Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

M

Uncontrolled Search Path ElementCVE-2025-10939

Affects org.keycloak:keycloak-quarkus-server | Versions [,26.4.0)

Has fix

MavenPublished 29 Oct 2025

H

Relative Path TraversalCVE-2025-55752

Affects org.apache.tomcat:tomcat-catalina | Versions [,9.0.109)[10.1.0-M1,10.1.45)[11.0.0-M1,11.0.11)

Has fix

MavenPublished 29 Oct 2025

H

Relative Path TraversalCVE-2025-55752

Affects org.apache.tomcat.embed:tomcat-embed-core | Versions [,9.0.109)[10.1.0-M1,10.1.45)[11.0.0-M1,11.0.11)

Has fix

MavenPublished 29 Oct 2025

M

Improper Resource Shutdown or ReleaseCVE-2025-61795

Affects org.apache.tomcat.embed:tomcat-embed-core | Versions [,9.0.110)[10.0.0-M1,10.1.47)[11.0.0-M1,11.0.12)

Has fix

MavenPublished 28 Oct 2025

M

Improper Output Neutralization for LogsCVE-2025-55754

Affects org.apache.tomcat:tomcat-juli | Versions [9.0.0.40, 9.0.109)[10.1.0-M1, 10.1.45)[11.0.0-M1, 11.0.11)

Has fix

MavenPublished 28 Oct 2025

M

Improper Resource Shutdown or ReleaseCVE-2025-61795

Affects org.apache.tomcat:catalina | Versions [0,]

Has fix

MavenPublished 28 Oct 2025

M

Improper Resource Shutdown or ReleaseCVE-2025-61795

Affects org.apache.tomcat:tomcat-catalina | Versions [,9.0.110)[10.0.0-M1,10.1.47)[11.0.0-M1,11.0.12)

Has fix

MavenPublished 28 Oct 2025

M

Allocation of Resources Without Limits or ThrottlingCVE-2025-62254

Affects com.liferay.portal:com.liferay.portal.impl | Versions [,97.0.0)

Has fix

MavenPublished 27 Oct 2025

M

Allocation of Resources Without Limits or ThrottlingCVE-2025-12194

Affects org.bouncycastle:bcprov-lts8on | Versions [2.73.0, 2.73.8)

Has fix

MavenPublished 26 Oct 2025

M

Allocation of Resources Without Limits or ThrottlingCVE-2025-12194

Affects org.bouncycastle:bc-fips-debug | Versions [2.1.1, 2.1.2)

Has fix

MavenPublished 26 Oct 2025

M

Allocation of Resources Without Limits or ThrottlingCVE-2025-12194

Affects org.bouncycastle:bc-fips | Versions [2.1.1, 2.1.2)

Has fix

MavenPublished 26 Oct 2025

M

Cross-site Scripting (XSS)CVE-2025-60837

Affects net.mingsoft:ms-mcms | Versions [0,]

Has fix

MavenPublished 24 Oct 2025

M

Cross-site Scripting (XSS)CVE-2025-62248

Affects com.liferay:com.liferay.dynamic.data.mapping.web | Versions [0,]

Has fix

MavenPublished 24 Oct 2025

H

XML External Entity (XXE) InjectionCVE-2025-53066

Affects org.graalvm.sdk:graal-sdk | Versions [,17.0.17)[21.0.0,21.0.9)

Has fix

MavenPublished 24 Oct 2025

L

Cross-site Scripting (XSS)CVE-2025-62255

Affects com.liferay:com.liferay.knowledge.base.web | Versions [,5.0.109)

Has fix

MavenPublished 24 Oct 2025

M

Missing AuthorizationCVE-2025-62256

Affects com.liferay:com.liferay.portal.vulcan.impl | Versions [,5.0.110)

Has fix

MavenPublished 24 Oct 2025

M

Missing AuthorizationCVE-2025-62256

Affects com.liferay:com.liferay.portal.security.auth.verifier | Versions [,6.0.26)

Has fix

MavenPublished 24 Oct 2025

M

Insufficient Session ExpirationCVE-2025-12110

Affects org.keycloak:keycloak-services | Versions [,26.3.0)

Has fix

MavenPublished 24 Oct 2025

M

Arbitrary File UploadCVE-2021-33990

Affects com.liferay.portal:portal-web | Versions [,6.2.1)

Has fix

MavenPublished 23 Oct 2025

M

Arbitrary File UploadCVE-2021-33990

Affects com.liferay.portal:portal-service | Versions [,6.2.5)

Has fix

MavenPublished 23 Oct 2025

L

Missing AuthorizationCVE-2025-62247

Affects com.liferay:com.liferay.search.experiences.service | Versions [0,]

Has fix

MavenPublished 23 Oct 2025

L

Predictable Seed in Pseudo-Random Number Generator (PRNG)CVE-2025-62710

Affects org.sakaiproject.scheduler:scheduler-component-shared | Versions [0,]

Has fix

MavenPublished 23 Oct 2025

L

Predictable Seed in Pseudo-Random Number Generator (PRNG)CVE-2025-62710

Affects org.sakaiproject.kernel:sakai-kernel-impl | Versions [0,]

Has fix

MavenPublished 23 Oct 2025

H

Files or Directories Accessible to External PartiesCVE-2025-11965

Affects io.vertx:vertx-web | Versions [,4.5.22)[5.0.0.CR1,5.0.5)

Has fix

MavenPublished 23 Oct 2025

L

Cross-site Scripting (XSS)CVE-2025-11966

Affects io.vertx:vertx-web | Versions [,4.5.22)[5.0.0.CR1,5.0.5)

Has fix

MavenPublished 23 Oct 2025

H

Improper Verification of Cryptographic SignatureCVE-2025-53057

Affects org.graalvm.sdk:graal-sdk | Versions [,17.0.17)[21.0.0,21.0.9)

Has fix

MavenPublished 22 Oct 2025

M

Improper Input ValidationCVE-2025-61748

Affects org.graalvm.sdk:graal-sdk | Versions [,21.0.9)

Has fix

MavenPublished 22 Oct 2025

M

Origin Validation ErrorCVE-2025-62250

Affects com.liferay:com.liferay.portal.cluster.multiple | Versions [,5.0.35)

Has fix

MavenPublished 22 Oct 2025

M

Cross-site Scripting (XSS)CVE-2025-62249

Affects com.liferay.portal:com.liferay.portal.impl | Versions [0,]

Has fix

MavenPublished 22 Oct 2025

H

Improper Isolation or CompartmentalizationCVE-2025-57738

Affects org.apache.syncope.fit:syncope-fit-build-tools | Versions [,3.0.14)[4.0.0,4.0.2)

Has fix

MavenPublished 21 Oct 2025

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.