Lucene search
PRIOn knowledge basePRION:CVE-2020-12642HistoryMay 04, 2020 - 4:15 p.m.
Server side request forgery (ssrf)
2020-05-0416:15:00
PRIOn knowledge base
www.prio-n.com
5
An issue was discovered in service-api before 4.3.12 and 5.x before 5.1.1 for Report Portal. It allows XXE, with resultant secrets disclosure and SSRF, via JUnit XML launch import.
| CPE | Name | Operator | Version |
|---|---|---|---|
| service-api | ge | 5.0.0 | |
| service-api | lt | 5.1.1 | |
| service-api | ge | 3.1.0 | |
| service-api | lt | 4.3.12 |
Related
cve
cve
CVE-2020-12642
2020-05-04 16:15:12
osv
osv
XML External Entity Reference
2021-08-13 15:21:59
XXE vulnerability in Launch import
2021-06-28 16:45:47
CVE-2020-12642
2020-05-04 16:15:12
cvelist
cvelist
CVE-2020-12642
2020-05-04 15:14:14
nvd
nvd
CVE-2020-12642
2020-05-04 16:15:12
github
github
XXE vulnerability in Launch import
2021-06-28 16:45:47