Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:PYSEC-2021-388
HistoryOct 31, 2021 - 8:15 p.m.

PYSEC-2021-388

2021-10-3120:15:00
Google
osv.dev
10
easy-xml 0.5.0
parsexml
xml external entity (xxe)
vulnerability
sensitive data
denial of service (dos)

EPSS

0.002

Percentile

60.9%

JSON

The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE) vulnerability which allows for an attacker to expose sensitive data or perform a denial of service (DOS) via a crafted external entity entered into the XML content as input.

Related

nvd 1
cve 1
cnvd 1
cvelist 1
veracode 1
prion 1
github 1
osv 1
nvd
nvd
CVE-2020-26705
2021-10-31 20:15:07
cve
cve
CVE-2020-26705
2021-10-31 20:15:07
cnvd
cnvd
Easy-XML XML External Entity Injection Vulnerability
2021-11-02 00:00:00
cvelist
cvelist
CVE-2020-26705
2021-10-31 19:51:53
veracode
veracode
XML External Entity (XXE) Injection
2021-11-01 04:55:53
prion
prion
Xxe
2021-10-31 20:15:00
github
github
XML External Entity vulnerability in Easy-XML
2021-11-01 19:19:54
osv
osv
XML External Entity vulnerability in Easy-XML
2021-11-01 19:19:54

EPSS

0.002

Percentile

60.9%

JSON
Related for OSV:PYSEC-2021-388
nvd1cve1cnvd1cvelist1veracode1prion1github1osv1