Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2025/05/01 12:0 a.m.2 views

java_server 安全漏洞

javaserver is a campus e-commerce project management platform based on SpringMVC+spring+Mybatis by xiaowei1118 individual developer. A security vulnerability exists in javaserver, which stems from a path traversal in the file upload function...

5.5CVSS5.7AI score0.00158EPSS
Exploits1References4
Spring Engineering
Spring Engineeringadded 2023/01/24 12:0 a.m.14 views

This Week in Spring - SpringOne Essentials 2023 edition - January 24th, 2023

Hi, Spring fans! Welcome to another installment of This Week in Spring! Today is a very day for you see, today we kick off SpringOne Essentials, the online incarnation of SpringOne, online. We'll see you live, on stream, in just a few hours!. SpringOne Essentials is going to be amazing, but befor...

2.4AI score
Exploits0
vulnersOsv
vulnersOsvadded 2022/05/13 1:2 a.m.1 views

br.com.anteros:Anteros-JSONDoc-Maven-Plugin (=1.0.0), br.com.anteros:Anteros-JSONDoc-SpringMVC (=1.0.0) +49 more potentially affected by CVE-2014-3625 via org.springframework:spring-webmvc (>=4.1.0.RELEASE <=4.1.1.RELEASE)

org.springframework:spring-webmvc MAVEN version =4.1.0.RELEASE, =0.7, =0.14.0, =0.14.0, =0.0.1-RELEASE, =1.3, =1.2, =1.31, =1.4, =1.0.1, =2.0.0, =0.1.0, =0.2.1 and more Source cves: CVE-2014-3625 Source advisory: OSV:GHSA-HHM4-HWQ6-3C6W...

5CVSS7.1AI score0.16987EPSS
Exploits5
Rapid7 Blog
Rapid7 Blogadded 2022/03/30 10:33 p.m.335 views

Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965)

Rapid7 has completed remediating the instances of Spring4Shell CVE-2022-22965 and Spring Cloud CVE-2022-22963 vulnerabilities that we found on our internet-facing services and systems. For further information and updates about our internal response to Spring4Shell, please see our post here. If yo...

9.3CVSS9.9AI score0.94462EPSS
Exploits470
CNVD
CNVDadded 2021/07/07 12:0 a.m.9 views

TeaCMS suffers from SQL injection vulnerability (CNVD-2021-51349)

TeaCMS is a blog system developed by Spring-SpringMVC-MyBatis-MySQL database . TeaCMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.7AI score
Exploits0
Hacker One
Hacker Oneadded 2020/12/04 4:48 p.m.101 views

GitHub Security Lab: Java : add fastjson detection. Improve RemoteFlowSource class, support SpringMvc

This bug was reported directly to GitHub Security Lab...

2.2AI score
Exploits0
myhack58
myhack58added 2015/04/02 12:0 a.m.20 views

SpringMVC in the XXE vulnerability testing-vulnerability warning-the black bar safety net

SpringMVC framework support for XML to Object mapping, the interior is the use of two global interface Marshaller and Unmarshaller, one implementation is to use the Jaxb2Marshaller class implementation, the class nature implements two global interfaces for XML and Object bi-directional parsing. A...

0.2AI score
Exploits0
Rows per page
Query Builder