Dromara Hutool
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Dromara Hutool.
By the Year
In 2026 there have been 0 vulnerabilities in Dromara Hutool. Hutool did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
It may take a day or so for new Hutool vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Dromara Hutool Security Vulnerabilities
XXE via XML External Entity in HuTool XML Parsing Module (<5.8.19)
CVE-2023-3276
7.5 - High
- June 15, 2023
A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclosed to the public and may be used. VDB-231626 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
XXE
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Dromara Hutool or by Dromara? Click the Watch button to subscribe.
