org.keycloak:keycloak-parent vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-1518Loworg.keycloak:keycloak-parent: Keycloak Server-Side Request Forgery (SSRF) vulnerabilityCVE-2026-0707Mediumorg.keycloak:keycloak-parent: Keycloak has Incorrect Behavior Order: Authorization Before Parsing and CanonicalizationCVE-2022-4137Highorg.keycloak:keycloak-parent: Keycloak Cross-site Scripting on OpenID connect login serviceCVE-2022-3782Criticalorg.keycloak:keycloak-parent: Keycloak vulnerable to path traversal via double URL encoding CVE-2022-3916Mediumorg.keycloak:keycloak-parent: Keycloak vulnerable to session takeover with OIDC offline refreshtokensCVE-2022-2256Mediumorg.keycloak:keycloak-parent: Keycloak vulnerable to Stored Cross site Scripting (XSS) when loading default rolesCVE-2022-2668Highorg.keycloak:keycloak-parent: Keycloak SAML javascript protocol mapper: Uploading of scripts through admin consoleCVE-2021-3513Highorg.keycloak:keycloak-parent: Incorrect implementation of lockout feature in KeycloakCVE-2019-14910Criticalorg.keycloak:keycloak-parent: Keycloak Authentication ErrorCVE-2019-14909Highorg.keycloak:keycloak-parent: Keycloak Authentication ErrorCVE-2017-12159Highorg.keycloak:keycloak-parent: Keycloak CSRF VulnerabilityCVE-2017-12158Mediumorg.keycloak:keycloak-parent: Keycloak Reflected XSSCVE-2018-14655Mediumorg.keycloak:keycloak-parent: Keycloak vulnerable to cross-site scripting via the state parameterCVE-2017-12160Highorg.keycloak:keycloak-parent: Keycloak Oauth Implementation ErrorCVE-2018-14657Highorg.keycloak:keycloak-parent: Keycloak Improper Bruteforce DetectionGHSA-M98G-63QJ-FP8JMediumorg.keycloak:keycloak-parent: Reflected XSS on clients-registrations endpointCVE-2021-3461Highorg.keycloak:keycloak-parent: Keycloak insufficient session expirationCVE-2020-1718Mediumorg.keycloak:keycloak-parent: Improper Authentication for KeycloakCVE-2020-1717Loworg.keycloak:keycloak-parent: Generation of Error Message Containing Sensitive Information in KeycloakCVE-2020-1725Mediumorg.keycloak:keycloak-parent: Incorrect Authorization in keycloakCVE-2020-14366Highorg.keycloak:keycloak-parent: Path TraversalCVE-2020-1694Mediumorg.keycloak:keycloak-parent: Incorrect Permission Assignment for Critical Resource and Permissive List of Allowed Inputs in KeycloakCVE-2020-10758Highorg.keycloak:keycloak-parent: Allocation of Resources Without Limits or Throttling in KeycloakCVE-2020-10748Mediumorg.keycloak:keycloak-parent: Cross-site Scripting in KeycloakCVE-2020-1758Mediumorg.keycloak:keycloak-parent: Improper Certificate Validation and Improper Validation of Certificate with Host Mismatch in Keycloak

Stop the waste.
Protect your environment with Kodem.