Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2020/06/30 10:48 p.m.112 views

XML External Entity Injection in XStream

Multiple XML external entity XXE vulnerabilities in the 1 Dom4JDriver, 2 DomDriver, 3 JDomDriver, 4 JDom2Driver, 5 SjsxpDriver, 6 StandardStaxDriver, and 7 WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document...

7.5CVSS6.7AI score0.08179EPSS
Exploits0References14Affected Software1
Prion
Prion
added 2016/05/17 2:8 p.m.27 views

Xxe

Multiple XML external entity XXE vulnerabilities in the 1 Dom4JDriver, 2 DomDriver, 3 JDomDriver, 4 JDom2Driver, 5 SjsxpDriver, 6 StandardStaxDriver, and 7 WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document...

5CVSS7.1AI score0.08179EPSS
Exploits0References11Affected Software3
Debian CVE
Debian CVE
added 2016/05/17 2:0 p.m.32 views

CVE-2016-3674

Multiple XML external entity XXE vulnerabilities in the 1 Dom4JDriver, 2 DomDriver, 3 JDomDriver, 4 JDom2Driver, 5 SjsxpDriver, 6 StandardStaxDriver, and 7 WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document...

7.5CVSS7.7AI score0.08179EPSS
Exploits0
Cvelist
Cvelist
added 2016/05/17 2:0 p.m.28 views

CVE-2016-3674

Multiple XML external entity XXE vulnerabilities in the 1 Dom4JDriver, 2 DomDriver, 3 JDomDriver, 4 JDom2Driver, 5 SjsxpDriver, 6 StandardStaxDriver, and 7 WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document...

7.4AI score0.08179EPSS
Exploits0References11
Rows per page
Query Builder