Moderate severity vulnerability that affects org.exist-db:exist-core

2018-12-20T22:02:17
ID GHSA-JXM5-5XCW-H57Q
Type github
Reporter GitHub Advisory Database
Modified 2021-06-10T22:57:25

Description

exist version <= 5.0.0-RC4 contains a XML External Entity (XXE) vulnerability in XML Parser for REST Server that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.