Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Improper Access Control
org.apache.thrift:libthrift [0.9.2, 0.11.0) Maven 17 Feb, 2019
  • M
Cross-site Scripting (XSS)
org.apache.jspwiki:jspwiki-war [,2.11.0.M1) Maven 13 Feb, 2019
  • M
XML External Entity (XXE) Injection
net.sourceforge.pmd:pmd-core [,6.0.0) Maven 11 Feb, 2019
  • M
Information Exposure
org.apache.hadoop:hadoop-hdfs-client [3.0.0-alpha1,3.0.1),[2.9.0,2.9.1),[2.8.0,2.8.4),[2.5.0,2.7.6) Maven 08 Feb, 2019
  • H
Information Exposure
org.apache.guacamole:guacamole [,1.0.0) Maven 08 Feb, 2019
  • H
Improper Certificate Validation
rg.jenkins-ci.plugins:active-directory [,2.11) Maven 06 Feb, 2019
  • H
Cross-site Request Forgery (CSRF)
org.jvnet.hudson.plugins:warnings [,5.0.1) Maven 06 Feb, 2019
  • M
Cross-site Request Forgery (CSRF)
org.jvnet.hudson.plugins:monitoring [,1.75) Maven 06 Feb, 2019
  • H
Arbitrary Code Execution
org.jenkins-ci.plugins:script-security [,1.51) Maven 06 Feb, 2019
  • L
Information Exposure
org.jenkins-ci.plugins:oic-auth [,1.5) Maven 06 Feb, 2019
  • M
Server-side Request Forgery (SSRF)
org.jenkins-ci.plugins:kanboard [,1.5.11) Maven 06 Feb, 2019
  • H
Arbitrary Code Execution
org.jenkins-ci.plugins:groovy [2.0, 2.1) Maven 06 Feb, 2019
  • M
User Impersonation
org.jenkins-ci.plugins:github-oauth [0.29, 0.31) Maven 06 Feb, 2019
  • M
Directory Traversal
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 23 Jan, 2019
  • H
Remote Code Execution
com.alibaba:fastjson [,1.2.25) Maven 23 Jan, 2019
  • L
Cryptographic Issues - Insufficient Entropy
org.apache.kafka:kafka-clients [2.1.0,2.1.1) Maven 22 Jan, 2019
  • H
Sandbox Bypass
org.jenkins-ci.plugins:script-security [,1.50) Maven 22 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.springframework.integration:spring-integration-xml [5.1.0,5.1.2),[5.0.0,5.0.11),[,4.3.19) Maven 16 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.springframework.integration:spring-integration-ws [5.1.0,5.1.2),[5.0.0,5.0.11),[,4.3.19) Maven 16 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.springframework.ws:spring-xml [,2.4.4),[3.0.0,3.0.6) Maven 16 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.springframework.ws:spring-ws-core [,2.4.4),[3.0.0,3.0.6) Maven 16 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.springframework.batch:spring-batch-core [4.1.0,4.1.1),[4.0.0,4.0.2),[,3.0.10) Maven 16 Jan, 2019
  • M
Information Exposure
org.primefaces:primefaces [0,] Maven 14 Jan, 2019
  • M
Ephemeral User Record Creation
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 09 Jan, 2019
  • M
Arbitrary File Write
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 09 Jan, 2019
  • M
Session Fixation
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 09 Jan, 2019
  • L
Information Exposure
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 09 Jan, 2019
  • M
Cross-site Scripting (XSS)
org.jenkins-ci.main:jenkins-core [,2.138.2),[2.140, 2.146) Maven 09 Jan, 2019
  • H
XML External Entity (XXE) Injection
org.traccar:traccar [,4.2] Maven 09 Jan, 2019
  • M
XML External Entity (XXE) Injection
org.apache.karaf.specs:org.apache.karaf.specs.java.xml [,4.1.7),[4.2.0, 4.2.2) Maven 08 Jan, 2019