Xmlbeam Xmlbeam

Do you want an email whenever new security vulnerabilities are reported in Xmlbeam?

By the Year

In 2022 there have been 0 vulnerabilities in Xmlbeam . Xmlbeam did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 1 7.50

It may take a day or so for new Xmlbeam vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Xmlbeam Security Vulnerabilities

Spring Data Commons

CVE-2018-1259 7.5 - High - May 11, 2018

Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1.4.14 or earlier versions, contains a property binder vulnerability caused by improper restriction of XML external entity references as underlying library XMLBeam does not restrict external reference expansion. An unauthenticated remote malicious user can supply specially crafted request parameters against Spring Data's projection-based request payload binding to access arbitrary files on the system.


Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Xmlbeam or by Xmlbeam? Click the Watch button to subscribe.