3 matches found
XWiki Platform Resource Management Error Vulnerability
XWiki Platform is the XWiki Foundation's suite of Wiki platforms for creating web collaboration applications. A resource management error vulnerability exists in XWiki Platform that originates from allowing an attacker to distribute malformed TAR files by manipulating file modification times...
PT-2024-18999 · Xwiki +1 · Xwiki Platform +2
Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 14.10.18 XWiki Platform versions prior to 15.5.3 XWiki Platform versions prior to 15.8 RC1 Description: A user able to attach a file to a page can post a malformed TAR file by manipulating file modification...
tika: XML External Entity vulnerability
It was found that the parsing of OOXML, XMP in PDF, and some other file formats by Apache Tika would expand entity references. A remote, unauthenticated attacker could use this flaw to read files accessible to the user running the application server, and potentially perform other more advanced XX...