Auth/Yadis/XML.php in PHP OpenID Library 2.2.2 and previous versions allows remote malicious users to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via XRDS data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
janrain php-openid |
Provides mainly security patches for TYPO3 versions where the support has reached EOL
TYPO3 Patch Collection This project aims to collect and to provide at first place security patches for TYPO3 versions where the official support has ended However, you may also find here in some rare cases non-security patches that may fix certain bugs or may introduce a backported feature from a newer TYPO3 Version Although some of these patches were directly published by th
Vulmon