wisp

2.2.2

2.2.2 2.2.1 2.2.0 retired 2.1.1 retired 2.1.0 2.0.1 2.0.0 2.0.0-rc1 1.8.0 1.7.0 1.6.0 1.5.3 1.5.2 1.5.1 1.4.0 1.3.0 1.2.0 1.1.0 1.0.0 0.16.0 0.15.0 0.14.0 0.13.0 0.12.0 0.11.0 0.10.0 0.9.0 0.8.0 0.7.0 0.6.0 0.5.0 0.4.0 0.3.0 0.2.0 0.1.0

A practical web framework for Gleam

HexDocs HexPreview

Current section

4 Advisories

Jump to

Readme 35 Versions 13 Dependencies 29 Dependants 4 Advisories Activity

GHSA-8645-p2v4-73r2 CVE-2026-32145 EEF-CVE-2026-32145

wisp has Allocation of Resources Without Limits or Throttling

April 03, 2026

CVSS

8.7 / 10.0 High

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Versions

< 2.2.2

References

EEF-CVE-2026-32145 CVE-2026-32145 GHSA-8645-p2v4-73r2

Multipart form body parser bypasses body size limits in wisp

April 02, 2026

CVSS

8.7 / 10.0 High

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Versions

>= 0.2.0 and < 2.2.2

References

GHSA-h7cj-j2vv-qw8r CVE-2026-28807 EEF-CVE-2026-28807

Wisp Vulnerable to Path Traversal

March 11, 2026

CVSS

8.7 / 10.0 High

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Versions

>= 2.1.1 and < 2.2.1

References

EEF-CVE-2026-28807 CVE-2026-28807 GHSA-h7cj-j2vv-qw8r

Path Traversal in wisp.serve_static allows arbitrary file read

March 10, 2026

CVSS

8.7 / 10.0 High

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Versions

>= 2.1.1 and < 2.2.1

References

Checksum

Dependency Config

mix.exs

rebar.config

Gleam

erlang.mk

Package Details

Downloads Last 30 days, all versions

this version

10 589

yesterday

370

last 7 days

2 522

all time

229 934

Last Updated

Mar 27, 2026

License

Apache-2.0

Build Tools

gleam

Publisher

lpil

Owners

lpil

wisp

Checksum

Dependency Config

Package Details

Links

Owners