CWE-611

CVE-2022-0265

February 23, 2023 by

Improper Restriction of XML External Entity Reference in GitHub repository hazelcast/hazelcast in 5.1-BETA-1.

CVE-2022-0272

February 23, 2023 by

Improper Restriction of XML External Entity Reference in GitHub repository detekt/detekt prior to 1.20.0.

CVE-2022-0198

February 23, 2023 by

corenlp is vulnerable to Improper Restriction of XML External Entity Reference

CVE-2022-0219

February 23, 2023 by

Improper Restriction of XML External Entity Reference in GitHub repository skylot/jadx prior to 1.3.2.

A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could result in information disclosure when opening a malicious solution file provided by an attacker with SCADAPack Workbench. This could be exploited to pass data from local files to a remote system controlled by an attacker. Affected Product: SCADAPack Workbench (6.6.8a and prior)

CVE-2023-24323

February 22, 2023 by godfreyd94

Mojoportal v2.7 was discovered to contain an authenticated XML external entity (XXE) injection vulnerability.