XStream Java library vulnerability in unmarshalling proces
Reporter | Title | Published | Views | Family All 153 |
---|---|---|---|---|
Github Security Blog | Server-Side Forgery Request can be activated unmarshalling with XStream | 21 Dec 202016:28 | – | github |
Github Security Blog | Command Injection in Xstream | 29 May 201918:05 | – | github |
Github Security Blog | Deserialization of Untrusted Data in Jenkins | 13 May 202201:36 | – | github |
Github Security Blog | XStream vulnerable to an Arbitrary File Deletion on the local host when unmarshalling | 21 Dec 202016:28 | – | github |
Github Security Blog | Deserialization of Untrusted Data and Code Injection in xstream | 26 Jul 201916:09 | – | github |
Github Security Blog | XStream can be used for Remote Code Execution | 16 Nov 202020:07 | – | github |
OSV | Server-Side Forgery Request can be activated unmarshalling with XStream | 21 Dec 202016:28 | – | osv |
OSV | Command Injection in Xstream | 29 May 201918:05 | – | osv |
OSV | CVE-2020-26258 | 16 Dec 202001:15 | – | osv |
OSV | Deserialization of Untrusted Data in Jenkins | 13 May 202201:36 | – | osv |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo