org.springframework:spring-webmvc@5.2.2.RELEASE vulnerabilities
-
latest version
6.1.6
-
latest non vulnerable version
-
first published
18 years ago
-
latest version published
a month ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.springframework:spring-webmvc package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.springframework:spring-webmvc is a package that provides Model-View-Controller (MVC) architecture and ready components that can be used to develop flexible and loosely coupled web applications. Affected versions of this package are vulnerable to Cross-Site Request Forgery (CSRF) through CORS preflight requests that target Spring MVC ( How to fix Cross-Site Request Forgery (CSRF)? Upgrade |
[5.2.0,5.2.3)
|