10 matches found
EUVD-2023-36882
Malicious code in bioql PyPI...
CVE-2023-32639
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
CVE-2023-32639
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
CVE-2023-32639
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
Xxe
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
CVE-2023-32639
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
PT-2023-23927 · Unknown · Applicant Programme
Name of the Vulnerable Software and Affected Versions: Applicant Programme versions 7.06 and earlier Description: The issue is related to the improper restriction of XML external entity references XXE in the Applicant Programme. This allows an attacker to read arbitrary files on the system by...
Improper restriction of XML external entity references (XXE) in Applicant Programme
Overview Applicant Programme provided by The Ministry of Justice improperly restricts XML external entity references XXE CWE-611. Toyama Taku and Sakaki Ryutaro of NEC Corporation reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...
JVN#37857022: Improper restriction of XML external entity references (XXE) in Applicant Programme
Applicant Programme provided by The Ministry of Justice improperly restricts XML external entity references XXE CWE-611. Impact By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker. Solution Update the Software Update the software to the latest...
The Ministry of Justice Applicant Programme 代码问题漏洞
The Ministry of Justice Applicant Programme is a Department of Justice applicant programme application organized by The Ministry of Justice. A security vulnerability exists in Applicant Programme V7.06 and prior versions, which stems from an improper restriction of XML external entity references,...