Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Easyxml Project Subscribe
Filtered by product Easyxml
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-26705 1 Easyxml Project 1 Easyxml 2022-10-27 6.4 MEDIUM 9.1 CRITICAL
The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE) vulnerability which allows for an attacker to expose sensitive data or perform a denial of service (DOS) via a crafted external entity entered into the XML content as input.