4450 matches found
EUVD-2026-35885
When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating tests are next execute...
CVE-2026-40991
When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating tests are next execute...
CVE-2026-40991
The CVE-2026-40991 issue affects Spring REST Docs: 4.0.0; 3.0.0–3.0.5; and 2.0.0.RELEASE–2.0.8.RELEASE. When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote HTTP API, an attacker who compromises the API or tricks a user into documenting a malicious API can ...
CVE-2026-40991 XML External Entity (XXE) injection when documenting untrusted XML content
When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating tests are next execute...
CVE-2026-40991 XML External Entity (XXE) injection when documenting untrusted XML content
When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating tests are next execute...
MINI-4544-48J2-8V57
Bulletin has no description...
MINI-7C23-R4MG-Q24W
Bulletin has no description...
PT-2026-48306
Name of the Vulnerable Software and Affected Versions Spring REST Docs version 4.0.0 Spring REST Docs versions 3.0.0 through 3.0.5 Spring REST Docs versions 2.0.0.RELEASE through 2.0.8.RELEASE Description An XXE XML External Entity injection attack can occur when using spring-restdocs-webtestclie...
cve-2026-40991 - MEDIUM - XML External Entity (XXE) injection when documenting untrusted XML content
cve-2026-40991 - MEDIUM - XML External Entity XXE injection when documenting untrusted XML content...
Important: Red Hat Security Advisory: RHTAS 1.3.5 - Red Hat Trusted Artifact Signer Release
The 1.3.5 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS : YARD vulnerability (USN-8394-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8394-1 advisory. It was discovered that YARD incorrectly sanitized paths in its built-in documentation server. An...
MINI-V378-HPC8-2VP4
Bulletin has no description...
MINI-WW3F-MR9G-W9WF
Bulletin has no description...
MINI-MHRR-P94W-MCCH
Bulletin has no description...
MINI-VQ3X-7C4V-G3PG
Bulletin has no description...
MINI-Q5Q2-CPVX-95RQ
Bulletin has no description...
MINI-GJH4-V93Q-M8JF
Bulletin has no description...
Kernel-Exploit-Dojo-243
Kernel-Exploit-Dojo-243 CTF kernel exploitation notes, PoCs,...
Kernel-Exploit-Dojo-255
Kernel-Exploit-Dojo-255 CTF kernel exploitation notes, PoCs,...
ECHO-9E9B-0B35-FE44
Bulletin has no description...