147 matches found
CVE-2022-22825
lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
DEBIAN-CVE-2022-22825
lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
ALPINE-CVE-2022-22823
buildmodel in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
CVE-2022-22824
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
Integer overflow
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
UBUNTU-CVE-2022-22822
addBinding in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
Expat和libexpat 输入验证错误漏洞
Expat is a fast streaming XML parser written in C. libexpat is a streaming XML parser written in C. A buffer overflow vulnerability exists in versions of Expat prior to 2.4.3, which stems from a boundary error in storeAtts in xmlparse.c when processing untrusted input. A remote attacker could...
CVE-2022-22825
lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
PT-2022-1586 · Expat +12 · Expat +12
Name of the Vulnerable Software and Affected Versions: Expat aka libexpat versions prior to 2.4.3 Description: The issue is related to an integer overflow in the lookup function of the xmlparse.c file in the Expat library. This can potentially allow a remote attacker to cause a denial of service...
CVE-2021-46143
In doProlog in xmlparse.c in Expat aka libexpat before 2.4.3, an integer overflow exists for mgroupSize...
PT-2022-1754
Name of the Vulnerable Software and Affected Versions Expat versions prior to 2.4.3 Description The issue is related to an integer overflow in the doProlog function of the xmlparse.c file in the Expat library. This could allow a remote attacker to impact the confidentiality, integrity, and...
DEBIAN-CVE-2021-45960
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
AZL-7124 CVE-2021-45960 affecting package expat for versions less than 2.4.3-1
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
ALPINE-CVE-2021-45960
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
UBUNTU-CVE-2021-45960
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
CVE-2021-45960
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
Mura CMS Server-Side Request Forgery / XXE Injection
Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on: Windows 2008 w/ Coldfusion 8 CVE: CVE-2017-15639 Category:...
Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection Vulnerabilities
Exploit for unknown platform in category web applications Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on:...
Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection
Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on: Windows 2008 w/ Coldfusion 8 CVE: CVE-2017-15639 Category:...
CVE-2013-6025
The XMLParse procedure in SAP Sybase Adaptive Server Enterprise ASE 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an external entity declaration in conjunction with an entity reference, related to an XML External Entity XX...