CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-12878

Malware in sbrugna...

9.8CVSS9.3AI score0.00482EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-4092

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.00377EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 8:10 a.m.•4 views

CVE-2018-20318

An issue was discovered in weixin-java-tools v3.2.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file...

9.8CVSS6.8AI score0.00482EPSS

Exploits1References1

Github Security Blog•added 2022/05/14 1:40 a.m.•11 views

XML External Entity Reference in weixin-java-tools

An issue was discovered in weixin-java-tools. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file. NOTE: this issue exists because of an incomplete fix for CVE-2018-20318...

9.8CVSS7.2AI score0.00377EPSS

Exploits1References5Affected Software1

OSV•added 2022/05/14 1:40 a.m.•9 views

GHSA-H755-H99P-9FFV XML External Entity Reference in weixin-java-tools

9.8CVSS9.5AI score0.00377EPSS

Exploits1References4

OSV•added 2019/01/04 4:29 p.m.•11 views

CVE-2019-5312

An issue was discovered in weixin-java-tools v3.3.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file. NOTE: this issue exists because of an incomplete fix for CVE-2018-20318...

9.8CVSS9.6AI score

Exploits0References1

NVD•added 2019/01/04 4:29 p.m.•10 views

CVE-2019-5312

9.8CVSS9.6AI score0.00377EPSS

Exploits1References1

CVE•added 2019/01/04 4:0 p.m.•34 views

CVE-2019-5312

CVE-2019-5312 affects weixin-java-tools v3.3.0. An XXE vulnerability exists in BaseWxPayResult.getXmlDoc, tied to an incomplete fix for CVE-2018-20318. Public references indicate high/critical impact (NETWORK, no authentication, victim capable of network access) with both CVSS v2 (7.5, PARTIAL co...

9.8CVSS9.4AI score0.00377EPSS

Exploits1References1Affected Software1

OSV•added 2018/12/21 12:29 a.m.•12 views

CVE-2018-20318

An issue was discovered in weixin-java-tools v3.2.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file...

9.8CVSS9.4AI score

Exploits0References1

NVD•added 2018/12/21 12:29 a.m.•14 views

CVE-2018-20318

An issue was discovered in weixin-java-tools v3.2.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file...

9.8CVSS9.4AI score0.00482EPSS

Exploits1References1

CVE•added 2018/12/21 12:0 a.m.•36 views

CVE-2018-20318

CVE-2018-20318: Weixin-java-tools v3.2.0 has an XXE vulnerability in the BaseWxPayResult.getXmlDoc method. Root cause: XML External Entity processing likely not mitigated. Exploit details and specific impact are not provided in the connected documents. No remediation is specified in the supplied ...

9.8CVSS9.3AI score0.00482EPSS

Exploits1References1Affected Software1