Fallos del tipo CWE-611
574 resultadosCVE-2022-47873CRITICALNetcad KEOS 1.0 is vulnerable to XML External Entity (XXE) resulting in SSRF with XXE (remote).EPSS 0.8%CVE-2023-26043MEDIUMXML External Entity (XXE) injection in GeoServer style upload functionalityEPSS 0.8%CVE-2022-23031—On BIG-IP FPS, ASM, and Advanced WAF versions 16.1.x before 16.1.1, 15.1.x before 15.1.4, and 14.1.x before 14.1.4.4, an XML External EntityEPSS 0.8%CVE-2026-23795MEDIUMApache Syncope: Console XXE on Keymaster parametersEPSS 0.8%CVE-2023-49110HIGHXML External Entity Injection in Kiuwan SASTEPSS 0.8%CVE-2022-1704HIGHInductive Automation IgnitionEPSS 0.8%CVE-2023-35892HIGHIBM Financial Transaction Manager for SWIFT Services XML external entity injectionEPSS 0.8%CVE-2024-55081CRITICALAn XML External Entity (XXE) injection vulnerability in the component /datagrip/upload of Chat2DB v0.3.5 allows attackers to execute arbitraEPSS 0.8%CVE-2024-21082CRITICALVulnerability in the Oracle BI Publisher product of Oracle Analytics (component: XML Services). Supported versions that are affected are 7.EPSS 0.8%CVE-2015-10029MEDIUMkelvinmo simplexrd simplexrd.class.php xml external entity referenceEPSS 0.8%CVE-2023-28151MEDIUMAn issue was discovered in Independentsoft JSpreadsheet before 1.1.110. The API is prone to XML external entity (XXE) injection via a remoteEPSS 0.8%CVE-2021-27604HIGHIn order to prevent XML External Entity vulnerability in SAP NetWeaver ABAP Server and ABAP Platform (Process Integration - Enterprise ServiEPSS 0.8%CVE-2023-51604MEDIUMHoneywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure VulnerabilityEPSS 0.8%CVE-2023-51601MEDIUMHoneywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure VulnerabilityEPSS 0.8%CVE-2023-51600MEDIUMHoneywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure VulnerabilityEPSS 0.8%CVE-2023-51602MEDIUMHoneywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure VulnerabilityEPSS 0.8%CVE-2023-51605MEDIUMHoneywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure VulnerabilityEPSS 0.8%CVE-2022-22977HIGHVMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerability. A malicious actor with non-administEPSS 0.8%CVE-2024-23525MEDIUMThe Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to use the no_xxe option of XML::Twig.EPSS 0.8%CVE-2018-25082MEDIUMzwczou WeChat SDK Python to_xml xml external entity referenceEPSS 0.8%