Where
-Infinity
0

Trending

Last week
Last month
Last year

VMware Spring FrameworkDenial of service in static resource handling on Windows platforms

Risk 27
Severity
5.3
First published (updated )
CVE-2026-22745

VMware Spring FrameworkStatic resource cache poisoning in Spring MVC and WebFlux

Risk 17
Severity
3.1
First published (updated )
CVE-2026-22741

VMware Spring FrameworkSpring Framework DoS with Multipart Temp Files in WebFlux

Risk 38
Severity
6.5
First published (updated )
CVE-2026-22740

maven/org.springframework:spring-webfluxSpring Framework Improper Path Limitation with Script View Templates

Risk 35
Severity
5.9
First published (updated )
CVE-2026-22737

maven/org.springframework:spring-webfluxServer Sent Event stream corruption

Risk 15
Severity
2.6
First published (updated )
CVE-2026-22735
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring FrameworkSpring Framework DataBinder Case Sensitive Match Exception

Risk 28
Severity
5.3
First published (updated )
CVE-2024-38820

maven/org.springframework:spring-webSpring Framework URL Parsing with Host Validation (2nd report)

Risk 62
Severity
8.1
First published (updated )
CVE-2024-22259

maven/org.springframework:spring-webmvcSpring Framework server Web Observations DoS Vulnerability

Risk 45
Severity
7.5
First published (updated )
CVE-2023-34053

maven/cn.dev33:sa-token-coreAn issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privilege…

Risk 89
Severity
9.8
First published (updated )
CVE-2023-44794

redhat/spring frameworkIn spring framework versions prior to 5.2.24 release+ ,5.3.27+ and 6.0.8+ , it is possible for a use…

Risk 46
Severity
7.5
First published (updated )
CVE-2023-20863
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring FrameworkAn issue found in Zend Framework v.3.1.3 and before allow a remote attacker to execute arbitrary cod…

Risk 86
Severity
9.8
First published (updated )
CVE-2020-29312

maven/org.springframework:spring-expressionA flaw found was found in Spring Framework. This flaw allows a malicious user to use a specially cra…

Risk 40
Severity
6.5
First published (updated )
CVE-2023-20861

redhat/jenkinsA flaw was found in Spring Framework. In this vulnerability, a security bypass is possible due to th…

Risk 70
Severity
9.1
First published (updated )
CVE-2023-20860

redhat/springframeworkA flaw was found in Spring Framework. Applications that handle file uploads are vulnerable to a deni…

Risk 46
Severity
7.5
First published (updated )
CVE-2022-22970

redhat/springframeworkA flaw was found in Spring Framework Applications. Applications that use STOMP over the WebSocket en…

Risk 40
Severity
6.5
First published (updated )
CVE-2022-22971
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring FrameworkInput Validation

Risk 46
Severity
7.5
First published (updated )
CVE-2022-22968

VMware Spring FrameworkVulnerability in Spring Framework Affecting Cisco Products: March 2022

Risk 86
Severity
9.8
First published (updated )
Advisory
cisco-sa-java-spring-rce-Zx9GUc67

Veritas NetBackup ApplianceSpring Framework JDK 9+ Remote Code Execution Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2022-22965

VMware Spring FrameworkInput Validation

Risk 45
Severity
7.5
First published (updated )
CVE-2022-22950

Spring FrameworkIn Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older unsupported versions, it is p…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2055480
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring FrameworkInput Validation

Risk 24
Severity
4.3
First published (updated )
CVE-2021-22060

VMware Spring FrameworkIn Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is p…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2034584

IBM QRadar SIEMIn Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is p…

Risk 29
Severity
5.3
First published (updated )
CVE-2021-22096

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

Risk 72
Severity
7.8
First published (updated )
CVE-2021-22118

composer/laminas/laminas-httpLaminas Project laminas-http before 2.14.2, and Zend Framework 3.0.0, has a deserialization vulnerab…

Risk 89
Severity
9.8
First published (updated )
CVE-2021-3007
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Retail Xstore Point of ServiceRFD Protection Bypass via jsessionid

Risk 64
Severity
8.7
First published (updated )
CVE-2020-5421

Oracle Insurance Policy Administration J2EECSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux

Risk 28
Severity
5.3
First published (updated )
CVE-2020-5397

Oracle Insurance Policy Administration J2EERFD Attack via "Content-Disposition" Header Sourced from Request Input by Spring MVC or Spring WebFlux Application

Risk 71
Severity
8
First published (updated )
CVE-2020-5398

maven/org.springframework:spring-webPivotal Spring Framework through 5.3.16 suffers from a potential remote code execution (RCE) issue i…

Risk 88
Severity
9.8
First published (updated )
CVE-2016-1000027

Zend Zend FrameworkXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2014-4913
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203