Restlet Framework 2.1.x prior to 2.1.7 and 2.x.x prior to 2.2 RC1, when using XMLRepresentation or XML serializers, allows malicious users to cause a denial of service via an XML Entity Expansion (XEE) attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
restlet restlet framework |
||
restlet restlet framework 2.2 |
||
restlet restlet framework 2.1.6 |
||
restlet restlet framework 2.1.5 |
||
restlet restlet framework 2.1.4 |
||
restlet restlet framework 2.1.3 |
||
restlet restlet framework 2.1.2 |
||
restlet restlet framework 2.1.1 |
||
restlet restlet framework 2.1.0 |