Lucene search
Veracode Vulnerability DatabaseVERACODE:6271HistoryMay 10, 2018 - 8:08 a.m.
XML External Entity (XXE)
2018-05-1008:08:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
EPSS
0.004
Percentile
72.6%
spring-data-commons is vulnerable to XML external entity (XXE) attacks. The application does not explicitly disable document type declarations by default, allowing a malicious user to pass an XML file that can lead to information disclosure.
Related
f5
f5
K27053426 : Spring data XML vulnerability CVE-2018-1259
2018-05-29 00:00:00
prion
prion
Xxe
2018-05-11 20:29:00
osv
osv
cvelist
cvelist
CVE-2018-1259
2018-05-11 20:00:00
github
github
nvd
nvd
CVE-2018-1259
2018-05-11 20:29:00
redhatcve
redhatcve
CVE-2018-1259
2018-05-16 15:19:19
dsquare
dsquare
Pivotal Spring Data Commons / Spring Data REST XXE File Disclosure
2018-07-27 00:00:00
cve
cve
CVE-2018-1259
2018-05-11 20:29:00
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00