Search for packages
Package details: pkg:maven/org.apache.nifi/nifi-jolt-transform-json-ui@1.16.1
purl pkg:maven/org.apache.nifi/nifi-jolt-transform-json-ui@1.16.1
Next non-vulnerable version 1.24.0
Latest non-vulnerable version 1.24.0
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-7n22-pdsj-aaae
Aliases:
CVE-2023-49145
GHSA-68pr-6fjc-wmgm
Apache NiFi 0.7.0 through 1.23.2 include the JoltTransformJSON Processor, which provides an advanced configuration user interface that is vulnerable to DOM-based cross-site scripting. If an authenticated user, who is authorized to configure a JoltTransformJSON Processor, visits a crafted URL, then arbitrary JavaScript code can be executed within the session context of the authenticated user. Upgrading to Apache NiFi 1.24.0 or 2.0.0-M1 is the recommended mitigation.
1.24.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:48:41.064656+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 36.1.3
2025-06-03T23:26:16.077765+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 36.1.0
2025-06-02T23:23:51.071885+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 36.1.2
2025-04-03T21:46:43.188029+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 36.0.0
2025-02-18T05:14:40.406363+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 35.1.0
2024-11-21T01:52:49.603715+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 35.0.0
2024-11-19T01:36:36.963789+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.3.2
2024-10-08T02:09:09.403529+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.0.2
2024-10-07T21:48:21.482481+00:00 GHSA Importer Affected by VCID-7n22-pdsj-aaae https://github.com/advisories/GHSA-68pr-6fjc-wmgm 34.0.2
2024-09-23T02:08:22.457393+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.0.1
2024-09-22T22:17:41.872984+00:00 GHSA Importer Affected by VCID-7n22-pdsj-aaae https://github.com/advisories/GHSA-68pr-6fjc-wmgm 34.0.1
2024-05-17T20:59:53.944925+00:00 GHSA Importer Affected by VCID-7n22-pdsj-aaae https://github.com/advisories/GHSA-68pr-6fjc-wmgm 34.0.0rc4
2024-04-24T04:32:20.710761+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.0.0rc4
2024-01-10T07:09:36.676656+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.0.0rc2
2024-01-10T03:07:29.713250+00:00 GHSA Importer Affected by VCID-7n22-pdsj-aaae https://github.com/advisories/GHSA-68pr-6fjc-wmgm 34.0.0rc2
2024-01-03T23:55:16.102654+00:00 GitLab Importer Affected by VCID-7n22-pdsj-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-jolt-transform-json-ui/CVE-2023-49145.yml 34.0.0rc1