Lucene search
China National Vulnerability DatabaseCNVD-2022-21221HistoryMar 08, 2022 - 12:00 a.m.
Apache Any23 code issue vulnerability
2022-03-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
apache any23
vulnerability
code issue
exploitation
xml data
server file system
back-end systems
external systems
application security
EPSS
0.002
Percentile
55.2%
Apache Any23 is a library, Web service, and command-line tool from the Apache Foundation, USA. It can extract structured data in RDF format from a variety of Web documents.Any23 versions prior to 2.7 contain a code issue vulnerability that could be exploited by an attacker to interfere with an application’s processing of XML data, view files on the application’s server file system, and interact with any back-end or external systems that the application itself can access.
Related
osv
osv
Improper Restriction of XML External Entity Reference in Any23
2022-03-06 00:00:17
CVE-2022-25312
2022-03-05 00:15:07
prion
prion
Xxe
2022-03-05 00:15:00
nvd
nvd
CVE-2022-25312
2022-03-05 00:15:07
veracode
veracode
XML External Entity (XXE) Injection
2022-03-07 09:00:15
cvelist
cvelist
github
github
Improper Restriction of XML External Entity Reference in Any23
2022-03-06 00:00:17
cve
cve
CVE-2022-25312
2022-03-05 00:15:07