Improper Restriction of XML External Entity Reference

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

CVEs (1,249)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-28681 1Jenkins 1Visual Studio Code Metrics Feb 25, 2025 Apr 2, 2023 N/A· v4 8.2 HIGH· v3 N/A· v2 Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2023-28680 1Jenkins 1Crap4j Feb 25, 2025 Apr 2, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Jenkins Crap4J Plugin 0.9 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2022-43473 1Zohocorp 3Manageengine Opmanager Manageengine Opmanager MspManageengine Opmanager Plus Nov 21, 2024 Mar 30, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 A blind XML External Entity (XXE) vulnerability exists in the Add UCS Device functionality of ManageEngine OpManager 12.6.168. A specially crafted XML file can lead to SSRF. An attacker can serve a malicious XML payloa...Show more A blind XML External Entity (XXE) vulnerability exists in the Add UCS Device functionality of ManageEngine OpManager 12.6.168. A specially crafted XML file can lead to SSRF. An attacker can serve a malicious XML payload to trigger this vulnerability.Show less
CVE-2022-36969 1Aveva 1Aveva Edge Feb 18, 2025 Mar 29, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 This vulnerability allows remote attackers to disclose sensitive information on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in th...Show more This vulnerability allows remote attackers to disclose sensitive information on affected installations of AVEVA Edge 2020 SP2 Patch 0(4201.2111.1802.0000). User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the LoadImportedLibraries method. Due to the improper restriction of XML External Entity (XXE) references, a crafted document specifying a URI causes the XML parser to access the URI and embed the contents back into the XML document for further processing. An attacker can leverage this vulnerability to disclose information in the context of the current process. Was ZDI-CAN-17394.Show less
CVE-2023-28150 1Independentsoft 1Jodf May 30, 2025 Mar 24, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Independentsoft JODF before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.
CVE-2023-28151 1Independentsoft 1Jspreadsheet May 30, 2025 Mar 24, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Independentsoft JSpreadsheet before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.
CVE-2023-28152 1Independentsoft 1Jword May 30, 2025 Mar 24, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.
CVE-2023-28685 1Jenkins 1Absint A3 Feb 26, 2025 Mar 22, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Jenkins AbsInt a³ Plugin 1.1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CVE-2022-46300 1Visam 1Vbase Automation Base Jan 17, 2025 Mar 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.
CVE-2022-45468 1Visam 1Vbase Automation Base Jan 17, 2025 Mar 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.
CVE-2022-45121 1Visam 1Vbase Automation Base Jan 17, 2025 Mar 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.
CVE-2022-43512 1Visam 1Vbase Automation Base Jan 17, 2025 Mar 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.
CVE-2022-41696 1Visam 1Vbase Automation Base Jan 17, 2025 Mar 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.
CVE-2018-25082 1Wechat Sdk Python Project 1Wechat Sdk Python Nov 21, 2024 Mar 21, 2023 N/A· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability was found in zwczou WeChat SDK Python 0.3.0 and classified as critical. This issue affects the function validate/to_xml. The manipulation leads to xml external entity reference. The attack may be initiate...Show more A vulnerability was found in zwczou WeChat SDK Python 0.3.0 and classified as critical. This issue affects the function validate/to_xml. The manipulation leads to xml external entity reference. The attack may be initiated remotely. Upgrading to version 0.5.5 is able to address this issue. The patch is named e54abadc777715b6dcb545c13214d1dea63df6c9. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-223403.Show less
CVE-2023-27874 1Ibm 1Aspera Faspex Nov 21, 2024 Mar 21, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Aspera Faspex 4.4.2 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote authenticated attacker could exploit this vulnerability to execute arbitrary commands. IBM X-Forc...Show more IBM Aspera Faspex 4.4.2 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A remote authenticated attacker could exploit this vulnerability to execute arbitrary commands. IBM X-Force ID: 249845.Show less
CVE-2023-26461 1Sap 1Netweaver Enterprise Portal Nov 21, 2024 Mar 14, 2023 N/A· v4 4.9 MEDIUM· v3 N/A· v2 SAP NetWeaver allows (SAP Enterprise Portal) - version 7.50, allows an authenticated attacker with sufficient privileges to access the XML parser which can submit a crafted XML file which when parsed will enable them to...Show more SAP NetWeaver allows (SAP Enterprise Portal) - version 7.50, allows an authenticated attacker with sufficient privileges to access the XML parser which can submit a crafted XML file which when parsed will enable them to access but not modify sensitive files and data. It allows the attacker to view sensitive data which is owned by certain privileges. Show less
CVE-2023-1288 13ds 1Enovia Live Collaboration Nov 21, 2024 Mar 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An XML External Entity injection (XXE) vulnerability in ENOVIA Live Collaboration V6R2013xE allows an attacker to read local files on the server.
CVE-2023-27476 1Osgeo 1Owslib Nov 21, 2024 Mar 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 OWSLib is a Python package for client programming with Open Geospatial Consortium (OGC) web service interface standards, and their related content models. OWSLib's XML parser (which supports both `lxml` and `xml.etree`)...Show more OWSLib is a Python package for client programming with Open Geospatial Consortium (OGC) web service interface standards, and their related content models. OWSLib's XML parser (which supports both `lxml` and `xml.etree`) does not disable entity resolution, and could lead to arbitrary file reads from an attacker-controlled XML payload. This affects all XML parsing in the codebase. This issue has been addressed in version 0.28.1. All users are advised to upgrade. The only known workaround is to patch the library manually. See `GHSA-8h9c-r582-mggc` for details.Show less
CVE-2023-27480 1Xwiki 1Xwiki Nov 21, 2024 Mar 7, 2023 N/A· v4 7.7 HIGH· v3 N/A· v2 XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions any user with edit rights on a document can trigger an XAR import on a forged XAR file, leadin...Show more XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions any user with edit rights on a document can trigger an XAR import on a forged XAR file, leading to the ability to display the content of any file on the XWiki server host. This vulnerability has been patched in XWiki 13.10.11, 14.4.7 and 14.10-rc-1. Users are advised to upgrade. Users unable to upgrade may apply the patch `e3527b98fd` manually.Show less
CVE-2023-20052 3Cisco ClamavStormshield 4Clamav Secure EndpointSecure Endpoint Private Cloud+1 more Nov 21, 2024 Mar 1, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier co...Show more On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to access sensitive information on an affected device. This vulnerability is due to enabling XML entity substitution that may result in XML external entity injection. An attacker could exploit this vulnerability by submitting a crafted DMG file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to leak bytes from any file that may be read by the ClamAV scanning process.Show less

Previous 1...192021...63 Next