8 matches found
EUVD-2023-31863
Malicious code in bioql PyPI...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
Xxe
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
CVE-2023-28152
An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity XXE injection via a remote DTD in a DOCX file...
Independentsoft JWord 代码问题漏洞
Independentsoft JWord is a Microsoft Word-compatible API for Java and Android from Independentsoft, Germany. A security vulnerability exists in Independentsoft JWord versions prior to 1.1.110, which stems from the API's susceptibility to XML External Entity XXE injection via a remote DTD in a DOC...
CVE-2023-28152
Independentsoft JWord before 1.1.110 is affected by an XML External Entity (XXE) injection via a remote DTD in a DOCX file. The.Root cause is an XXE vulnerability in the API that parses DOCX content, enabling unauthorized data access or manipulation. Impact in the NVD listing shows high severity ...