Lucene search
GoogleOSV:PYSEC-2021-121HistoryAug 23, 2021 - 1:15 a.m.
PYSEC-2021-121
2021-08-2301:15:00
Google
osv.dev
8
xml external entity
xxe injection
pywps
owslib
file viewing
application server
filesystem
EPSS
0.005
Percentile
76.4%
An XML external entity (XXE) injection in PyWPS before 4.5.0 allows an attacker to view files on the application server filesystem by assigning a path to the entity. OWSLib 0.24.1 may also be affected.
Related
ubuntucve
ubuntucve
CVE-2021-39371
2021-08-23 00:00:00
prion
prion
Xxe
2021-08-23 01:15:00
cvelist
cvelist
CVE-2021-39371
2021-08-23 00:03:20
osv
osv
pywps - security update
2021-09-04 00:00:00
XML External Entity Injection in PyWPS
2021-09-02 17:11:13
CVE-2021-39371
2021-08-23 01:15:06
cve
cve
CVE-2021-39371
2021-08-23 01:15:06
nvd
nvd
CVE-2021-39371
2021-08-23 01:15:06
openvas
openvas
Debian: Security Advisory (DLA-2754-1)
2021-09-05 00:00:00
debiancve
debiancve
CVE-2021-39371
2021-08-23 01:15:06
veracode
veracode
XML External Entity (XXE) Injection
2021-08-24 03:36:59
debian
debian
[SECURITY] [DLA 2754-1] pywps security update
2021-09-04 11:15:46
nessus
nessus
Debian DLA-2754-1 : pywps - LTS security update
2021-09-12 00:00:00
github
github
XML External Entity Injection in PyWPS
2021-09-02 17:11:13