CVE-2018-15531
CVE-2018-15531 affects JavaMelody up to version 1.74.0, where parseSoapMethodName in bull/javamelody/PayloadNameRequestWrapper.java is vulnerable to XML External Entity (XXE) processing. The XXE flaw can enable an attacker to trigger external entity resolution, which may lead to exposure of sensi...