Package impact
Maven / com.vaadin:vaadin
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-2742 | medium | 5.3 | 5.3 | 3mo ago | Vaadin Vulnerable to Authentication Bypass When Accessing the /VAADIN Endpoint Without a Trailing Slash | |||
| CVE-2025-15022 | unknown | — | — | 5mo ago | Vaadin vulnerable to Cross-site Scripting | |||
| CVE-2023-25499 | unknown | — | — | 3y ago | Vaadin vulnerable to possible information disclosure in non visible components. | |||
| CVE-2023-25500 | unknown | — | — | 3y ago | Vaadin vulnerable to possible information disclosure of class and method names in RPC response | |||
| CVE-2022-29567 | unknown | — | — | 4y ago | Possible information disclosure inside TreeGrid component with default data provider |