Product
ratpack project ratpack
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2021-29485
CVE-2021-29481
CVE-2021-29480
CVE-2021-29479
CVE-2019-10770
CVE-2019-17513
CVE-2019-11808
< 1.9.0
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a malicious attacker can achieve Remote Code Execu
< 1.9.0
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the default configuration of client side sessions
< 1.9.0
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the client side session module uses the applicatio
< 1.9.0
Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a user supplied
X-Forwarded-Host header can be u>= 0.9.10 and < 1.7.6
All versions of io.ratpack:ratpack-core from 0.9.10 inclusive and before 1.7.6 are vulnerable to Cross-site Scripting (XSS). This
< 1.7.5
An issue was discovered in Ratpack before 1.7.5. Due to a misuse of the Netty library class DefaultHttpHeaders, there is no valida
< 1.6.1
Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK's ThreadLocalRandom. This means