CVE-2024-12148

Incorrect authorization in permission validation component in Devolutions Server 2024.3.6.0 and earlier allows an authenticated user to access some reporting endpoints...

PT-2024-23629 · Rainbow · Rainbow

Name of the Vulnerable Software and Affected Versions: Rainbow external link network disk version 5.5 Description: The issue allows a remote attacker to execute arbitrary code via the validation component of the input parameters. This is a Cross Site Scripting vulnerability. Recommendations: For...

CVE-2024-30845

Rainbow external link network disk v.5.5 is affected by a Cross Site Scripting vulnerability. The issue arises in the validation component of input parameters and can allow a remote attacker to execute arbitrary code. Public documents consistently describe the vulnerability and affected version b...

CVE-2024-30845

Cross Site Scripting vulnerability in Rainbow external link network disk v.5.5 allows a remote attacker to execute arbitrary code via the validation component of the input parameters...

CVE-2023-43139

An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via the validation.php, and controllers/front/validation.php components...

PT-2023-28713 · Unknown · Franfinance

Name of the Vulnerable Software and Affected Versions: franfinance versions prior to 2.0.27 Description: The issue allows a remote attacker to execute arbitrary code via the validation.php and controllers/front/validation.php components. Recommendations: For versions prior to 2.0.27, update to...

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

Description: The Validation Component of Apache Camel evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...

GHSA-VQ9J-JH62-5HMP Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

Description: The Validation Component of Apache Camel evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...

camel-core: Validation component vulnerable to SSRF via remote DTDs and XXE

It was found that Apache Camel's validation component evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...

Apache Camel Validation Component Request Forgery Vulnerability

Apache Camel is the United States Apache Apache Software Foundation of a set of open source based on Enterprise Integration Pattern Enterprise Integration Pattern , referred to as EIP integration framework. The framework provides Enterprise Integration Pattern of Java objects POJO implementation ...

Server side request forgery (ssrf)

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE...

CVE-2017-5643

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE...

CVE-2017-5643

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE...

CVE-2017-5643

The CVE-2017-5643 issue affects Apache Camel’s Validation Component, which is vulnerable to SSRF via remote DTDs and XML External Entities (XXE) in XML streams. The vulnerability arises when the component processes DTDs/XXEs, allowing remote resources to be fetched. Impact details in connected do...

CVE-2017-5643

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE...

CVE-2016-1483

Cisco WebEx Meetings Server 2.6 allows remote attackers to cause a denial of service CPU consumption by repeatedly accessing the account-validation component of an unspecified service, aka Bug ID CSCuy92704...