Falhas do tipo CWE-611
574 resultadosCVE-2025-32138MEDIUMWordPress Easy Google Maps plugin <= 1.11.18 - XML External Entity vulnerabilityEPSS 0.5%CVE-2025-53689HIGHApache Jackrabbit: XXE vulnerability in jackrabbit-spi-commonsEPSS 0.5%CVE-2025-61813HIGHColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)EPSS 0.5%CVE-2021-22501MEDIUMImproper Restriction of XML External Entity Reference vulnerability in OpenText™ Operations Bridge Manager allows Input Data Manipulation.
EPSS 0.5%CVE-2025-0162HIGHIBM Aspera Shares XML external entity injectionEPSS 0.5%CVE-2022-50899HIGHGeonetwork 4.2.0 - XML External Entity (XXE)EPSS 0.5%CVE-2023-6149MEDIUMPossible XXE vulnerability in Jenkins Plugin for Qualys Web Application Security EPSS 0.5%CVE-2022-3338MEDIUMXXE in Trellix ePO serverEPSS 0.5%CVE-2025-36608MEDIUMDell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains an Improper Restriction of XML External Entity Reference vulnerability.EPSS 0.5%CVE-2022-2838—In Eclipse Sphinx™ before version 0.13.1, Apache Xerces XML Parser was used without disabling processing of referenced external entities allEPSS 0.5%CVE-2025-61821MEDIUMColdFusion | Improper Restriction of XML External Entity Reference ('XXE') (CWE-611)EPSS 0.5%CVE-2025-31039CRITICALWordPress Category Icon plugin <= 1.0.3 - XML External Entity (XXE) vulnerabilityEPSS 0.5%CVE-2024-51445HIGHA vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All versions < V2404.4). The affected application contEPSS 0.4%CVE-2024-39847HIGHArbitrary File Read and Server Side Request Forgery via XML External Entities in 4D Server SOAPEPSS 0.4%CVE-2023-37233HIGHLoftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.EPSS 0.4%CVE-2024-49352HIGHIBM Cognos Anaytics XML external entity injectionEPSS 0.4%CVE-2022-0861LOWePO XML extended entity vulnerabilityEPSS 0.4%CVE-2023-43067MEDIUM
Dell Unity prior to 5.3 contains an XML External Entity injection vulnerability. An XXE attack could potentially exploit this vulnerabilityEPSS 0.4%CVE-2024-4184MEDIUMMultiple XXE sinks in ALM archive post-build step in OpenText Application Automation ToolsEPSS 0.4%CVE-2024-4189MEDIUMMultiple XXE sinks in Run LoadRunner script step in OpenText Application Automation ToolsEPSS 0.4%