Wiremock Wiremock

6 CVEs affecting Wiremock Wiremock. Latest disclosed: 2023-12-29. Critical: 2, High: 0.

Top CVEs affecting Wiremock Wiremock
CVESeverityScorePublishedSummary
CVE-2023-39967Critical10.02023-09-06WireMock is a tool for mocking HTTP services. When certain request URLs like “@127.0.0.1:1234" are used in WireMock Studio configuration fields, the request mi…
CVE-2018-9116Critical9.12018-03-29An XXE vulnerability within WireMock before 2.16.0 allows a remote unauthenticated attacker to access local files and internal resources and potentially cause…
CVE-2023-50069Medium6.12023-12-29WireMock with GUI versions 3.2.0.0 through 3.0.4.0 are vulnerable to stored cross-site scripting (SXSS) through the recording feature. An attacker can host a m…
CVE-2018-9117Medium5.32018-03-29WireMock before 2.16.0 contains a vulnerability that allows a remote unauthenticated attacker to access local files beyond the application directory via a spec…
CVE-2023-41327Medium4.62023-09-06WireMock is a tool for mocking HTTP services. WireMock can be configured to only permit proxying (and therefore recording) to certain addresses. This is achiev…
CVE-2023-41329Low3.92023-09-06WireMock is a tool for mocking HTTP services. The proxy mode of WireMock, can be protected by the network restrictions configuration, as documented in Preventi…