VulnerableCode Package Details - pkg:maven/org.apache.zeppelin/zeppelin-web@0.12.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.apache.zeppelin/zeppelin-web@0.12.0

purl	pkg:maven/org.apache.zeppelin/zeppelin-web@0.12.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-uybq-u79b-9ues	Incomplete Blacklist to Cross-Site Scripting vulnerability in Apache Zeppelin. This issue affects Apache Zeppelin: before 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue.	CVE-2024-41177 GHSA-p288-459w-jxj6

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-15T01:55:58.788345+00:00	GHSA Importer	Fixing	VCID-uybq-u79b-9ues	https://github.com/advisories/GHSA-p288-459w-jxj6	38.6.0
2026-06-12T20:08:27.879514+00:00	GitLab Importer	Fixing	VCID-uybq-u79b-9ues	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.zeppelin/zeppelin-web/CVE-2024-41177.yml	38.6.0
2026-06-12T07:53:46.450510+00:00	GithubOSV Importer	Fixing	VCID-uybq-u79b-9ues	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/08/GHSA-p288-459w-jxj6/GHSA-p288-459w-jxj6.json	38.6.0