搜索结果
关于「libspring-java」的漏洞数据
AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
---|---|---|---|---|
AVD-2024-22233 | Spring Framework 拒绝服务漏洞 (CVE-2024-22233) | 2024-01-22 | ||
AVD-2023-34053 | Spring Framework 服务器 Web 观察 DoS 漏洞 (CVE-2023-34053) | 2023-05-25 | ||
AVD-2021-22118 | Spring Framework权限许可和访问控制问题漏洞 | 2021-05-27 | ||
AVD-2020-5421 | Spring Framework反射型文件下载漏洞(CVE-2020-5421) | 2020-09-19 | ||
AVD-2020-5397 | 使用Spring MVC或Spring Web Flux的CORS预飞请求进行CSRF攻击 | 2020-01-18 | ||
AVD-2020-5398 | Spring MVC 反射型文件下载漏洞 | 2020-01-17 | ||
AVD-2013-6430 | pivotal_software spring_framework 在web页面生成时对输入的转义处理不恰当(跨站脚本) | 2020-01-11 | ||
AVD-2016-1000027 | Pivotal Software Spring Framework代码执行漏洞 | 2020-01-03 | ||
AVD-2018-15756 | Oracle Financial Services Analytical Applications Infrastructure jQuery 资源管理漏洞 | 2018-10-19 | ||
AVD-2018-11040 | 通过JSONP通过AbstractJsonpResponseBodyAdvice进行跨域请求 | 2018-06-26 | ||
AVD-2018-11039 | Spring Framework up to 4.3.17/5.0.6 MVC HTTP Request 跨站脚本攻击 | 2018-06-26 | ||
AVD-2018-1257 | Spring Framework 至 4.3.16/5.0.5 STOMP Regular Expression 输入验证漏洞 | 2018-05-12 | ||
AVD-2018-1275 | Spring Framework Spring-messaging存在远程代码执行漏洞 | 2018-04-12 | ||
AVD-2018-1272 | Pivotal Spring Framework远程权限提升漏洞 | 2018-04-07 | ||
AVD-2018-1270 | Spring spring-messaging 远程命令执行漏洞 (CVE-2018-1270) | 2018-04-07 | ||
AVD-2018-1271 | Spring MVC 目录穿越漏洞(CVE-2018-1271) | 2018-04-07 | ||
AVD-2018-1199 | Spring Security和Spring Framework认证绕过漏洞 | 2018-03-17 | ||
AVD-2015-5211 | Pivotal Software Spring Framework任意命令执行漏洞 | 2017-05-26 | ||
AVD-2016-5007 | Oracle Retail Xstore Point of Service 6.0.12/6.5.12/7.0.7/7.1.7/15.0.2 Point of Sale 访问控制漏洞 | 2017-05-26 | ||
AVD-2014-0225 | Spring Framework XML DTD URI处理安全绕过漏洞 | 2017-05-26 | ||
AVD-2014-0097 | Spring Security 至 3.2.1 Empty Password 身份验证不当漏洞 | 2017-05-26 | ||
AVD-2016-9878 | Oracle Retail Back Office 14.0/14.1 Security 路径遍历漏洞 | 2016-12-29 | ||
AVD-2015-3192 | Red Hat JBoss BPM Suite Pivotal Spring Framework XML File Memory Consumption 拒绝服务漏洞 | 2016-07-13 | ||
AVD-2015-0201 | Pivotal Software Spring Framework Java SockJS客户端存在未明漏洞 | 2015-03-11 | ||
AVD-2014-3578 | Spring Framework存在未明远程目录遍历漏洞 | 2015-02-20 | ||
AVD-2014-3625 | Pivitol Spring Framework目录遍历漏洞 | 2014-11-21 | ||
AVD-2014-0054 | Spring Framework Jaxb2RootElementHttpMessageConverter XML实体引用信息泄露漏洞 | 2014-04-18 | ||
AVD-2014-1904 | Springsource Spring Framework 跨站脚本攻击 | 2014-03-21 | ||
AVD-2013-6429 | Spring Framework存在多个XML外部实体注入漏洞 | 2014-01-27 | ||
AVD-2013-4152 | Spring Framework存在多个XML外部实体注入漏洞 | 2014-01-24 |