Search for packages
| purl | pkg:maven/org.acegisecurity/acegi-security@1.0.3 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-n8yr-3aex-kyah
Aliases: CVE-2010-3700 GHSA-3295-h9qx-r82x |
Authentication Bypass Using an Alternate Path or Channel in SpringSource Spring Security and Acegi Security VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:50:35.937042+00:00 | GitLab Importer | Affected by | VCID-n8yr-3aex-kyah | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.acegisecurity/acegi-security/CVE-2010-3700.yml | 38.4.0 |
| 2026-04-11T23:06:42.026571+00:00 | GitLab Importer | Affected by | VCID-n8yr-3aex-kyah | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.acegisecurity/acegi-security/CVE-2010-3700.yml | 38.3.0 |
| 2026-04-02T23:14:54.701462+00:00 | GitLab Importer | Affected by | VCID-n8yr-3aex-kyah | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.acegisecurity/acegi-security/CVE-2010-3700.yml | 38.1.0 |
| 2026-04-01T17:34:54.933616+00:00 | GitLab Importer | Affected by | VCID-n8yr-3aex-kyah | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.acegisecurity/acegi-security/CVE-2010-3700.yml | 38.0.0 |