Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xxe vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2017-13706
XML external entity (XXE) vulnerability in the import package functionality of the deployment module in Lansweeper prior to 6.0.100.67 allows remote authenticated users to obtain sensitive information, cause a denial of service, conduct server-side request forgery (SSRF) attacks,...
Lansweeper Lansweeper
9.8
CVSSv3
CVE-2017-6895
USB Pratirodh allows remote malicious users to conduct XML External Entity (XXE) attacks via XML data in usb.xml.
Usb Pratirodh Project Usb Pratirodh -
NA
CVE-2015-2346
XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter.
Huawei Seq Analyst
NA
CVE-2015-6662
XML external entity (XXE) vulnerability in SAP NetWeaver Portal 7.4 allows remote malicious users to read arbitrary files and possibly have other unspecified impact via crafted XML data, aka SAP Security Note 2168485.
Sap Netweaver 7.40
8.8
CVSSv3
CVE-2017-14526
Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Administrator 7.2.0180.0055 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files, cause a denial of service, or, on Windows, obtain Documentum user hashes...
Opentext Documentum Administrator 7.2.0180.0055
Opentext Documentum Webtop 6.8.0160.0073
8.8
CVSSv3
CVE-2017-14527
Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Webtop 6.8.0160.0073 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files, cause a denial of service, or, on Windows, obtain Documentum user hashes via a ...
Opentext Documentum Administrator 7.2.0180.0055
Opentext Documentum Webtop 6.8.0160.0073
6.5
CVSSv3
CVE-2015-5361
Background For regular, unencrypted FTP traffic, the FTP ALG can inspect the unencrypted control channel and open related sessions for the FTP data channel. These related sessions (gates) are specific to source and destination IPs and ports of client and server. The design intent...
Juniper Junos 12.1x44
Juniper Junos 12.1x46
Juniper Junos 12.1x46-d10
Juniper Junos 12.1x47
Juniper Junos 12.3x48
Juniper Junos 15.1x49
NA
CVE-2015-5068
XML external entity (XXE) vulnerability in SAP Mobile Platform 3 allows remote malicious users to read arbitrary files or possibly have other unspecified impact via a crafted XML request, aka SAP Security Note 2159601.
Sap Mobile Platform 3.0
NA
CVE-2018-100006
freeplane: CVE-2018-1000069 XXE vulnerability
NA
CVE-2015-6664
XML external entity (XXE) vulnerability in the application import functionality in SAP Mobile Platform 2.3 allows remote malicious users to read arbitrary files and possibly have other unspecified impact via crafted XML data, aka SAP Security Note 2152227.
Sap Mobile Platform 2.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-9474
CVE-2024-36620
file inclusion
cache poisoning
man-in-the-middle
CVE-2024-20138
CVE-2024-0012
CVE-2024-20131
CVE-2024-11995
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »