org.springframework:spring-web vulnerabilities

latest version

6.1.14
latest non vulnerable version

6.1.14
first published

19 years ago
latest version published

a month ago
licenses detected
- Apache-2.0
  [0,)
package manager

View on Maven Repository

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.springframework:spring-web package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
L Improper Handling of Case Sensitivity	[6.1.0,6.1.14)
M Denial of Service (DoS)	[,5.3.38) [6.0.0,6.0.23) [6.1.0,6.1.12)
M Open Redirect	[,5.3.34) [6.0.0,6.0.19) [6.1.0,6.1.6)
H Open Redirect	[,5.3.33) [6.0.0,6.0.18) [6.1.0,6.1.5)
H Open Redirect	[,5.3.32) [6.0.0,6.0.17) [6.1.0,6.1.4)
M Denial of Service (DoS)	[6.0.0,6.0.14)
M Privilege Escalation	[5.3.0,5.3.7) [5.0.0.RELEASE,5.2.15.RELEASE)
H Improper Input Validation	[3.2.0.RELEASE,4.3.29.RELEASE) [5.0.0.RELEASE,5.0.19.RELEASE) [5.1.0.RELEASE,5.1.18.RELEASE) [5.2.0.RELEASE,5.2.9.RELEASE)
H Reflected File Download (RFD)	[5.2.0,5.2.3) [5.1.0,5.1.13) [5.0.0,5.0.16)
L Denial of Service (DoS)	[4.2.0.RELEASE,4.3.20.RELEASE) [5.0.0.RELEASE,5.0.10.RELEASE) [5.1.0.RELEASE,5.1.1.RELEASE)
H Reflected File Download	[3.2.0.RELEASE,3.2.15.RELEASE) [4.0.0.RELEASE,4.1.8.RELEASE) [4.2.0.RELEASE,4.2.2.RELEASE)
M Denial of Service (DoS)	[3.2.0.RELEASE,3.2.14.RELEASE) [4.0.0.RELEASE,4.1.7.RELEASE)
H XML External Entity (XXE) Injection	[3.0.0.RELEASE,3.2.9.RELEASE) [4.0.0.RELEASE,4.0.5.RELEASE)
M Information Exposure	[4.3.0.RELEASE,4.3.18.RELEASE) [5.0.0.RELEASE,5.0.7.RELEASE)
M Cross-Site Tracing (XST)	[4.3.0.RELEASE,4.3.18.RELEASE) [5.0.0.RELEASE,5.0.7.RELEASE)
M XML External Entity (XXE) Injection	[3.0.0.RELEASE,3.2.4.RELEASE) [4.0.0.RELEASE,4.0.1.RELEASE)
L Cross-site Scripting (XSS)	[3.0.0.RELEASE,3.2.2.RELEASE)
M XML External Entity (XXE) Injection	[3,3.2.4) [4-alpha,4.0.0.M2)
M Cross-site Request Forgery (CSRF)	[3.0.0.RELEASE,3.2.8.RELEASE) [4.0.0.RELEASE,4.0.2.RELEASE)
M XML External Entity (XXE) Injection	[3.0.0.RELEASE,3.2.4.RELEASE)
H Expression Language Injection	[,2.5.6.SEC03) [3.0.0.RELEASE,3.0.6.RELEASE)

Package versions

1 - 100 of 289 Results

version	published	direct vulnerabilities
6.1.14	17 Oct, 2024	0 C 0 H 0 M 0 L
6.1.13	12 Sep, 2024	0 C 0 H 0 M 1 L
6.1.12	14 Aug, 2024	0 C 0 H 0 M 1 L
6.1.11	11 Jul, 2024	0 C 0 H 1 M 1 L
6.1.10	19 Jun, 2024	0 C 0 H 1 M 1 L
6.1.9	13 Jun, 2024	0 C 0 H 1 M 1 L
6.1.8	22 May, 2024	0 C 0 H 1 M 1 L
6.1.7	16 May, 2024	0 C 0 H 1 M 1 L
6.1.6	11 Apr, 2024	0 C 0 H 1 M 1 L
6.1.5	14 Mar, 2024	0 C 0 H 2 M 1 L
6.1.4	15 Feb, 2024	0 C 1 H 2 M 1 L
6.1.3	11 Jan, 2024	0 C 2 H 2 M 1 L
6.1.2	14 Dec, 2023	0 C 2 H 2 M 1 L
6.1.1	23 Nov, 2023	0 C 2 H 2 M 1 L
6.1.0	16 Nov, 2023	0 C 2 H 2 M 1 L
6.0.23	14 Aug, 2024	0 C 0 H 0 M 0 L
6.0.22	13 Jun, 2024	0 C 0 H 1 M 0 L
6.0.21	22 May, 2024	0 C 0 H 1 M 0 L
6.0.20	16 May, 2024	0 C 0 H 1 M 0 L
6.0.19	11 Apr, 2024	0 C 0 H 1 M 0 L
6.0.18	14 Mar, 2024	0 C 0 H 2 M 0 L
6.0.17	15 Feb, 2024	0 C 1 H 2 M 0 L
6.0.16	11 Jan, 2024	0 C 2 H 2 M 0 L
6.0.15	14 Dec, 2023	0 C 2 H 2 M 0 L
6.0.14	16 Nov, 2023	0 C 2 H 2 M 0 L
6.0.13	12 Oct, 2023	0 C 2 H 3 M 0 L
6.0.12	14 Sep, 2023	0 C 2 H 3 M 0 L
6.0.11	13 Jul, 2023	0 C 2 H 3 M 0 L
6.0.10	15 Jun, 2023	0 C 2 H 3 M 0 L
6.0.9	11 May, 2023	0 C 2 H 3 M 0 L
6.0.8	13 Apr, 2023	0 C 2 H 3 M 0 L
6.0.7	20 Mar, 2023	0 C 2 H 3 M 0 L
6.0.6	2 Mar, 2023	0 C 2 H 3 M 0 L
6.0.5	15 Feb, 2023	0 C 2 H 3 M 0 L
6.0.4	11 Jan, 2023	0 C 2 H 3 M 0 L
6.0.3	15 Dec, 2022	0 C 2 H 3 M 0 L
6.0.2	24 Nov, 2022	0 C 2 H 3 M 0 L
6.0.1	23 Nov, 2022	0 C 2 H 3 M 0 L
6.0.0	16 Nov, 2022	0 C 2 H 3 M 0 L
5.3.39	14 Aug, 2024	0 C 0 H 0 M 0 L
5.3.38	14 Aug, 2024	0 C 0 H 0 M 0 L
5.3.37	13 Jun, 2024	0 C 0 H 1 M 0 L
5.3.36	22 May, 2024	0 C 0 H 1 M 0 L
5.3.35	16 May, 2024	0 C 0 H 1 M 0 L
5.3.34	11 Apr, 2024	0 C 0 H 1 M 0 L
5.3.33	14 Mar, 2024	0 C 0 H 2 M 0 L
5.3.32	15 Feb, 2024	0 C 1 H 2 M 0 L
5.3.31	16 Nov, 2023	0 C 2 H 2 M 0 L
5.3.30	14 Sep, 2023	0 C 2 H 2 M 0 L
5.3.29	13 Jul, 2023	0 C 2 H 2 M 0 L
5.3.28	15 Jun, 2023	0 C 2 H 2 M 0 L
5.3.27	13 Apr, 2023	0 C 2 H 2 M 0 L
5.3.26	20 Mar, 2023	0 C 2 H 2 M 0 L
5.3.25	11 Jan, 2023	0 C 2 H 2 M 0 L
5.3.24	16 Nov, 2022	0 C 2 H 2 M 0 L
5.3.23	15 Sep, 2022	0 C 2 H 2 M 0 L
5.3.22	14 Jul, 2022	0 C 2 H 2 M 0 L
5.3.21	15 Jun, 2022	0 C 2 H 2 M 0 L
5.3.20	11 May, 2022	0 C 2 H 2 M 0 L
5.3.19	13 Apr, 2022	0 C 2 H 2 M 0 L
5.3.18	31 Mar, 2022	0 C 2 H 2 M 0 L
5.3.17	17 Mar, 2022	0 C 2 H 2 M 0 L
5.3.16	17 Feb, 2022	0 C 2 H 2 M 0 L
5.3.15	13 Jan, 2022	0 C 2 H 2 M 0 L
5.3.14	16 Dec, 2021	0 C 2 H 2 M 0 L
5.3.13	11 Nov, 2021	0 C 2 H 2 M 0 L
5.3.12	21 Oct, 2021	0 C 2 H 2 M 0 L
5.3.11	14 Oct, 2021	0 C 2 H 2 M 0 L
5.3.10	15 Sep, 2021	0 C 2 H 2 M 0 L
5.3.9	14 Jul, 2021	0 C 2 H 2 M 0 L
5.3.8	9 Jun, 2021	0 C 2 H 2 M 0 L
5.3.7	12 May, 2021	0 C 2 H 2 M 0 L
5.3.6	13 Apr, 2021	0 C 2 H 3 M 0 L
5.3.5	16 Mar, 2021	0 C 2 H 3 M 0 L
5.3.4	16 Feb, 2021	0 C 2 H 3 M 0 L
5.3.3	12 Jan, 2021	0 C 2 H 3 M 0 L
5.3.2	9 Dec, 2020	0 C 2 H 3 M 0 L
5.3.1	10 Nov, 2020	0 C 2 H 3 M 0 L
5.3.0	27 Oct, 2020	0 C 2 H 3 M 0 L
5.2.25.RELEASE	13 Jul, 2023	0 C 2 H 2 M 0 L
5.2.24.RELEASE	13 Apr, 2023	0 C 2 H 2 M 0 L
5.2.23.RELEASE	20 Mar, 2023	0 C 2 H 2 M 0 L
5.2.22.RELEASE	11 May, 2022	0 C 2 H 2 M 0 L
5.2.21.RELEASE	13 Apr, 2022	0 C 2 H 2 M 0 L
5.2.20.RELEASE	31 Mar, 2022	0 C 2 H 2 M 0 L
5.2.19.RELEASE	16 Dec, 2021	0 C 2 H 2 M 0 L
5.2.18.RELEASE	14 Oct, 2021	0 C 2 H 2 M 0 L
5.2.17.RELEASE	15 Sep, 2021	0 C 2 H 2 M 0 L
5.2.16.RELEASE	14 Jul, 2021	0 C 2 H 2 M 0 L
5.2.15.RELEASE	12 May, 2021	0 C 2 H 2 M 0 L
5.2.14.RELEASE	13 Apr, 2021	0 C 2 H 3 M 0 L
5.2.13.RELEASE	16 Feb, 2021	0 C 2 H 3 M 0 L
5.2.12.RELEASE	9 Dec, 2020	0 C 2 H 3 M 0 L
5.2.11.RELEASE	10 Nov, 2020	0 C 2 H 3 M 0 L
5.2.10.RELEASE	27 Oct, 2020	0 C 2 H 3 M 0 L
5.2.9.RELEASE	15 Sep, 2020	0 C 2 H 3 M 0 L
5.2.8.RELEASE	21 Jul, 2020	0 C 3 H 3 M 0 L
5.2.7.RELEASE	9 Jun, 2020	0 C 3 H 3 M 0 L
5.2.6.RELEASE	28 Apr, 2020	0 C 3 H 3 M 0 L
5.2.5.RELEASE	24 Mar, 2020	0 C 3 H 3 M 0 L

See all versions

org.springframework:spring-web vulnerabilities

latest version

latest non vulnerable version

first published

latest version published

licenses detected

package manager

Direct Vulnerabilities

Package versions