3 matches found
CVE-2018-1000652
JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...
CVE-2018-1000652
The CVE-2018-1000652 entry describes an XML External Entity (XXE) vulnerability in JabRef between versions up to 4.3.1, specifically in the MsBibImporter XML Parser. The flaw can lead to disclosure of confidential data, denial of service, server-side request forgery, and port scanning when proces...
CVE-2018-1000652
JabRef version =4.3.1 contains a XML External Entity XXE vulnerability in MsBibImporter XML Parser that can result in disclosure of confidential data, denial of service, server side request forgery, port scanning. This attack appear to be exploitable via Specially crafted MsBib file. This...