Security Advisories

This page lists http4k security advisories.

Report a security vulnerability

To report a security vulnerability for a project within the http4k ecosystem, see the Security Policy
CVE-2024-55875: XXE(XML External Entity Injection) vulnerability

December 12st 2024

XXE(XML External Entity Injection) vulnerability when http4k handling malicious XML contents

pumb