5 matches found
XML External Entity (XXE) vulnerability in apoc.import.graphml
Impact A XML External Entity XXE vulnerability found in the apoc.import.graphml procedure of APOC core plugin in Neo4j graph database. XML External Entity XXE injection occurs when the XML parser allows external entities to be resolved. The XML parser used by the apoc.import.graphml procedure was...
GHSA-9VX8-F5C4-862X XML External Entity (XXE) vulnerability in apoc.import.graphml
Impact A XML External Entity XXE vulnerability found in the apoc.import.graphml procedure of APOC core plugin in Neo4j graph database. XML External Entity XXE injection occurs when the XML parser allows external entities to be resolved. The XML parser used by the apoc.import.graphml procedure was...
XML External Entity (XXE)
org.neo4j.procedure:apoc-core is vulnerable to XML External Entity XXE attacks. A remote authenticated attacker is able to trigger an XML external entity injection via the parseXML function which allows external entities to be resolved due to an improper configuration of the apoc.import.graphml...
GHSA-6WXG-WH7F-RQPR XML External Entity (XXE) vulnerability in apoc.import.graphml
Impact A XML External Entity XXE vulnerability found in the apoc.import.graphml procedure of APOC core plugin in Neo4j graph database. XML External Entity XXE injection occurs when the XML parser allows external entities to be resolved. The XML parser used by the apoc.import.graphml procedure was...
XML External Entity (XXE) vulnerability in apoc.import.graphml
Impact A XML External Entity XXE vulnerability found in the apoc.import.graphml procedure of APOC core plugin in Neo4j graph database. XML External Entity XXE injection occurs when the XML parser allows external entities to be resolved. The XML parser used by the apoc.import.graphml procedure was...