CVE-2019-14678: XML External Entity in SAS XML Mapper
-
Updated
Mar 12, 2024
CVE-2019-14678: XML External Entity in SAS XML Mapper
WSO2-2021-1261: Multiple Cross-Site Scripting in WSO2 ESB
CVE-2023-51518: Preauthenticated Java Deserialization via JMX in Apache James
CVE-2021-42562: Improper Access Control in MITRE Caldera
Exploit and report for CVE-2022-43293
MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal
CVE-2020-8250: Privilege Escalation via Command Injection in Pulse Secure VPN Linux Client
CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN
CVE-2022-40634: FreeMarker Server-Side Template Injection in CrafterCMS
CVE-2021-42558: Multiple Cross-Site Scripting in MITRE Caldera
CVE-2019-9849: Remote bullet graphics retrieved in “stealth mode” in LibreOffice
CVE-2023-40037: Incomplete Validation of JDBC and JNDI Connection URLs in Apache NiFi
CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz
MAL-003: Groovy Security Bypass and Stored XSS in Apache OfBiz
MAL-004: Command Injection Bypass for CVE-2020-12641 in Roundcube Webmail
CVE-2021-42560: Unsafe XML Parsing in MITRE Caldera
CVE-2020-13965: Cross-Site Scripting via Malicious XML Attachment in Roundcube Webmail
CVE-2020-12641: Command Injection via “_im_convert_path” Parameter in Roundcube Webmail
WSO2-2021-1259: H2 RCE via Malicious JDBC Connection String in WSO2 ESB
Add a description, image, and links to the 0-day topic page so that developers can more easily learn about it.
To associate your repository with the 0-day topic, visit your repo's landing page and select "manage topics."