CVE-2022-22825

lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

PT-2022-1586 · Expat +12 · Expat +12

Name of the Vulnerable Software and Affected Versions: Expat aka libexpat versions prior to 2.4.3 Description: The issue is related to an integer overflow in the lookup function of the xmlparse.c file in the Expat library. This can potentially allow a remote attacker to cause a denial of service...

CVE-2021-46143

In doProlog in xmlparse.c in Expat aka libexpat before 2.4.3, an integer overflow exists for mgroupSize...

PT-2022-1754

Name of the Vulnerable Software and Affected Versions Expat versions prior to 2.4.3 Description The issue is related to an integer overflow in the doProlog function of the xmlparse.c file in the Expat library. This could allow a remote attacker to impact the confidentiality, integrity, and...

ALPINE-CVE-2021-45960

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

AZL-7124 CVE-2021-45960 affecting package expat for versions less than 2.4.3-1

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

DEBIAN-CVE-2021-45960

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

UBUNTU-CVE-2021-45960

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

CVE-2021-45960

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...

Mura CMS Server-Side Request Forgery / XXE Injection

Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on: Windows 2008 w/ Coldfusion 8 CVE: CVE-2017-15639 Category:...

Mura CMS < 6.2 - Server-Side Request Forgery / XML External Entity Injection Vulnerabilities

Exploit for unknown platform in category web applications Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on:...

Mura CMS &lt; 6.2 - Server-Side Request Forgery / XML External Entity Injection

Exploit Title: Mura CMS before 6.2 SSRF + XXE Date: 30-10-2017 Exploit Author: Anthony Cole Vendor Homepage: http://www.getmura.com/ Version: before 6.2 Contact: http://twitter.com/acole76 Website: http://twitter.com/acole76 Tested on: Windows 2008 w/ Coldfusion 8 CVE: CVE-2017-15639 Category:...

CVE-2013-6025

The XMLParse procedure in SAP Sybase Adaptive Server Enterprise ASE 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an external entity declaration in conjunction with an entity reference, related to an XML External Entity XX...

Xxe

The XMLParse procedure in SAP Sybase Adaptive Server Enterprise ASE 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an external entity declaration in conjunction with an entity reference, related to an XML External Entity XX...

CVE-2013-6025

The XMLParse procedure in SAP Sybase Adaptive Server Enterprise ASE 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an external entity declaration in conjunction with an entity reference, related to an XML External Entity XX...

CVE-2013-6025

CVE-2013-6025 concerns XMLExternalEntity (XXE) processing in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 ESD 2. The XMLParse procedure lets remote authenticated users read arbitrary files via a crafted XML document containing an external entity declaration. Affected product/version: SAP ASE ...

CVE-2012-1148

CVE-2012-1148 is a denial-of-service vulnerability in Expat: a memory leak in poolGrow when expanding entities can be triggered by processing crafted XML, leading to increased memory usage and potential crash of the application using the vulnerable Expat library. The vulnerability is listed acros...

IBM DB2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities

The host is running IBM DB2 and is prone to denial of service and security bypass vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmdb2xmldosncreatevarsecbypassvuln.nasl 5999 2017-04-21 09:02:32Z teissa $ IBM DB2 XML Feature DoS and CREATE VARIABLE Security Bypass Vulnerabilities Authors:...

CVE-2012-0712

The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 allows remote authenticated users to cause a denial of service infinite loop by calling the XMLPARSE function with a crafted string expression...

openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-1334)

Multiple issues have been fixed in php5 : - phpopensslapplyverificationpolicy fails to verify certificate CVE-2009-3291 - 'missing sainity checks around exif' CVE-2009-3292 - unspecified vulnerability in the imagecolortransparent CVE-2009-3293 - denial of service in exif module CVE-2009-2687...