70 matches found
USN-2551-1: Apache Standard Taglibs vulnerability
David Jorm discovered that the Apache Standard Taglibs incorrectly handled external XML entities. A remote attacker could possibly use this issue to execute arbitrary code or perform other external XML entity attacks...
KLA10483 Code execution vulnerability in Apache Standard Taglib
An unspecified vulnerability was found in Apache Standard Taglibs. By exploiting this vulnerability malicious users execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XSLT extension. Original advisories - Related products Standard-Taglibs CVE list...
CVE-2015-0254
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...
Xxe
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...
CVE-2015-0254
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...
CVE-2015-0254
CVE-2015-0254 : Apache Standard Taglibs before 1.2.3 allows remote code execution/XXE via a crafted XSLT extension in a JSTL XML tag (/). Affects JSTL/Taglibs; root cause is XXE. Public fixes exist in 1.2.3 and later; apply upgrade to mitigate. IBM bulletins also reference this CVE and note remed...
CVE-2015-0254
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...
UBUNTU-CVE-2015-0254
Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity XXE attacks via a crafted XSLT extension in a 1 or 2 JSTL XML tag...
Apache taglibs security vulnerabilities
Code executions, XXE...
Apache Standard Taglibs XML External Entity Injection Vulnerability
Apache Standard Taglibs is the United States Apache Apache Software Foundation of a JSP Standard Tag Library JSTL specification implementation. An injection vulnerability exists in the Apache Standard Taglibs XML external entity, which could be exploited by an attacker to execute arbitrary code i...