Filters

VMware Spring FrameworkSpring Framework DataBinder Case Sensitive Match Exception

First published (updated )

maven/org.springframework:spring-coreSpring Framework server Web DoS Vulnerability

7.5
EPSS
0.05%
First published (updated )

VMware Spring FrameworkSpring Framework server Web Observations DoS Vulnerability

7.5
First published (updated )

maven/cn.dev33:sa-token-coreAn issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privilege…

First published (updated )

VMware Spring FrameworkInput Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

VMware Spring FrameworkA flaw found was found in Spring Framework. This flaw allows a malicious user to use a specially cra…

First published (updated )

redhat/jenkinsA flaw was found in Spring Framework. In this vulnerability, a security bypass is possible due to th…

First published (updated )

redhat/springframeworkA flaw was found in Spring Framework. Applications that handle file uploads are vulnerable to a deni…

7.5
First published (updated )

redhat/springframeworkA flaw was found in Spring Framework Applications. Applications that use STOMP over the WebSocket en…

First published (updated )

VMware Spring FrameworkInput Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Veritas NetBackup ApplianceSpring Framework JDK 9+ Remote Code Execution Vulnerability

First published (updated )

VMware Spring FrameworkInput Validation

7.5
First published (updated )

VMware Spring FrameworkInput Validation

First published (updated )

IBM QRadar SIEMIn Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is p…

First published (updated )

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Retail Xstore Point of ServiceRFD Protection Bypass via jsessionid

8.7
First published (updated )

Oracle Insurance Policy Administration J2EECSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux

First published (updated )

Oracle Insurance Policy Administration J2EERFD Attack via "Content-Disposition" Header Sourced from Request Input by Spring MVC or Spring WebFlux Application

First published (updated )

maven/org.springframework:spring-webPivota Spring Framework could allow a remote attacker to execute arbitrary code on the system, cause…

First published (updated )

VMware Spring FrameworkAuthorization Bypass During JWT Issuer Validation with spring-security

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Insurance Rules PaletteDoS Attack via Range Requests

7.5
First published (updated )

Oracle Retail Financial IntegrationXSS

First published (updated )

Oracle FLEXCUBE Private BankingPivotal Spring Framework could allow a remote attacker to bypass security restrictions, caused by a …

7.5
First published (updated )

Oracle Application Testing SuiteSpring Framework version 5.0.5 when used in combination with any versions of Spring Security contain…

8.8
First published (updated )

Oracle FLEXCUBE Private BankingPivotal Spring Framework is vulnerable to a denial of service. By sending a specially-crafted messag…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Insurance Rules PaletteCode Injection, Input Validation

First published (updated )

Oracle Retail Integration BusPath Traversal

First published (updated )

Oracle Retail Integration BusInput Validation

7.5
First published (updated )

Oracle Retail Integration BusCode Injection, Input Validation

First published (updated )

Vmware Spring SecurityInput Validation

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

VMware Spring FrameworkXEE

8.8
First published (updated )

VMware Spring FrameworkInput Validation

First published (updated )

VMware Spring FrameworkBoth Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on…

7.5
First published (updated )

VMware Spring FrameworkPath Traversal

7.5
First published (updated )

VMware Spring FrameworkBuffer Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

VMware Spring FrameworkThe Java SockJS client in Pivotal Spring Framework 4.1.x before 4.1.5 generates predictable session …

First published (updated )

Pivotal Software Spring FrameworkPath Traversal

First published (updated )

SpringSource Spring FrameworkCSRF

First published (updated )

SpringSource Spring FrameworkCSRF

First published (updated )

VMware Spring FrameworkCSRF, XEE

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

SpringSource Spring FrameworkCSRF

First published (updated )

maven/org.springframework.security:spring-security-coreSpring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, a…

First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203