Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.springframework.security:spring-security-core

maven · Spring Security · Repository · Package

Security Advisories for org.springframework.security:spring-security-core in maven

High
15 days ago

Spring Security annotation detection mechanism has authorization bypass GSA_kwCzR0hTQS04djVxLXJoZjMtanBobc4ABMNs

maven org.springframework.security:spring-security-core
Moderate
6 months ago

Spring Security Vulnerable to Authorization Bypass via Security Annotations GSA_kwCzR0hTQS1oaDNtLWc0cWotNDgzNc4ABF1D

maven org.springframework.security:spring-security-core
Moderate
10 months ago

Spring Framework has Authorization Bypass for Case Sensitive Comparisons GSA_kwCzR0hTQS1xM3Y2LWhtMnYtcHc5Oc4ABB-q

maven org.springframework.security:spring-security-core
Moderate
about 1 year ago

Spring Security Missing Authorization vulnerability GSA_kwCzR0hTQS1obXFmLXdwcTktanE4M84AA-ya

maven org.springframework.security:spring-security-core
High
over 1 year ago

Erroneous authentication pass in Spring Security GSA_kwCzR0hTQS1mM2poLXF2bTQtbWczOc4AA6FU

maven org.springframework.security:spring-security-core
High
over 1 year ago

Broken Access Control in Spring Security With Direct Use of isFullyAuthenticated GSA_kwCzR0hTQS13M3c2LTI2ZjItcDQ3NM4AA5YR

maven org.springframework.security:spring-security-core
Moderate
over 2 years ago

Spring Security logout not clearing security context GSA_kwCzR0hTQS14ODczLTZyZ2MtOTRqY84AAy4e

maven org.springframework.security:spring-security-core
Critical
almost 3 years ago

Spring Security authorization rules can be bypassed via forward or include dispatcher types GSA_kwCzR0hTQS1tbW1oLXdjeG0tMndyNM4AAvnr

maven org.springframework.security:spring-security-core
Critical
over 3 years ago

Authorization bypass in Spring Security GSA_kwCzR0hTQS1oaDMyLTczNDQtY2cyZs4AAgbh

maven org.springframework.security:spring-security-core
Moderate
over 3 years ago

Integer overflow in BCrypt class in Spring Security GSA_kwCzR0hTQS13eDU0LTMyNzgtbTVnNM4AAgbg

maven org.springframework.security:spring-security-core
Moderate
over 3 years ago

Improper Control of Generation of Code in Spring Security GSA_kwCzR0hTQS01eG05LXJmNjMtd2o3aM4AAfZs

maven org.springframework.security:spring-security-core
Moderate
over 3 years ago

Exposure of Sensitive Information to an Unauthorized Actor in Spring Security GSA_kwCzR0hTQS0zNTMzLXJ2cGMtNng1Ns4AAfYQ

maven org.springframework.security:spring-security-core
Moderate
over 3 years ago

Concurrent Execution using Shared Resource with Improper Synchronization in Spring Security GSA_kwCzR0hTQS00NjQ0LWhnMzUtNTVtOc4AAe8W

maven org.springframework.security:spring-security-core
Moderate
over 3 years ago

Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data GSA_kwCzR0hTQS1mODY2LW05bXYtMnhyM84AAWLy

maven org.springframework.security:spring-security-core, org.springframework:spring-core
High
over 3 years ago

Deserialization of Untrusted Data in Spring Security GSA_kwCzR0hTQS12aHJnLXYzY3YtcDI0N83otA

maven org.springframework.security:spring-security-core
High
over 3 years ago

Improper Authentication in Spring Security GSA_kwCzR0hTQS1ndjl2LWMzNzUtaHZtZ83mmg

maven org.springframework.security:spring-security-core
High
over 4 years ago

Resource Exhaustion in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc5amctZ3Znci0zNTRt

maven org.springframework.security:spring-security-oauth2-client, org.springframework.security:spring-security-core
High
about 5 years ago

Security Constraint Bypass in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYzNWMtNDlqNi1xOGhx

maven org.springframework.security:spring-security-core
Critical
about 5 years ago

Authorization Bypass in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdtdjQtNXc3Ni12cDln

maven org.springframework.security:spring-security-core
Moderate
over 5 years ago

Insufficient Entropy in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJwcHAtOTQ5Ni1wMjNx

maven org.springframework.security:spring-security-core
High
over 5 years ago

Signature wrapping vulnerability in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4cnctajQ4OS05Mjht

maven org.springframework.security:spring-security-core
High
over 6 years ago

Insufficiently Protected Credentials and Improper Authentication in Spring Security MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYzM3gtcHJoYy1ncGg1

maven org.springframework.security:spring-security-cas, org.springframework.security:spring-security-core
Moderate
over 6 years ago

Spring Security uses insufficiently random values MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYycjItN3FtNy1qajZ2

maven org.springframework.security:spring-security-core
High
almost 7 years ago

Spring Security vulnerable to Authorization Bypass MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3eHctcDh2Ni05ampy

maven org.springframework.security:spring-security-oauth2-jose, org.springframework.security:spring-security-core
High
almost 7 years ago

Spring Security and Spring Framework may not recognize certain paths that should be protected MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThjcnYtNDlmci0yaDZq

maven org.springframework.security:spring-security-core, org.springframework:spring-core
Moderate
almost 7 years ago

Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1OTYtZndocS04eDQ4

maven org.springframework.security:spring-security-core, org.springframework:spring-core

Filter by Severity

Moderate 12 High 11 Critical 3