pkg:Go/github.com/SpectoLabs/hoverfly
6 total CVEsCRITICAL2HIGH2
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2025-54123Hoverfly is vulnerable to Remote Code Execution through an insecure middleware implementation in github.com/SpectoLabs/hoverflyfrom 0, <= 1.11.3
- CRITICAL9.8CVE-2025-54123Hoverfly is vulnerable to Remote Code Execution through an insecure middleware implementation in github.com/SpectoLabs/hoverflyfrom 0
- HIGH7.5CVE-2024-45388Hoverfly allows an arbitrary file read in the `/api/v2/simulation` endpoint (`GHSL-2023-274`) in github.com/SpectoLabs/hoverflyfrom 0, < 1.10.3
- HIGH7.5CVE-2024-45388Hoverfly allows an arbitrary file read in the `/api/v2/simulation` endpoint (`GHSL-2023-274`) in github.com/SpectoLabs/hoverflyfrom 0, < 1.10.3
- —CVE-2025-54376WebSocket endpoint `/api/v2/ws/logs` reachable without authentication even when --auth is enabled in github.com/SpectoLabs/hoverflyfrom 0, < 1.12.0
- —CVE-2025-54376WebSocket endpoint `/api/v2/ws/logs` reachable without authentication even when --auth is enabled in github.com/SpectoLabs/hoverflyfrom 0, < 1.12.0