logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

4

Alpine, Debian, Maven & more

Total vulnerabilities tracked

21

From global vulnerability databases

Exclude malware
Package taglib

FLAT-HFUF9 (CVE-2015-0254)

XML injection (XXE) In taglibs:standard

1.3

Low

Ecosystem: Maven

Package: taglibs:standard

FLAT-NVK3X (DLA-4450-1)

Supply Chain Attack - Lock Files In taglib

0.6

Low

Ecosystem: Debian

Package: taglib

FLAT-V50OT (CVE-2025-43774)

Reflected cross-site scripting (XSS) In com.liferay:com.liferay.frontend.taglib.clay

0.5

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.frontend.taglib.clay

FLAT-K55DV (CVE-2025-43753)

Reflected cross-site scripting (XSS) In com.liferay:com.liferay.layout.taglib

0.5

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.layout.taglib

FLAT-UF9RJ (CVE-2025-43733)

Reflected cross-site scripting (XSS) In com.liferay:com.liferay.layout.taglib

0.6

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.layout.taglib

FLAT-06I2L (MAL-2025-34379)

Use of software with malware In taglibkit

5.2

Medium

Ecosystem: Npm

Package: taglibkit

FLAT-X3LMB (CVE-2025-43736)

Inadequate file size control In com.liferay:com.liferay.frontend.taglib

2.7

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.frontend.taglib

FLAT-YR3IY (CVE-2023-47466)

Lack of data validation In taglib

1.3

Low

Ecosystem: Debian

Package: taglib

FLAT-2LGZY (CVE-2022-28982)

Server side cross-site scripting In com.liferay:com.liferay.asset.taglib

1.3

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.asset.taglib

FLAT-8QJ4D (CVE-2021-35463)

Reflected cross-site scripting (XSS) In com.liferay:com.liferay.frontend.taglib.clay

1.3

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.frontend.taglib.clay

FLAT-L75RO (CVE-2021-33320)

Inadequate file size control In com.liferay:com.liferay.flags.taglib

1.3

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.flags.taglib

FLAT-IXL0W (CVE-2019-16147)

Server side cross-site scripting In com.liferay:com.liferay.journal.taglib

1.3

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.journal.taglib

FLAT-Z2PES (CVE-2021-38264)

Reflected cross-site scripting (XSS) In com.liferay:com.liferay.frontend.taglib.clay

1.3

Low

Ecosystem: Maven

Package: com.liferay:com.liferay.frontend.taglib.clay

FLAT-PIHLT (DLA-2772-1)

Lack of data validation In taglib

1.3

Low

Ecosystem: Debian

Package: taglib

FLAT-I70EK (DLA-1430-1)

Lack of data validation In taglib

1.3

Low

Ecosystem: Debian

Package: taglib

FLAT-W2OAP (CVE-2018-11439)

Out-of-bounds read In taglib

4.9

Medium

Ecosystem: Alpine

Package: taglib

FLAT-E3N6L (CVE-2017-12678)

Lack of data validation In taglib

6.1

Medium

Ecosystem: Alpine

Package: taglib

FLAT-SMS2R (CVE-2012-1584)

Out-of-bounds read In taglib

4.9

Medium

Ecosystem: Debian

Package: taglib

FLAT-M6FER (CVE-2012-1108)

Lack of data validation In taglib

1.3

Low

Ecosystem: Debian

Package: taglib

FLAT-1IHOL (CVE-2012-1107)

Asymmetric denial of service In taglib

6.6

Medium

Ecosystem: Debian

Package: taglib

FLAT-SLO4P (CVE-2012-2396)

Asymmetric denial of service In taglib

6.6

Medium

Ecosystem: Debian

Package: taglib