Lucene search
GoogleOSV:GHSA-P9WF-3XPG-C9G5HistorySep 02, 2021 - 5:11 p.m.
XML External Entity Injection in PyWPS
2021-09-0217:11:13
Google
osv.dev
10
xml external entity injection
pywps
owslib 0.24.1
security vulnerability
filesystem access
EPSS
0.005
Percentile
76.4%
An XML external entity (XXE) injection in PyWPS before 4.5.0 allows an attacker to view files on the application server filesystem by assigning a path to the entity. OWSLib 0.24.1 may also be affected.
Related
ubuntucve
ubuntucve
CVE-2021-39371
2021-08-23 00:00:00
prion
prion
Xxe
2021-08-23 01:15:00
cvelist
cvelist
CVE-2021-39371
2021-08-23 00:03:20
osv
osv
PYSEC-2021-121
2021-08-23 01:15:00
pywps - security update
2021-09-04 00:00:00
CVE-2021-39371
2021-08-23 01:15:06
cve
cve
CVE-2021-39371
2021-08-23 01:15:06
nvd
nvd
CVE-2021-39371
2021-08-23 01:15:06
openvas
openvas
Debian: Security Advisory (DLA-2754-1)
2021-09-05 00:00:00
debiancve
debiancve
CVE-2021-39371
2021-08-23 01:15:06
veracode
veracode
XML External Entity (XXE) Injection
2021-08-24 03:36:59
debian
debian
[SECURITY] [DLA 2754-1] pywps security update
2021-09-04 11:15:46
nessus
nessus
Debian DLA-2754-1 : pywps - LTS security update
2021-09-12 00:00:00
github
github
XML External Entity Injection in PyWPS
2021-09-02 17:11:13