Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Improper Input Validation		org.springframework/spring-webmvc*rhel:726 Nov 2024
  • M
Improper Input Validation		org.springframework/spring-webmvc*rhel:826 Nov 2024
  • M
Improper Input Validation		org.springframework/spring-webmvc*rhel:926 Nov 2024
  • H
Directory Traversal		org.springframework/spring-webmvc*rhel:817 Sept 2024
  • H
Directory Traversal		org.springframework/spring-webmvc*rhel:917 Sept 2024
  • H
Directory Traversal		org.springframework/spring-webmvc*rhel:717 Sept 2024
  • L
Improper Handling of Case Sensitivity		org.springframework:spring-websocket[,6.1.14)Maven18 Oct 2024
  • M
Insufficiently Random Session ID		org.springframework:spring-websocket[4.1.0.RELEASE,4.1.5.RELEASE)Maven25 Dec 2016
  • M
Insertion of Sensitive Information into Log File		org.springframework.vault:spring-vault-core[,2.3.3)[3.0.0,3.0.2)Maven24 Mar 2023
  • M
Insecure Defaults		org.springframework.webflow:spring-webflow[,2.4.6.RELEASE)Maven28 Nov 2017
  • M
Insecure Defaults		org.springframework.webflow:spring-webflow[,2.4.5.RELEASE)Maven7 Jun 2017
  • C
XML External Entity (XXE) Injection		org.springframework.ws:spring-ws-core[,2.4.4.RELEASE)[3.0.0.RELEASE,3.0.6.RELEASE)Maven16 Jan 2019
  • C
XML External Entity (XXE) Injection		org.springframework.ws:spring-xml[,2.4.4.RELEASE)[3.0.0.RELEASE,3.0.6.RELEASE)Maven16 Jan 2019
  • M
Cross-site Scripting (XSS)		org.thymeleaf.extras:thymeleaf-extras-springsecurity5[,3.1.0.M1)Maven12 Aug 2020
  • H
Remote Code Execution (RCE)		org.thymeleaf:thymeleaf-spring5[,3.0.13.RELEASE)Maven11 Nov 2021
  • C
Malicious Package		react-spring-latest*npm20 Jan 2025
  • L
CVE-2025-41249		spring-boot<3.5.6-r0chainguard:latest18 Sept 2025
  • L
GHSA-jmp9-x22r-554x		spring-boot<3.5.6-r0chainguard:latest18 Sept 2025
  • L
GHSA-j288-q9x7-2f5v		spring-boot<3.5.5-r0chainguard:latest27 Aug 2025
  • L
Uncontrolled Recursion		spring-boot<3.5.5-r0chainguard:latest27 Aug 2025
  • L
GHSA-73m2-qfq3-56cx		spring-boot<3.5.3-r0chainguard:latest23 Jun 2025
  • L
CVE-2025-27820		spring-boot<3.5.3-r0chainguard:latest23 Jun 2025
  • H
Improper Input Validation		spring-boot*rhel:929 Apr 2025
  • H
Improper Input Validation		spring-boot*rhel:829 Apr 2025
  • H
Improper Input Validation		spring-boot*rhel:729 Apr 2025
  • L
GHSA-4g9r-vxhx-9pgx		spring-boot<3.5.3-r0chainguard:latest25 Mar 2025
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')		spring-boot<3.5.3-r0chainguard:latest25 Mar 2025
  • M
Allocation of Resources Without Limits or Throttling		spring-boot<3.5.3-r0chainguard:latest25 Mar 2025
  • L
GHSA-4265-ccf5-phj5		spring-boot<3.5.3-r0chainguard:latest25 Mar 2025
  • L
Improper Access Control		spring-boot*rhel:715 Aug 2023