Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Denial of Service (DoS)		org.springframework.data:spring-data-commons[, 1.13.11.RELEASE)[2.0.0.RELEASE, 2.0.6.RELEASE)Maven26 Apr 2018
  • C
Arbitrary Code Execution		org.springframework.data:spring-data-commons[,1.13.11.RELEASE)[2.0.0.RELEASE,2.0.6.RELEASE)Maven16 Apr 2018
  • M
Information Exposure		org.springframework.data:spring-data-jpa[,1.11.22.RELEASE)[2.0.0.RELEASE, 2.1.8.RELEASE)Maven18 Jul 2019
  • L
Information Exposure		org.springframework.data:spring-data-jpa[2.0.0.RELEASE, 2.0.14.RELEASE)[2.1.0.RELEASE, 2.1.6.RELEASE)[, 1.11.20.RELEASE)Maven9 Apr 2019
  • M
SQL Injection		org.springframework.data:spring-data-jpa[,1.9.6.RELEASE)[1.10.0.RELEASE,1.10.4.RELEASE)Maven3 Oct 2016
  • C
SpEL Expression injection		org.springframework.data:spring-data-mongodb[,3.3.5)[3.4.0,3.4.1)Maven21 Jun 2022
  • M
Information Exposure		org.springframework.data:spring-data-rest-webmvc[0,3.6.7)[3.7.0,3.7.3)Maven20 Sept 2022
  • M
Information Exposure		org.springframework.data:spring-data-rest-webmvc[3.5.0,3.5.6)[,3.4.14)Maven27 Oct 2021
  • C
Arbitrary Code Execution		org.springframework.data:spring-data-rest-webmvc[,2.6.7.RELEASE)Maven16 Apr 2018
  • H
Arbitrary Code Execution		org.springframework.flex:spring-flex-core[0,]Maven21 May 2017
  • L
Information Exposure		org.springframework.graphql:spring-graphql[1.1.0,1.1.6)[1.2.0,1.2.3)Maven20 Sept 2023
  • H
HTTP Header Injection		org.springframework.hateoas:spring-hateoas[,1.5.5)[2.0.0,2.0.5)[2.1.0,2.1.1)Maven16 Jul 2023
  • H
Deserialization of Untrusted Data		org.springframework.integration:spring-integration[4.3.0, 4.3.23)[5.1.0, 5.1.12)[5.2.0, 5.2.8)[5.3.0, 5.3.2)Maven2 Aug 2020
  • C
XML External Entity (XXE) Injection		org.springframework.integration:spring-integration-ws[5.1.0.RELEASE,5.1.2.RELEASE)[5.0.0.RELEASE,5.0.11.RELEASE)[,4.3.19.RELEASE)Maven16 Jan 2019
  • C
XML External Entity (XXE) Injection		org.springframework.integration:spring-integration-xml[5.1.0.RELEASE,5.1.2.RELEASE)[5.0.0.RELEASE,5.0.11.RELEASE)[,4.3.19.RELEASE)Maven16 Jan 2019
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.4.RELEASE)Maven28 Feb 2021
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.2.RELEASE)Maven16 May 2018
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.1.RELEASE)Maven10 May 2018
  • M
Deserialization of Untrusted Data		org.springframework.kafka:spring-kafka[2.8.1,2.9.11)[3.0.0,3.0.10)Maven24 Aug 2023
  • M
Information Exposure		org.springframework.ldap:spring-ldap-core[,2.4.4)[3.2.0,3.2.8)Maven20 Nov 2024
  • H
Access Restriction Bypass		org.springframework.ldap:spring-ldap-core[,2.3.2.RELEASE)Maven16 Nov 2017
  • M
Information Exposure		org.springframework.ldap:spring-ldap-odm[,2.4.4)[3.2.0,3.2.8)Maven20 Nov 2024
  • H
Denial of Service (DoS)		org.springframework.security.oauth:spring-security-oauth2[0,2.5.2.RELEASE)Maven21 Apr 2022
  • M
Open Redirect		org.springframework.security.oauth:spring-security-oauth2[2.3.0.RELEASE,2.3.6.RELEASE)[2.2.0.RELEASE,2.2.5.RELEASE)[2.1.0.RELEASE,2.1.5.RELEASE)[2.0.0.RELEASE, 2.0.18.RELEASE)Maven30 May 2019
  • C
Credentials Disclosure		org.springframework.security.oauth:spring-security-oauth2[2.3.0.RELEASE,2.3.5.RELEASE)[2.2.0.RELEASE,2.2.4.RELEASE)[2.1.0.RELEASE,2.1.4.RELEASE)[,2.0.17.RELEASE)Maven8 Mar 2019
  • H
Privilege Escalation		org.springframework.security.oauth:spring-security-oauth2[, 2.0.16.RELEASE)[2.1.0.RELEASE, 2.1.3.RELEASE)[2.2.0.RELEASE, 2.2.3.RELEASE)[2.3.0.RELEASE, 2.3.4.RELEASE)Maven17 Oct 2018
  • C
Arbitrary Code Execution		org.springframework.security.oauth:spring-security-oauth2[,2.0.15.RELEASE)[2.1.0.RELEASE, 2.1.2.RELEASE)[2.2.0.RELEASE, 2.2.2.RELEASE)[2.3.0.RELEASE, 2.3.3.RELEASE)Maven10 May 2018
  • H
Arbitrary Code Execution		org.springframework.security.oauth:spring-security-oauth2[1.0.0.RELEASE,2.0.10.RELEASE)Maven4 Jul 2016
  • M
Authorization Bypass		org.springframework.security:spring-security-cas[,5.7.14)[5.8.0,5.8.16)[6.2.0,6.2.8)[6.3.0,6.3.5)Maven20 Nov 2024
  • H
Authentication Bypass		org.springframework.security:spring-security-cas[6.1.0,6.1.7)[6.2.0,6.2.2)Maven20 Feb 2024