Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2022/03/18 5:46 p.m.33 views

XML external entity (XXE) injection in Apache Nutch

An XML external entity XXE injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions 1.18. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. ...

9.1CVSS4.8AI score0.04359EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2021/01/25 10:16 a.m.5 views

CVE-2021-23901

An XML external entity XXE injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions 1.18. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. ...

9.1CVSS7.3AI score0.04359EPSS
Exploits0References5
NVD
NVD
added 2021/01/25 10:16 a.m.27 views

CVE-2021-23901

An XML external entity XXE injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions 1.18. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. ...

9.1CVSS8.9AI score0.04359EPSS
Exploits0References5
Prion
Prion
added 2021/01/25 10:16 a.m.23 views

Xxe

An XML external entity XXE injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions 1.18. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. ...

6.4CVSS8.8AI score0.04359EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2021/01/25 9:25 a.m.86 views

CVE-2021-23901

The CVE-2021-23901 issue affects Apache Nutch DmozParser prior to 1.18, where an XML External Entity (XXE) injection was exploitable due to improper XML processing. Affected component: DmozParser in Nutch versions

9.1CVSS9AI score0.04359EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2021/01/25 9:25 a.m.25 views

CVE-2021-23901 An XML external entity (XXE) injection vulnerability exists in the Nutch DmozParser

An XML external entity XXE injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions 1.18. XML external entity injection also known as XXE is a web security vulnerability that allows an attacker to interfere with an application's processing of XML data. ...

9.1AI score0.04359EPSS
Exploits0References5
Rows per page
Query Builder