Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Deserialization of Untrusted Data		org.springframework.integration:spring-integration[4.3.0, 4.3.23)[5.1.0, 5.1.12)[5.2.0, 5.2.8)[5.3.0, 5.3.2)Maven2 Aug 2020
  • C
XML External Entity (XXE) Injection		org.springframework.integration:spring-integration-ws[5.1.0.RELEASE,5.1.2.RELEASE)[5.0.0.RELEASE,5.0.11.RELEASE)[,4.3.19.RELEASE)Maven16 Jan 2019
  • C
XML External Entity (XXE) Injection		org.springframework.integration:spring-integration-xml[5.1.0.RELEASE,5.1.2.RELEASE)[5.0.0.RELEASE,5.0.11.RELEASE)[,4.3.19.RELEASE)Maven16 Jan 2019
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.4.RELEASE)Maven28 Feb 2021
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.2.RELEASE)Maven16 May 2018
  • M
Arbitrary File Write via Archive Extraction (Zip Slip)		org.springframework.integration:spring-integration-zip[,1.0.1.RELEASE)Maven10 May 2018
  • M
Deserialization of Untrusted Data		org.springframework.kafka:spring-kafka[2.8.1,2.9.11)[3.0.0,3.0.10)Maven24 Aug 2023
  • M
Information Exposure		org.springframework.ldap:spring-ldap-core[,2.4.4)[3.2.0,3.2.8)Maven20 Nov 2024
  • H
Access Restriction Bypass		org.springframework.ldap:spring-ldap-core[,2.3.2.RELEASE)Maven16 Nov 2017
  • M
Information Exposure		org.springframework.ldap:spring-ldap-odm[,2.4.4)[3.2.0,3.2.8)Maven20 Nov 2024
  • H
Denial of Service (DoS)		org.springframework.security.oauth:spring-security-oauth2[0,2.5.2.RELEASE)Maven21 Apr 2022
  • M
Open Redirect		org.springframework.security.oauth:spring-security-oauth2[2.3.0.RELEASE,2.3.6.RELEASE)[2.2.0.RELEASE,2.2.5.RELEASE)[2.1.0.RELEASE,2.1.5.RELEASE)[2.0.0.RELEASE, 2.0.18.RELEASE)Maven30 May 2019
  • C
Credentials Disclosure		org.springframework.security.oauth:spring-security-oauth2[2.3.0.RELEASE,2.3.5.RELEASE)[2.2.0.RELEASE,2.2.4.RELEASE)[2.1.0.RELEASE,2.1.4.RELEASE)[,2.0.17.RELEASE)Maven8 Mar 2019
  • H
Privilege Escalation		org.springframework.security.oauth:spring-security-oauth2[, 2.0.16.RELEASE)[2.1.0.RELEASE, 2.1.3.RELEASE)[2.2.0.RELEASE, 2.2.3.RELEASE)[2.3.0.RELEASE, 2.3.4.RELEASE)Maven17 Oct 2018
  • C
Arbitrary Code Execution		org.springframework.security.oauth:spring-security-oauth2[,2.0.15.RELEASE)[2.1.0.RELEASE, 2.1.2.RELEASE)[2.2.0.RELEASE, 2.2.2.RELEASE)[2.3.0.RELEASE, 2.3.3.RELEASE)Maven10 May 2018
  • H
Arbitrary Code Execution		org.springframework.security.oauth:spring-security-oauth2[1.0.0.RELEASE,2.0.10.RELEASE)Maven4 Jul 2016
  • M
Authorization Bypass		org.springframework.security:spring-security-cas[,5.7.14)[5.8.0,5.8.16)[6.2.0,6.2.8)[6.3.0,6.3.5)Maven20 Nov 2024
  • H
Authentication Bypass		org.springframework.security:spring-security-cas[6.1.0,6.1.7)[6.2.0,6.2.2)Maven20 Feb 2024
  • C
Access Restriction Bypass		org.springframework.security:spring-security-cas[3.2.0,3.2.5.RELEASE)[3.1.0,3.1.7.RELEASE)Maven25 Dec 2016
  • M
Authorization Bypass		org.springframework.security:spring-security-config[,5.7.14)[5.8.0,5.8.16)[6.2.0,6.2.8)[6.3.0,6.3.5)Maven20 Nov 2024
  • M
Missing Authorization		org.springframework.security:spring-security-config[6.3.0,6.3.2)Maven20 Aug 2024
  • M
Incorrect Permission Assignment for Critical Resource		org.springframework.security:spring-security-config[5.7.9,5.7.11)[5.8.4,5.8.7)[6.0.4,6.0.7)[6.1.1,6.1.4)Maven19 Sept 2023
  • C
Access Control Bypass		org.springframework.security:spring-security-config[5.6.0,5.6.12)[5.7.0,5.7.10)[5.8.0,5.8.5)[6.0.0,6.0.5)[6.1.0,6.1.2)Maven18 Jul 2023
  • H
Improper Authorization		org.springframework.security:spring-security-config[5.8.0,5.8.5)[6.0.0,6.0.5)[6.1.0,6.1.2)Maven18 Jul 2023
  • M
Session Fixation		org.springframework.security:spring-security-config[5.7.0,5.7.8)[5.8.0,5.8.3)[6.0.0,6.0.3)Maven20 Apr 2023
  • M
Access Restriction Bypass		org.springframework.security:spring-security-config[4.1.0.RELEASE, 4.1.5.RELEASE)[4.2.0.RELEASE, 4.2.4.RELEASE)[5.0.0.RELEASE, 5.0.3.RELEASE)Maven17 Mar 2018
  • H
Authentication Bypass		org.springframework.security:spring-security-config[3.2.0.RELEASE,4.1.1.RELEASE)Maven11 Jul 2016
  • H
Incorrect Authorization		org.springframework.security:spring-security-core[6.4.4,6.4.10)[6.5.0,6.5.4)Maven17 Sept 2025
  • C
Missing Authentication for Critical Function		org.springframework.security:spring-security-core[6.4.0,6.4.6)Maven20 May 2025
  • M
Incorrect Authorization		org.springframework.security:spring-security-core[6.4.0,6.4.4)Maven20 Mar 2025