Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-7gq2-vwq9-w8vw
  • Maven/org.glassfish.main.web:web-core
 Eclipse Glassfish URL redirection vulnerability yesterday
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-8259-2x72-2gvc
  • Maven/org.eclipse.edc:transfer-data-plane
 Eclipse Dataspace Components's ConsumerPullTransferTokenValidationApiController doesn't check for token validit yesterday
  • Fix available
  • Severity - 5.0 (Medium)
GHSA-w97f-w3hq-36g2
  • Maven/org.keycloak:keycloak-core
 Keycloak Denial of Service vulnerability yesterday
  • No fix available
  • Severity - 7.1 (High)
GHSA-pvmm-55r5-g3mm
  • Maven/org.xwiki.platform:xwiki-platform-rest-server
 XWiki Platform document history including authors of any page exposed to unauthorized actors 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-57rh-gr4v-j5f6
  • Maven/org.keycloak:keycloak-core
 Keycloak Uses a Key Past its Expiration Date 2 days ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-g4gc-rh26-m3p5
  • Maven/org.keycloak:keycloak-core
 Keycloak Open Redirect vulnerability 2 days ago
  • Fix available
  • Severity - 4.8 (Medium)
GHSA-j76j-rqwj-jmvv
  • Maven/org.keycloak:keycloak-services
 Keycloak Session Fixation vulnerability 2 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-6cr6-ph3p-f5rf
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.dstu2016may
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.dstu3
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.r4
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.r4b
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.r5
  • Maven/ca.uhn.hapi.fhir:org.hl7.fhir.utilities
 XXE vulnerability in XSLT transforms in `org.hl7.fhir.core` 5 days ago
  • Fix available
  • Severity - 7.7 (High)
GHSA-g76f-gjfx-4rpr
  • Maven/io.vertx:vertx-grpc-server
  • Maven/io.vertx:vertx-grpc-client
 Vertx gRPC server does not limit the maximum message size 04 Sep
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-8wm9-24qg-m5qj
  • Maven/org.keycloak:keycloak-services
 Keycloak has a brute force login protection bypass 03 Sep
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-h83p-72jv-g7vp
  • Maven/io.kroxylicious:kroxylicious-runtime
 Missing hostname validation in Kroxylicious 31 Aug
  • Fix available
  • Severity - 4.8 (Medium)
GHSA-7cj3-x93g-gj76
  • Maven/org.springframework.boot:spring-boot-loader
  • Maven/org.springframework.boot:spring-boot-loader-classic
 Signature forgery in Spring Boot's Loader 23 Aug
  • Fix available
  • Severity - 7.2 (High)
GHSA-9623-mqmm-5rcf
  • Maven/io.undertow:undertow-core
 Undertow vulnerable to Race Condition 21 Aug
  • No fix available
  • Severity - 8.7 (High)
GHSA-8m84-h9hh-3cfh
  • Maven/org.apache.seatunnel:seatunnel
 Apache SeaTunnel SQL Injection vulnerability 21 Aug
  • Fix available
  • Severity - 8.7 (High)
GHSA-6247-7862-q2pq
  • Maven/org.apache.helix:helix
 Apache Helix Front (UI) component contained a hard-coded secret 21 Aug
  • No fix available
  • Severity - 8.7 (High)
GHSA-c6c3-h4f7-3962
  • Maven/com.ctrip.framework.apollo:apollo
 apollo-portal has potential unauthorized access issue 20 Aug
  • Fix available
  • Severity - 5.3 (Medium)
Load more...