Maven Repository: org.springframework.security » spring-security-core

Spring Security Core » 5.0.0.RELEASE

Spring Security is a powerful and highly customizable authentication and access-control framework. It provides protection against attacks like session fixation, clickjacking, cross site request forgery, etc

License	Apache 2.0
Categories	Security Frameworks
Tags	security spring framework
Organization	spring.io
HomePage	http://spring.io/spring-security
Date	Nov 27, 2017
Files	pom (6 KB) jar (409 KB) View All
Repositories	Central Alfresco CloudFlight Plugins ImageJ Public Mulesoft Sonatype
Ranking	#206 in MvnRepository (See Top Artifacts) #1 in Security Frameworks
Used By	2,781 artifacts
Vulnerabilities	Direct vulnerabilities: CVE-2024-38827 CVE-2024-22257 CVE-2022-22978 CVE-2020-5408 CVE-2019-3795 CVE-2018-1199 View 3 more ... Vulnerabilities from dependencies: CVE-2025-22233 CVE-2024-38820 CVE-2024-38808 CVE-2023-20863 CVE-2023-20861 CVE-2022-42004 CVE-2022-42003 CVE-2022-41853 CVE-2022-22970 CVE-2022-22968 CVE-2022-22965 CVE-2022-22950 CVE-2021-20190 CVE-2020-9548 CVE-2020-9547 CVE-2020-9546 CVE-2020-8840 CVE-2020-36518 CVE-2020-36189 CVE-2020-36188 CVE-2020-36187 CVE-2020-36186 CVE-2020-36185 CVE-2020-36184 CVE-2020-36183 CVE-2020-36182 CVE-2020-36181 CVE-2020-36180 CVE-2020-36179 CVE-2020-35728 CVE-2020-35491 CVE-2020-35490 CVE-2020-25649 CVE-2020-24750 CVE-2020-24616 CVE-2020-15250 CVE-2020-14195 CVE-2020-14062 CVE-2020-14061 CVE-2020-14060 CVE-2020-11620 CVE-2020-11619 CVE-2020-11113 CVE-2020-11112 CVE-2020-11111 CVE-2020-10969 CVE-2020-10968 CVE-2020-10673 CVE-2020-10672 CVE-2020-10650 CVE-2019-20330 CVE-2019-17531 CVE-2019-17267 CVE-2019-16943 CVE-2019-16942 CVE-2019-16335 CVE-2019-14893 CVE-2019-14892 CVE-2019-14540 CVE-2019-14439 CVE-2019-14379 CVE-2019-12814 CVE-2019-12384 CVE-2019-12086 CVE-2018-7489 CVE-2018-5968 CVE-2018-19362 CVE-2018-19361 CVE-2018-19360 CVE-2018-15756 CVE-2018-14721 CVE-2018-14720 CVE-2018-14719 CVE-2018-14718 CVE-2018-1272 CVE-2018-1271 CVE-2018-1257 CVE-2018-12023 CVE-2018-12022 CVE-2018-1199 CVE-2018-11307 CVE-2018-11040 CVE-2017-17485 CVE-2017-15095 View 81 more ...

License

Apache 2.0

Tags

security spring framework

Organization

spring.io

HomePage

http://spring.io/spring-security

Date

Nov 27, 2017

Files

pom (6 KB) jar (409 KB) View All

Repositories

Central Alfresco CloudFlight Plugins ImageJ Public Mulesoft Sonatype

Ranking

#206 in MvnRepository (See Top Artifacts)
#1 in Security Frameworks

Used By

2,781 artifacts

Vulnerabilities

Direct vulnerabilities:
CVE-2024-38827
CVE-2024-22257
CVE-2022-22978
View 3 more ...
Vulnerabilities from dependencies:
CVE-2025-22233
CVE-2024-38820
CVE-2024-38808
View 81 more ...

Note: There is a new version for this artifact

New Version	6.5.0

New Version

6.5.0

Maven
Gradle
SBT
Mill
Ivy
Grape
Leiningen
Buildr

Scope:

<dependency>
    <groupId>org.springframework.security</groupId>
    <artifactId>spring-security-core</artifactId>
    <version>5.0.0.RELEASE</version>
</dependency>

Scope:

Format:

implementation("org.springframework.security:spring-security-core:5.0.0.RELEASE")

Scope:

libraryDependencies += "org.springframework.security" % "spring-security-core" % "5.0.0.RELEASE"

Scope:

ivy"org.springframework.security:spring-security-core:5.0.0.RELEASE"

Scope:

<dependency org="org.springframework.security" name="spring-security-core" rev="5.0.0.RELEASE"/>

Scope:

@Grapes(
    @Grab(group='org.springframework.security', module='spring-security-core', version='5.0.0.RELEASE')
)

Scope:

[org.springframework.security/spring-security-core "5.0.0.RELEASE"]

Scope:

'org.springframework.security:spring-security-core:jar:5.0.0.RELEASE'

Include backlinks

Compile Dependencies (12)

Category/License	Group / Artifact	Version	Updates
JSON Lib Apache 2.0	com.fasterxml.jackson.core » jackson-databind (optional) 67 vulnerabilities	2.9.2	2.19.0
Concurrency Apache 2.0	io.projectreactor » reactor-core (optional)	3.1.1.RELEASE	3.7.7
Annotation Lib CDDLGPL 2.0	javax.annotation » jsr250-api (optional)	1.0	1.3.2
Cache Impl Apache 2.0	net.sf.ehcache » ehcache (optional)	2.10.4	3.10.8
AOP EPL 2.0	org.aspectj » aspectjrt (optional)	1.8.12	1.9.24
AOP Apache 2.0	org.springframework » spring-aop	5.0.2.RELEASE	6.2.8
Dep Injection Apache 2.0	org.springframework » spring-beans 2 vulnerabilities	5.0.2.RELEASE	6.2.8
Dep Injection Apache 2.0	org.springframework » spring-context 3 vulnerabilities	5.0.2.RELEASE	6.2.8
Core Utils Apache 2.0	org.springframework » spring-core 6 vulnerabilities	5.0.2.RELEASE	6.2.8
Expression Lang Apache 2.0	org.springframework » spring-expression 4 vulnerabilities	5.0.2.RELEASE	6.2.8
JDBC Extension Apache 2.0	org.springframework » spring-jdbc (optional)	5.0.2.RELEASE	6.2.8
Transactions Apache 2.0	org.springframework » spring-tx (optional)	5.0.2.RELEASE	6.2.8

Category/License

Group / Artifact

Version

Updates

JSON Lib
Apache 2.0

com.fasterxml.jackson.core » jackson-databind (optional) 67 vulnerabilities

2.9.2

2.19.0

Concurrency
Apache 2.0

io.projectreactor » reactor-core (optional)

3.1.1.RELEASE

3.7.7

Annotation Lib
CDDLGPL 2.0

javax.annotation » jsr250-api (optional)

1.0

1.3.2

Cache Impl
Apache 2.0

net.sf.ehcache » ehcache (optional)

2.10.4

3.10.8

AOP
EPL 2.0

org.aspectj » aspectjrt (optional)

1.8.12

1.9.24

AOP
Apache 2.0

org.springframework » spring-aop

5.0.2.RELEASE

6.2.8

Dep Injection
Apache 2.0

org.springframework » spring-beans 2 vulnerabilities

5.0.2.RELEASE

6.2.8

Dep Injection
Apache 2.0

org.springframework » spring-context 3 vulnerabilities

5.0.2.RELEASE

6.2.8

Core Utils
Apache 2.0

org.springframework » spring-core 6 vulnerabilities

5.0.2.RELEASE

6.2.8

Expression Lang
Apache 2.0

org.springframework » spring-expression 4 vulnerabilities

5.0.2.RELEASE

6.2.8

JDBC Extension
Apache 2.0

org.springframework » spring-jdbc (optional)

5.0.2.RELEASE

6.2.8

Transactions
Apache 2.0

org.springframework » spring-tx (optional)

5.0.2.RELEASE

6.2.8

Test Dependencies (15)

Category/License	Group / Artifact	Version	Updates
Collections Apache 2.0	commons-collections » commons-collections	3.2.2	4.5.0
Testing Apache 2.0	io.projectreactor » reactor-test	3.1.1.RELEASE	3.7.7
Testing EPL 2.0	junit » junit 1 vulnerability	4.12	5.13.1
Assertion Apache 2.0	org.assertj » assertj-core	3.8.0	3.27.3
Embedded SQL DB	org.hsqldb » hsqldb 1 vulnerability	2.4.0	2.7.4
Mocking MIT	org.mockito » mockito-core	2.12.0	5.18.0
Mocking Apache 2.0	org.powermock » powermock-api-mockito2	2.0.0-beta.5	2.0.9
Apache 2.0	org.powermock » powermock-api-support	2.0.0-beta.5	2.0.9
Mocking Apache 2.0	org.powermock » powermock-core	2.0.0-beta.5	2.0.9
Mocking Apache 2.0	org.powermock » powermock-module-junit4	2.0.0-beta.5	2.0.9
Apache 2.0	org.powermock » powermock-module-junit4-common	2.0.0-beta.5	2.0.9
Apache 2.0	org.powermock » powermock-reflect	2.0.0-beta.5	2.0.9
Testing Apache 2.0	org.skyscreamer » jsonassert	1.5.0	1.5.3
Logging Bridge Apache 2.0	org.slf4j » jcl-over-slf4j	1.7.25	2.0.17
Testing Apache 2.0	org.springframework » spring-test	5.0.2.RELEASE	6.2.8

Category/License

Group / Artifact

Version

Updates

Collections
Apache 2.0