Search for packages
| purl | pkg:maven/org.springframework.data/spring-data-commons@2.0.0 |
| Tags | Ghost |
| Next non-vulnerable version | 2.0.7.RELEASE |
| Latest non-vulnerable version | 2.0.7.RELEASE |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-dam4-ygz5-aaaj
Aliases: CVE-2018-1273 GHSA-4fq3-mr56-cg6r |
Remote code injection vulnerability in org.springframework.data:spring-data-commons |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-t5ah-yp4n-aaag
Aliases: CVE-2018-1259 GHSA-m929-7fr6-cvjg |
Spring Data Commons, used in combination with XMLBeam, contains a property binder vulnerability caused by improper restriction of XML external entity references |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-wt73-58ea-aaac
Aliases: CVE-2018-1274 GHSA-5q8m-mqmx-pxp9 |
Spring Data Commons contain a property path parser vulnerability caused by unlimited resource allocation |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T20:02:38.406741+00:00 | GHSA Importer | Affected by | VCID-wt73-58ea-aaac | None | 36.0.0 |
| 2025-03-28T20:02:38.257108+00:00 | GHSA Importer | Affected by | VCID-dam4-ygz5-aaaj | None | 36.0.0 |
| 2025-03-28T20:02:37.221460+00:00 | GHSA Importer | Affected by | VCID-t5ah-yp4n-aaag | None | 36.0.0 |
| 2024-09-17T22:42:13.858712+00:00 | GitLab Importer | Affected by | VCID-t5ah-yp4n-aaag | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml | 34.0.1 |
| 2024-09-17T22:05:37.164558+00:00 | GHSA Importer | Affected by | VCID-t5ah-yp4n-aaag | https://github.com/advisories/GHSA-m929-7fr6-cvjg | 34.0.1 |
| 2024-09-17T22:00:49.175473+00:00 | GHSA Importer | Affected by | VCID-wt73-58ea-aaac | https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 | 34.0.1 |
| 2024-09-17T22:00:27.430980+00:00 | GHSA Importer | Affected by | VCID-dam4-ygz5-aaaj | https://github.com/advisories/GHSA-4fq3-mr56-cg6r | 34.0.1 |
| 2024-04-23T17:39:51.939448+00:00 | GHSA Importer | Affected by | VCID-wt73-58ea-aaac | https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 | 34.0.0rc4 |
| 2024-04-23T17:39:30.954468+00:00 | GHSA Importer | Affected by | VCID-dam4-ygz5-aaaj | https://github.com/advisories/GHSA-4fq3-mr56-cg6r | 34.0.0rc4 |
| 2024-01-03T18:04:23.511978+00:00 | GitLab Importer | Affected by | VCID-t5ah-yp4n-aaag | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml | 34.0.0rc1 |
| 2024-01-03T17:40:33.790037+00:00 | GHSA Importer | Affected by | VCID-dam4-ygz5-aaaj | https://github.com/advisories/GHSA-4fq3-mr56-cg6r | 34.0.0rc1 |
| 2024-01-03T17:40:33.731938+00:00 | GHSA Importer | Affected by | VCID-t5ah-yp4n-aaag | https://github.com/advisories/GHSA-m929-7fr6-cvjg | 34.0.0rc1 |
| 2024-01-03T17:40:33.678974+00:00 | GHSA Importer | Affected by | VCID-wt73-58ea-aaac | https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 | 34.0.0rc1 |