Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

com.vaadin:vaadin-bom

maven

Vaadin Platform (Bill of Materials)

View on github.com · View on repo1.maven.org

Security Advisories for com.vaadin:vaadin-bom in maven

Moderate
about 4 years ago

Reflected cross-site scripting in vaadin-menu-bar webjar resources in Vaadin 14 GSA_kwCzR0hTQS05M2M0LXZmODYtM3JqN80W1A

maven com.vaadin:vaadin-bom
High
about 4 years ago

Regular expression Denial of Service (ReDoS) in EmailValidator class in V7 compatibility module in Vaadin 8 GSA_kwCzR0hTQS1qZm1mLXcyOTMtOHhyOM0Wjg

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3N3ItcXJocC01cGZm

maven com.vaadin:vaadin-bom
Low
over 4 years ago

Reflected cross-site scripting in development mode handler in Vaadin 14, 15-19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5OXItNjd4NC13aGo2

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Possible route enumeration in production mode via RouteNotFoundError view in Vaadin 10, 11-14, and 15-19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFyZzktZjQ3Mi1xd2Zt

maven com.vaadin:vaadin-bom
High
over 4 years ago

Insecure temporary directory usage in frontend build functionality of Vaadin 14 and 15-19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4MjYtOHZocS1oNDM5

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Server session is not invalidated when logout() helper method of Authentication module is used in Vaadin 18-19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1yOGgtajljdi00bTho

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Timing side channel vulnerability in UIDL request handler in Vaadin 7 and 8 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1eGMtcXZ4aC0yN2Y4

maven com.vaadin:vaadin-server, com.vaadin:vaadin-bom
Moderate
over 4 years ago

Stored cross-site scripting in Grid component in Vaadin 7 and 8 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE3NHItNHh3My1wcHg5

maven com.vaadin:vaadin-server, com.vaadin:vaadin-bom
High
over 4 years ago

Regular expression denial of service (ReDoS) in EmailValidator class in Vaadin 7 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyajQtNzMzeC01dmNm

maven com.vaadin:vaadin-server, com.vaadin:vaadin-bom
Low
over 4 years ago

Unauthorized client-side property update in UIDL request handler in Vaadin 10 and 11 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNoNXItOTI4di1teGho

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Reflected cross-site scripting in default RouteNotFoundError view in Vaadin 10 and 11-13 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpxajQtcjQ4My00Z3Zy

maven com.vaadin:vaadin-bom
Low
over 4 years ago

Potential sensitive data exposure in applications using Vaadin 15 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2ZjQtZnczMy02ajJ2

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Directory traversal in development mode handler in Vaadin 14 and 15-17 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgybWYtbW1oNy1oeHA1

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Timing side channel vulnerability in UIDL request handler in Vaadin 10, 11-14, and 15-18 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM2YzQtN3g0OC00Y3Fw

maven com.vaadin:vaadin-bom
High
over 4 years ago

Regular expression denial of service (ReDoS) in EmailField component in Vaadin 14 and 15-17 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ3cXAtam1jYy1tYzc3

maven com.vaadin:vaadin-bom
Moderate
over 4 years ago

Timing side channel vulnerability in endpoint request handler in Vaadin 15-19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloNmctNm14Zy12dnA0

maven com.vaadin:vaadin-bom
High
over 4 years ago

Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo5d3ItNDl2cS1ybTVn

maven com.vaadin:vaadin-bom

Filter by Severity

Moderate 10 High 5 Low 3