Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Central Security Project: c3p0 may be exploited by a Billion Laughs Attack when loading XML configuration

🗓️ 13 Mar 2019 16:01:34Reported by amasseyType 
hackerone
 hackerone🔗 hackerone.com👁 30 Views

Central Security Project: c3p0 may be exploited by Billion Laughs Attac

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
ReporterTitlePublishedViews
Family
Veracode		XML External Entity (XXE)
26 Dec 201801:56
veracode
Veracode		XML Entity Expansion (XEE)
8 Jul 201915:36
veracode
Fedora		[SECURITY] Fedora 30 Update: c3p0-0.9.5.4-1.fc30
29 May 201900:50
fedora
Fedora		[SECURITY] Fedora 29 Update: c3p0-0.9.5.4-1.fc29
29 May 201902:59
fedora
OpenVAS		Mageia: Security Advisory (MGASA-2020-0051)
28 Jan 202200:00
openvas
OpenVAS		Fedora Update for c3p0 FEDORA-2019-cb14e234fc
29 May 201900:00
openvas
OpenVAS		Fedora Update for c3p0 FEDORA-2019-063672154a
2 Jun 201900:00
openvas
OpenVAS		Debian: Security Advisory (DLA-1621-1)
2 Jan 201900:00
openvas
OpenVAS		Ubuntu: Security Advisory (USN-5293-2)
27 Jan 202300:00
openvas
OpenVAS		Ubuntu: Security Advisory (USN-5293-1)
23 Feb 202200:00
openvas
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
13 Mar 2019 16:34Current
7.9High risk
Vulners AI Score7.9
EPSS0.06909
c3p0xmlbillion laughs attackexploitationvulnerabilityjavaconfigurationsecuritypatchowaspjdkcve-2018-20433xxe
30
.json
Report