Homepage

org.springframework:spring-websocket vulnerabilities

Licenses: Apache-2.0
Published: 12 years ago Last updated: 14 days ago Latest version: 7.0.3 Latest non-vulnerable version: 7.0.3

License

Apache-2.0[4.0.0.RELEASE,);
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.springframework:spring-websocket package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Cross-site Request Forgery (CSRF)

[,6.2.12)
  • L
Improper Handling of Case Sensitivity

[,6.1.14)
  • M
Insufficiently Random Session ID

[4.1.0.RELEASE,4.1.5.RELEASE)

Package versions

247 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
7.0.315 Jan, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.211 Dec, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.120 Nov, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.013 Nov, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-RC331 Oct, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-RC223 Oct, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-RC116 Oct, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-M911 Sep, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-M814 Aug, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
7.0.0-M717 Jul, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L