| Max CVSS | 5.8 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-0818 | 5.0 |
RESTEasy before 2.3.1 allows remote attackers to read arbitrary files via an external entity reference in a DOM document, aka an XML external entity (XXE) injection attack.
|
13-02-2023 - 03:26 | 23-11-2012 - 20:55 | |
| CVE-2011-5245 | 5.0 |
The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows remote attackers to read arbitrary files via an external entity reference in a Java Architecture for XML Binding (JAXB) input, aka an XML external entity (XXE
|
29-08-2017 - 01:30 | 23-11-2012 - 20:55 | |
| CVE-2011-4314 | 5.8 |
message/ax/AxMessage.java in OpenID4Java before 0.9.6 final, as used in JBoss Enterprise Application Platform 5.1 before 5.1.2, Step2, Kay Framework before 1.0.2, and possibly other products does not verify that Attribute Exchange (AX) information is
|
15-02-2013 - 04:50 | 27-01-2012 - 15:55 |