The XML-RPC protocol support in Apache Roller prior to 5.0.3 allows malicious users to conduct XML External Entity (XXE) attacks via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache roller 4.0.1 |
||
apache roller 3.1 |
||
apache roller 4.0 |
||
apache roller 5.0 |
||
apache roller 5.0.1 |
||
apache roller 5.0.2 |