Lucene search
K

7 matches found

NVD
NVD
added 2024/11/11 7:15 p.m.10 views

CVE-2024-51135

An XML External Entity XXE vulnerability in the component DocumentBuilderFactory of powertac-server v1.9.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities...

9.8CVSS0.01014EPSS
Exploits0References4
CVE
CVE
added 2024/11/11 12:0 a.m.45 views

CVE-2024-51135

CVE-2024-51135 describes an XML External Entity (XXE) vulnerability in the powertac-server component, specifically in DocumentBuilderFactory used by powertac-server v1.9.0. Exploitation could allow an attacker to access sensitive information or execute arbitrary code by supplying crafted XML enti...

9.8CVSS7.4AI score0.01014EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/11 12:0 a.m.18 views

CVE-2024-51135

An XML External Entity XXE vulnerability in the component DocumentBuilderFactory of powertac-server v1.9.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities...

0.01014EPSS
Exploits0References4
NVD
NVD
added 2024/11/05 5:15 p.m.15 views

CVE-2024-51132

An XML External Entity XXE vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities...

9.8CVSS0.01851EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/05 12:0 a.m.10 views

CVE-2024-51132

An XML External Entity XXE vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities...

7.2AI score0.01851EPSS
Exploits1References2
GitLab Advisory Database
GitLab Advisory Database
added 2024/11/05 12:0 a.m.23 views

HAPI FHIR XML External Entity (XXE) vulnerability

An XML External Entity XXE vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities...

9.8CVSS6.7AI score0.01851EPSS
Exploits1References5
Atlassian
Atlassian
added 2014/06/24 5:47 a.m.34 views

Remote DoS Exploit on JIRA

An attacker is able to perform the billion laughs attack on a default JIRA installation including OnDemand installations. This attack can be executed without authentication and leads to the complete use of resources on the victim machine causing the server to crash or hang. It is possible due to...

0.2AI score
Exploits0Affected Software1
Rows per page
Query Builder