Lucene search
Veracode Vulnerability DatabaseVERACODE:31402HistoryJul 29, 2021 - 3:04 a.m.
XML Injection
2021-07-2903:04:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
35.7%
xmldom is vulnerable to XML injection. The library correctly escapes special characters when serializing elements removed from their ancestor, potentially leading to unexpected syntactic changes during XML processing.
| CPE | Name | Operator | Version |
|---|---|---|---|
| xmldom | le | 0.6.0 | |
| xmldom | eq | 0.1.16 | |
| node-xmldom:sid | eq | 0.1.27+ds-1 | |
| node-xmldom:sid | eq | 0.4.0-2 | |
| xmldom | le | 0.6.0 | |
| xmldom | eq | 0.1.16 | |
| node-xmldom:sid | eq | 0.1.27+ds-1 | |
| node-xmldom:sid | eq | 0.4.0-2 |
Related
redhatcve
redhatcve
CVE-2021-32796
2021-07-29 14:25:41
osv
osv
CVE-2021-32796
2021-07-27 22:15:07
Misinterpretation of malicious XML input
2021-08-03 16:57:05
cvelist
cvelist
CVE-2021-32796 Misinterpretation of malicious XML input in xmldom
2021-07-27 21:45:13
prion
prion
Input validation
2021-07-27 22:15:00
debiancve
debiancve
CVE-2021-32796
2021-07-27 22:15:07
nvd
nvd
CVE-2021-32796
2021-07-27 22:15:07
github
github
Misinterpretation of malicious XML input
2021-08-03 16:57:05
cve
cve
CVE-2021-32796
2021-07-27 22:15:07
ubuntucve
ubuntucve
CVE-2021-32796
2021-07-27 00:00:00
nodejs
nodejs
Misinterpretation of malicious XML input
2021-08-03 16:57:27
