Lucene search
K

347 matches found

GithubExploit
GithubExploit
added 2023/10/05 7:55 a.m.216 views

Exploit for Improper Restriction of XML External Entity Reference in Dogtagpki

CVE-2022-2414 CVE-2022-24...

7.5CVSS7.8AI score0.85323EPSS
Exploits3
GithubExploit
GithubExploit
added 2023/10/05 7:55 a.m.440 views

Exploit for Improper Restriction of XML External Entity Reference in Dogtagpki

CVE-2022-2414 CVE-2022-24...

7.5CVSS7.8AI score0.85323EPSS
Exploits3
Github Security Blog
Github Security Blog
added 2023/06/15 3:30 p.m.34 views

HuTool XML parsing module has blind XXE vulnerability

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference...

7.5CVSS7AI score0.00726EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2023/06/15 1:15 p.m.22 views

CVE-2023-3276

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

7.5CVSS6.1AI score0.00726EPSS
Exploits1References3
Prion
Prion
added 2023/06/15 1:15 p.m.15 views

Xxe

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

5.2CVSS7.5AI score0.00726EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/15 1:0 p.m.9 views

CVE-2023-3276 Dromara HuTool XML Parsing Module XmlUtil.java readBySax xml external entity reference

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

5.5CVSS6.6AI score0.00726EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/06/15 1:0 p.m.28 views

CVE-2023-3276 Dromara HuTool XML Parsing Module XmlUtil.java readBySax xml external entity reference

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

5.5CVSS7.7AI score0.00726EPSS
Exploits1References3
CVE
CVE
added 2023/06/15 1:0 p.m.53 views

CVE-2023-3276

HuTool (Dromara HuTool) up to 5.8.19 contains an XXE flaw in XmlUtil.readBySax, enabling xml external entity reference exploitation. Publicly disclosed exploit; no fixed version information in the provided documents. Affected component: XML Parsing Module (XmlUtil.java). Practical impact describe...

7.5CVSS6.3AI score0.00726EPSS
Exploits1References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/15 12:0 a.m.30 views

Improper Restriction of XML External Entity Reference

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

7.5CVSS7AI score0.00726EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/15 12:0 a.m.5 views

PT-2023-24008 · Dromara · Dromara Hutool

Name of the Vulnerable Software and Affected Versions: Dromara HuTool versions up to 5.8.19 Description: A problematic issue has been found in the XML Parsing Module, specifically affecting the readBySax function of the XmlUtil.java file. This issue leads to xml external entity reference. The...

7.5CVSS6.7AI score0.00726EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2023/06/13 10:15 a.m.2 views

CVE-2023-29498

Improper restriction of XML external entity reference XXE vulnerability exists in FRENIC RHC Loader v1.1.0.3 and earlier. If a user opens a specially crafted project file, sensitive information on the system where the affected product is installed may be disclosed...

5.5CVSS6.6AI score0.00211EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2023/06/12 12:0 a.m.2 views

Fuji Electric FRENIC RHC Loader XML External Entity Reference Vulnerability

Fuji Electric FRENIC RHC Loader is a software tool developed by Fuji Electric Japan for debugging and monitoring inverters, mainly serving the industrial automation field. The Fuji Electric FRENIC RHC Loader suffers from an XML external entity reference vulnerability that can be exploited by an...

5.5CVSS6.8AI score0.00211EPSS
Exploits0References1
Amazon
Amazon
added 2023/05/31 12:0 a.m.18 views

Medium: libplist

Issue Overview: A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plistfromxml of the file src/xplist.c of the component XML Handler. The manipulation leads to xml external entity reference. The name of the patch is...

9.8CVSS5.3AI score0.00723EPSS
Exploits0
NVD
NVD
added 2023/05/19 9:15 a.m.27 views

CVE-2023-2806

A vulnerability classified as problematic was found in Weaver e-cology up to 9.0. Affected by this vulnerability is the function RequestInfoByXml of the component API. The manipulation leads to xml external entity reference. The associated identifier of this vulnerability is VDB-229411. NOTE: The...

8.8CVSS6.4AI score0.00984EPSS
Exploits1References3
Prion
Prion
added 2023/05/19 9:15 a.m.17 views

Xxe

A vulnerability classified as problematic was found in Weaver e-cology up to 9.0. Affected by this vulnerability is the function RequestInfoByXml of the component API. The manipulation leads to xml external entity reference. The associated identifier of this vulnerability is VDB-229411. NOTE: The...

5.2CVSS8.5AI score0.00984EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/05/19 8:31 a.m.28 views

CVE-2023-2806 Weaver e-cology API RequestInfoByXml xml external entity reference

A vulnerability classified as problematic was found in Weaver e-cology up to 9.0. Affected by this vulnerability is the function RequestInfoByXml of the component API. The manipulation leads to xml external entity reference. The associated identifier of this vulnerability is VDB-229411. NOTE: The...

5.5CVSS8.8AI score0.00984EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/05/19 8:31 a.m.11 views

CVE-2023-2806 Weaver e-cology API RequestInfoByXml xml external entity reference

A vulnerability classified as problematic was found in Weaver e-cology up to 9.0. Affected by this vulnerability is the function RequestInfoByXml of the component API. The manipulation leads to xml external entity reference. The associated identifier of this vulnerability is VDB-229411. NOTE: The...

5.5CVSS6.8AI score0.00984EPSS
Exploits1References3
OSV
OSV
added 2023/05/16 5:15 a.m.1 views

CVE-2023-2161

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized read access to the file system when a malicious configuration file is loaded on to the software by a local user...

5.5CVSS6.1AI score
Exploits0References1
CNNVD
CNNVD
added 2023/04/19 12:0 a.m.3 views

Shinseiyo Sogo Soft 代码问题漏洞

Shinseiyo Sogo Soft is a software used by Japan's Ministry of Justice to process legal documents and information. A security vulnerability exists in Shinseiyo Sogo Soft version 7.9A and prior versions, which arises from incorrectly restricting XML external entity references...

7.5CVSS5.8AI score0.00343EPSS
Exploits0References4
ICS
ICS
added 2023/04/03 7:38 p.m.71 views

VISAM VBASE Automation Base

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: VISAM Equipment: VBASE Vulnerabilities: Improper Restriction of XML External Entity Reference 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive information from...

5.5CVSS5.9AI score0.04148EPSS
Exploits0References5
Rows per page
Query Builder