Search for packages
Package details: pkg:maven/org.springframework.data/spring-data-commons@1.13.11.RELEASE
purl pkg:maven/org.springframework.data/spring-data-commons@1.13.11.RELEASE
Next non-vulnerable version 1.13.12.RELEASE
Latest non-vulnerable version 2.0.7.RELEASE
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-t5ah-yp4n-aaag
Aliases:
CVE-2018-1259
GHSA-m929-7fr6-cvjg
Spring Data Commons, used in combination with XMLBeam, contains a property binder vulnerability caused by improper restriction of XML external entity references
1.13.12
Affected by 0 other vulnerabilities.
1.13.12.RELEASE
Affected by 0 other vulnerabilities.
2.0.7
Affected by 0 other vulnerabilities.
2.0.7.RELEASE
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-dam4-ygz5-aaaj Remote code injection vulnerability in org.springframework.data:spring-data-commons CVE-2018-1273
GHSA-4fq3-mr56-cg6r
VCID-wt73-58ea-aaac Spring Data Commons contain a property path parser vulnerability caused by unlimited resource allocation CVE-2018-1274
GHSA-5q8m-mqmx-pxp9

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T14:17:39.662193+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.3
2025-06-20T14:17:32.645531+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.3
2025-06-20T14:02:04.511321+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.3
2025-06-20T14:02:01.483472+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.3
2025-06-20T14:01:56.602489+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.3
2025-06-20T14:01:55.821374+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.3
2025-06-03T21:03:52.787538+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.0
2025-06-03T21:03:45.921712+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.0
2025-06-03T20:54:05.517726+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.0
2025-06-03T20:54:02.227544+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.0
2025-06-03T20:53:57.333153+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.0
2025-06-03T20:53:56.370787+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.0
2025-06-02T20:43:36.638598+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.2
2025-06-02T20:43:28.718877+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.2
2025-06-02T20:33:51.481771+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.2
2025-06-02T20:33:48.136110+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.2
2025-06-02T20:33:43.060924+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.2
2025-06-02T20:33:42.125894+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.2
2025-04-03T17:04:34.687014+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.0.0
2025-04-03T17:04:16.422708+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.0.0
2025-04-03T16:51:02.253573+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.0.0
2025-04-03T16:50:55.310532+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.0.0
2025-04-03T16:50:45.555939+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.0.0
2025-04-03T16:50:43.798835+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.0.0
2025-02-18T06:56:04.754947+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 35.1.0
2025-02-18T06:56:04.374801+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 35.1.0
2025-02-17T22:54:48.363042+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 35.1.0
2025-02-17T22:54:48.182109+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 35.1.0
2025-02-17T22:54:47.634130+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 35.1.0
2025-02-17T22:54:47.226144+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 35.1.0
2024-11-21T02:40:42.886543+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 35.0.0
2024-11-20T22:14:18.473590+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 35.0.0
2024-11-20T22:14:18.262110+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 35.0.0
2024-11-19T02:30:52.597771+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.3.2
2024-11-18T22:10:10.418645+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.3.2
2024-11-18T22:10:10.220113+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.3.2
2024-10-08T03:05:51.923455+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.2
2024-10-07T23:10:30.123613+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.2
2024-10-07T23:10:29.918887+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.2
2024-10-07T17:40:05.921835+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.2
2024-10-07T17:40:05.328824+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.2
2024-10-07T17:40:00.283956+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.2
2024-09-23T03:02:19.798400+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.1
2024-09-22T23:25:14.815444+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.1
2024-09-22T23:25:14.638566+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.1
2024-09-22T18:11:52.044580+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.1
2024-09-22T18:11:51.425009+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.1
2024-09-22T18:11:46.016791+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.1
2024-04-24T05:37:06.006083+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc4
2024-04-24T05:37:05.776445+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc4
2024-04-24T01:21:10.145744+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc4
2024-04-24T01:21:09.939292+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc4
2024-04-24T01:21:09.730839+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc4
2024-04-24T01:21:09.296647+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc4
2024-04-23T19:01:14.754376+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc4
2024-04-23T19:01:14.241361+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.0rc4
2024-04-23T19:01:12.789331+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.0rc4
2024-04-23T19:01:12.147338+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc4
2024-04-23T19:00:48.914134+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.0rc4
2024-04-23T19:00:48.740412+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc4
2024-01-10T08:08:48.110887+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc2
2024-01-10T08:08:47.873811+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc2
2024-01-10T03:49:59.920013+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc2
2024-01-10T03:49:59.714308+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc2
2024-01-10T03:49:59.500204+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc2
2024-01-10T03:49:59.073256+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc2
2024-01-09T20:53:19.630685+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.0rc2
2024-01-09T20:53:19.055827+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc2
2024-01-09T20:53:17.948806+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.0rc2
2024-01-09T20:53:17.325899+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc2
2024-01-09T20:53:00.075999+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.0rc2
2024-01-09T20:52:59.901478+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc2
2024-01-04T00:54:10.143938+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc1
2024-01-04T00:54:09.910213+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc1
2024-01-03T20:27:14.229246+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc1
2024-01-03T20:27:14.018968+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc1
2024-01-03T20:27:13.791232+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc1
2024-01-03T20:27:13.350898+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc1
2024-01-03T16:03:35.078284+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc1
2024-01-03T16:03:33.705947+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc1
2024-01-03T16:03:21.382814+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc1