A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codehaus-plexus project codehaus-plexus |
||
redhat integration camel k |