Lucene search
GoogleOSV:GHSA-28RM-RJ57-QJPVHistoryMay 17, 2022 - 4:42 a.m.
PHPExcel vulnerable to XXE attacks through libxml
2022-05-1704:42:46
Google
osv.dev
6
phpexcel
vulnerability
xxe
libxml
owncloud
server
remote attackers
PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, does not disable external entity loading in libxml, which allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
References
Related
cve
cve
CVE-2014-2054
2014-06-04 14:55:03
cvelist
cvelist
CVE-2014-2054
2014-06-04 14:00:00
prion
prion
Xxe
2014-06-04 14:55:00
seebug
seebug
PHPExcel XMLĺ¤é¨ĺŽä˝ĺ¤çćźć´
2014-03-18 00:00:00
github
github
PHPExcel vulnerable to XXE attacks through libxml
2022-05-17 04:42:46
nvd
nvd
CVE-2014-2054
2014-06-04 14:55:03
ubuntucve
ubuntucve
CVE-2014-2054
2014-06-04 00:00:00
owncloud
owncloud
Server: XXE in multiple third party components
2014-07-03 02:00:00
XXE in multiple third party components - ownCloud
2014-07-03 18:22:45
openvas
openvas
ownCloud Multiple Vulnerabilities-02 (Jul 2014)
2014-07-03 00:00:00