com.vaadin:vaadin

Licenses: Apache-2.0

Direct Vulnerabilities

Known vulnerabilities in the com.vaadin:vaadin package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
Debug Messages Revealing Unnecessary Information

[10.0.0,10.0.24)[11.0.0,14.10.2)[15.0.0,22.1.0)[23.0.0,23.3.14)[24.0.0,24.0.7)[24.1.0.alpha1,24.1.0)
  • M
Information Exposure

[10.0.0,10.0.23)[11.0.0,14.10.1)[23.0.0,23.3.13)[24.0.0,24.0.6)[24.1.0.alpha1,24.1.0)
  • M
Cross-site Scripting (XSS)

[,6.4.9)

Package versions

759 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
25.2.126 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.2.023 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.2.0-rc117 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.2.0-beta316 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.2.0-beta212 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.2.0-beta127 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.1.92 Jul, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.1.815 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.1.79 Jun, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
25.1.625 May, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L