VulnerableCode Package Details - pkg:maven/org.codehaus.plexus/plexus-utils@3.0.24

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2upq-2rss-aaag	A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.	CVE-2022-4245 GHSA-jcwr-x25h-x5fh
VCID-zj3u-yaat-aaaj	A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.	CVE-2022-4244 GHSA-g6ph-x5wf-g337

Vulnerability

Summary

Aliases

VCID-2upq-2rss-aaag

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.

CVE-2022-4245
GHSA-jcwr-x25h-x5fh

VCID-zj3u-yaat-aaaj

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.

CVE-2022-4244
GHSA-g6ph-x5wf-g337

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:43:39.367465+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	36.1.3
2025-06-20T16:43:38.311765+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	36.1.3
2025-06-20T16:43:36.655232+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	36.1.3
2025-06-20T16:43:36.466513+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	36.1.3
2025-06-03T23:21:55.355544+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	36.1.0
2025-06-03T23:21:54.522082+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	36.1.0
2025-06-03T23:21:53.324663+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	36.1.0
2025-06-03T23:21:53.169762+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	36.1.0
2025-06-02T23:19:09.450834+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	36.1.2
2025-06-02T23:19:08.585340+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	36.1.2
2025-06-02T23:19:07.265212+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	36.1.2
2025-06-02T23:19:07.125546+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	36.1.2
2025-04-03T21:36:36.638110+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	36.0.0
2025-04-03T21:36:34.471165+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	36.0.0
2025-04-03T21:36:31.177149+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	36.0.0
2025-04-03T21:36:30.782081+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	36.0.0
2025-02-18T06:41:12.488751+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	35.1.0
2025-02-18T06:41:12.100008+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	35.1.0
2025-02-18T06:22:15.448239+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	35.1.0
2025-02-18T06:22:15.057652+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	35.1.0
2024-11-21T02:37:20.770937+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	35.0.0
2024-11-21T02:22:28.732432+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	35.0.0
2024-11-19T02:27:28.775965+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.3.2
2024-11-19T02:12:44.086904+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.3.2
2024-10-15T19:05:00.040345+00:00	GithubOSV Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-jcwr-x25h-x5fh/GHSA-jcwr-x25h-x5fh.json	34.0.2
2024-10-15T19:04:59.987271+00:00	GithubOSV Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-g6ph-x5wf-g337/GHSA-g6ph-x5wf-g337.json	34.0.2
2024-10-08T03:02:20.487434+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.0.2
2024-10-08T02:46:57.193068+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.0.2
2024-10-07T20:56:04.943859+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/advisories/GHSA-jcwr-x25h-x5fh	34.0.2
2024-10-07T20:56:04.539467+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/advisories/GHSA-g6ph-x5wf-g337	34.0.2
2024-09-18T09:25:34.448517+00:00	GithubOSV Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-g6ph-x5wf-g337/GHSA-g6ph-x5wf-g337.json	34.0.1
2024-09-18T09:25:15.999650+00:00	GithubOSV Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-jcwr-x25h-x5fh/GHSA-jcwr-x25h-x5fh.json	34.0.1
2024-09-17T22:38:29.366833+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.0.1
2024-09-17T22:38:29.334242+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.0.1
2024-09-17T22:02:43.461315+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/advisories/GHSA-jcwr-x25h-x5fh	34.0.1
2024-09-17T22:02:41.312592+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/advisories/GHSA-g6ph-x5wf-g337	34.0.1
2024-04-24T05:31:02.206069+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.0.0rc4
2024-04-24T05:31:01.796777+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	34.0.0rc4
2024-04-24T05:17:13.412414+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	34.0.0rc4
2024-04-24T05:17:12.999468+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.0.0rc4
2024-04-23T23:45:19.229501+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	None	34.0.0rc4
2024-04-23T23:45:18.815461+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/advisories/GHSA-jcwr-x25h-x5fh	34.0.0rc4
2024-04-23T23:45:18.404185+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/advisories/GHSA-g6ph-x5wf-g337	34.0.0rc4
2024-04-23T23:45:17.991733+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	None	34.0.0rc4
2024-04-23T23:17:22.128472+00:00	GithubOSV Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-g6ph-x5wf-g337/GHSA-g6ph-x5wf-g337.json	34.0.0rc4
2024-04-23T23:17:04.654646+00:00	GithubOSV Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-jcwr-x25h-x5fh/GHSA-jcwr-x25h-x5fh.json	34.0.0rc4
2024-01-10T08:02:54.087389+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.0.0rc2
2024-01-10T08:02:53.675582+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	34.0.0rc2
2024-01-10T07:48:49.006430+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	34.0.0rc2
2024-01-10T07:48:48.582142+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.0.0rc2
2024-01-10T01:47:34.700736+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	None	34.0.0rc2
2024-01-10T01:47:34.291141+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/advisories/GHSA-jcwr-x25h-x5fh	34.0.0rc2
2024-01-10T01:47:33.877078+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/advisories/GHSA-g6ph-x5wf-g337	34.0.0rc2
2024-01-10T01:47:33.465955+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	None	34.0.0rc2
2024-01-04T00:48:05.020189+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	None	34.0.0rc1
2024-01-04T00:33:59.360775+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	None	34.0.0rc1
2024-01-03T18:01:14.385657+00:00	GitLab Importer	Fixing	VCID-2upq-2rss-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4245.yml	34.0.0rc1
2024-01-03T18:01:14.348584+00:00	GitLab Importer	Fixing	VCID-zj3u-yaat-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.codehaus.plexus/plexus-utils/CVE-2022-4244.yml	34.0.0rc1
2024-01-03T17:37:31.812465+00:00	GHSA Importer	Fixing	VCID-2upq-2rss-aaag	https://github.com/advisories/GHSA-jcwr-x25h-x5fh	34.0.0rc1
2024-01-03T17:37:29.857236+00:00	GHSA Importer	Fixing	VCID-zj3u-yaat-aaaj	https://github.com/advisories/GHSA-g6ph-x5wf-g337	34.0.0rc1

2025-06-20T16:43:39.367465+00:00

GitLab Importer

Fixing