Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.1
CVSSv3

CVE-2019-19031

Published: 30/12/2019 Updated: 01/01/2022
CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8
CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8
VMScore: 490
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:P
Subscribe to Edit-xml

Vulnerability Summary

Easy XML Editor through v1.7.8 is affected by: XML External Entity Injection. The impact is: Arbitrary File Read and DoS by consuming resources. The component is: XML Parsing. The attack vector is: Specially crafted XML payload.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

edit-xml easy xml editor

Exploits

Exploit DB: Easy XML Editor 1.7.8 XML Injection
Easy XML Editor version 178 suffers from an XML external entity injection vulnerability ...

References

CWE-611https://hackpuntes.com/cve-2019-19031-easy-xml-editor-1-7-8-inyeccion-xml/http://packetstormsecurity.com/files/155996/Easy-XML-Editor-1.7.8-XML-Injection.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/155996/Easy-XML-Editor-1.7.8-XML-Injection.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook