Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2020/09/14 6:44 p.m.67 views

XXE in Apache Standard Taglibs

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS8.6AI score0.1326EPSS
Exploits0References24Affected Software2
Veracode
Veracode
added 2019/01/15 9:9 a.m.30 views

XML External Entity (XXE) Through An XSLT Extension

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS8.3AI score0.1326EPSS
Exploits0References47Affected Software100
NVD
NVD
added 2015/03/09 2:59 p.m.19 views

CVE-2015-0254

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS9.6AI score0.1326EPSS
Exploits0References23
Prion
Prion
added 2015/03/09 2:59 p.m.21 views

Xxe

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS7.9AI score0.1326EPSS
Exploits0References23Affected Software2
Cvelist
Cvelist
added 2015/03/09 2:0 p.m.27 views

CVE-2015-0254

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

9.3AI score0.1326EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2015/03/09 12:0 a.m.32 views

CVE-2015-0254

Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...

7.5CVSS7AI score0.1326EPSS
Exploits0References3
Rows per page
Query Builder