Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Memory Allocation with Excessive Size Value
org.apache.activemq:activemq-openwire-legacy[,5.16.8)[5.17.0,5.17.7)[5.18.0,5.18.7)[6.0.0,6.1.6)Maven8 May 2025
  • M
Memory Allocation with Excessive Size Value
org.apache.activemq:activemq-client[,5.16.8)[5.17.0,5.17.7)[5.18.0,5.18.7)[6.0.0,6.1.6)Maven8 May 2025
  • L
Insecure Randomness
org.webjars.npm:formidable[0,]Maven7 May 2025
  • M
Cross-site Scripting (XSS)
com.liferay:com.liferay.marketplace.app.manager.web[,5.0.50)Maven7 May 2025
  • M
Cross-site Scripting (XSS)
org.jboss.hal:hal-dmr[,3.7.11.Final)Maven7 May 2025
  • M
Cross-site Scripting (XSS)
org.jboss.hal:hal-core[,3.7.11.Final)Maven7 May 2025
  • M
Cross-site Scripting (XSS)
org.jboss.hal:hal-console[,3.7.11.Final)Maven7 May 2025
  • H
External Control of File Name or Path
org.apache.parquet:parquet-avro[,1.15.2)Maven7 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-utils-common[,0.10.0)Maven5 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-rest-server[,0.10.0)Maven5 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-rest-api[,0.10.0)Maven5 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-launcher[,0.10.0)Maven5 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-rest-resources[,0.10.0)Maven5 May 2025
  • H
Cross-site Request Forgery (CSRF)
org.apache.brooklyn:brooklyn-jsgui[,0.10.0)Maven5 May 2025
  • H
Denial of Service (DoS)
org.elasticsearch:elasticsearch[,7.17.25)[8.0.0-alpha1,8.16.0)Maven2 May 2025
  • H
Denial of Service (DoS)
org.elasticsearch.plugin:lang-mustache-client[,7.17.25)Maven2 May 2025
  • H
Improper Validation of Certificate with Host Mismatch
org.keycloak:keycloak-services[,26.2.2)Maven2 May 2025
  • M
Improper Authentication
org.keycloak:keycloak-services[,26.2.2)Maven2 May 2025
  • M
Directory Traversal
org.webjars.npm:vite[0,]Maven2 May 2025
  • M
Incomplete Filtering of Special Elements
org.webjars.bowergithub.angular:angular[0,]Maven2 May 2025
  • M
Incomplete Filtering of Special Elements
org.webjars.npm:angular[0,]Maven2 May 2025
  • M
Incomplete Filtering of Special Elements
org.webjars.bower:angular[0,]Maven2 May 2025
  • H
Improper Cleanup on Thrown Exception
org.apache.tomcat.embed:tomcat-embed-core[9.0.76,9.0.104)[10.1.10,10.1.40)[11.0.0-M2,11.0.6)Maven30 Apr 2025
  • H
Improper Cleanup on Thrown Exception
org.apache.tomcat:tomcat-coyote[9.0.76,9.0.104)[10.1.10,10.1.40)[11.0.0-M2,11.0.6)Maven30 Apr 2025
  • M
Improper Neutralization
org.apache.tomcat:tomcat-catalina[9.0.76,9.0.104)[10.1.10,10.1.40)[11.0.0-M2,11.0.6)Maven30 Apr 2025
  • M
Improper Neutralization
org.apache.tomcat.embed:tomcat-embed-core[9.0.76,9.0.104)[10.1.10,10.1.40)[11.0.0-M2,11.0.6)Maven30 Apr 2025
  • C
Improper Encoding or Escaping of Output
org.xwiki.platform:xwiki-platform-security-requiredrights-default[15.9-rc-1,15.10.8)[16.0.0-rc-1,16.2.0)Maven30 Apr 2025
  • M
Improper Authorization
org.xwiki.platform:xwiki-platform-lesscss-script[,15.10.12)[16.0.0,16.4.3)[16.5.0-rc-1,16.8.0-rc-1)Maven30 Apr 2025
  • M
Cross-site Request Forgery (CSRF)
com.liferay.commerce:com.liferay.commerce.availability.estimate.web[,4.0.35)Maven29 Apr 2025
  • M
Cross-site Request Forgery (CSRF)
com.liferay.commerce:com.liferay.commerce.product.tax.category.web[,4.0.39)Maven29 Apr 2025