CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2026/01/09 9:52 a.m.•6 views

CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS6.9AI score0.00338EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-0183

Malware in sbrugna...

9.8CVSS9AI score0.00338EPSS

Exploits1References6

Veracode•added 2021/05/10 3:6 p.m.•13 views

XML External Entity (XXE)

svglib is vulnerable to XML External Entity attacks. The vulnerability exists due to svglib not sanitizing the XML input containing reference to external entity by the XML parser...

9.8CVSS4.5AI score0.00338EPSS

Exploits1References2Affected Software1

Github Security Blog•added 2021/05/06 6:52 p.m.•56 views

SVGlib Vulnerable to XXE Attacks

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS9AI score0.00338EPSS

Exploits1References5Affected Software1

OSV•added 2021/05/06 6:52 p.m.•9 views

GHSA-3VCG-8P79-JPCV SVGlib Vulnerable to XXE Attacks

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS9.4AI score0.00338EPSS

Exploits1References6

CNVD•added 2020/03/23 12:0 a.m.•2 views

svglib package for Python code issue vulnerability

svglib package for Python is a Python library for reading and converting SVG files. A code issue vulnerability exists in svglib package 0.9.3 and earlier Python, which can be exploited by an attacker to conduct an XXE attack via a svg2rlg call...

9.8CVSS7.1AI score0.00338EPSS

Exploits1References1

NVD•added 2020/03/20 11:15 p.m.•6 views

CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS9.5AI score0.00338EPSS

Exploits1References1

OSV•added 2020/03/20 11:15 p.m.•8 views

CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS9.5AI score

Exploits0References1

OSV•added 2020/03/20 11:15 p.m.•16 views

PYSEC-2020-111

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS4.5AI score0.00338EPSS

Exploits1References2

PyPA•added 2020/03/20 11:15 p.m.•6 views

PYSEC-2020-111

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.8CVSS7AI score0.00338EPSS

Exploits1References2Affected Software1

Prion•added 2020/03/20 11:15 p.m.•12 views

Design/Logic Flaw

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

7.5CVSS9.5AI score0.00338EPSS

Exploits1References1Affected Software1

CVE•added 2020/03/20 10:40 p.m.•156 views

CVE-2020-10799

CVE-2020-10799 affects the Python svglib package up to version 0.9.3, allowing XXE attacks via an svg2rlg call. Multiple connected sources (Red Hat, OSV, GHSA, CNVD, NVD) corroborate the issue. Reported impact is high/critical with potential disclosure and manipulation of XML input affecting conf...

9.8CVSS9.3AI score0.00338EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/03/20 10:40 p.m.•12 views

CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call...

9.6AI score0.00338EPSS

Exploits1References1

ATTACKERKB•added 2020/03/20 12:0 a.m.•18 views

CVE-2020-10799

The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call. Recent assessments: ericalexanderorg at March 21, 2020 1:24pm UTC reported: XXE vulnerability in library that’s in use by over 500 projects on Github. Assessed Attacker Value: 3 Assessed Attacker Value: 3Assessed...

9.8CVSS4.3AI score0.00338EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by