Linux Distros Unpatched Vulnerability : CVE-2022-39353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. xmldom parses XML that is not well-formed because it...

xmldom allows multiple root nodes in a DOM

...

DEBIAN-CVE-2022-39353

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the childNodes collection of the Document, without reporting any error or...

CVE-2022-39353 xmldom allows multiple root nodes in a DOM

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the childNodes collection of the Document, without reporting any error or...

PT-2022-5710 · Npm +2 · Xmldom +2

Name of the Vulnerable Software and Affected Versions: xmldom versions prior to 0.7.7 xmldom versions prior to 0.8.4 xmldom versions prior to 0.9.0-beta.4 Description: The issue is related to the xmldom module, which is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and...

CVE-2010-1954

CVE-2010-1954 is a directory traversal vulnerability in the Joomla! iNetLanka component “com_multiroot” (versions 1.0 and 1.1). The flaw allows a remote attacker to read arbitrary files via a ".." path in the controller parameter to index.php, i.e., a Local File Inclusion (LFI). The Nuclei templa...