perwendel/spark

Releases23

Frequency4 months 5 days

Last Release over 5 years ago

Stars9.66K

A simple expressive web framework for java. Spark has a kotlin DSL https://github.com/perwendel/spark-kotlin

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-9159 ↗	Mar 31, 2018Saturday, 31 March 2018, 21:29	—	5 MEDIUM
In Spark before 2.7.2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. NOTE: this product is unrelated to Ignite Realtime Spark.
CVE-2016-9177 ↗	Nov 4, 2016Friday, 4 November 2016, 10:59	—	5 MEDIUM
Directory traversal vulnerability in Spark 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.