Umbraco Forms security vulnerabilities

Umbraco Forms is a form-building tool developed by the Umbraco company. Umbraco Forms versions 8.13.16 and earlier contained security vulnerabilities. These vulnerabilities stemmed from authenticated attackers being able to provide malicious WSDL URLs as data sources, potentially leading to remot...

CVE-2025-34392

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload...

WSDL Import Failed

WSDL schema file could not be imported and cannot be used during the scan. No source data...

Web Services Description Language (WSDL) File Detected

A Web Services Description Language WSDL file has been detected on this url. No source data...

SUSE CVE-2013-1635

ext/soap/soap.c in PHP before 5.3.22 and 5.4.x before 5.4.13 does not validate the relationship between the soap.wsdlcachedir directive and the openbasedir directive, which allows remote attackers to bypass intended access restrictions by triggering the creation of cached SOAP WSDL files in an...

OpenJDK: insecure XML parsing in wsdlimport (JAX-WS, 8182054)

It was discovered that the wsdlimport tool in the JAX-WS component of OpenJDK did not use secure XML parser settings when parsing WSDL XML documents. A specially crafted WSDL document could cause wsdlimport to use an excessive amount of CPU and memory, open connections to other hosts, or leak...