CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

346 matches found

NVD•added 2023/01/09 12:15 p.m.•9 views

CVE-2021-4311

A vulnerability classified as problematic was found in Talend Open Studio for MDM. This vulnerability affects unknown code of the component XML Handler. The manipulation leads to xml external entity reference. The patch is identified as 31d442b9fb1d518128fd18f6e4d54e06c3d67793. It is recommended ...

9.8CVSS6.7AI score0.00296EPSS

Exploits0References4

Prion•added 2023/01/09 12:15 p.m.•17 views

Xxe

7.5CVSS9.4AI score0.00296EPSS

Exploits0References4Affected Software1

Cvelist•added 2023/01/09 11:20 a.m.•13 views

CVE-2021-4311 Talend Open Studio for MDM XML xml external entity reference

5.5CVSS9.8AI score0.00296EPSS

Exploits0References4

Github Security Blog•added 2023/01/07 9:30 p.m.•18 views

kelvinmo simplexrd vulnerable to Improper Restriction of XML External Entity Reference

A vulnerability classified as problematic was found in kelvinmo simplexrd up to 3.1.0. This vulnerability affects unknown code of the file simplexrd/simplexrd.class.php. The manipulation leads to xml external entity reference. Upgrading to version 3.1.1 is able to address this issue. The name of...

9.8CVSS9.2AI score0.00375EPSS

Exploits0References6Affected Software1

OSV•added 2023/01/07 9:30 p.m.•18 views

GHSA-RH3M-PR36-XH2F kelvinmo simplexrd vulnerable to Improper Restriction of XML External Entity Reference

9.8CVSS7.6AI score0.00375EPSS

Exploits0References6

NVD•added 2023/01/07 8:15 p.m.•16 views

CVE-2015-10029

9.8CVSS6.7AI score0.00375EPSS

Exploits0References4

Cvelist•added 2023/01/07 7:36 p.m.•20 views

CVE-2015-10029 kelvinmo simplexrd simplexrd.class.php xml external entity reference

5.5CVSS9.7AI score0.00375EPSS

Exploits0References4

Github Security Blog•added 2023/01/06 12:31 p.m.•19 views

dssp vulnerable to Improper Restriction of XML External Entity Reference

A vulnerability classified as problematic was found in e-Contract dssp up to 1.3.1. Affected by this vulnerability is the function checkSignResponse of the file dssp-client/src/main/java/be/econtract/dssp/client/SignResponseVerifier.java. The manipulation leads to xml external entity reference...

9.8CVSS3AI score0.00375EPSS

Exploits0References6Affected Software1

Prion•added 2023/01/06 10:15 a.m.•13 views

Xxe

7.5CVSS7.1AI score0.00375EPSS

Exploits0References4Affected Software1

CVE•added 2023/01/06 9:46 a.m.•52 views

CVE-2016-15011

The CVE-2016-15011 issue affects e-Contract dssp up to 1.3.1, specifically the function checkSignResponse in dssp-client/src/main/java/be/e_contract/dssp/client/SignResponseVerifier.java. The root cause is a vulnerability leading to XML External Entity (XXE) reference. A fix is available in dssp ...

9.8CVSS7.5AI score0.00375EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2023/01/05 12:30 p.m.•21 views

aXMLRPC XML External Entity vulnerability

A vulnerability classified as problematic was found in gturri aXMLRPC up to 1.12.0. This vulnerability affects the function ResponseParser of the file src/main/java/de/timroes/axmlrpc/ResponseParser.java. The manipulation leads to xml external entity reference. Upgrading to version 1.12.1 is able...

9.8CVSS9AI score0.00315EPSS

Exploits0References8Affected Software1

OSV•added 2023/01/05 12:15 p.m.•17 views

CVE-2020-36641

9.8CVSS9.6AI score

Exploits0References4

Prion•added 2023/01/05 12:15 p.m.•15 views

Xxe

7.5CVSS9.5AI score0.00315EPSS

Exploits0References4Affected Software1

Cvelist•added 2023/01/05 11:29 a.m.•12 views

CVE-2020-36641 gturri aXMLRPC ResponseParser.java ResponseParser xml external entity reference

5.5CVSS9.6AI score0.00315EPSS

Exploits0References4

CVE•added 2023/01/05 11:29 a.m.•77 views

CVE-2020-36641

The CVE-2020-36641 entry concerns gturri aXMLRPC up to version 1.12.0, where the ResponseParser (src/main/java/de/timroes/axmlrpc/ResponseParser.java) is vulnerable to XML External Entity (XXE) reference manipulation. A fix is available in version 1.14.0, with the patch identified as 456752ebc1ef...

9.8CVSS7.4AI score0.00315EPSS

Exploits0References4Affected Software1

Prion•added 2023/01/05 10:15 a.m.•20 views

Xxe

A vulnerability, which was classified as problematic, was found in bonitasoft bonita-connector-webservice up to 1.3.0. This affects the function TransformerConfigurationException of the file src/main/java/org/bonitasoft/connectors/ws/SecureWSConnector.java. The manipulation leads to xml external...

7.5CVSS9.5AI score0.00369EPSS

Exploits0References5Affected Software1

Cvelist•added 2023/01/05 9:9 a.m.•17 views

CVE-2020-36640 bonitasoft bonita-connector-webservice SecureWSConnector.java TransformerConfigurationException xml external entity reference

5.5CVSS9.6AI score0.00369EPSS

Exploits0References5

CVE•added 2023/01/05 9:9 a.m.•76 views

CVE-2020-36640

In CVE-2020-36640, Bonitasoft bonita-connector-webservice (up to 1.3.0) contains a vulnerability in TransformerConfigurationException in SecureWSConnector.java that leads to an XML External Entity (XXE) reference. The issue is mitigated by upgrading to version 1.3.1; the patch is identified as a1...

9.8CVSS7.5AI score0.00369EPSS

Exploits0References5Affected Software1

NVD•added 2022/12/30 12:15 p.m.•23 views

CVE-2017-20151

A vulnerability classified as problematic was found in iText RUPS. This vulnerability affects unknown code of the file src/main/java/com/itextpdf/rups/model/XfaFile.java. The manipulation leads to xml external entity reference. The patch is identified as ac5590925874ef810018a6b60fec216eee54fb32. ...

9.8CVSS0.00307EPSS

Exploits0References3

Prion•added 2022/12/30 12:15 p.m.•18 views

Xxe

7.5CVSS9.5AI score0.00307EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by