-2020-1945Path to dependency file: /webgoat-lessons/vulnerable-components/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/ant/ant/1.6.2/ant-1.6.2.jar Dependency Hierarchy: -> ❌ ant-1.6.2.jar (Vulnerable Library) |
Medium |
6.3 | ant-1.6.2.jar | Upgrade to version: org.apache.ant:ant:1.9.15,1.10.8 | #22 | |
CVE-2022-36033Path to dependency file: /webgoat-lessons/cross-site-scripting/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/jsoup/jsoup/1.11.3/jsoup-1.11.3.jar Dependency Hierarchy: -> ❌ jsoup-1.11.3.jar (Vulnerable Library) |
Medium |
6.1 | jsoup-1.11.3.jar | Upgrade to version: org.jsoup:jsoup:1.15.3 | #6 | |
CVE-2022-31160Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui.min.js,/webgoat-container/target/classes/static/js/libs/jquery-ui.min.js Dependency Hierarchy: -> ❌ jquery-ui-1.12.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.12.1.min.js | Upgrade to version: jquery-ui - 1.13.2 | #13 | |
CVE-2022-31160Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui-1.10.4.js,/webgoat-container/target/classes/static/js/libs/jquery-ui-1.10.4.js Dependency Hierarchy: -> ❌ jquery-ui-1.10.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.10.4.js | Upgrade to version: jquery-ui - 1.13.2 | #9 | |
CVE-2021-41184Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui.min.js,/webgoat-container/target/classes/static/js/libs/jquery-ui.min.js Dependency Hierarchy: -> ❌ jquery-ui-1.12.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.12.1.min.js | Upgrade to version: jquery-ui - 1.13.0 | #13 | |
CVE-2021-41184Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui-1.10.4.js,/webgoat-container/target/classes/static/js/libs/jquery-ui-1.10.4.js Dependency Hierarchy: -> ❌ jquery-ui-1.10.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.10.4.js | Upgrade to version: jquery-ui - 1.13.0 | #9 | |
CVE-2021-41183Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui.min.js,/webgoat-container/target/classes/static/js/libs/jquery-ui.min.js Dependency Hierarchy: -> ❌ jquery-ui-1.12.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.12.1.min.js | Upgrade to version: jquery-ui - 1.13.0 | #13 | |
CVE-2021-41183Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui-1.10.4.js,/webgoat-container/target/classes/static/js/libs/jquery-ui-1.10.4.js Dependency Hierarchy: -> ❌ jquery-ui-1.10.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.10.4.js | Upgrade to version: jquery-ui - 1.13.0 | #9 | |
CVE-2021-41182Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui.min.js,/webgoat-container/target/classes/static/js/libs/jquery-ui.min.js Dependency Hierarchy: -> ❌ jquery-ui-1.12.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.12.1.min.js | Upgrade to version: jquery-ui - 1.13.0 | #13 | |
CVE-2021-41182Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-ui-1.10.4.js,/webgoat-container/target/classes/static/js/libs/jquery-ui-1.10.4.js Dependency Hierarchy: -> ❌ jquery-ui-1.10.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-ui-1.10.4.js | Upgrade to version: jquery-ui - 1.13.0 | #9 | |
CVE-2020-23064Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery.min.js,/webgoat-container/target/classes/static/js/libs/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.4.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.4.1.min.js | Upgrade to version: jquery - 3.5.0 | #16 | |
| Medium |
6.1 | jquery-3.3.1.tgz | Upgrade to version: jquery - 3.5.0 | #12 | ||
CVE-2020-23064Path to dependency file: /docs/index.html Path to vulnerable library: /docs/vendor/jquery/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.3.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.3.1.min.js | Upgrade to version: jquery - 3.5.0 | #10 | |
CVE-2020-11023Path to vulnerable library: /webgoat-container/target/classes/static/js/jquery/jquery-1.10.2.min.js,/webgoat-container/src/main/resources/static/js/jquery/jquery-1.10.2.min.js Dependency Hierarchy: -> ❌ jquery-1.10.2.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.10.2.min.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #21 | |
CVE-2020-11023Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery.min.js,/webgoat-container/target/classes/static/js/libs/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.4.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.4.1.min.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #16 | |
| Medium |
6.1 | jquery-3.3.1.tgz | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #12 | ||
CVE-2020-11023Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-2.1.4.min.js,/webgoat-container/target/classes/static/js/libs/jquery-2.1.4.min.js Dependency Hierarchy: -> ❌ jquery-2.1.4.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.1.4.min.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #11 | |
CVE-2020-11023Path to dependency file: /docs/index.html Path to vulnerable library: /docs/vendor/jquery/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.3.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.3.1.min.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | #10 | |
CVE-2020-11022Path to vulnerable library: /webgoat-container/target/classes/static/js/jquery/jquery-1.10.2.min.js,/webgoat-container/src/main/resources/static/js/jquery/jquery-1.10.2.min.js Dependency Hierarchy: -> ❌ jquery-1.10.2.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.10.2.min.js | Upgrade to version: jQuery - 3.5.0 | #21 | |
CVE-2020-11022Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery.min.js,/webgoat-container/target/classes/static/js/libs/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.4.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.4.1.min.js | Upgrade to version: jQuery - 3.5.0 | #16 | |
| Medium |
6.1 | jquery-3.3.1.tgz | Upgrade to version: jQuery - 3.5.0 | #12 | ||
CVE-2020-11022Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-2.1.4.min.js,/webgoat-container/target/classes/static/js/libs/jquery-2.1.4.min.js Dependency Hierarchy: -> ❌ jquery-2.1.4.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.1.4.min.js | Upgrade to version: jQuery - 3.5.0 | #11 | |
CVE-2020-11022Path to dependency file: /docs/index.html Path to vulnerable library: /docs/vendor/jquery/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.3.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.3.1.min.js | Upgrade to version: jQuery - 3.5.0 | #10 | |
| Medium |
6.1 | bootstrap-4.2.1.tgz | Upgrade to version: bootstrap - 3.4.1,4.3.1;bootstrap-sass - 3.4.1,4.3.1 | #19 | ||
CVE-2019-8331Path to dependency file: /webwolf/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/webjars/bootstrap/3.3.7/bootstrap-3.3.7.jar Dependency Hierarchy: -> ❌ bootstrap-3.3.7.jar (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.3.7.jar | Upgrade to version: bootstrap - 3.4.1,4.3.1;bootstrap-sass - 3.4.1,4.3.1 | #18 | |
CVE-2019-8331Path to vulnerable library: /webgoat-lessons/challenge/target/classes/js/bootstrap.min.js,/webgoat-lessons/challenge/src/main/resources/js/bootstrap.min.js Dependency Hierarchy: -> ❌ bootstrap-3.1.1.min.js (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.1.1.min.js | Upgrade to version: bootstrap - 3.4.1,4.3.1;bootstrap-sass - 3.4.1,4.3.1 | #14 | |
CVE-2019-11358Path to vulnerable library: /webgoat-container/target/classes/static/js/jquery/jquery-1.10.2.min.js,/webgoat-container/src/main/resources/static/js/jquery/jquery-1.10.2.min.js Dependency Hierarchy: -> ❌ jquery-1.10.2.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-1.10.2.min.js | Upgrade to version: jquery - 3.4.0 | #21 | |
| Medium |
6.1 | jquery-3.3.1.tgz | Upgrade to version: jquery - 3.4.0 | #12 | ||
CVE-2019-11358Path to vulnerable library: /webgoat-container/src/main/resources/static/js/libs/jquery-2.1.4.min.js,/webgoat-container/target/classes/static/js/libs/jquery-2.1.4.min.js Dependency Hierarchy: -> ❌ jquery-2.1.4.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.1.4.min.js | Upgrade to version: jquery - 3.4.0 | #11 | |
CVE-2019-11358Path to dependency file: /docs/index.html Path to vulnerable library: /docs/vendor/jquery/jquery.min.js Dependency Hierarchy: -> ❌ jquery-3.3.1.min.js (Vulnerable Library) |
Medium |
6.1 | jquery-3.3.1.min.js | Upgrade to version: jquery - 3.4.0 | #10 | |
CVE-2018-20677Path to dependency file: /webwolf/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/webjars/bootstrap/3.3.7/bootstrap-3.3.7.jar Dependency Hierarchy: -> ❌ bootstrap-3.3.7.jar (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.3.7.jar | Upgrade to version: Bootstrap - v3.4.0;NorDroN.AngularTemplate - 0.1.6;Dynamic.NET.Express.ProjectTemplates - 0.8.0;dotnetng.template - 1.0.0.4;ZNxtApp.Core.Module.Theme - 1.0.9-Beta;JMeter - 5.0.0 | #18 | |
CVE-2018-20677Path to vulnerable library: /webgoat-lessons/challenge/target/classes/js/bootstrap.min.js,/webgoat-lessons/challenge/src/main/resources/js/bootstrap.min.js Dependency Hierarchy: -> ❌ bootstrap-3.1.1.min.js (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.1.1.min.js | Upgrade to version: Bootstrap - v3.4.0;NorDroN.AngularTemplate - 0.1.6;Dynamic.NET.Express.ProjectTemplates - 0.8.0;dotnetng.template - 1.0.0.4;ZNxtApp.Core.Module.Theme - 1.0.9-Beta;JMeter - 5.0.0 | #14 | |
CVE-2018-20676Path to dependency file: /webwolf/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/webjars/bootstrap/3.3.7/bootstrap-3.3.7.jar Dependency Hierarchy: -> ❌ bootstrap-3.3.7.jar (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.3.7.jar | Upgrade to version: bootstrap - 3.4.0 | #18 | |
CVE-2018-20676Path to vulnerable library: /webgoat-lessons/challenge/target/classes/js/bootstrap.min.js,/webgoat-lessons/challenge/src/main/resources/js/bootstrap.min.js Dependency Hierarchy: -> ❌ bootstrap-3.1.1.min.js (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.1.1.min.js | Upgrade to version: bootstrap - 3.4.0 | #14 | |
CVE-2018-14042Path to dependency file: /webwolf/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/webjars/bootstrap/3.3.7/bootstrap-3.3.7.jar Dependency Hierarchy: -> ❌ bootstrap-3.3.7.jar (Vulnerable Library) |
Medium |
6.1 | bootstrap-3.3.7.jar | Upgrade to version: org.webjars.npm:bootstrap:4.1.2.org.webjars:bootstrap:3.4.0 | #18 |
Total libraries scanned: 87
Scan token: 59f8944ba5bf47c28748a91b30bc6e1d