Search for packages
Package details: pkg:maven/org.codehaus.plexus/plexus-utils@3.0.14
purl pkg:maven/org.codehaus.plexus/plexus-utils@3.0.14
Next non-vulnerable version 3.0.24
Latest non-vulnerable version 3.0.24
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-2upq-2rss-aaag
Aliases:
CVE-2022-4245
GHSA-jcwr-x25h-x5fh
A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
3.0.24
Affected by 0 other vulnerabilities.
VCID-7vqc-rq31-aaaq
Aliases:
CVE-2017-1000487
GHSA-8vhq-qq4p-grq3
OS Command Injection Plexus-utils is vulnerable to command injection because it does not correctly process the contents of double quoted strings.
3.0.16
Affected by 2 other vulnerabilities.
VCID-zj3u-yaat-aaaj
Aliases:
CVE-2022-4244
GHSA-g6ph-x5wf-g337
A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
3.0.24
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:43:39.342249+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 36.1.3
2025-06-20T16:43:38.287295+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 36.1.3
2025-06-20T16:43:36.630516+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 36.1.3
2025-06-20T16:43:36.442294+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 36.1.3
2025-06-20T13:59:35.860396+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 36.1.3
2025-06-20T13:59:32.874349+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 36.1.3
2025-06-03T23:21:55.340443+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 36.1.0
2025-06-03T23:21:54.507013+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 36.1.0
2025-06-03T23:21:53.306698+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 36.1.0
2025-06-03T23:21:53.151780+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 36.1.0
2025-06-03T20:51:33.227360+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 36.1.0
2025-06-03T20:51:30.431822+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 36.1.0
2025-06-02T23:19:09.432291+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 36.1.2
2025-06-02T23:19:08.566885+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 36.1.2
2025-06-02T23:19:07.248305+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 36.1.2
2025-06-02T23:19:07.106880+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 36.1.2
2025-06-02T20:31:16.417043+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 36.1.2
2025-06-02T20:31:13.362232+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 36.1.2
2025-04-03T21:36:36.588229+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 36.0.0
2025-04-03T21:36:34.420654+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 36.0.0
2025-04-03T21:36:31.126036+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 36.0.0
2025-04-03T21:36:30.732153+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 36.0.0
2025-04-03T16:46:52.794052+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 36.0.0
2025-04-03T16:46:46.702070+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 36.0.0
2025-02-18T06:41:12.439648+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 35.1.0
2025-02-18T06:41:12.051193+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 35.1.0
2025-02-18T06:22:15.399615+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 35.1.0
2025-02-18T06:22:15.008821+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 35.1.0
2025-02-17T22:32:31.410518+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 35.1.0
2025-02-17T22:32:31.070202+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 35.1.0
2024-11-21T02:37:20.721114+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 35.0.0
2024-11-21T02:22:28.681949+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 35.0.0
2024-11-20T21:58:41.780117+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 35.0.0
2024-11-19T02:27:28.726594+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.3.2
2024-11-19T02:12:44.035285+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.3.2
2024-11-18T21:55:51.967315+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.3.2
2024-10-08T03:02:20.437227+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.0.2
2024-10-08T02:46:57.143600+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.0.2
2024-10-07T22:56:02.958546+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.0.2
2024-10-07T20:56:04.895918+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag https://github.com/advisories/GHSA-jcwr-x25h-x5fh 34.0.2
2024-10-07T20:56:04.489894+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj https://github.com/advisories/GHSA-g6ph-x5wf-g337 34.0.2
2024-10-07T17:14:05.492704+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq https://github.com/advisories/GHSA-8vhq-qq4p-grq3 34.0.2
2024-09-23T02:52:12.540248+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.0.1
2024-09-23T02:44:36.255990+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.0.1
2024-09-22T23:11:21.662136+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.0.1
2024-09-22T21:33:15.143295+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag https://github.com/advisories/GHSA-jcwr-x25h-x5fh 34.0.1
2024-09-22T21:33:14.747349+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj https://github.com/advisories/GHSA-g6ph-x5wf-g337 34.0.1
2024-09-22T17:37:36.007045+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq https://github.com/advisories/GHSA-8vhq-qq4p-grq3 34.0.1
2024-04-24T05:31:02.158919+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.0.0rc4
2024-04-24T05:31:01.750158+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 34.0.0rc4
2024-04-24T05:17:13.365765+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 34.0.0rc4
2024-04-24T05:17:12.950951+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.0.0rc4
2024-04-24T01:07:19.220172+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.0.0rc4
2024-04-24T01:07:18.866730+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc4
2024-04-23T23:45:19.182169+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag None 34.0.0rc4
2024-04-23T23:45:18.768191+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag https://github.com/advisories/GHSA-jcwr-x25h-x5fh 34.0.0rc4
2024-04-23T23:45:18.356793+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj https://github.com/advisories/GHSA-g6ph-x5wf-g337 34.0.0rc4
2024-04-23T23:45:17.945025+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj None 34.0.0rc4
2024-04-23T18:34:03.146282+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc4
2024-04-23T18:34:02.744684+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq https://github.com/advisories/GHSA-8vhq-qq4p-grq3 34.0.0rc4
2024-01-10T08:02:54.040703+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.0.0rc2
2024-01-10T08:02:53.629045+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 34.0.0rc2
2024-01-10T07:48:48.958672+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 34.0.0rc2
2024-01-10T07:48:48.535060+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.0.0rc2
2024-01-10T03:33:19.698653+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.0.0rc2
2024-01-10T03:33:19.342578+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc2
2024-01-10T01:47:34.654577+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag None 34.0.0rc2
2024-01-10T01:47:34.244322+00:00 GHSA Importer Affected by VCID-2upq-2rss-aaag https://github.com/advisories/GHSA-jcwr-x25h-x5fh 34.0.0rc2
2024-01-10T01:47:33.830634+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj https://github.com/advisories/GHSA-g6ph-x5wf-g337 34.0.0rc2
2024-01-10T01:47:33.419718+00:00 GHSA Importer Affected by VCID-zj3u-yaat-aaaj None 34.0.0rc2
2024-01-09T20:27:31.654371+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc2
2024-01-09T20:27:31.261045+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq https://github.com/advisories/GHSA-8vhq-qq4p-grq3 34.0.0rc2
2024-01-04T00:48:05.389069+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml 34.0.0rc1
2024-01-04T00:48:04.973937+00:00 GitLab Importer Affected by VCID-2upq-2rss-aaag None 34.0.0rc1
2024-01-04T00:33:59.314574+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj None 34.0.0rc1
2024-01-04T00:33:58.899273+00:00 GitLab Importer Affected by VCID-zj3u-yaat-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml 34.0.0rc1
2024-01-03T20:09:52.056134+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2017-1000487.yml 34.0.0rc1
2024-01-03T20:09:51.693543+00:00 GitLab Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc1
2024-01-03T15:45:54.237884+00:00 GHSA Importer Affected by VCID-7vqc-rq31-aaaq None 34.0.0rc1