Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-WHF4-FPJ8-PGG8
HistoryJun 07, 2024 - 9:31 p.m.

ebookmeta XML External Entity vulnerability

2024-06-0721:31:54
CWE-776
GitHub Advisory Database
github.com
xml
external entity
vulnerability
ebookmeta
get_metadata
attackers
sensitive information
dos
crafted xml input
software

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input.

Affected configurations

Vulners
Node
ebookmetaRange<1.2.8
CPENameOperatorVersion
ebookmetalt1.2.8

Related

cvelist 1
veracode 1
osv 2
nvd 1
cve 1
cvelist
cvelist
CVE-2024-36827
2024-06-07 00:00:00
veracode
veracode
XML Entity Expansion (XXE)
2024-06-12 05:47:47
osv
osv
ebookmeta XML External Entity vulnerability
2024-06-07 21:31:54
CVE-2024-36827
2024-06-07 19:15:24
nvd
nvd
CVE-2024-36827
2024-06-07 19:15:24
cve
cve
CVE-2024-36827
2024-06-07 19:15:24

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for GHSA-WHF4-FPJ8-PGG8
cvelist1veracode1osv2nvd1cve1