Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

org.springframework:spring-webflux

Ecosystem:
maven
Package URL:
pkg:maven/org.springframework:spring-webflux
Total PRs:
110 Dependabot PRs
Latest PR:
about 1 month ago
Unique Repositories:
37 repositories
Unique Repos (30 days):
2 repositories
Security Advisories
Path traversal vulnerability in functional web frameworks
GHSA-cx7f-g6mp-7hqm CVE-2024-38816 HIGH published almost 2 years ago • updated 6 days ago
Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An at...
RFD attack via Content-Disposition header sourced from request input by Spring MVC or Spring WebFlux Application
GHSA-8wx2-9q48-vm9r CVE-2020-5398 HIGH published over 6 years ago • updated about 17 hours ago
In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerabl...
Spring MVC and WebFlux has Server Sent Event stream corruption
GHSA-6hcq-hmm3-jj3c CVE-2026-22735 LOW published 3 months ago • updated about 20 hours ago
Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Events (SSE). This issue affects Spring Foundation: ...
Remote Code Execution in Spring Framework
GHSA-36p3-wjmg-h94x CVE-2022-22965 CRITICAL published about 4 years ago • updated about 18 hours ago
Spring Framework prior to versions 5.2.20 and 5.3.18 contains a remote code execution vulnerability known as `Spring4Shell`. ## Impact A Spring ...
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources.
GHSA-wg35-8jpf-2xv3 CVE-2026-22741 LOW published about 2 months ago • updated about 12 hours ago
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources. More precisely, an application can be vuln...
View all 10 advisories
Recent PRs
RSS Feed
Bump org.springframework:spring-webflux from 6.2.7 to 6.2.10

Hillelmed/jenkins-client-java #101

6.2.7 → 6.2.10 Patch PR
Closed 10 months ago 1 comment
Hillelmed
Bump org.springframework:spring-webflux from 6.2.8 to 6.2.10

a-makowski/task-service #52

6.2.8 → 6.2.10 Patch PR
Open 10 months ago
a-makowski
Bump org.springframework:spring-webflux from 6.2.8 to 6.2.9

conorheffron/ironoc #445

6.2.8 → 6.2.9 Patch PR
Open 10 months ago
conorheffron
Bump the spring group across 1 directory with 12 updates

jesperancinha/moving-objects-service-root #1477

6.2.6 → 6.2.9 Patch PR
Open 10 months ago
jesperancinha
Bump the spring group across 1 directory with 17 updates

jesperancinha/moving-objects-service-root #1473

6.2.6 → 6.2.9 Patch PR
Open 11 months ago
jesperancinha
Bump org.springframework:spring-webflux from 6.2.5 to 6.2.9

bitpay/java-kiosk-demo-springboot #35

6.2.5 → 6.2.9 Patch PR
Closed 11 months ago 1 comment
bitpay
build(deps): bump org.springframework:spring-webflux from 6.2.8 to 6.2.9 in /shortener-service

Isaac-Andradee/short4us #103

6.2.8 → 6.2.9 Patch PR
Merged 11 months ago 1 comment
Isaac-Andradee
[4.1.x] Bump org.springframework:spring-webflux from 6.2.7 to 6.2.9

jetty-project/jetty-reactive-httpclient #709

6.2.7 → 6.2.9 Patch PR
Open 11 months ago
jetty-project
chore: bump org.springframework:spring-webflux from 5.0.0.RELEASE to 6.2.9

KonvuDemo-External/WebGoat #22

5.0.0.RELEASE → 6.2.9 Major PR
Closed 11 months ago 1 comment
KonvuDemo-External
Bump org.springframework:spring-webflux from 6.2.8 to 6.2.9

hendisantika/spring5-reactive-web #50

6.2.8 → 6.2.9 Patch PR
Merged 11 months ago
hendisantika
[4.0.x] Bump org.springframework:spring-webflux from 6.2.7 to 6.2.9

jetty-project/jetty-reactive-httpclient #702

6.2.7 → 6.2.9 Patch PR
Open 11 months ago 1 comment
jetty-project
build(deps): bump org.springframework:spring-webflux from 6.2.8 to 6.2.9 in /modules/gs-tree

asamal/greenstone #1036

6.2.8 → 6.2.9 Patch PR
Merged 11 months ago 1 comment
asamal
Bump org.springframework:spring-webflux from 6.2.7 to 6.2.9

Hillelmed/jenkins-client-java #97

6.2.7 → 6.2.9 Patch PR
Open 11 months ago
Hillelmed
Bump the spring group across 1 directory with 7 updates

jesperancinha/moving-objects-service-root #1439

6.2.6 → 6.2.8 Patch PR
Open 12 months ago 1 comment
jesperancinha
Bump org.springframework:spring-webflux from 6.2.5 to 6.2.8

bitpay/java-kiosk-demo-springboot #30

6.2.5 → 6.2.8 Patch PR
Closed 12 months ago 1 comment
bitpay
Bump the spring group across 1 directory with 6 updates

jesperancinha/moving-objects-service-root #1423

6.2.6 → 6.2.8 Patch PR
Closed 12 months ago 1 comment
jesperancinha
Bump org.springframework:spring-webflux from 6.2.7 to 6.2.8

conorheffron/ironoc #388

6.2.7 → 6.2.8 Patch PR
Open about 1 year ago
conorheffron
chore: bump org.springframework:spring-webflux from 5.0.0 to 6.2.8

KonvuDemo-External/WebGoat #15

5.0.0 → 6.2.8 Major PR
Closed about 1 year ago 1 comment
KonvuDemo-External
chore(deps): Bump the maven-deps group with 7 updates

verma-project/verma_server #99

6.2.7 → 6.2.8 Patch PR
Open about 1 year ago
verma-project
chore(deps): bump the spring group across 3 directories with 6 updates

aws/serverless-java-container #1464

6.2.6 → 6.2.8 Patch PR
Merged about 1 year ago
aws
Bump org.springframework:spring-webflux from 6.2.7 to 6.2.8

hendisantika/spring5-reactive-web #47

6.2.7 → 6.2.8 Patch PR
Merged about 1 year ago
hendisantika
[4.0.x] Bump org.springframework:spring-webflux from 6.2.7 to 6.2.8

jetty-project/jetty-reactive-httpclient #680

6.2.7 → 6.2.8 Patch PR
Closed about 1 year ago 1 comment
jetty-project
build(deps): bump org.springframework:spring-webflux from 6.2.7 to 6.2.8 in /modules/gs-tree

asamal/greenstone #1019

6.2.7 → 6.2.8 Patch PR
Merged about 1 year ago 1 comment
asamal
Bump org.springframework:spring-webflux from 6.2.7 to 6.2.8

Hillelmed/jenkins-client-java #92

6.2.7 → 6.2.8 Patch PR
Closed about 1 year ago 1 comment
Hillelmed
chore: bump org.springframework:spring-webflux from 5.0.0 to 6.2.7

KonvuDemo-External/WebGoat #13

5.0.0 → 6.2.7 Major PR
Closed about 1 year ago 1 comment
KonvuDemo-External
build(deps): bump org.springframework:spring-webflux from 6.2.6 to 6.2.7 in /shortener-service

Isaac-Andradee/url-shortener #64

6.2.6 → 6.2.7 Patch PR
Open about 1 year ago 1 comment
Isaac-Andradee
Bump the maven group across 9 directories with 11 updates

iqbal0kabat/aws-serverless-java-container #32

5.3.9 → 6.1.13 Major PR
Open about 1 year ago
iqbal0kabat
Bump org.springframework:spring-webflux from 5.2.9.RELEASE to 6.1.14 in /default/generated/technology-usage/tests/data/03-web-technology-usage/mvc

Azure/appcat-konveyor-rulesets #85

5.2.9.RELEASE → 6.1.14 Major PR
Open about 1 year ago 1 comment
Azure
Bump org.springframework:spring-webflux from 5.1.9.RELEASE to 6.1.14 in /libraries-http-2

TheNullablePrototype/tutorials #6

5.1.9.RELEASE → 6.1.14 Major PR
Open about 1 year ago
TheNullablePrototype
Bump org.springframework:spring-webflux from 5.1.5.RELEASE to 6.1.14 in /03.Sentinel Lab/sentinel-1.7.2/sentinel-adapter/sentinel-spring-cloud-gateway-adapter

a5535772/labs #14

5.1.5.RELEASE → 6.1.14 Major PR
Open about 1 year ago
a5535772
build(deps): bump the maven group across 1 directory with 3 updates

H1d3r/java-memshell-generator #9

5.3.29 → 6.1.14 Major PR
Open about 1 year ago
H1d3r
Bump the spring group across 1 directory with 21 updates

Netcracker/qubership-core-rest-libraries #20

6.1.13 → 6.2.7 Minor PR
Closed about 1 year ago
Netcracker
Bump the spring group across 1 directory with 6 updates

jesperancinha/moving-objects-service-root #1379

6.2.6 → 6.2.7 Patch PR
Open about 1 year ago
jesperancinha
Bump the spring group with 4 updates

jesperancinha/moving-objects-service-root #1372

6.2.6 → 6.2.7 Patch PR
Closed about 1 year ago 1 comment
jesperancinha
Bump the spring group across 1 directory with 5 updates

jesperancinha/moving-objects-service-root #1371

6.2.6 → 6.2.7 Patch PR
Closed about 1 year ago 1 comment
jesperancinha
chore(deps): Bump org.springframework:spring-webflux from 6.2.6 to 6.2.7 in the maven-deps group

verma-project/verma_server #95

6.2.6 → 6.2.7 Patch PR
Merged about 1 year ago
verma-project
chore(deps): bump the spring group across 3 directories with 6 updates

aws/serverless-java-container #1436

6.2.6 → 6.2.7 Patch PR
Closed about 1 year ago 1 comment
aws
Bump the spring group across 1 directory with 4 updates

jesperancinha/moving-objects-service-root #1364

6.2.6 → 6.2.7 Patch PR
Open about 1 year ago 1 comment
jesperancinha
Bump org.springframework:spring-webflux from 6.2.6 to 6.2.7

hendisantika/spring5-reactive-web #43

6.2.6 → 6.2.7 Patch PR
Merged about 1 year ago 2 comments
hendisantika
[4.0.x] Bump org.springframework:spring-webflux from 6.2.6 to 6.2.7

jetty-project/jetty-reactive-httpclient #663

6.2.6 → 6.2.7 Patch PR
Open about 1 year ago
jetty-project
build(deps): bump org.springframework:spring-webflux from 6.2.5 to 6.2.7 in /modules/gs-tree

asamal/greenstone #997

6.2.5 → 6.2.7 Patch PR
Merged about 1 year ago 1 comment
asamal
Bump org.springframework:spring-webflux from 6.1.10 to 6.2.7

Hillelmed/jenkins-client-java #91

6.1.10 → 6.2.7 Minor PR
Open about 1 year ago
Hillelmed
Bump the maven group across 10 directories with 32 updates

thismahbub/tutorials #1

5.1.9.RELEASE → 6.1.14 Major PR
Open about 1 year ago
thismahbub
Bump org.springframework:spring-webflux from 6.1.10 to 6.2.6

Hillelmed/jenkins-client-java #85

6.1.10 → 6.2.6 Minor PR
Closed about 1 year ago 1 comment
Hillelmed
build(deps): bump org.springframework:spring-webflux from 6.2.5 to 6.2.6 in /modules/gs-tree

asamal/greenstone #983

6.2.5 → 6.2.6 Patch PR
Closed about 1 year ago 2 comments
asamal
Bump org.springframework:spring-webflux from 6.0.23 to 6.1.14

NitorCreations/nflow #669

6.0.23 → 6.1.14 Minor PR
Closed over 1 year ago 1 comment
NitorCreations
Bump org.springframework:spring-webflux from 5.3.39 to 6.1.14 in /spring-webflux-5.3.39

apache/servicemix-bundles #280

5.3.39 → 6.1.14 Major PR
Closed over 1 year ago
apache
Bump org.springframework:spring-webflux from 5.3.27 to 6.1.14 in /Persistence/org.egovframe.rte.psl.reactive.r2dbc

eGovFramework/egovframe-runtime #172

5.3.27 → 6.1.14 Major PR
Closed over 1 year ago 1 comment
eGovFramework
Bump org.springframework:spring-webflux from 5.3.27 to 6.1.14 in /Persistence/org.egovframe.rte.psl.reactive.cassandra

eGovFramework/egovframe-runtime #171

5.3.27 → 6.1.14 Major PR
Closed over 1 year ago 1 comment
eGovFramework
Bump org.springframework:spring-webflux from 5.3.27 to 6.1.13 in /Foundation/org.egovframe.rte.fdl.reactive

eGovFramework/egovframe-runtime #167

5.3.27 → 6.1.13 Major PR
Closed over 1 year ago 1 comment
eGovFramework
Package Details
Name: org.springframework:spring-webflux
Ecosystem: maven
PURL Type: maven
Package URL: pkg:maven/org.springframework:spring-webflux
JSON API: View JSON
Security Advisories

10

Active advisories
CRITICAL 1
HIGH 3
MODERATE 3
LOW 3
View All maven Advisories
Package Information
Description:

Spring WebFlux

Repository: https://github.com/spring-projects/spring-framework
Homepage: https://github.com/spring-projects/spring-framework
Latest Release: 6.2.7
about 1 year ago
Dependent Repos: 3,403
Dependent Packages: 474
Ranking: Top 0.1726% by dependent repos Top 0.1694% by dependent pkgs
PR Status
Open 39 (35.5%)
Merged 16 (14.5%)
Closed 46 (41.8%)
PR Types
Major 25 (22.7%)
Minor 4 (3.6%)
Patch 72 (65.5%)