mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-23 19:04:02 +02:00
0xMarcio
1.2 KiB
1.2 KiB
CVE-2019-0228
%20attacks&color=brightgreen)
Description
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.
POC
Reference
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpuApr2021.html
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
Github
- https://github.com/A-TPL-Bench/LibHunter
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/Anonymous-Phunter/PHunter
- https://github.com/CGCL-codes/LibHunter
- https://github.com/CGCL-codes/PHunter
- https://github.com/LibHunter/LibHunter
- https://github.com/bluesNbrews/SkillSearchEngine
- https://github.com/swilliams9671/SkillSearchEngine