Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-4455

Malicious code in bioql PyPI...

4.3CVSS7.8AI score0.07794EPSS
Exploits3References12
OSV
OSV
added 2022/05/13 1:5 a.m.27 views

GHSA-JWWR-FJGH-CV2X Improper Restriction of XML External Entity Reference in Castor

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document...

4.3CVSS8.4AI score0.07794EPSS
Exploits3References8
Github Security Blog
Github Security Blog
added 2022/05/13 1:5 a.m.25 views

Improper Restriction of XML External Entity Reference in Castor

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document...

4.3CVSS8.4AI score0.07794EPSS
Exploits3References8Affected Software2
Mageia
Mageia
added 2014/12/31 12:28 p.m.40 views

Updated castor packages fix CVE-2014-3004

Updated castor packages fix security vulnerability: The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document CVE-2014-3004...

4.3CVSS8.7AI score0.07794EPSS
Exploits3References2
OSV
OSV
added 2014/12/31 12:28 p.m.4 views

MGASA-2014-0556 Updated castor packages fix CVE-2014-3004

Updated castor packages fix security vulnerability: The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document CVE-2014-3004...

4.3CVSS6.2AI score0.07794EPSS
Exploits3References3
NVD
NVD
added 2014/06/11 2:55 p.m.11 views

CVE-2014-3004

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document...

4.3CVSS8.1AI score0.07794EPSS
Exploits3References8
Prion
Prion
added 2014/06/11 2:55 p.m.16 views

Xxe

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document...

4.3CVSS6.7AI score0.07794EPSS
Exploits3References8Affected Software2
OSV
OSV
added 2014/06/11 2:55 p.m.3 views

UBUNTU-CVE-2014-3004

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XML document...

4.3CVSS7.1AI score0.07794EPSS
Exploits3References4
CVE
CVE
added 2014/06/11 2:0 p.m.101 views

CVE-2014-3004

CVE-2014-3004 affects the Castor Library: the default configuration of the Xerces SAX Parser in Castor prior to version 1.3.3 allows XML External Entity (XXE) processing via crafted XML, enabling context-dependent attackers to disclose sensitive information. The issue is mitigated by upgrading Ca...

4.3CVSS8.9AI score0.07794EPSS
Exploits3References8Affected Software1
Rows per page
Query Builder