Launch Week Day 1: Announcing Security Design Review
Start for Free
maven

org.thymeleaf:thymeleaf

View on maven registry
3 Total advisories
3 Vulnerabilities
0 Malware

Vulnerabilities

CRITICAL 9.0
Maven

CVE-2026-41901

Sandboxed Thymeleaf expressions vulnerable to improper recognition of unauthorized syntax patterns
CRITICAL 9.0
Maven

CVE-2026-40478

Improper neutralization of specific syntax patterns for unauthorized expressions in Thymeleaf
CRITICAL 9.0
Maven

CVE-2026-40477

Improper restriction of the scope of accessible objects in Thymeleaf expressions

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes