opensolon/solon

GitHub

github.com

solon.noear.org

Releases201

Frequency1 week 2 days

Last Release 23 days ago

Stars2.75K

🔥 Java enterprise application development framework for full scenario: Restrained, Efficient, Open, Ecologicalll!!! 700% higher concurrency 50% memory savings Startup is 10 times faster. Packing 90% smaller; Compatible with java8 ~ java25; Supports LTS. (Replaceable spring)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-46096 ↗	Jun 13, 2025Friday, 13 June 2025, 13:15	6.1 MEDIUM	—
Directory Traversal vulnerability in solon v.3.1.2 allows a remote attacker to conduct XSS attacks via the solon-faas-luffy component
CVE-2023-48967 ↗	Dec 4, 2023Monday, 4 December 2023, 17:15	9.8 CRITICAL	—
Ssolon <= 2.6.0 and <=2.5.12 is vulnerable to Deserialization of Untrusted Data.
CVE-2023-35839 ↗	Jun 19, 2023Monday, 19 June 2023, 01:15	9.8 CRITICAL	—
A bypass in the component sofa-hessian of Solon before v2.3.3 allows attackers to execute arbitrary code via providing crafted payload.