Lucene search
MitreCVELIST:CVE-2020-26705HistoryOct 31, 2021 - 7:51 p.m.
CVE-2020-26705
2021-10-3119:51:53
mitre
www.cve.org
4
easy-xml 0.5.0
parsexml function
xml external entity (xxe) attack
sensitive data exposure
denial of service (dos)
The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE) vulnerability which allows for an attacker to expose sensitive data or perform a denial of service (DOS) via a crafted external entity entered into the XML content as input.
Related
cve
cve
CVE-2020-26705
2021-10-31 20:15:07
nvd
nvd
CVE-2020-26705
2021-10-31 20:15:07
veracode
veracode
XML External Entity (XXE) Injection
2021-11-01 04:55:53
cnvd
cnvd
Easy-XML XML External Entity Injection Vulnerability
2021-11-02 00:00:00
osv
osv
PYSEC-2021-388
2021-10-31 20:15:00
XML External Entity vulnerability in Easy-XML
2021-11-01 19:19:54
prion
prion
Xxe
2021-10-31 20:15:00
github
github
XML External Entity vulnerability in Easy-XML
2021-11-01 19:19:54