Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-dv5y-1z97-ayhs
Summary
Remote classloader modification
This package allows remote attackers to execute arbitrary code via an HTTP request containing `class.classLoader.URLs[0]=jar:` followed by a URL of a crafted `.jar` file.
Aliases
0
alias CVE-2010-1622
1
alias GHSA-vpr3-f594-mg5g
Fixed_packages
0
url pkg:maven/org.springframework/spring@2.5.6.SEC01
purl pkg:maven/org.springframework/spring@2.5.6.SEC01
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.6.SEC01
1
url pkg:maven/org.springframework/spring-core@2.5.6.SEC02
purl pkg:maven/org.springframework/spring-core@2.5.6.SEC02
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-c74k-e1me-pfb2
4
vulnerability VCID-cyjt-4vjn-mbc7
5
vulnerability VCID-dfs4-emmn-f3eb
6
vulnerability VCID-h4ys-unzb-cbhn
7
vulnerability VCID-j3wr-npbv-8qcw
8
vulnerability VCID-k17s-ttg2-ubgj
9
vulnerability VCID-pb7f-yasx-17ag
10
vulnerability VCID-w6br-v2gm-j7gr
11
vulnerability VCID-y3uz-etva-sufh
12
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.6.SEC02
2
url pkg:maven/org.springframework/spring-core@3.0.3.RELEASE
purl pkg:maven/org.springframework/spring-core@3.0.3.RELEASE
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-53gt-nbgk-hyc2
3
vulnerability VCID-6ysx-5wcw-f7b5
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-h4ys-unzb-cbhn
8
vulnerability VCID-j3wr-npbv-8qcw
9
vulnerability VCID-k17s-ttg2-ubgj
10
vulnerability VCID-pb7f-yasx-17ag
11
vulnerability VCID-sy5j-6rkg-n3b7
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@3.0.3.RELEASE
Affected_packages
0
url pkg:maven/org.springframework/spring@2.5
purl pkg:maven/org.springframework/spring@2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5
1
url pkg:maven/org.springframework/spring@2.5.0
purl pkg:maven/org.springframework/spring@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.0
2
url pkg:maven/org.springframework/spring@2.5.1
purl pkg:maven/org.springframework/spring@2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.1
3
url pkg:maven/org.springframework/spring@2.5.2
purl pkg:maven/org.springframework/spring@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.2
4
url pkg:maven/org.springframework/spring@2.5.3
purl pkg:maven/org.springframework/spring@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.3
5
url pkg:maven/org.springframework/spring@2.5.4
purl pkg:maven/org.springframework/spring@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.4
6
url pkg:maven/org.springframework/spring@2.5.5
purl pkg:maven/org.springframework/spring@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.5
7
url pkg:maven/org.springframework/spring@2.5.6
purl pkg:maven/org.springframework/spring@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@2.5.6
8
url pkg:maven/org.springframework/spring@3.0.0
purl pkg:maven/org.springframework/spring@3.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@3.0.0
9
url pkg:maven/org.springframework/spring@3.0.2
purl pkg:maven/org.springframework/spring@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring@3.0.2
10
url pkg:maven/org.springframework/spring-core@2-alpha0
purl pkg:maven/org.springframework/spring-core@2-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7gb3-6gxd-73f2
1
vulnerability VCID-dv5y-1z97-ayhs
2
vulnerability VCID-h4ys-unzb-cbhn
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2-alpha0
11
url pkg:maven/org.springframework/spring-core@2.0-m1
purl pkg:maven/org.springframework/spring-core@2.0-m1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0-m1
12
url pkg:maven/org.springframework/spring-core@2.0-m2
purl pkg:maven/org.springframework/spring-core@2.0-m2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0-m2
13
url pkg:maven/org.springframework/spring-core@2.0-m4
purl pkg:maven/org.springframework/spring-core@2.0-m4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0-m4
14
url pkg:maven/org.springframework/spring-core@2.0
purl pkg:maven/org.springframework/spring-core@2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0
15
url pkg:maven/org.springframework/spring-core@2.0.1
purl pkg:maven/org.springframework/spring-core@2.0.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.1
16
url pkg:maven/org.springframework/spring-core@2.0.2
purl pkg:maven/org.springframework/spring-core@2.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.2
17
url pkg:maven/org.springframework/spring-core@2.0.3
purl pkg:maven/org.springframework/spring-core@2.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.3
18
url pkg:maven/org.springframework/spring-core@2.0.4
purl pkg:maven/org.springframework/spring-core@2.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.4
19
url pkg:maven/org.springframework/spring-core@2.0.5
purl pkg:maven/org.springframework/spring-core@2.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.5
20
url pkg:maven/org.springframework/spring-core@2.0.6
purl pkg:maven/org.springframework/spring-core@2.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.6
21
url pkg:maven/org.springframework/spring-core@2.0.7
purl pkg:maven/org.springframework/spring-core@2.0.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.7
22
url pkg:maven/org.springframework/spring-core@2.0.8
purl pkg:maven/org.springframework/spring-core@2.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.0.8
23
url pkg:maven/org.springframework/spring-core@2.5
purl pkg:maven/org.springframework/spring-core@2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5
24
url pkg:maven/org.springframework/spring-core@2.5.1
purl pkg:maven/org.springframework/spring-core@2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.1
25
url pkg:maven/org.springframework/spring-core@2.5.2
purl pkg:maven/org.springframework/spring-core@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.2
26
url pkg:maven/org.springframework/spring-core@2.5.3
purl pkg:maven/org.springframework/spring-core@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.3
27
url pkg:maven/org.springframework/spring-core@2.5.4
purl pkg:maven/org.springframework/spring-core@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.4
28
url pkg:maven/org.springframework/spring-core@2.5.5
purl pkg:maven/org.springframework/spring-core@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.5
29
url pkg:maven/org.springframework/spring-core@2.5.6
purl pkg:maven/org.springframework/spring-core@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-7gb3-6gxd-73f2
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-w6br-v2gm-j7gr
13
vulnerability VCID-y3uz-etva-sufh
14
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.6
30
url pkg:maven/org.springframework/spring-core@2.5.6.SEC01
purl pkg:maven/org.springframework/spring-core@2.5.6.SEC01
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-6ysx-5wcw-f7b5
3
vulnerability VCID-c74k-e1me-pfb2
4
vulnerability VCID-cyjt-4vjn-mbc7
5
vulnerability VCID-dfs4-emmn-f3eb
6
vulnerability VCID-dv5y-1z97-ayhs
7
vulnerability VCID-h4ys-unzb-cbhn
8
vulnerability VCID-j3wr-npbv-8qcw
9
vulnerability VCID-k17s-ttg2-ubgj
10
vulnerability VCID-pb7f-yasx-17ag
11
vulnerability VCID-w6br-v2gm-j7gr
12
vulnerability VCID-y3uz-etva-sufh
13
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@2.5.6.SEC01
31
url pkg:maven/org.springframework/spring-core@3.0-alpha0
purl pkg:maven/org.springframework/spring-core@3.0-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7gb3-6gxd-73f2
1
vulnerability VCID-dv5y-1z97-ayhs
2
vulnerability VCID-h4ys-unzb-cbhn
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@3.0-alpha0
32
url pkg:maven/org.springframework/spring-core@3.0.0.RELEASE
purl pkg:maven/org.springframework/spring-core@3.0.0.RELEASE
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-53gt-nbgk-hyc2
3
vulnerability VCID-6ysx-5wcw-f7b5
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-sy5j-6rkg-n3b7
13
vulnerability VCID-w6br-v2gm-j7gr
14
vulnerability VCID-y3uz-etva-sufh
15
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@3.0.0.RELEASE
33
url pkg:maven/org.springframework/spring-core@3.0.1.RELEASE
purl pkg:maven/org.springframework/spring-core@3.0.1.RELEASE
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-53gt-nbgk-hyc2
3
vulnerability VCID-6ysx-5wcw-f7b5
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-sy5j-6rkg-n3b7
13
vulnerability VCID-w6br-v2gm-j7gr
14
vulnerability VCID-y3uz-etva-sufh
15
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@3.0.1.RELEASE
34
url pkg:maven/org.springframework/spring-core@3.0.2.RELEASE
purl pkg:maven/org.springframework/spring-core@3.0.2.RELEASE
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2nff-p7we-tuax
1
vulnerability VCID-3rev-eg6f-tkb7
2
vulnerability VCID-53gt-nbgk-hyc2
3
vulnerability VCID-6ysx-5wcw-f7b5
4
vulnerability VCID-c74k-e1me-pfb2
5
vulnerability VCID-cyjt-4vjn-mbc7
6
vulnerability VCID-dfs4-emmn-f3eb
7
vulnerability VCID-dv5y-1z97-ayhs
8
vulnerability VCID-h4ys-unzb-cbhn
9
vulnerability VCID-j3wr-npbv-8qcw
10
vulnerability VCID-k17s-ttg2-ubgj
11
vulnerability VCID-pb7f-yasx-17ag
12
vulnerability VCID-sy5j-6rkg-n3b7
13
vulnerability VCID-w6br-v2gm-j7gr
14
vulnerability VCID-y3uz-etva-sufh
15
vulnerability VCID-z3th-j593-m7bg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@3.0.2.RELEASE
35
url pkg:rpm/redhat/jboss-wfk-1.0.0-uninstall@1.0.0-3.ep5?arch=el4
purl pkg:rpm/redhat/jboss-wfk-1.0.0-uninstall@1.0.0-3.ep5?arch=el4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dv5y-1z97-ayhs
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-wfk-1.0.0-uninstall@1.0.0-3.ep5%3Farch=el4
References
0
reference_url http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html
1
reference_url http://geronimo.apache.org/21x-security-report.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://geronimo.apache.org/21x-security-report.html
2
reference_url http://geronimo.apache.org/22x-security-report.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://geronimo.apache.org/22x-security-report.html
3
reference_url https://access.redhat.com/errata/RHSA-2011:0175
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2011:0175
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1622.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1622.json
5
reference_url https://access.redhat.com/security/cve/CVE-2010-1622
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2010-1622
6
reference_url https://api.first.org/data/v1/epss?cve=CVE-2010-1622
reference_id
reference_type
scores
0
value 0.01856
scoring_system epss
scoring_elements 0.83024
published_at 2026-04-09T12:55:00Z
1
value 0.01856
scoring_system epss
scoring_elements 0.83017
published_at 2026-04-08T12:55:00Z
2
value 0.01856
scoring_system epss
scoring_elements 0.82992
published_at 2026-04-07T12:55:00Z
3
value 0.01856
scoring_system epss
scoring_elements 0.82982
published_at 2026-04-02T12:55:00Z
4
value 0.01856
scoring_system epss
scoring_elements 0.83067
published_at 2026-04-18T12:55:00Z
5
value 0.01856
scoring_system epss
scoring_elements 0.83029
published_at 2026-04-13T12:55:00Z
6
value 0.01856
scoring_system epss
scoring_elements 0.83033
published_at 2026-04-12T12:55:00Z
7
value 0.01856
scoring_system epss
scoring_elements 0.8304
published_at 2026-04-11T12:55:00Z
8
value 0.01856
scoring_system epss
scoring_elements 0.82995
published_at 2026-04-04T12:55:00Z
9
value 0.01856
scoring_system epss
scoring_elements 0.82966
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2010-1622
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=606706
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=606706
8
reference_url http://secunia.com/advisories/41016
reference_id
reference_type
scores
url http://secunia.com/advisories/41016
9
reference_url http://secunia.com/advisories/41025
reference_id
reference_type
scores
url http://secunia.com/advisories/41025
10
reference_url http://secunia.com/advisories/43087
reference_id
reference_type
scores
url http://secunia.com/advisories/43087
11
reference_url https://github.com/spring-projects/spring-framework
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework
12
reference_url https://github.com/spring-projects/spring-framework/commit/3a5af35d37c79d0644d49b93f792a4c18fe8eb71
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework/commit/3a5af35d37c79d0644d49b93f792a4c18fe8eb71
13
reference_url https://seclists.org/fulldisclosure/2010/Jun/456
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://seclists.org/fulldisclosure/2010/Jun/456
14
reference_url https://web.archive.org/web/20100623011648/http://www.springsource.com/security/cve-2010-1622
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20100623011648/http://www.springsource.com/security/cve-2010-1622
15
reference_url https://web.archive.org/web/20161014113129/http://www.securitytracker.com/id/1033898
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20161014113129/http://www.securitytracker.com/id/1033898
16
reference_url https://web.archive.org/web/20200227210033/http://www.securityfocus.com/archive/1/511877
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227210033/http://www.securityfocus.com/archive/1/511877
17
reference_url https://web.archive.org/web/20200228060816/http://www.securityfocus.com/bid/40954
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200228060816/http://www.securityfocus.com/bid/40954
18
reference_url https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1622
reference_id
reference_type
scores
url https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1622
19
reference_url http://www.exploit-db.com/exploits/13918
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.exploit-db.com/exploits/13918
20
reference_url http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
21
reference_url http://www.redhat.com/support/errata/RHSA-2011-0175.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2011-0175.html
22
reference_url http://www.securityfocus.com/archive/1/511877
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/511877
23
reference_url http://www.securityfocus.com/bid/40954
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/40954
24
reference_url http://www.securitytracker.com/id/1033898
reference_id
reference_type
scores
url http://www.securitytracker.com/id/1033898
25
reference_url http://www.springsource.com/security/cve-2010-1622
reference_id
reference_type
scores
url http://www.springsource.com/security/cve-2010-1622
26
reference_url http://www.vupen.com/english/advisories/2011/0237
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2011/0237
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.1:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:11.1.1.8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:oracle:fusion_middleware:11.1.1.8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:11.1.1.8.0:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:7.6.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:oracle:fusion_middleware:7.6.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:fusion_middleware:7.6.2:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.0:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.1:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.2:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.3:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.4:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.5:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.6:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:2.5.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:2.5.7:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:3.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.0:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:3.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.1:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:springsource:spring_framework:3.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:springsource:spring_framework:3.0.2:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/detail/CVE-2010-1622
reference_id CVE-2010-1622
reference_type
scores
0
value 6.0
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:P/I:P/A:P
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2010-1622
42
reference_url http://support.springsource.com/security/cve-2010-1622
reference_id CVE-2010-1622
reference_type
scores
url http://support.springsource.com/security/cve-2010-1622
43
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/13918.txt
reference_id CVE-2010-1622;OSVDB-65661
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/13918.txt
44
reference_url https://github.com/advisories/GHSA-vpr3-f594-mg5g
reference_id GHSA-vpr3-f594-mg5g
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vpr3-f594-mg5g
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 94
name Improper Control of Generation of Code ('Code Injection')
description The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
3
cwe_id 78
name Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
4
cwe_id 96
name Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')
description The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes code syntax before inserting the input into an executable resource, such as a library, configuration file, or template.
Exploits
0
date_added 2010-06-17
description Spring Framework - Arbitrary code Execution
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2010-06-18
exploit_type webapps
platform multiple
source_date_updated null
data_source Exploit-DB
source_url
Severity_range_score4.0 - 6.9
Exploitability2.0
Weighted_severity6.2
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-dv5y-1z97-ayhs