Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

Veracode
Veracodeadded 2024/11/25 5:28 a.m.7 views

Path Traversal

net.sf.mpxj, mpxj is vulnerable to Path Traversal. The vulnerability is due to an incomplete patch for CVE-2020-35460, which still allows the construction of malicious paths to write files to arbitrary locations...

5.3CVSS6.8AI score0.00476EPSS
Exploits0References3Affected Software5
Vulnrichment
Vulnrichmentadded 2022/11/25 12:0 a.m.10 views

CVE-2022-41954 Temporary File Information Disclosure Vulnerability

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...

3.3CVSS3.5AI score0.00027EPSS
Exploits0References2
CNNVD
CNNVDadded 2022/11/25 12:0 a.m.1 views

MPXJ 安全漏洞

MPXJ is an open source library for Jon Iles individual developers. It is used to read and write project plans from various file formats and databases. A security vulnerability exists in MPXJ versions prior to 10.14.1 that stems from the use of File.createTempFile... This causes a temporary file t...

3.3CVSS5AI score0.00027EPSS
Exploits0References4
Prion
Prionadded 2020/08/29 7:15 p.m.18 views

Design/Logic Flaw

MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components...

7.5CVSS9.4AI score0.0163EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder