Pixee Java Code Security Toolkit
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Pixee Java Code Security Toolkit.
By the Year
In 2026 there have been 0 vulnerabilities in Pixee Java Code Security Toolkit. Java Code Security Toolkit did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 4.80 |
It may take a day or so for new Java Code Security Toolkit vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Pixee Java Code Security Toolkit Security Vulnerabilities
ZipSecurity Path Traversal Bypass in Pixee Toolkit <=1.1.1
CVE-2024-24569
4.8 - Medium
- February 01, 2024
The Pixee Java Code Security Toolkit is a set of security APIs meant to help secure Java code. `ZipSecurity#isBelowCurrentDirectory` is vulnerable to a partial-path traversal bypass. To be vulnerable to the bypass, the application must use toolkit version <=1.1.1, use ZipSecurity as a guard against path traversal, and have an exploit path. Although the control still protects attackers from escaping the application path into higher level directories (e.g., /etc/), it will allow "escaping" into sibling paths. For example, if your running path is /my/app/path you an attacker could navigate into /my/app/path-something-else. This vulnerability is patched in 1.1.2.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Pixee Java Code Security Toolkit or by Pixee? Click the Watch button to subscribe.
