Lucene search
GitHub Advisory DatabaseGHSA-V2XM-76PQ-PHCFHistoryJun 21, 2024 - 6:31 a.m.
ClassGraph XML External Entity Reference
2024-06-2106:31:12
CWE-611
GitHub Advisory Database
github.com
2
classgraph
xml
external entity
xxe attacks
software
ClassGraph before 4.8.112 was not resistant to XML eXternal Entity (XXE) attacks.
Affected configurations
Node
io.github.classgraph\Matchclassgraph
| CPE | Name | Operator | Version |
|---|---|---|---|
| io.github.classgraph:classgraph | lt | 4.8.112 |
References
docs.r3.com/en/platform/corda/4.8/enterprise/release-notes-enterprise.html
github.com/advisories/GHSA-v2xm-76pq-phcf
github.com/classgraph/classgraph/commit/681362ad6b0b9d9abaffb2e07099ce54d7a41fa3
github.com/classgraph/classgraph/pull/539
github.com/classgraph/classgraph/releases/tag/classgraph-4.8.112
nvd.nist.gov/vuln/detail/CVE-2021-47621
Related
veracode
veracode
XML External Entity (XXE)
2024-06-24 04:27:02
cvelist
cvelist
CVE-2021-47621
2024-06-21 00:00:00
osv
osv
ClassGraph XML External Entity Reference
2024-06-21 06:31:12
CVE-2021-47621
2024-06-21 06:15:10
cve
cve
CVE-2021-47621
2024-06-21 06:15:10
nvd
nvd
CVE-2021-47621
2024-06-21 06:15:10