Name: Hoverfly
Author: Hoverfly

🔍 What is Hoverfly?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-54123

CRITICAL CVSS 9.8 Sep 10, 2025

This CVE describes a critical command injection vulnerability in Hoverfly's middleware API endpoint that allows remote code execution. Attackers can execute arbitrary commands on systems running vulne...

CVE-2025-54376

HIGH CVSS 7.5 Sep 10, 2025

Hoverfly versions 1.11.3 and prior have an authentication bypass vulnerability in the admin WebSocket endpoint /api/v2/ws/logs. Unauthenticated attackers can stream real-time application logs containi...

CVE-2024-45388

HIGH CVSS 7.5 Sep 2, 2024

CVE-2024-45388 is a path traversal vulnerability in Hoverfly's simulation API that allows attackers to read arbitrary files from the server filesystem. This affects all Hoverfly users who expose the v...