Lucene search
K

23 matches found

EUVD
EUVD
added 2026/05/11 6:31 p.m.12 views

EUVD-2026-29095

Docling's METS GBS backend is vulnerable to XML Entity Expansion XXE attacks thru 2.61.0. The backend extracts and validates XML files from .tar.gz archives using etree.fromstring without disabling entity resolution. An attacker can craft a malicious XML file with nested entity definitions XML Bo...

5.8AI score0.00278EPSS
Exploits0References3
OSV
OSV
added 2026/05/11 6:31 p.m.6 views

GHSA-9F4Q-Q82Q-4359 Docling's METS GBS backend is vulnerable to XML Entity Expansion (XXE) attacks

Docling's METS GBS backend is vulnerable to XML Entity Expansion XXE attacks thru 2.61.0. The backend extracts and validates XML files from .tar.gz archives using etree.fromstring without disabling entity resolution. An attacker can craft a malicious XML file with nested entity definitions XML Bo...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References3
Snyk
Snyk
added 2026/05/11 5:19 p.m.10 views

Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

Overview docling is a SDK and CLI for parsing PDF, DOCX, HTML, and more, to a unified document representation for powering downstream workflows such as gen AI applications. Affected versions of this package are vulnerable to Improper Restriction of Recursive Entity References in DTDs 'XML Entity...

8.7CVSS5.8AI score0.00278EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/11 12:0 a.m.31 views

CVE-2026-31248

Docling's METS GBS backend is vulnerable to XML Entity Expansion XXE attacks thru 2.61.0. The backend extracts and validates XML files from .tar.gz archives using etree.fromstring without disabling entity resolution. An attacker can craft a malicious XML file with nested entity definitions XML Bo...

0.00278EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.11 views

PT-2026-39633

Docling's METS GBS backend is vulnerable to XML Entity Expansion XXE attacks thru 2.61.0. The backend extracts and validates XML files from .tar.gz archives using etree.fromstring without disabling entity resolution. An attacker can craft a malicious XML file with nested entity definitions XML Bo...

5.8AI score0.00278EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : python39:3.9 and python39-devel:3.9 (AXSA:2023-5973:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5973:01 advisory. python: int type in PyLongFromString does not limit amount of digits converting text to int leading to DoS CVE-2020-10735 python: open redirection...

7.5CVSS7AI score0.03213EPSS
Exploits1References4
Snyk
Snyk
added 2024/12/02 4:42 p.m.1 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection due to improper sanitization of XML body in the fromString function. Workaround Remove the LIBXMLDTDLOAD | LIBXMLDTDATTR options from $options Details XXE Injection is a type of attack against an...

8.8CVSS7.5AI score0.00414EPSS
Exploits0References2
Snyk
Snyk
added 2024/12/02 4:42 p.m.4 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection due to improper sanitization of XML body in the fromString function. Workaround Remove the LIBXMLDTDLOAD | LIBXMLDTDATTR options from $options Details XXE Injection is a type of attack against an...

8.8CVSS7.5AI score0.00414EPSS
Exploits0References2
Snyk
Snyk
added 2024/12/02 4:42 p.m.1 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection due to improper sanitization of XML body in the fromString function. Workaround Remove the LIBXMLDTDLOAD | LIBXMLDTDATTR options from $options Details XXE Injection is a type of attack against an...

8.8CVSS7.5AI score0.00414EPSS
Exploits0References2
Snyk
Snyk
added 2024/12/02 4:42 p.m.1 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection due to improper sanitization of XML body in the fromString function. Workaround Remove the LIBXMLDTDLOAD | LIBXMLDTDATTR options from $options Details XXE Injection is a type of attack against an...

8.8CVSS7.5AI score0.00414EPSS
Exploits0References2
Snyk
Snyk
added 2024/12/02 4:42 p.m.4 views

XML External Entity (XXE) Injection

Overview simplesamlphp/simplesamlphp is a PHP implementation of a SAML 2.0 service provider and identity provider, also compatible with Shibboleth 1.3 and 2.0. Affected versions of this package are vulnerable to XML External Entity XXE Injection due to improper sanitization of XML body in the...

8.8CVSS7.6AI score0.00414EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/04/17 2:22 a.m.1 views

SUSE CVE-2024-3572

The scrapy/scrapy project is vulnerable to XML External Entity XXE attacks due to the use of lxml.etree.fromstring for parsing untrusted XML data without proper validation. This vulnerability allows attackers to perform denial of service attacks, access local files, generate network connections, ...

7.5CVSS6.8AI score0.00807EPSS
Exploits1References3
OSV
OSV
added 2024/04/16 12:15 a.m.4 views

DEBIAN-CVE-2024-3572

The scrapy/scrapy project is vulnerable to XML External Entity XXE attacks due to the use of lxml.etree.fromstring for parsing untrusted XML data without proper validation. This vulnerability allows attackers to perform denial of service attacks, access local files, generate network connections, ...

7.5CVSS7.5AI score0.00807EPSS
Exploits1References1
OSV
OSV
added 2024/04/16 12:15 a.m.4 views

UBUNTU-CVE-2024-3572

The scrapy/scrapy project is vulnerable to XML External Entity XXE attacks due to the use of lxml.etree.fromstring for parsing untrusted XML data without proper validation. This vulnerability allows attackers to perform denial of service attacks, access local files, generate network connections, ...

7.5CVSS5.8AI score0.00807EPSS
Exploits1References7
OSV
OSV
added 2020/07/01 12:0 a.m.10 views

OSV-2020-468 Stack-buffer-overflow in ot::Ip6::Address::FromString

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14821 Crash type: Stack-buffer-overflow WRITE 1 Crash state: ot::Ip6::Address::FromString ot::Cli::Coap::ProcessRequest ot::Cli::Interpreter::ProcessCoap...

7.2AI score
Exploits0References1
Veracode
Veracode
added 2019/01/31 2:40 a.m.13 views

XPath Injection

python-saml is vulnerable to xpath injection attacks. The vulnerability exists as DTD on the fromstring method was not disabled by default, allowing xpath injection attacks...

7AI score
Exploits0
Github Security Blog
Github Security Blog
added 2018/09/17 8:44 p.m.46 views

js-bson vulnerable to REDoS

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS7.1AI score0.01941EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2018/07/10 11:48 p.m.32 views

CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS3.9AI score0.01941EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/07/10 8:29 p.m.18 views

CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS7.1AI score0.01941EPSS
Exploits1References2
NVD
NVD
added 2018/07/10 8:29 p.m.33 views

CVE-2018-13863

The MongoDB bson JavaScript module also known as js-bson versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service ReDoS in lib/bson/decimal128.js. The flaw is triggered when the Decimal128.fromString function is called to parse a long untrusted string...

7.5CVSS7.4AI score0.01941EPSS
Exploits1References2
Rows per page
Query Builder