Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:26515
HistoryAug 31, 2020 - 3:09 a.m.

XML External Entity (XXE)

2020-08-3103:09:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
27
xml
external entity
xxe
vulnerability
mpxj
software

EPSS

0.002

Percentile

59.2%

JSON

mpxj is vulnerable to XML external entity attacks. The XMLFilter is configured with external DTDs by default, allowing an attacker to perform XXE attacks to access system files or perform requests on behalf of the server.

Related

osv 2
prion 1
github 1
nvd 1
cve 1
cvelist 1
ibm 1
nessus 1
ics 1
oracle 1
osv
osv
CVE-2020-25020
2020-08-29 19:15:14
Improper Restriction of XML External Entity Reference in MPXJ
2021-05-07 15:54:36
prion
prion
Design/Logic Flaw
2020-08-29 19:15:00
github
github
Improper Restriction of XML External Entity Reference in MPXJ
2021-05-07 15:54:36
nvd
nvd
CVE-2020-25020
2020-08-29 19:15:14
cve
cve
CVE-2020-25020
2020-08-29 19:15:14
cvelist
cvelist
CVE-2020-25020
2020-08-29 18:31:48
ibm
ibm
Security Bulletin:IBM TRIRIGA Application Platform discloses CVE-2020-25020
2022-08-30 16:41:34
nessus
nessus
Oracle Primavera Unifier (Jan 2021 CPU)
2021-01-29 00:00:00
ics
ics
Siemens COMOS
2023-11-16 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00

EPSS

0.002

Percentile

59.2%

JSON
Related for VERACODE:26515
osv2prion1github1nvd1cve1cvelist1ibm1nessus1ics1oracle1