Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
Top 0.8% on repo1.maven.org
Top 0.2% dependent packages on repo1.maven.org
Top 0.4% dependent repos on repo1.maven.org
Top 1.2% forks on repo1.maven.org
Top 0.7% docker downloads on repo1.maven.org
Top 0.2% dependent packages on repo1.maven.org
Top 0.4% dependent repos on repo1.maven.org
Top 1.2% forks on repo1.maven.org
Top 0.7% docker downloads on repo1.maven.org
repo1.maven.org : org.keycloak:keycloak-core
Keycloak SSO
Registry
-
Source
- Homepage
- Documentation
- JSON
purl: pkg:maven/org.keycloak/keycloak-core
Keywords: keycloak, oidc, saml
License: Apache-2.0
Latest release: 5 months ago
First release: over 10 years ago
Namespace: org.keycloak
Dependent packages: 376
Dependent repositories: 1,153
Stars: 18,086 on GitHub
Forks: 5,848 on GitHub
Docker dependents: 1,090
Docker downloads: 32,564,491
Total Commits: 18303
Committers: 1296
Average commits per author: 14.123
Development Distribution Score (DDS): 0.871
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Last synced: 4 months ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
GSA_kwCzR0hTQS02eHA2LWZtYzgtcG1tcs00FA
Temporary Directory Hijacking Vulnerability in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1weDQyLW1yOG0tY3BnaM4AAgTj
JBoss KeyCloak Cross-site Scripting VulnerabilityEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1wY3Y1LW0yd2gtNjZqM84AAnvw
Keycloak discloses information without authenticationEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1xZ21tLWYycXctcjk1Zs4AAkqZ
Keycloak leaks sensitive information in logged exceptionsEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 8 months ago
GSA_kwCzR0hTQS01cTY2LXY1M3EtcG0zNc4AA11p
Keycloak vulnerable to Plaintext Storage of User PasswordEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 8 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS05Njk1LXc2aDItanB2Oc4AAkmX
Keycloak users may be able to remove MFA from other users' devicesEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS04eGoyLTQ3eHctcTc4Y84AAkqh
Keycloak Insufficient Session ExpiryEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 10 months ago
GSA_kwCzR0hTQS01Y2M4LXBncDUtN21wbc4AA0KG
Keycloak Untrusted Certificate Validation vulnerabilityEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 10 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
GSA_kwCzR0hTQS1mMzJ2LXZmNzktcDI5cc1BRQ
Improper authorization in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS12NDM2LXEzNjgtaHZnZ84AAw8k
Keycloak has lack of validation of access token on client registrations endpointEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
GSA_kwCzR0hTQS14cGdjLWo0OGotand2Oc01-Q
Cross-site Scripting in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS1xcHE5LWpwdjQtNmd3cs4AAuf1
Keycloak allows anyone to register new security device or key for any user by using WebAuthn password-less login flowEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS1qOXhxLWozMjktMnh2Z84AAufz
Keycloak user may register themselves with same email ID of any existing userEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS1jOXg5LXh2NjYteHAzds0W7Q
Improper privilege management in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS03bTI3LTM1ODctODN4Zs0Wng
Privilege Defined With Unsafe Actions in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS00Z2YyLXh2OTctNjNtMs0VzQ
Exposure of Sensitive Information in keycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 2 years ago
Low
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 2 months ago
GSA_kwCzR0hTQS0zaHJyLXh3dmctaHh2cs4AA5pB
Keycloak DoS via account lockoutEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 2 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS0zcWgyLW1jY2MtcTVtNs4AARNF
Keycloak Open RedirectEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-common, org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02bW0tcTg2Mi1qMzY2
Improper Input Validation in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-common, org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
Critical
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZwbXYtN3ByOS1jZ3Jq
Predictable password in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh2ZjMtNHc2Mi1tM3Bx
XSS in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Withdrawn: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFnbTktMjMyeC1od3B4
Moderate severity vulnerability that affects org.keycloak:keycloak-coreEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Withdrawn: over 3 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3ajctcHczdi0zdjN4
Moderate severity vulnerability that affects org.keycloak:keycloak-coreEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjNnEtMjdtdy1wNTV3
Keycloak vulnerable to infinite loop based Denial of ServiceEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS03NTV2LXI0eDQtcWY3bc4AAwFM
Stored Cross-Site Scripting (XSS) in Keycloak via groups dropdownEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1bTYtbWpoMy01OGdt
Improper Authentication in org.keycloak:keycloak-coreEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRmZ3EtZ3E5Zy0zcnc3
Improper Verification of Cryptographic Signature in keycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 4 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3OHgtMm1xdi13Nnh3
Moderate severity vulnerability that affects org.keycloak:keycloak-coreEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Withdrawn: over 1 year ago
GSA_kwCzR0hTQS13OHY3LWM3cG0tN3dmcs4AAul8
Duplicate Advisory: Keycloak vulnerable to Cross-Site Scripting (XSS)Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Withdrawn: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS0zdzR2LXJ2YzQtMnhwd84AAuf6
Keycloak has Files or Directories Accessible to External PartiesEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS1mcWM3LTV4eGMtcGg3cs4AAufm
Keycloak XSS via use of malicious payload as group name when creating new group from admin consoleEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNnZzctOXEyeC03OWZj
Improper Restriction of Rendered UI Layers or Frames in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA1eHAtNnZwZi1qd3Zo
Improper Input Validation and Cross-Site Request Forgery in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 4 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4Y2ctZ2c5ai1xOWo5
Improper Certificate Validation and Insufficient Verification of Data Authenticity in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 5 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmMmotN3F3Zy00ZjV4
Improper Authentication in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIzMnItMzk3Ny1jZ2Mz
Keycloak vulnerable to uncontrolled resource consumptionEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Withdrawn: 10 months ago
GSA_kwCzR0hTQS12aHZxLWpoMzQtM2ZjOM4AAw9x
Duplicate Advisory: Keycloak allows impersonation and lockout due to email trust not being handled correctlyEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Withdrawn: 10 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 10 months ago
GSA_kwCzR0hTQS1jN3h3LXA1OHctaDZmas4AA0xs
Keycloak: Impersonation and lockout possible through incorrect handling of email trustEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 10 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhmNDYtOHZ2cC00aHh4
Keycloak Missing authentication for critical functionEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 3 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc2Z3YtM3Izdi1nd2dq
keycloak-core vulnerable to timing attacks against JWS token verificationEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3N3ItNmY2NC00Nzhx
keycloak-core discloses system propertiesEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
Critical
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1jZjhmLXcyYzUtcDVqcs4AAjM6
keycloak vulnerable to unauthorized login via mail server setupEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 12 months ago
Withdrawn: 10 months ago
GSA_kwCzR0hTQS1jODkyLWN3cTYtcXJxZs4AAzfO
Duplicate Advisory: Keycloak vulnerable to untrusted certificate validationEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 12 months ago
Withdrawn: 10 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS1ycGoyLXc2ZnItNzloY84AAuZ2
Keycloak vulnerable to Improper Certificate ValidationEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 1 year ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 4 months ago
GSA_kwCzR0hTQS05dm03LXY4d2otM2Zxd84AA4oS
keycloak-core: open redirect via "form_post.jwt" JARM response modeEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: 4 months ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1qaDdxLTVtd2YtcXZod84AAm5Y
Keycloak vulnerable to Server-Side Request ForgeryEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 2 years ago
Critical
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2dzItODlocS1ocTI3
keycloak Self Stored Cross-site Scripting vulnerabilityEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: almost 3 years ago
High
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
GSA_kwCzR0hTQS1tOWNqLXY1NWYtOHgyNs00HA
Authentication Bypass in keycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 2 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhmcWgtNzM1Ni12cWpq
Exposure of Sensitive Information to an Unauthorized Actor in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 4 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdjNTIteGo2cC05cHhw
Exposure of Sensitive Information to an Unauthorized Actor in KeycloakEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: about 5 years ago
Moderate
Ecosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1OXEtMzJnOC12dnA3
Moderate severity vulnerability that affects org.keycloak:keycloak-coreEcosystems: maven
Packages: org.keycloak:keycloak-core
Source: github
Published: over 5 years ago