Search Vulnerabilities

Geonetwork 4.2.0 - XML External Entity (XXE)

Jan 13, 2026

CVE-2026-22186

Bio-Formats <= 8.3.0 XXE in Leica XLEF Metadata Parser

CVE-2026-20029

Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability

CVE-2025-36589

Dell Unisphere for PowerMax, version(s) 9

Jan 6, 2026

CVE-2025-68280

Apache SIS: XML External Entity (XXE) vulnerability

Jan 5, 2026

CVE-2025-15251

beecue FastBee SIP Message ReqAbstractHandler.java getRootElement xml external entity reference

Dec 30, 2025

CVE-2019-25253

KYOCERA Net Admin 3.4.0906 Unauthenticated XML External Entity Injection

CVE-2018-25142

CRITICAL

NovaRad NovaPACS Diagnostics Viewer 8.5 XML External Entity Injection

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3

CVE-2025-68463

Bio

Dec 18, 2025

CVE-2025-61813

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-61821

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-61823

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-66516

Apache Tika core, Apache Tika parsers, Apache Tika PDF parser module: Update to CVE-2025-54988 to expand scope of artifacts affected

Dec 4, 2025

CVE-2025-66370

Kivitendo before 3

CVE-2025-66371

Peppol-py before 1

CVE-2025-66372

LOW

Mustang before 2

CVE-2025-58360

GeoServer is vulnerable to an Unauthenticated XML External Entities (XXE) attack via WMS GetMap feature

Nov 25, 2025

CVE-2025-13209

bestfeng oa_git_free WorkflowPredefineController.java updateWriteBack xml external entity reference

Nov 15, 2025

CVE-2025-11700

N-central Multiple XXE Injection Vulnerabilities

Nov 12, 2025

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2022-50899

Geonetwork 4.2.0 - XML External Entity (XXE)

Jan 13, 2026

CVE-2026-22186

Bio-Formats <= 8.3.0 XXE in Leica XLEF Metadata Parser

CVE-2026-20029

Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability

CVE-2025-36589

Dell Unisphere for PowerMax, version(s) 9

Jan 6, 2026

CVE-2025-68280

Apache SIS: XML External Entity (XXE) vulnerability

Jan 5, 2026

CVE-2025-15251

beecue FastBee SIP Message ReqAbstractHandler.java getRootElement xml external entity reference

Dec 30, 2025

CVE-2019-25253

KYOCERA Net Admin 3.4.0906 Unauthenticated XML External Entity Injection

CVE-2018-25142

CRITICAL

NovaRad NovaPACS Diagnostics Viewer 8.5 XML External Entity Injection

CVE-2024-58335

OpenXRechnungToolbox through 2024-10-05-3

CVE-2025-68463

Bio

Dec 18, 2025

CVE-2025-61813

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-61821

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-61823

ColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)

CVE-2025-66516

Apache Tika core, Apache Tika parsers, Apache Tika PDF parser module: Update to CVE-2025-54988 to expand scope of artifacts affected

Dec 4, 2025

CVE-2025-66370

Kivitendo before 3

CVE-2025-66371

Peppol-py before 1

CVE-2025-66372

LOW

Mustang before 2

CVE-2025-58360

GeoServer is vulnerable to an Unauthenticated XML External Entities (XXE) attack via WMS GetMap feature

Nov 25, 2025

CVE-2025-13209

bestfeng oa_git_free WorkflowPredefineController.java updateWriteBack xml external entity reference

Nov 15, 2025

CVE-2025-11700

N-central Multiple XXE Injection Vulnerabilities