IDCVSSSummaryLast (major) updatePublished
CVE-2015-0250 6.4
XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of service via a crafted SVG file. <a href="http://cwe.mitre
04-11-2017 - 01:29 24-03-2015 - 17:59
CVE-2017-5662 7.9
In Apache Batik before 1.9, files lying on the filesystem of the server which uses batik can be revealed to arbitrary users who send maliciously formed SVG files. The file types that can be shown depend on the user context in which the exploitable ap
19-07-2018 - 01:29 18-04-2017 - 14:59
Back to Top Mark selected
Back to Top