← Back

Xmlgraphics Commons

xmlgraphics_commons

Vendor: Apache • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-11988
2Apache
Fedoraproject
2Fedora
Xmlgraphics Commons
Nov 21, 2024
Feb 24, 2021
N/A· v4
8.2 HIGH· v3
6.4 MEDIUM· v2
Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnera...Show more
Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests. Users should upgrade to 2.6 or later.Show less