Computer Security
[EN] securityvulns.ru no-pyccku


Apache Jackrabbit XXE
Published:08.06.2015
Source:
SecurityVulns ID:14524
Type:library
Threat Level:
6/10
Description:XXE via WebDAV request.
Affected:APACHE : Jackrabbit 2.10
CVE:CVE-2015-1833 (XML external entity (XXE) vulnerability in Apache Jackrabbit before 2.0.6, 2.2.x before 2.2.14, 2.4.x before 2.4.6, 2.6.x before 2.6.6, 2.8.x before 2.8.1, and 2.10.x before 2.10.1 allows remote attackers to read arbitrary files and send requests to intranet servers via a crafted WebDAV request.)
Original documentdocumentJulian Reschke, CVE-2015-1833 (Jackrabbit WebDAV XXE vulnerability) (08.06.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod