Lucene search
Xml-rpc Security Vulnerabilities
cve
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maintained and this...
9.8CVSS
9.4AI Score
0.014EPSS
2020-01-23 10:15 PM
156
5
cve
XML external entity (XXE) vulnerability in the Apache XML-RPC (aka ws-xmlrpc) library 3.1.3, as used in Apache Archiva, allows remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted...
7.8CVSS
7.4AI Score
0.003EPSS
2017-10-27 06:29 PM
57
4