Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

org.springframework:spring-webflux

Ecosystem:
maven
Package URL:
pkg:maven/org.springframework:spring-webflux
Total PRs:
110 Dependabot PRs
Latest PR:
about 1 month ago
Unique Repositories:
37 repositories
Unique Repos (30 days):
2 repositories
Security Advisories
Path traversal vulnerability in functional web frameworks
GHSA-cx7f-g6mp-7hqm CVE-2024-38816 HIGH published almost 2 years ago • updated 6 days ago
Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. An at...
RFD attack via Content-Disposition header sourced from request input by Spring MVC or Spring WebFlux Application
GHSA-8wx2-9q48-vm9r CVE-2020-5398 HIGH published over 6 years ago • updated about 18 hours ago
In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerabl...
Spring MVC and WebFlux has Server Sent Event stream corruption
GHSA-6hcq-hmm3-jj3c CVE-2026-22735 LOW published 3 months ago • updated about 21 hours ago
Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Events (SSE). This issue affects Spring Foundation: ...
Remote Code Execution in Spring Framework
GHSA-36p3-wjmg-h94x CVE-2022-22965 CRITICAL published about 4 years ago • updated about 19 hours ago
Spring Framework prior to versions 5.2.20 and 5.3.18 contains a remote code execution vulnerability known as `Spring4Shell`. ## Impact A Spring ...
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources.
GHSA-wg35-8jpf-2xv3 CVE-2026-22741 LOW published about 2 months ago • updated about 13 hours ago
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources. More precisely, an application can be vuln...
View all 10 advisories
Recent PRs
RSS Feed
Bump org.springframework:spring-webflux from 5.3.31 to 6.1.10

hazelcast/hazelcast-cloud-maven-plugin #86

5.3.31 → 6.1.10 Major PR
Closed almost 2 years ago
hazelcast
Package Details
Name: org.springframework:spring-webflux
Ecosystem: maven
PURL Type: maven
Package URL: pkg:maven/org.springframework:spring-webflux
JSON API: View JSON
Security Advisories

10

Active advisories
CRITICAL 1
HIGH 3
MODERATE 3
LOW 3
View All maven Advisories
Package Information
Description:

Spring WebFlux

Repository: https://github.com/spring-projects/spring-framework
Homepage: https://github.com/spring-projects/spring-framework
Latest Release: 6.2.7
about 1 year ago
Dependent Repos: 3,403
Dependent Packages: 474
Ranking: Top 0.1726% by dependent repos Top 0.1694% by dependent pkgs
PR Status
Open 39 (35.5%)
Merged 16 (14.5%)
Closed 46 (41.8%)
PR Types
Major 25 (22.7%)
Minor 4 (3.6%)
Patch 72 (65.5%)