| CVE-2013-6429 |
medium |
— |
6.8 |
13y ago |
Cross-Site Request Forgery in Spring Framework |
|
| CVE-2015-3192 |
medium |
5.5 |
5.5 |
10y ago |
Pivotal Spring Framework DoS Attack with XML Input |
|
| CVE-2025-41234 |
unknown |
— |
— |
1y ago |
Spring Framework vulnerable to a reflected file download (RFD) |
|
| CVE-2024-38820 |
unknown |
— |
— |
2y ago |
Spring Framework DataBinder Case Sensitive Match Exception |
|
| CVE-2024-38809 |
unknown |
— |
— |
2y ago |
Spring Framework DoS via conditional HTTP request |
|
| CVE-2024-22262 |
unknown |
— |
— |
2y ago |
Spring Framework URL Parsing with Host Validation |
|
| CVE-2024-22259 |
unknown |
— |
— |
2y ago |
Spring Framework URL Parsing with Host Validation Vulnerability |
|
| CVE-2024-22243 |
unknown |
— |
— |
2y ago |
Spring Web vulnerable to Open Redirect or Server Side Request Forgery |
|
| CVE-2021-22118 |
unknown |
— |
— |
4y ago |
Improper Privilege Management in Spring Framework |
|
| CVE-2016-1000027 |
unknown |
— |
— |
4y ago |
Pivotal Spring Framework contains unsafe Java deserialization methods |
|
| CVE-2018-11039 |
unknown |
— |
— |
8y ago |
Spring Framework Cross Site Tracing (XST) |
|