5 matches found
EUVD-2024-3187
Malicious code in bioql PyPI...
EUVD-2024-47050
Malicious code in bioql PyPI...
CVE-2025-35112
CVE-2025-35112 describes an XML External Entities path-traversal vulnerability in Agiloft Release 28, exploitable via any table that allows import/export. An authenticated attacker can import a template file and traverse local system files. The issue is caused by improper handling of XML entities...
PT-2018-9118 · Microsoft · Windows Server 2012 +7
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8.1 and RT 8.1 Microsoft Windows Server 2012 and R2 Microsoft Windows 10 versions 1511, 1607, 1703, and 1709 Microsoft Windows Server 2016 and Windows...
PT-2013-72: XML External Entities Resolution vulnerability in Microsoft Office Excel
The specialists of the Positive Research center have detected an XML External Entities Resolution vulnerability in Microsoft Office Excel. The vulnerability is possible due to unsafe parsing of XML external entities. If an attacker makes a victim open a specially crafted XML document, Microsoft...