Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In all versions of Eclipse Web Tools Platform through release 3.18 (2020-06), XML and DTD files referring to external entities could be exploited to send the contents of local files to a remote server when edited or validated, even when external entity resolution is disabled in the user preferences.
CVSS Information
N/A
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
Eclipse Web Tools Platform 代码问题漏洞
Vulnerability Description
Eclipse Web Tools Platform 3.18 (2020-06)及之前版本中的DTD Parser/Validator存在代码问题漏洞。攻击者可利用该漏洞将本地文件发送到远程服务器上。
CVSS Information
N/A
Vulnerability Type
N/A