Falhas do tipo CWE-611
576 resultadosCVE-2018-25142HIGHNovaRad NovaPACS Diagnostics Viewer 8.5 XML External Entity InjectionEPSS 0.4%CVE-2025-47293LOWPowSyBl Core XML Reader allows XXE and SSRFEPSS 0.4%CVE-2025-53621MEDIUMDSpace vulnerable to XML External Entity (XXE) injection in import via Simple Archive Format (SAF) or import from external sourcesEPSS 0.4%CVE-2026-49875MEDIUMApache CXF: XML External Entity (XXE) Injection in W3CMultiSchemaFactory and EndpointReferenceUtilsEPSS 0.4%CVE-2025-65868CRITICALXML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST requesEPSS 0.4%CVE-2026-39053MEDIUMOinone Pamirs 7.0.0 contains an XML External Entity (XXE) issue in its XStream-based XML parsing logic. When attacker-controlled XML is passEPSS 0.4%CVE-2025-1781HIGHThere is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce serEPSS 0.4%CVE-2024-20531MEDIUMCisco Identity Services Engine XML External Entity Injection VulnerabilityEPSS 0.4%CVE-2024-5625MEDIUMXML External Entity Injection in PruvaSoft Informatics' Apinizer Management ConsoleEPSS 0.4%CVE-2026-22016HIGHVulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). EPSS 0.4%CVE-2025-24911MEDIUMHitachi Vantara Pentaho Business Analytics Server - Improper Restriction of XML External Entity ReferenceEPSS 0.4%CVE-2026-3603HIGHIBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to XML external entity injection (XXE) attackEPSS 0.4%CVE-2026-40998HIGHJaxp13 XPath XXE via StreamSource and SAXSourceEPSS 0.4%CVE-2025-1225MEDIUMywoa WXCallBack Interface XMLParse.java extract xml external entity referenceEPSS 0.4%CVE-2025-4639HIGHImproper Restriction of XML External Entity Reference in PeergosEPSS 0.4%CVE-2026-3404LOWthinkgem JeeSite Endpoint CasOutHandler.java xml external entity referenceEPSS 0.4%CVE-2025-5877MEDIUMFengoffice Feng Office Document Upload ApplicationDataObject.class.php xml external entity referenceEPSS 0.4%CVE-2024-54171HIGHIBM EntireX XML external entity injectionEPSS 0.3%CVE-2023-27652MEDIUMAn issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges cause a denial of service via the update_iEPSS 0.3%CVE-2019-18943MEDIUMXML External Entity processingEPSS 0.3%