Lucene search
K

7 matches found

NVD
NVD
added 2021/11/01 2:15 a.m.22 views

CVE-2021-20839

Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity XXE attack to cause a denial of service DoS condition to the other servers by processing a specially crafted XML document...

6.5CVSS0.01102EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/10/31 7:51 p.m.28 views

CVE-2020-26705

The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity XXE vulnerability which allows for an attacker to expose sensitive data or perform a denial of service DOS via a crafted external entity entered into the XML content as input...

9AI score0.0129EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2018/12/14 11:0 p.m.11 views

CVE-2018-20157

The data import functionality in OpenRefine through 3.1 allows an XML External Entity XXE attack through a crafted zip file, allowing attackers to read arbitrary files...

7.5CVSS7.4AI score0.01738EPSS
Exploits1
OSV
OSV
added 2017/10/10 6:29 p.m.28 views

CVE-2017-12623

An authorized user could upload a template which contained malicious code and accessed sensitive files via an XML External Entity XXE attack. The fix to properly handle XML External Entities was applied on the Apache NiFi 1.4.0 release. Users running a prior 1.x release should upgrade to the...

6.5CVSS6.9AI score0.0194EPSS
Exploits3References1
Prion
Prion
added 2014/06/04 2:55 p.m.18 views

Xxe

PHPDocX, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity XXE attack...

7.5CVSS8AI score0.02253EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2013/05/02 2:55 p.m.25 views

CVE-2012-5657

The 1 ZendFeedRss and 2 ZendFeedAtom classes in ZendFeed in Zend Framework 1.11.x before 1.11.15 and 1.12.x before 1.12.1 allow remote attackers to read arbitrary files, send HTTP requests to intranet servers, and possibly cause a denial of service CPU and memory consumption via an XML External...

5CVSS9.3AI score0.01705EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2012/03/23 12:0 a.m.29 views

RHEL 5 : openoffice.org (RHSA-2012:0411)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:0411 advisory. OpenOffice.org is an office productivity suite that includes desktop applications, such as a word processor, spreadsheet application, presentation...

6.5CVSS7AI score0.13682EPSS
Exploits2References5
Rows per page
Query Builder