Lucene search
K

9242 matches found

NVD
NVD
added 2018/08/30 2:29 p.m.27 views

CVE-2018-13826

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks...

9.1CVSS9.2AI score0.01832EPSS
Exploits0References2
Prion
Prion
added 2018/08/30 2:29 p.m.15 views

Xxe

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks...

6.4CVSS9.1AI score0.01832EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/08/30 2:0 p.m.21 views

CVE-2018-13826

An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks...

9.3AI score0.01832EPSS
Exploits0References2
CVE
CVE
added 2018/08/30 2:0 p.m.52 views

CVE-2018-13826

CA PPM XOG module suffers an XML External Entity (XXE) vulnerability that enables server-side request forgery. Affected are CA PPM versions 14.3 and below; 14.4; 15.1; 15.2 CP5 and below; 15.3 CP2 and below. The issue arises in the XOG functionality and is documented across CVE-2018-13826 entries...

9.1CVSS9.1AI score0.01832EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2018/08/28 5:29 p.m.17 views

Server side request forgery (ssrf)

phpMyFAQ before 2.8.13 allows remote attackers to read arbitrary attachments via a direct request...

5CVSS7.2AI score0.0568EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/08/20 7:31 p.m.1 views

DEBIAN-CVE-2018-1000652

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

10CVSS7AI score0.01937EPSS
Exploits0References1
OSV
OSV
added 2018/08/20 7:31 p.m.15 views

CVE-2018-1000652

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

10CVSS6.9AI score
Exploits0References2
NVD
NVD
added 2018/08/20 7:31 p.m.46 views

CVE-2018-1000652

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

10CVSS9.4AI score0.01937EPSS
Exploits0References2
OSV
OSV
added 2018/08/20 7:31 p.m.16 views

CVE-2018-1000651

Stroom version 5.4.5 contains a XML External Entity XXE vulnerability in XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted XML file...

10CVSS6.8AI score
Exploits0References2
NVD
NVD
added 2018/08/20 7:31 p.m.13 views

CVE-2018-1000651

Stroom version 5.4.5 contains a XML External Entity XXE vulnerability in XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted XML file...

10CVSS9.2AI score0.01855EPSS
Exploits0References2
NVD
NVD
added 2018/08/20 7:31 p.m.13 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS9.1AI score0.02034EPSS
Exploits0References2
OSV
OSV
added 2018/08/20 7:31 p.m.17 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

10CVSS6.7AI score
Exploits0References2
Prion
Prion
added 2018/08/20 7:31 p.m.12 views

Xxe

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

7.5CVSS9.3AI score0.01937EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/08/20 7:31 p.m.22 views

Xxe

Stroom version 5.4.5 contains a XML External Entity XXE vulnerability in XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted XML file...

7.5CVSS9AI score0.01855EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/08/20 7:31 p.m.12 views

Xxe

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

7.5CVSS9.1AI score0.02034EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2018/08/20 7:31 p.m.44 views

CVE-2018-1000652

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

10CVSS7.1AI score0.01937EPSS
Exploits0References4
OSV
OSV
added 2018/08/20 7:31 p.m.0 views

UBUNTU-CVE-2018-1000639

LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file...

9.6CVSS5.7AI score0.01554EPSS
Exploits1References4
CVE
CVE
added 2018/08/20 7:0 p.m.50 views

CVE-2018-1000651

CVE-2018-1000651 affects Stroom

10CVSS9.1AI score0.01855EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/08/20 7:0 p.m.16 views

CVE-2018-1000644

Eclipse RDF4j version 2.4.0 Milestone 2 contains a XML External Entity XXE vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially...

9.1AI score0.02034EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/08/20 7:0 p.m.26 views

CVE-2018-1000652

JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...

9.4AI score0.01937EPSS
Exploits0References2
Rows per page
Query Builder