Browse Security Advisories
Moderate Security Advisories for https://github.com/spring-projects/spring-framework Clear Filters
Moderate
about 1 year ago
Spring Framework vulnerable to a reflected file download (RFD)
maven
org.springframework:spring-web
Moderate
over 1 year ago
Spring Framework has Authorization Bypass for Case Sensitive Comparisons
maven
org.springframework.security:spring-security-core
Moderate
over 1 year ago
Spring Framework DataBinder Case Sensitive Match Exception
maven
org.springframework:spring-web, org.springframework:spring-context
Moderate
almost 2 years ago
Spring Framework DoS via conditional HTTP request
maven
org.springframework:spring-web
Moderate
almost 2 years ago
Spring Framework vulnerable to Denial of Service
maven
org.springframework:spring-expression
Moderate
over 3 years ago
Spring Framework vulnerable to denial of service via specially crafted SpEL expression
maven
org.springframework:spring-expression
Moderate
about 4 years ago
Improper Control of Generation of Code ('Code Injection') in Spring Framework
maven
org.springframework:spring
Moderate
about 4 years ago
Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data
maven
org.springframework.security:spring-security-core, org.springframework:spring-core
Moderate
about 4 years ago
Improper Neutralization of Input During Web Page Generation in Spring Framework
maven
org.springframework:spring-webmvc
Moderate
about 4 years ago
Improper Limitation of a Pathname to a Restricted Directory in Spring Framework
maven
org.springframework:spring-core
Moderate
about 4 years ago
Improper Limitation of a Pathname to a Restricted Directory in Spring Framework
maven
org.springframework:spring-webmvc
Moderate
about 4 years ago
Cross-Site Request Forgery in Spring Framework
maven
org.springframework:spring-web
Moderate
about 4 years ago
Cross-Site Request Forgery in Spring Framework
maven
org.springframework:spring-webmvc
Moderate
about 4 years ago
Cross-Site Request Forgery in Spring Framework
maven
org.springframework:spring-oxm
Moderate
about 4 years ago
Missing XML Validation in Spring Framework
maven
org.springframework:spring-oxm
Moderate
about 4 years ago
Allocation of Resources Without Limits or Throttling in Spring Framework
maven
org.springframework:spring-messaging
Moderate
about 4 years ago
Improper Neutralization of Input During Web Page Generation in Spring Framework
maven
org.springframework:spring-web
Moderate
over 4 years ago
Allocation of Resources Without Limits or Throttling in Spring Framework
maven
org.springframework:spring-expression
Moderate
over 6 years ago
CSRF attack via CORS preflight requests with Spring MVC or Spring WebFlux
maven
org.springframework:spring-webflux, org.springframework:spring-webmvc
Moderate
over 7 years ago
Pivotal Spring Framework DoS Attack with XML Input
maven
org.springframework:spring-web
Moderate
over 7 years ago
Moderate severity vulnerability that affects org.springframework:spring-core
maven
org.springframework:spring-core
Moderate
over 7 years ago
Path Traversal in org.springframework:spring-core
maven
org.springframework:spring-core
Moderate
over 7 years ago
Denial of Service in org.springframework:spring-core
maven
org.springframework:spring-core
Moderate
over 7 years ago
Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core
maven
org.springframework.security:spring-security-core, org.springframework:spring-core
Moderate
over 7 years ago
Moderate severity vulnerability that affects org.springframework:spring-core
maven
org.springframework:spring-core
Moderate
over 7 years ago
Spring Framework Cross Site Tracing (XST)
maven
org.springframework:spring-web
Filter by Severity
Filter by Source
Filter by Ecosystem
maven
3,642
packagist
3,630
pypi
2,640
npm
2,410
go
2,120
nuget
1,951
cargo
602
rubygems
475
cpan
210
hex
33
swift
20
actions
16
pub
2
Filter by Package
moodle/moodle
318
openclaw
300
tensorflow
200
tensorflow-cpu
195
magento/community-edition
193
tensorflow-gpu
186
org.jenkins-ci.main:jenkins-core
152
github.com/mattermost/mattermost/server/v8
127
typo3/cms
116
com.liferay.portal:release.portal.bom
114
github.com/mattermost/mattermost-server
114
org.apache.tomcat:tomcat
99
pimcore/pimcore
91
Magick.NET-Q16-AnyCPU
86
Magick.NET-Q16-HDRI-AnyCPU
86
Magick.NET-Q16-HDRI-OpenMP-arm64
83
typo3/cms-core
81
com.liferay.portal:release.dxp.bom
81
Magick.NET-Q16-HDRI-arm64
80
Magick.NET-Q16-HDRI-x86
79
Magick.NET-Q16-HDRI-x64
78
Magick.NET-Q16-OpenMP-arm64
77
Magick.NET-Q16-x86
76
Magick.NET-Q16-arm64
76
Magick.NET-Q16-OpenMP-x64
76
Magick.NET-Q8-AnyCPU
74
wwbn/avideo
73
Magick.NET-Q8-x86
72
Magick.NET-Q16-x64
72
microweber/microweber
72
Magick.NET-Q8-OpenMP-arm64
71
Magick.NET-Q8-arm64
70
Magick.NET-Q8-OpenMP-x64
68
silverstripe/framework
67
Magick.NET-Q8-x64
66
concrete5/concrete5
65
thorsten/phpmyfaq
64
apache-airflow
60
magento/project-community-edition
57
drupal/core
57
phpmyadmin/phpmyadmin
56
craftcms/cms
56
dolibarr/dolibarr
56
Magick.NET-Q16-HDRI-OpenMP-x64
56
github.com/usememos/memos
54
librenms/librenms
53
org.keycloak:keycloak-services
51
apache-superset
47
symfony/symfony
47
mantisbt/mantisbt
46
n8n
44
open-webui
44
Django
44
actionpack
42
Magick.NET-Q16-OpenMP-x86
41
parse-server
40
nocodb
40
snipe/snipe-it
39
picklescan
37
drupal/drupal
36
github.com/grafana/grafana
36
org.elasticsearch:elasticsearch
35
showdoc/showdoc
35
shopware/platform
34
directus
34
org.keycloak:keycloak-core
32
surrealdb
32
admidio/admidio
32
shopware/core
30
github.com/mattermost/mattermost-server/v6
30
hono
30
getgrav/grav
30
nova
30
pypdf
29
mautic/core
29
baserproject/basercms
29
plone
29
getkirby/cms
28
intelliants/subrion
28
ansible
27
moin
27
gogs.io/gogs
26
vllm
26
rack
26
coreutils
25
k8s.io/kubernetes
25
froxlor/froxlor
24
aiohttp
24
Plone
23
next
23
phpmyfaq/phpmyfaq
23
grumpydictator/firefly-iii
22
github.com/hashicorp/vault
22
github.com/cilium/cilium
22
wasmtime
21
gradio
21
nilsteampassnet/teampass
21
github.com/answerdev/answer
21
code.vikunja.io/api
21
flowise
21
code.gitea.io/gitea
21
github.com/traefik/traefik/v2
21
matrix-synapse
21
github.com/openfga/openfga
21
DotNetNuke.Core
21
github.com/traefik/traefik/v3
21
django
20
mediawiki/core
20
shopware/shopware
19
org.apache.tomcat.embed:tomcat-embed-core
19
statamic/cms
19
electron
19
org.apache.struts:struts2-core
19
remdex/livehelperchat
18
dompurify
18
github.com/fleetdm/fleet/v4
18
github.com/docker/docker
18
pyload-ng
18
contao/core-bundle
18
prestashop/prestashop
17
salt
17
keystone
17
github.com/hashicorp/consul
17
org.opencms:opencms-core
17
typo3/cms-backend
16
nokogiri
16
github.com/argoproj/argo-cd/v2
16
github.com/hashicorp/nomad
16
io.undertow:undertow-core
16
zendframework/zendframework1
16
rdiffweb
16
org.xwiki.platform:xwiki-platform-oldcore
15
yetiforce/yetiforce-crm
15
vyper
15
org.apache.jspwiki:jspwiki-main
15
com.liferay.portal:com.liferay.portal.impl
15
org.springframework.security:spring-security-core
15
github.com/siyuan-note/siyuan/kernel
15
glance
15
github.com/goharbor/harbor
14
wagtail
14
tinymce
14
activesupport
14
feehi/cms
14
pnpm
14
puppet
14
deno
14
MT
14
weblate
14
feehi/feehicms
14
axios
14
forkcms/forkcms
13
tribalsystems/zenario
13
sylius/sylius
13
com.thoughtworks.xstream:xstream
13
transformers
13
com.jfinal:jfinal
13
github.com/zitadel/zitadel
13
helm.sh/helm/v3
13
ghost
13
svelte
13
github.com/ethereum/go-ethereum
13
github.com/containerd/containerd
13
vite
13
Umbraco.Cms
13
craftcms/commerce
13
github.com/openbao/openbao
12
DBD-SQLite
12
lavalite/cms
12
laravel/framework
12
OctoPrint
12
ec-cube/ec-cube
12
roundup
12
@openzeppelin/contracts
12
github.com/rancher/rancher
12
facturascripts/facturascripts
12
simplesamlphp/simplesamlphp
12
org.bouncycastle:bcprov-jdk14
12
github.com/traefik/traefik
12
undici
12
@openzeppelin/contracts-upgradeable
12
github.com/filebrowser/filebrowser/v2
12
wallabag/wallabag
12
phpoffice/phpspreadsheet
12
kubevirt.io/kubevirt
11
horizon
11
zebrad
11
nicegui
11
io.netty:netty-codec-http
11
cakephp/cakephp
11
github.com/argoproj/argo-cd
11
MessagePack
11
TinyMCE
11
org.keycloak:keycloak-parent
11
ci4-cms-erp/ci4ms
11
mlflow
11
ckeditor4
11
genix/cms
11
org.eclipse.jetty:jetty-server
11
astro
11
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
192
https://github.com/liferay/liferay-portal
143
https://github.com/jenkinsci/jenkins
109
https://github.com/jquery/jquery
99
https://github.com/pimcore/pimcore
85
https://github.com/TYPO3/typo3
63
https://github.com/microweber/microweber
63
https://github.com/apache/tomcat
59
https://github.com/django/django
50
https://github.com/xwiki/xwiki-platform
50
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/usememos/memos
50
https://github.com/rails/rails
46
https://github.com/thorsten/phpmyfaq
45
https://github.com/keycloak/keycloak
45
https://github.com/apache/airflow
44
https://github.com/librenms/librenms
42
https://github.com/kubernetes/kubernetes
40
https://github.com/mattermost/mattermost
36
https://github.com/mantisbt/mantisbt
35
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/concretecms/concretecms
28
https://github.com/grafana/grafana
27
https://github.com/symfony/symfony
27
https://github.com/mautic/mautic
27
https://github.com/spring-projects/spring-framework
26
https://github.com/craftcms/cms
26
https://github.com/ansible/ansible
26
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/shopware/shopware
24
https://github.com/argoproj/argo-cd
24
https://github.com/directus/directus
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/firefly-iii/firefly-iii
20
https://github.com/magento/magento2
20
https://github.com/snipe/snipe-it
20
https://github.com/apache/activemq
20
https://github.com/plone/Products.CMFPlone
20
https://github.com/cilium/cilium
19
https://github.com/contao/contao
18
https://github.com/openstack/nova
18
https://github.com/livehelperchat/livehelperchat
18
https://github.com/apache/struts
17
https://github.com/ikus060/rdiffweb
16
https://github.com/twbs/bootstrap
16
https://github.com/gradio-app/gradio
16
https://github.com/shopware/platform
16
https://github.com/matrix-org/synapse
16
https://github.com/CVEProject/cvelist
15
https://github.com/getkirby/kirby
15
https://github.com/apache/cxf
15
https://github.com/vyperlang/vyper
15
https://github.com/netty/netty
15
https://github.com/saltstack/salt
14
https://github.com/tinymce/tinymce
14
https://github.com/froxlor/froxlor
14
https://github.com/geoserver/geoserver
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/x-stream/xstream
14
https://github.com/moby/moby
14
https://github.com/OpenNMS/opennms
14
https://github.com/baserproject/basercms
14
https://github.com/goharbor/harbor
13
https://github.com/octobercms/october
13
https://github.com/openfga/openfga
13
https://github.com/containerd/containerd
13
https://github.com/go-gitea/gitea
13
https://github.com/rack/rack
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/apache/nifi
13
https://github.com/strapi/strapi
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/bcgit/bc-java
13
https://github.com/hashicorp/consul
12
https://github.com/huggingface/transformers
12
https://github.com/TYPO3-CMS/core
12
https://github.com/traefik/traefik
12
https://github.com/OpenZeppelin/openzeppelin-contracts
12
https://github.com/openstack/keystone
12
https://github.com/helm/helm
12
https://github.com/github/advisory-database
11
https://github.com/ckeditor/ckeditor4
11
https://github.com/intelliants/subrion
11
https://github.com/laravel/framework
11
https://github.com/surrealdb/surrealdb
11
https://github.com/rancher/rancher
11
https://github.com/vaadin/platform
11
https://github.com/vitejs/vite
11
https://github.com/forkcms/forkcms
11
https://github.com/electron/electron
11
https://github.com/dnnsoftware/Dnn.Platform
11
https://github.com/ethereum/go-ethereum
11
https://github.com/apache/zeppelin
11
https://github.com/greenpau/caddy-security
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/vercel/next.js
10
https://github.com/backstage/backstage
10
https://github.com/laurent22/joplin
10
https://github.com/decidim/decidim
10
https://github.com/TryGhost/Ghost
10
https://github.com/wallabag/wallabag
10
https://github.com/vllm-project/vllm
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/liufee/cms
10
https://github.com/aio-libs/aiohttp
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/OctoPrint/OctoPrint
9
https://github.com/urllib3/urllib3
9
https://github.com/puppetlabs/puppet
9
https://github.com/opencast/opencast
9
https://github.com/dotnet/runtime
9
https://github.com/jenkinsci/git-plugin
9
https://github.com/alkacon/opencms-core
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/publify/publify
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/jquery/jquery-ui
9
https://github.com/sparklemotion/nokogiri
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/pyload/pyload
8
https://github.com/pandao/editor.md
8
https://github.com/getgrav/grav
8
https://github.com/ckan/ckan
8
https://github.com/parse-community/parse-server
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/opensearch-project/security
8
https://github.com/zendframework/zendframework
8
https://github.com/modoboa/modoboa
8
https://github.com/sulu/sulu
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/onionshare/onionshare
8
https://github.com/eclipse/jetty.project
8
https://github.com/apache/superset
8
https://github.com/openstack/glance
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/rubygems/rubygems
8
https://github.com/hashicorp/nomad
8
https://github.com/openbao/openbao
8
https://github.com/gogs/gogs
8
https://github.com/dolibarr/dolibarr
8
https://github.com/FlowiseAI/Flowise
8
https://github.com/kubeedge/kubeedge
8
https://github.com/LavaLite/cms
8
https://github.com/janeczku/calibre-web
7
https://github.com/zitadel/zitadel
7
https://github.com/Leantime/leantime
7
https://github.com/treeverse/lakeFS
7
https://github.com/n8n-io/n8n
7
https://github.com/undertow-io/undertow
7
https://github.com/python-pillow/Pillow
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/croogo/croogo
7
https://github.com/vega/vega
7
https://github.com/containers/podman
7
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/igniterealtime/Openfire
7
https://github.com/opencontainers/runc
7
https://github.com/openstack/horizon
7
https://github.com/vaadin/flow
7
https://github.com/zenml-io/zenml
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/scrapy/scrapy
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/louislam/uptime-kuma
7
https://github.com/nocodb/nocodb
7
https://github.com/opencv/opencv
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/jupyter/notebook
7
https://github.com/py-pdf/pypdf
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
7
https://github.com/hashicorp/vault
7
https://github.com/google/fscrypt
7
https://github.com/Sylius/Sylius
7
https://github.com/bagisto/bagisto
7
https://github.com/nahsra/antisamy
7
https://github.com/kevinpapst/kimai2
7
https://github.com/modxcms/revolution
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/denoland/deno
7
https://github.com/kubevirt/kubevirt
7
https://github.com/puma/puma
6
https://github.com/matrix-org/matrix-js-sdk
6
https://github.com/owen2345/camaleon-cms
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/cui2shark/security
6
https://github.com/panva/jose
6
https://github.com/jenkinsci/configuration-as-code-plugin
6
https://github.com/roundup-tracker/roundup
6
https://github.com/nodejs/undici
6
https://github.com/elastic/elasticsearch
6
https://github.com/cri-o/cri-o
6