CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 12:36 p.m.•3 views

CVE-2023-49656

Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

9.8CVSS6.7AI score0.00047EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:56 a.m.•3 views

CVE-2020-12684

XXE injection can occur in i-net Clear Reports 2019 19.0.287 Designer, as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a weakly configured XML parser...

9.8CVSS7.2AI score0.00428EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-0458

Malware in sbrugna...

5CVSS8.1AI score0.00714EPSS

Exploits0References40

RedhatCVE•added 2025/05/23 3:37 a.m.•5 views

CVE-2023-28680

Jenkins Crap4J Plugin 0.9 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.5CVSS6.7AI score0.01424EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:11 p.m.•5 views

CVE-2021-21701

Jenkins Performance Plugin 3.20 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

6.5CVSS6.7AI score0.00386EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:53 p.m.•7 views

CVE-2020-2245

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

7.1CVSS6.7AI score0.00168EPSS

Exploits0

Vulnrichment•added 2025/04/15 8:0 p.m.•4 views

CVE-2025-31497 TEIGarage XML External Entity (XXE) Injection in Document Conversion Service

TEIGarage is a webservice and RESTful service to transform, convert and validate various formats, focussing on the TEI format. The Document Conversion Service contains a critical XML External Entity XXE Injection vulnerability in its document conversion functionality. The service processes XML...

7.5CVSS7.2AI score0.00132EPSS

Exploits0References1

Rosalinux•added 2025/01/28 11:4 a.m.•7 views

Advisory ROSA-SA-2025-2604

software: expat 2.6.2 OS: ROSA-CHROME packageevrstring: expat-2.6.2-1 CVE-ID: CVE-2023-52426 BDU-ID: 2024-04334 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the libexpat XML file parsing library is related to improper restriction of recursive object references in DTDs. Exploitation of the...

7.5CVSS7.8AI score0.01552EPSS

Exploits2

Debian•added 2015/11/29 10:45 p.m.•56 views

[SECURITY] [DLA 355-1] libxml2 security update

Package : libxml2 Version : 2.7.8.dfsg-2+squeeze15 CVE ID : CVE-2015-8241 CVE-2015-8317 Debian Bug : 806384 CVE-2015-8241 Buffer overread with XML parser in xmlNextChar CVE-2015-8317 - issues in the xmlParseXMLDecl function: If we fail conversing the current input stream while processing the...

6.8CVSS8AI score0.01012EPSS

Exploits2

RedHat Linux•added 2009/11/09 3:37 p.m.•74 views

Important: Red Hat Security Advisory: tomcat security update

Updated tomcat packages that fix several security issues are now available for Red Hat Developer Suite 3. This update has been rated as having important security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP...

5CVSS6.1AI score0.88173EPSS

Exploits8References7

Ubuntu•added 2009/06/15 2:36 p.m.•74 views

USN-788-1: Tomcat vulnerabilities

Iida Minehiko discovered that Tomcat did not properly normalise paths. A remote attacker could send specially crafted requests to the server and bypass security restrictions, gaining access to sensitive content. CVE-2008-5515 Yoshihito Fukuyama discovered that Tomcat did not properly handle error...

5CVSS5.3AI score0.88173EPSS

Exploits8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by