Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
LoboEvolution version < 9b75694cedfa4825d4a2330abf2719d470c654cd contains a XML External Entity (XXE) vulnerability in XML Parsing when viewing the XML file in the browser that can result in disclosure of confidential data, denial of service, server side request forgery. This attack appear to be exploitable via Specially crafted XML file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LoboEvolution 安全漏洞
Vulnerability Description
LoboEvolution是一款支持Java项目的、可扩展的Web浏览器。 LoboEvolution 9b75694cedfa4825d4a2330abf2719d470c654cd之前版本中XML的解析存在XML外部实体注入漏洞。攻击者可借助特制的XML文件利用该漏洞泄露敏感信息,造成拒绝服务或实施服务器端请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A