Salvo-rs Salvo
4 CVEs affecting Salvo-rs Salvo. Latest disclosed: 2026-03-23. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-22257 | High | 8.8 | 2026-01-08 | Salvo is a Rust web backend framework. Prior to version 0.88.1, the function list_html generates a file view of a folder without sanitizing the files or folder… |
CVE-2026-22256 | High | 8.8 | 2026-01-08 | Salvo is a Rust web backend framework. Prior to version 0.88.1, the function list_html generate an file view of a folder which include a render of the current… |
CVE-2026-33242 | High | 7.5 | 2026-03-23 | Salvo is a Rust web framework. Versions 0.39.0 through 0.89.2 have a Path Traversal and Access Control Bypass vulnerability in the salvo-proxy component. The v… |
CVE-2026-33241 | | 2026-03-23 | Salvo is a Rust web framework. Prior to version 0.89.3, Salvo's form data parsing implementations (`form_data()` method and `Extractible` macro) do not enforce… |