EUVD-2022-4638

Malicious code in bioql PyPI...

EUVD-2022-4346

Malicious code in bioql PyPI...

Malicious code in mi-angular-videomanager-pro-apikit (npm)

The package mi-angular-videomanager-pro-apikit was found to contain malicious code...

MAL-2025-26288 Malicious code in mi-angular-videomanager-pro-apikit (npm)

The package mi-angular-videomanager-pro-apikit was found to contain malicious code...

CVE-2020-10991

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

Withdrawn Advisory: Improper Restriction of XML External Entity Reference in Mulesoft APIkit

Withdrawn Advisory This advisory has been withdrawn because it does not affected a package in a supported ecosystem. This link has been maintained to preserve external references. Original Description Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

GHSA-JFFQ-528J-MP6C Withdrawn Advisory: Improper Restriction of XML External Entity Reference in Mulesoft APIkit

Withdrawn Advisory This advisory has been withdrawn because it does not affected a package in a supported ecosystem. This link has been maintained to preserve external references. Original Description Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

Mule modules contain Directory Traversal

Directory Traversal in APIkit, http-connector, and OAuth2 Provider modules in Mulesoft 3.x, 4.x and Mulesoft API Gateway all versions released before August 1, 2019 allow remote attackers to read files accessible to the Mule process...

GHSA-MWH9-GR45-XVV4 Mule modules contain Directory Traversal

Directory Traversal in APIkit, http-connector, and OAuth2 Provider modules in Mulesoft 3.x, 4.x and Mulesoft API Gateway all versions released before August 1, 2019 allow remote attackers to read files accessible to the Mule process...

CVE-2020-10991

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

CVE-2020-10991

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

Input validation

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

Mulesoft APIkit Code Issue Vulnerability

MuleSoft APIkit is a tool for building REST APIs using the MULE runtime from MuleSoft USA. A code issue vulnerability exists in Mulesoft APIkit version 1.3.0 and earlier. The vulnerability stems from an improperly designed or implemented code development process for a web-based system or product...

CVE-2020-10991

CVE-2020-10991 affects MuleSoft APIkit up to version 1.3.0. The vulnerability is an XML External Entity (XXE) issue caused by validation logic in RestXmlSchemaValidator.java, enabling external entity processing during XML parsing. Impact is described as high (per CVSS v3.1: 9.8, Network attack ve...

CVE-2020-10991

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

CVE-2019-15630

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow...

Directory traversal

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow...

CVE-2019-15630

CVE-2019-15630 describes a directory traversal vulnerability affecting MuleSoft products: APIkit, HTTP connector, and OAuth2 Provider components in Mule Runtime 3.x/4.x and all MuleSoft API Gateway versions released before August 1, 2019. The issue permits remote attackers to read files accessibl...