9 matches found
XML External Entity (XXE) Injection
io.github.robothy:local-s3-rest is vulnerable to XML External Entity XXE Injection. The vulnerability is due to improper XML parsing due to the service resolving external entities in the CreateBucketConfiguration XML document, allowing attackers to perform server-side request forgery SSRF and lea...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by CVE-2025-27136 via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: CVE-2025-27136 Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9396840...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-47QW-CCJM-9C2C...
XML External Entity (XXE) Injection
Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection when parsing DTD files. External entities referenced in a malicious DTD document are resolved and retrieved. This allows attackers to expose information from internal URLs that are not meant to be...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9399376...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9399367...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-V232-254C-M6P7...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9399373...
io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by CVE-2025-27136 via io.github.robothy:local-s3-rest (>=1.10 <=1.20)
io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: CVE-2025-27136 Source advisory: OSV:GHSA-G6WM-2V64-WQ36...