CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-6007

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00348EPSS

Exploits0References5

Github Security Blog•added 2022/06/29 10:39 p.m.•32 views

Quadratic blowup in Convert::xml2array()

Silverstripe silverstripe/framework 4.x until 4.10.9 has a quadratic blowup in Convert::xml2array that enables a remote attack via a crafted XML document...

6.5CVSS4.8AI score0.00348EPSS

Exploits0References6Affected Software1

OSV•added 2022/06/29 10:39 p.m.•24 views

GHSA-9FMG-89FX-R33W Quadratic blowup in Convert::xml2array()

Silverstripe silverstripe/framework 4.x until 4.10.9 has a quadratic blowup in Convert::xml2array that enables a remote attack via a crafted XML document...

6.5CVSS6.3AI score0.00348EPSS

Exploits0References5

NVD•added 2022/06/28 10:15 p.m.•11 views

CVE-2021-41559

Silverstripe silverstripe/framework 4.8.1 has a quadratic blowup in Convert::xml2array that enables a remote attack via a crafted XML document...

6.5CVSS0.00348EPSS

Exploits0References3

Positive Technologies•added 2022/06/28 12:0 a.m.•4 views

PT-2022-11429 · Silverstripe · Silverstripe/Framework

Name of the Vulnerable Software and Affected Versions: Silverstripe silverstripe/framework versions 4.8.1 through 4.10.9 Description: The issue is related to a quadratic blowup in the Convert::xml2array function, which can be exploited via a crafted XML document to enable a remote attack...

6.5CVSS6.2AI score0.00348EPSS

Exploits0References12