Browse all 8 CVE security advisories affecting hap-wi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Hap-wi is a web application framework primarily used for developing dynamic web applications and APIs. Historically, it has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, with 8 CVEs documented to date. The framework's modular architecture and extensive plugin ecosystem have introduced security risks, particularly through improper input validation and insecure default configurations. While no major public security incidents have been widely reported, the consistent discovery of vulnerabilities suggests potential risks for organizations relying on hap-wi without implementing additional security measures.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-29004 | Path Traversal Vulnerability in hap-wi/roxy-wi — roxy-wiCWE-22 | 6.5 | Medium | 2023-04-17 |
| CVE-2023-25804 | Roxy-WI vulnerable to Limited Path Traversal in name parameter — roxy-wiCWE-22 | 7.5 | High | 2023-03-15 |
| CVE-2023-25802 | Roxy-WI has Path Traversal vulnerability — roxy-wiCWE-26 | 7.5 | High | 2023-03-13 |
| CVE-2023-25803 | Roxy-WI 路径遍历漏洞 — roxy-wiCWE-22 | 7.5 | High | 2023-03-13 |
| CVE-2022-31161 | Roxy-WI Vulnerable to Unauthenticated Remote Code Execution via ssl_cert Upload — roxy-wiCWE-77 | 10.0 | Critical | 2022-07-15 |
| CVE-2022-31137 | Unauthenticated Remote Code Execution in Roxy-WI — roxy-wiCWE-78 | 10.0 | Critical | 2022-07-08 |
| CVE-2022-31126 | Unauthenticated Remote Code Execution in Roxy-wi — roxy-wiCWE-74 | 10.0 | Critical | 2022-07-06 |
| CVE-2022-31125 | Authentication Bypass in Roxy-wi — roxy-wiCWE-287 | 10.0 | Critical | 2022-07-06 |
This page lists every published CVE security advisory associated with hap-wi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.