Search for packages
Package details: pkg:maven/org.springframework.data/spring-data-commons@2.0.6.RELEASE
purl pkg:maven/org.springframework.data/spring-data-commons@2.0.6.RELEASE
Next non-vulnerable version 2.0.7.RELEASE
Latest non-vulnerable version 2.0.7.RELEASE
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-t5ah-yp4n-aaag
Aliases:
CVE-2018-1259
GHSA-m929-7fr6-cvjg
Spring Data Commons, used in combination with XMLBeam, contains a property binder vulnerability caused by improper restriction of XML external entity references
2.0.7
Affected by 0 other vulnerabilities.
2.0.7.RELEASE
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-dam4-ygz5-aaaj Remote code injection vulnerability in org.springframework.data:spring-data-commons CVE-2018-1273
GHSA-4fq3-mr56-cg6r
VCID-wt73-58ea-aaac Spring Data Commons contain a property path parser vulnerability caused by unlimited resource allocation CVE-2018-1274
GHSA-5q8m-mqmx-pxp9

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T14:17:39.681125+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.3
2025-06-20T14:17:32.667342+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.3
2025-06-20T14:02:04.529482+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.3
2025-06-20T14:02:01.499582+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.3
2025-06-20T14:01:56.616642+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.3
2025-06-20T14:01:55.838630+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.3
2025-06-03T21:03:52.806566+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.0
2025-06-03T21:03:45.940284+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.0
2025-06-03T20:54:05.532575+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.0
2025-06-03T20:54:02.243137+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.0
2025-06-03T20:53:57.347842+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.0
2025-06-03T20:53:56.387769+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.0
2025-06-02T20:43:36.659346+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.1.2
2025-06-02T20:43:28.740282+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.1.2
2025-06-02T20:33:51.500468+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.1.2
2025-06-02T20:33:48.152741+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.1.2
2025-06-02T20:33:43.075340+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.1.2
2025-06-02T20:33:42.142925+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.1.2
2025-04-03T17:04:34.737675+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 36.0.0
2025-04-03T17:04:16.478337+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 36.0.0
2025-04-03T16:51:02.299961+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 36.0.0
2025-04-03T16:50:55.351972+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 36.0.0
2025-04-03T16:50:45.595479+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 36.0.0
2025-04-03T16:50:43.843446+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 36.0.0
2025-02-18T06:56:04.805359+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 35.1.0
2025-02-18T06:56:04.431729+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 35.1.0
2025-02-17T22:54:48.404514+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 35.1.0
2025-02-17T22:54:48.229052+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 35.1.0
2025-02-17T22:54:47.678961+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 35.1.0
2025-02-17T22:54:47.265637+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 35.1.0
2024-11-21T02:40:42.943454+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 35.0.0
2024-11-20T22:14:18.526239+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 35.0.0
2024-11-20T22:14:18.314090+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 35.0.0
2024-11-19T02:30:52.654096+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.3.2
2024-11-18T22:10:10.464882+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.3.2
2024-11-18T22:10:10.267916+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.3.2
2024-10-08T03:05:51.980947+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.2
2024-10-07T23:10:30.169548+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.2
2024-10-07T23:10:29.971740+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.2
2024-10-07T17:40:05.564299+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.2
2024-10-07T17:40:05.446192+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.2
2024-10-07T17:40:00.140229+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.2
2024-09-23T03:02:19.859259+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.1
2024-09-22T18:11:51.677318+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.1
2024-09-22T18:11:51.550672+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.1
2024-09-22T18:11:45.858291+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.1
2024-09-17T22:42:14.005365+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.1
2024-09-17T22:42:13.954287+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.1
2024-04-24T05:37:06.054793+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc4
2024-04-24T05:37:05.830195+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc4
2024-04-24T01:21:10.190971+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc4
2024-04-24T01:21:09.979208+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc4
2024-04-24T01:21:09.773522+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc4
2024-04-24T01:21:09.334807+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc4
2024-04-23T19:01:13.707790+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.0rc4
2024-04-23T19:01:13.555349+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc4
2024-04-23T19:01:13.245567+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.0rc4
2024-04-23T19:01:11.987903+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc4
2024-04-23T19:00:52.898053+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.0rc4
2024-04-23T19:00:52.242366+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc4
2024-01-10T08:08:48.159269+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc2
2024-01-10T08:08:47.927321+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc2
2024-01-10T03:49:59.964977+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc2
2024-01-10T03:49:59.754865+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc2
2024-01-10T03:49:59.543170+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc2
2024-01-10T03:49:59.110894+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc2
2024-01-09T20:53:19.229079+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac https://github.com/advisories/GHSA-5q8m-mqmx-pxp9 34.0.0rc2
2024-01-09T20:53:18.376063+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc2
2024-01-09T20:53:18.232900+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj https://github.com/advisories/GHSA-4fq3-mr56-cg6r 34.0.0rc2
2024-01-09T20:53:17.124760+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc2
2024-01-09T20:53:00.902935+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag https://github.com/advisories/GHSA-m929-7fr6-cvjg 34.0.0rc2
2024-01-09T20:53:00.272760+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc2
2024-01-04T00:54:10.192410+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc1
2024-01-04T00:54:09.964129+00:00 GitLab Importer Affected by VCID-t5ah-yp4n-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1259.yml 34.0.0rc1
2024-01-03T20:27:14.059179+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc1
2024-01-03T20:27:13.388400+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc1
2024-01-03T18:04:23.639272+00:00 GitLab Importer Fixing VCID-wt73-58ea-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1274.yml 34.0.0rc1
2024-01-03T18:04:23.593482+00:00 GitLab Importer Fixing VCID-dam4-ygz5-aaaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework.data/spring-data-commons/CVE-2018-1273.yml 34.0.0rc1
2024-01-03T16:03:34.428027+00:00 GHSA Importer Fixing VCID-wt73-58ea-aaac None 34.0.0rc1
2024-01-03T16:03:33.539451+00:00 GHSA Importer Fixing VCID-dam4-ygz5-aaaj None 34.0.0rc1
2024-01-03T16:03:21.536213+00:00 GHSA Importer Affected by VCID-t5ah-yp4n-aaag None 34.0.0rc1