VulnerableCode Package Details - pkg:maven/org.wildfly/wildfly-parent@21.0.2.Final

Search for packages

Vulnerability	Summary	Fixed by
VCID-ft9p-n5ew-abbf Aliases: CVE-2021-3536 GHSA-v2wx-jj66-2hp7	Cross-site Scripting in Wildfly A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.	23.0.2.Final Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-ft9p-n5ew-abbf
Aliases:
CVE-2021-3536
GHSA-v2wx-jj66-2hp7

Cross-site Scripting in Wildfly A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.

23.0.2.Final
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4tqr-jxeh-f7d8	Wildfly has a memory leak vulnerability A flaw was found in Wildfly affecting versions 19.0.0.Final, 19.1.0.Final, 20.0.0.Final, 20.0.1.Final, and 21.0.0.Final. When an application uses the OpenTracing API's java-interceptors, there is a possibility of a memory leak. This flaw allows an attacker to impact the availability of the server. The highest threat from this vulnerability is to system availability.	CVE-2020-27822 GHSA-qx3p-9mmp-4v8h

Vulnerability

Summary

Aliases

VCID-4tqr-jxeh-f7d8

Wildfly has a memory leak vulnerability A flaw was found in Wildfly affecting versions 19.0.0.Final, 19.1.0.Final, 20.0.0.Final, 20.0.1.Final, and 21.0.0.Final. When an application uses the OpenTracing API's java-interceptors, there is a possibility of a memory leak. This flaw allows an attacker to impact the availability of the server. The highest threat from this vulnerability is to system availability.

CVE-2020-27822
GHSA-qx3p-9mmp-4v8h

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T21:25:21.259136+00:00	GitLab Importer	Affected by	VCID-ft9p-n5ew-abbf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly/wildfly-parent/CVE-2021-3536.yml	38.4.0
2026-04-11T22:38:06.990380+00:00	GitLab Importer	Affected by	VCID-ft9p-n5ew-abbf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly/wildfly-parent/CVE-2021-3536.yml	38.3.0
2026-04-02T22:48:49.471370+00:00	GitLab Importer	Affected by	VCID-ft9p-n5ew-abbf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly/wildfly-parent/CVE-2021-3536.yml	38.1.0
2026-04-01T17:06:40.505196+00:00	GitLab Importer	Affected by	VCID-ft9p-n5ew-abbf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly/wildfly-parent/CVE-2021-3536.yml	38.0.0
2026-04-01T16:01:53.404757+00:00	GHSA Importer	Fixing	VCID-4tqr-jxeh-f7d8	https://github.com/advisories/GHSA-qx3p-9mmp-4v8h	38.0.0
2026-04-01T13:07:44.614408+00:00	GithubOSV Importer	Fixing	VCID-4tqr-jxeh-f7d8	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qx3p-9mmp-4v8h/GHSA-qx3p-9mmp-4v8h.json	38.0.0