Maven Package Vulnerabilities

All 3,051 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,817 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 1,251.com.cloudcoreo.plugins:cloudcoreo-deploytime1 CVE
  2. 1,252.com.codenameone:codenameone-core1 CVE
  3. 1,253.com.compuware.jenkins:compuware-common-configuration1 CVE
  4. 1,254.com.compuware.jenkins:compuware-strobe-measurement1 CVE
  5. 1,255.com.compuware.jenkins:compuware-zadviser-api1 CVE
  6. 1,256.com.cosium.vet:vet1 CVE
  7. 1,257.com.ctrip.framework.apollo:apollo-core1 CVE
  8. 1,258.com.databricks:databricks-jdbc1 CVE
  9. 1,259.com.datadoghq:datadog-api-client1 CVE
  10. 1,260.com.datadoghq:dd-java-agent1 CVE
  11. 1,261.com.datatheorem.mobileappsecurity.jenkins.plugin:datatheorem-mobile-app-security1 CVE
  12. 1,262.com.datomic:datomic-free1 CVE
  13. 1,263.com.diamondq.common:common-thirdparty.jcasbin1 CVE
  14. 1,264.com.diffplug.gradle:goomph1 CVE
  15. 1,265.com.diffplug.spotless:spotless-eclipse-cdt1 CVE
  16. 1,266.com.diffplug.spotless:spotless-eclipse-groovy1 CVE
  17. 1,267.com.diffplug.spotless:spotless-eclipse-wtp1 CVE
  18. 1,268.com.diffplug.spotless:spotless-maven-plugin1 CVE
  19. 1,269.com.diffplug.spotless:spotless-plugin-gradle1 CVE
  20. 1,270.com.dotcms:dotcms1 CVE
  21. 1,271.com.ds.tools.hudson:crowd1 CVE
  22. 1,272.com.dubture.jenkins:digitalocean-plugin1 CVE
  23. 1,273.com.elasticbox.jenkins-ci.plugins:elasticbox1 CVE
  24. 1,274.com.enonic.xp:lib-auth1 CVE
  25. 1,275.com.exadel.flamingo.flex:amf-serializer1 CVE
  26. 1,276.com.fastasyncworldedit:FastAsyncWorldEdit-Bukkit1 CVE
  27. 1,277.com.fastasyncworldedit:FastAsyncWorldEdit-Core1 CVE
  28. 1,278.com.fasterxml.jackson.dataformat:jackson-dataformat-cbor1 CVE
  29. 1,279.com.fasterxml.jackson.dataformat:jackson-dataformat-toml1 CVE
  30. 1,280.com.fasterxml.jackson.datatype:jackson-datatype-jsr3101 CVE
  31. 1,281.com.fasterxml.util:java-merge-sort1 CVE
  32. 1,282.com.fasterxml.woodstox:woodstox-core1 CVE
  33. 1,283.com.foxinmy:weixin4j-base1 CVE
  34. 1,284.com.github.binarywang:weixin-java-common1 CVE
  35. 1,285.com.github.blynkkk:blynk-server1 CVE
  36. 1,286.com.github.briandilley.jsonrpc4j:jsonrpc4j1 CVE
  37. 1,287.com.github.dgarijo:Widoco1 CVE
  38. 1,288.com.github.fracpete:vfsjfilechooser21 CVE
  39. 1,289.com.github:hyavijava1 CVE
  40. 1,290.com.github.jknack:handlebars1 CVE
  41. 1,291.com.github.jlangch:venice1 CVE
  42. 1,292.com.github.kevinsawicki:http-request1 CVE
  43. 1,293.com.github.kfcfans:powerjob1 CVE
  44. 1,294.com.github.pagehelper:pagehelper1 CVE
  45. 1,295.com.github.penggle:kaptcha1 CVE
  46. 1,296.com.github.samtools:htsjdk1 CVE
  47. 1,297.com.github.seancfoley:ipaddress1 CVE
  48. 1,298.com.github.seasarorg.mayaa:mayaa1 CVE
  49. 1,299.com.github.shyiko.ktlint:ktlint-core1 CVE
  50. 1,300.com.github.tomakehurst:wiremock-jre81 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →